1972.793855] ? proc_sessionid_read+0x230/0x230 [ 1972.794511] vfs_read+0x228/0x620 [ 1972.795043] ksys_read+0x12d/0x260 [ 1972.795562] ? vfs_write+0xb10/0xb10 [ 1972.796114] do_syscall_64+0x33/0x40 [ 1972.796650] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1972.797355] RIP: 0033:0x7f33de21d69c [ 1972.797868] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1972.800398] RSP: 002b:00007f33db7e0170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1972.801402] RAX: ffffffffffffffda RBX: 0000000020800000 RCX: 00007f33de21d69c [ 1972.802374] RDX: 000000000000000f RSI: 00007f33db7e01e0 RDI: 0000000000000004 [ 1972.803350] RBP: 00007f33db7e01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1972.804363] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000001 [ 1972.805354] R13: 00007fffd1a1079f R14: 00007f33db7e0300 R15: 0000000000022000 08:49:18 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) (fail_nth: 1) 08:49:18 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:49:18 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000100)) 08:49:18 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x0, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:49:18 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) fsmount(0xffffffffffffffff, 0x1, 0x74) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:49:18 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 9) [ 1972.874243] FAULT_INJECTION: forcing a failure. [ 1972.874243] name failslab, interval 1, probability 0, space 0, times 0 [ 1972.875850] CPU: 1 PID: 10543 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 1972.876821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1972.877926] Call Trace: [ 1972.878293] dump_stack+0x107/0x167 [ 1972.878767] should_fail.cold+0x5/0xa [ 1972.879282] ? create_object.isra.0+0x3a/0xa20 [ 1972.879894] should_failslab+0x5/0x20 [ 1972.880400] kmem_cache_alloc+0x5b/0x310 [ 1972.880946] create_object.isra.0+0x3a/0xa20 [ 1972.881556] kmemleak_alloc_percpu+0xa0/0x100 [ 1972.882157] pcpu_alloc+0x4e2/0x1240 [ 1972.882676] ? io_tctx_exit_cb+0xf0/0xf0 [ 1972.883238] percpu_ref_init+0x31/0x3d0 [ 1972.883786] io_uring_setup+0x47a/0x2980 [ 1972.884336] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1972.885001] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1972.885688] ? wait_for_completion_io+0x270/0x270 [ 1972.886360] do_syscall_64+0x33/0x40 [ 1972.886866] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1972.887573] RIP: 0033:0x7f0e6488ab19 [ 1972.888061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1972.890553] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1972.891579] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 1972.892519] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 1972.893475] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 1972.894437] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 1972.895415] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 1972.904089] FAULT_INJECTION: forcing a failure. [ 1972.904089] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1972.905660] CPU: 1 PID: 10534 Comm: syz-executor.0 Not tainted 5.10.233 #1 [ 1972.906584] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1972.907698] Call Trace: [ 1972.908049] dump_stack+0x107/0x167 [ 1972.908533] should_fail.cold+0x5/0xa [ 1972.909055] _copy_to_user+0x2e/0x180 [ 1972.909571] simple_read_from_buffer+0xcc/0x160 [ 1972.910196] proc_fail_nth_read+0x198/0x230 [ 1972.910784] ? proc_sessionid_read+0x230/0x230 [ 1972.911403] ? security_file_permission+0xb1/0xe0 [ 1972.912062] ? proc_sessionid_read+0x230/0x230 [ 1972.912684] vfs_read+0x228/0x620 [ 1972.913164] ksys_read+0x12d/0x260 [ 1972.913647] ? vfs_write+0xb10/0xb10 [ 1972.914172] do_syscall_64+0x33/0x40 [ 1972.914687] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1972.915401] RIP: 0033:0x7f707b60d69c [ 1972.915914] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1972.918426] RSP: 002b:00007f7078bd0170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1972.919441] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f707b60d69c [ 1972.920400] RDX: 000000000000000f RSI: 00007f7078bd01e0 RDI: 0000000000000004 [ 1972.921357] RBP: 00007f7078bd01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1972.922296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1972.923341] R13: 00007ffe708108bf R14: 00007f7078bd0300 R15: 0000000000022000 08:49:18 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3002, 0x0, 0xffffffffffffffff) 08:49:18 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000100)) 08:49:18 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:49:18 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) 08:49:18 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3004, 0x0, 0xffffffffffffffff) 08:49:18 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800002, 0x0, 0x1f012, r0, 0x0) 08:49:18 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:49:18 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:49:18 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000100)) 08:49:18 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 10) 08:49:18 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 1973.080264] FAULT_INJECTION: forcing a failure. [ 1973.080264] name failslab, interval 1, probability 0, space 0, times 0 [ 1973.081631] CPU: 1 PID: 10565 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 1973.082427] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1973.083424] Call Trace: [ 1973.083743] dump_stack+0x107/0x167 [ 1973.084182] should_fail.cold+0x5/0xa [ 1973.084646] ? percpu_ref_init+0xd8/0x3d0 [ 1973.085144] should_failslab+0x5/0x20 [ 1973.085607] kmem_cache_alloc_trace+0x55/0x320 [ 1973.086162] ? io_tctx_exit_cb+0xf0/0xf0 [ 1973.086649] percpu_ref_init+0xd8/0x3d0 [ 1973.087129] io_uring_setup+0x47a/0x2980 [ 1973.087620] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1973.088200] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1973.088810] ? wait_for_completion_io+0x270/0x270 [ 1973.089408] do_syscall_64+0x33/0x40 [ 1973.089853] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1973.090472] RIP: 0033:0x7f0e6488ab19 [ 1973.090921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1973.093125] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1973.094047] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 1973.094899] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 1973.095764] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 1973.096619] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 1973.097474] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:49:33 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x3) 08:49:33 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:49:33 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 11) 08:49:33 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 1988.080852] FAULT_INJECTION: forcing a failure. [ 1988.080852] name failslab, interval 1, probability 0, space 0, times 0 [ 1988.082435] CPU: 0 PID: 10579 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 1988.083415] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1988.084502] Call Trace: [ 1988.084870] dump_stack+0x107/0x167 [ 1988.085376] should_fail.cold+0x5/0xa [ 1988.085905] ? create_object.isra.0+0x3a/0xa20 [ 1988.086504] should_failslab+0x5/0x20 [ 1988.087027] kmem_cache_alloc+0x5b/0x310 [ 1988.087581] create_object.isra.0+0x3a/0xa20 [ 1988.088138] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1988.088798] kmem_cache_alloc_trace+0x151/0x320 [ 1988.089435] ? io_tctx_exit_cb+0xf0/0xf0 [ 1988.089981] percpu_ref_init+0xd8/0x3d0 [ 1988.090531] io_uring_setup+0x47a/0x2980 [ 1988.091082] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1988.091744] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1988.092435] ? wait_for_completion_io+0x270/0x270 [ 1988.093145] do_syscall_64+0x33/0x40 [ 1988.093663] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1988.094446] RIP: 0033:0x7f0e6488ab19 08:49:33 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800004, 0x0, 0x1f012, r0, 0x0) 08:49:33 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x300a, 0x0, 0xffffffffffffffff) 08:49:33 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:49:33 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), 0x0) [ 1988.094972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1988.097685] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1988.098733] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 1988.099726] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 1988.100750] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 1988.101733] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 1988.102703] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:49:33 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:49:47 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 12) 08:49:47 executing program 4: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:49:47 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), 0x0) 08:49:47 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:49:47 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x300c, 0x0, 0xffffffffffffffff) 08:49:47 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x300) 08:49:47 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800008, 0x0, 0x1f012, r0, 0x0) 08:49:47 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:49:47 executing program 4: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2001.499897] FAULT_INJECTION: forcing a failure. [ 2001.499897] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2001.502649] CPU: 0 PID: 10613 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2001.504170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2001.505971] Call Trace: [ 2001.506547] dump_stack+0x107/0x167 [ 2001.507337] should_fail.cold+0x5/0xa [ 2001.508181] __alloc_pages_nodemask+0x182/0x600 [ 2001.509189] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2001.510497] ? cap_capable+0x1cd/0x230 [ 2001.511345] alloc_pages_current+0x187/0x280 [ 2001.512316] __get_free_pages+0xc/0xa0 [ 2001.513160] io_uring_setup+0xe27/0x2980 [ 2001.514049] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2001.515182] do_syscall_64+0x33/0x40 [ 2001.516953] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2001.517704] RIP: 0033:0x7f0e6488ab19 [ 2001.518241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2001.520867] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2001.521935] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2001.522950] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2001.523961] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2001.524757] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2001.525514] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:50:02 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 13) 08:50:02 executing program 4: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:02 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:50:02 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x80000a, 0x0, 0x1f012, r0, 0x0) [ 2016.681245] FAULT_INJECTION: forcing a failure. [ 2016.681245] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2016.682986] CPU: 1 PID: 10628 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2016.684021] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2016.685238] Call Trace: [ 2016.685631] dump_stack+0x107/0x167 [ 2016.686144] should_fail.cold+0x5/0xa [ 2016.686735] __alloc_pages_nodemask+0x182/0x600 [ 2016.687535] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 08:50:02 executing program 5: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:02 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x2000) 08:50:02 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), 0x0) 08:50:02 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2, 0xffffffffffffffff) [ 2016.688740] ? cap_capable+0x1cd/0x230 [ 2016.689741] alloc_pages_current+0x187/0x280 [ 2016.690327] __get_free_pages+0xc/0xa0 [ 2016.690849] io_uring_setup+0xf9a/0x2980 [ 2016.691371] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2016.692064] ? wait_for_completion_io+0x270/0x270 [ 2016.692725] do_syscall_64+0x33/0x40 [ 2016.693204] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2016.693914] RIP: 0033:0x7f0e6488ab19 [ 2016.694408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2016.696855] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2016.697899] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2016.698851] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2016.699965] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2016.700940] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2016.701872] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:50:02 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:02 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800a00, 0x0, 0x1f012, r0, 0x0) 08:50:02 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x80000) 08:50:02 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:50:02 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x3, 0xffffffffffffffff) 08:50:02 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:50:02 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 14) 08:50:02 executing program 5: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2016.897809] FAULT_INJECTION: forcing a failure. [ 2016.897809] name failslab, interval 1, probability 0, space 0, times 0 [ 2016.901177] CPU: 0 PID: 10655 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2016.903420] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2016.906004] Call Trace: [ 2016.906759] dump_stack+0x107/0x167 [ 2016.907849] should_fail.cold+0x5/0xa [ 2016.909034] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2016.910666] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2016.912377] should_failslab+0x5/0x20 [ 2016.913513] kmem_cache_alloc_trace+0x55/0x320 [ 2016.914901] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2016.916493] io_uring_setup+0x14f6/0x2980 [ 2016.917760] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2016.919235] ? wait_for_completion_io+0x270/0x270 [ 2016.920683] do_syscall_64+0x33/0x40 [ 2016.921776] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2016.923208] RIP: 0033:0x7f0e6488ab19 [ 2016.924345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2016.929879] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2016.932155] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2016.934326] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2016.936486] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2016.938826] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2016.941236] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:50:02 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0xffffffffffffffff) 08:50:02 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x3000000) 08:50:02 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x7fffdf7ff000, 0x0, 0x1f012, r0, 0x0) 08:50:02 executing program 7: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:16 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 15) 08:50:16 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x20000000) 08:50:16 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x7ffffffff000, 0x0, 0x1f012, r0, 0x0) [ 2030.607813] FAULT_INJECTION: forcing a failure. [ 2030.607813] name failslab, interval 1, probability 0, space 0, times 0 [ 2030.609582] CPU: 1 PID: 10679 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2030.610623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2030.611865] Call Trace: [ 2030.612266] dump_stack+0x107/0x167 [ 2030.612820] should_fail.cold+0x5/0xa [ 2030.613466] ? create_object.isra.0+0x3a/0xa20 [ 2030.614157] should_failslab+0x5/0x20 [ 2030.614738] kmem_cache_alloc+0x5b/0x310 08:50:16 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:16 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) fsmount(0xffffffffffffffff, 0x1, 0x74) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:16 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xa, 0xffffffffffffffff) 08:50:16 executing program 5: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:16 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) [ 2030.615471] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2030.616630] create_object.isra.0+0x3a/0xa20 [ 2030.617355] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2030.618302] kmem_cache_alloc_trace+0x151/0x320 [ 2030.619170] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2030.620171] io_uring_setup+0x14f6/0x2980 [ 2030.620952] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2030.621756] ? wait_for_completion_io+0x270/0x270 [ 2030.622557] do_syscall_64+0x33/0x40 [ 2030.623172] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2030.623950] RIP: 0033:0x7f0e6488ab19 [ 2030.624520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2030.627312] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2030.628452] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2030.629563] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2030.630637] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2030.631721] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2030.632795] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2030.645839] FAULT_INJECTION: forcing a failure. [ 2030.645839] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2030.647626] CPU: 1 PID: 10694 Comm: syz-executor.7 Not tainted 5.10.233 #1 08:50:16 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 1) [ 2030.648658] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2030.650126] Call Trace: [ 2030.650540] dump_stack+0x107/0x167 [ 2030.651097] should_fail.cold+0x5/0xa [ 2030.651686] _copy_from_user+0x2e/0x1b0 [ 2030.652295] io_uring_setup+0x9b/0x2980 [ 2030.652896] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2030.653649] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2030.654415] ? wait_for_completion_io+0x270/0x270 [ 2030.655142] ? rcu_read_lock_any_held+0x75/0xa0 [ 2030.655857] ? vfs_write+0x354/0xb10 [ 2030.656426] ? fput_many+0x2f/0x1a0 [ 2030.656967] ? ksys_write+0x1a9/0x260 [ 2030.657563] ? __ia32_sys_read+0xb0/0xb0 [ 2030.658177] do_syscall_64+0x33/0x40 [ 2030.658736] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2030.659515] RIP: 0033:0x7f1ba3a34b19 [ 2030.660071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2030.662884] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2030.664043] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2030.665137] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2030.666218] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2030.667310] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2030.668384] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:50:16 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:16 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:50:16 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x1f012, r0, 0x0) 08:50:16 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xc, 0xffffffffffffffff) 08:50:16 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x80000000000) 08:50:16 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 16) [ 2030.806349] FAULT_INJECTION: forcing a failure. [ 2030.806349] name failslab, interval 1, probability 0, space 0, times 0 [ 2030.808171] CPU: 1 PID: 10707 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2030.809218] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2030.810465] Call Trace: [ 2030.810847] dump_stack+0x107/0x167 [ 2030.811402] should_fail.cold+0x5/0xa [ 2030.811960] ? create_object.isra.0+0x3a/0xa20 [ 2030.812647] should_failslab+0x5/0x20 [ 2030.813227] kmem_cache_alloc+0x5b/0x310 [ 2030.813835] create_object.isra.0+0x3a/0xa20 [ 2030.814488] kmemleak_alloc_percpu+0xa0/0x100 [ 2030.815139] pcpu_alloc+0x4e2/0x1240 [ 2030.815701] ? io_async_queue_proc+0x80/0x80 [ 2030.816347] percpu_ref_init+0x31/0x3d0 [ 2030.816922] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2030.817719] io_uring_setup+0x14f6/0x2980 [ 2030.818326] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2030.819043] ? wait_for_completion_io+0x270/0x270 [ 2030.819774] do_syscall_64+0x33/0x40 [ 2030.820315] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2030.821052] RIP: 0033:0x7f0e6488ab19 [ 2030.821607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2030.824744] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2030.826049] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2030.827084] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2030.828122] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2030.829171] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2030.830202] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:50:28 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x300000000000000) 08:50:28 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 17) 08:50:28 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x8000000) 08:50:28 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 2) 08:50:28 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:28 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:28 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x4, 0x1f012, r0, 0x0) 08:50:28 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xa00, 0xffffffffffffffff) [ 2043.062376] FAULT_INJECTION: forcing a failure. [ 2043.062376] name failslab, interval 1, probability 0, space 0, times 0 [ 2043.064993] CPU: 0 PID: 10730 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2043.065608] FAULT_INJECTION: forcing a failure. [ 2043.065608] name failslab, interval 1, probability 0, space 0, times 0 [ 2043.066555] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2043.066562] Call Trace: [ 2043.066584] dump_stack+0x107/0x167 [ 2043.066610] should_fail.cold+0x5/0xa [ 2043.072673] ? io_uring_setup+0x258/0x2980 [ 2043.073636] should_failslab+0x5/0x20 [ 2043.074492] kmem_cache_alloc_trace+0x55/0x320 [ 2043.075523] io_uring_setup+0x258/0x2980 [ 2043.076441] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2043.077544] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2043.078682] ? wait_for_completion_io+0x270/0x270 [ 2043.079787] do_syscall_64+0x33/0x40 [ 2043.080619] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2043.081772] RIP: 0033:0x7f1ba3a34b19 [ 2043.082607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2043.086748] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2043.088451] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2043.090059] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2043.091651] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2043.093247] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2043.094849] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2043.096504] CPU: 1 PID: 10731 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2043.097769] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2043.099213] Call Trace: [ 2043.099682] dump_stack+0x107/0x167 [ 2043.100319] should_fail.cold+0x5/0xa [ 2043.100989] ? create_object.isra.0+0x3a/0xa20 [ 2043.101796] should_failslab+0x5/0x20 [ 2043.102458] kmem_cache_alloc+0x5b/0x310 [ 2043.103174] create_object.isra.0+0x3a/0xa20 [ 2043.103951] kmemleak_alloc_percpu+0xa0/0x100 [ 2043.104737] pcpu_alloc+0x4e2/0x1240 [ 2043.105400] ? io_async_queue_proc+0x80/0x80 [ 2043.106174] percpu_ref_init+0x31/0x3d0 [ 2043.106875] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2043.107804] io_uring_setup+0x14f6/0x2980 [ 2043.108518] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2043.109393] ? wait_for_completion_io+0x270/0x270 [ 2043.110258] do_syscall_64+0x33/0x40 [ 2043.110901] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2043.111779] RIP: 0033:0x7f0e6488ab19 [ 2043.112423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2043.115638] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2043.116944] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2043.118189] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2043.119410] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2043.120615] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2043.121836] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:50:28 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x2000000000000000) 08:50:28 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xc00, 0xffffffffffffffff) 08:50:28 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x8, 0x1f012, r0, 0x0) 08:50:28 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:28 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x8000000) 08:50:28 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 3) 08:50:28 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000000, 0xffffffffffffffff) [ 2043.332268] FAULT_INJECTION: forcing a failure. [ 2043.332268] name failslab, interval 1, probability 0, space 0, times 0 [ 2043.334072] CPU: 1 PID: 10749 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2043.335069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2043.336280] Call Trace: [ 2043.336669] dump_stack+0x107/0x167 [ 2043.337203] should_fail.cold+0x5/0xa [ 2043.337787] ? create_object.isra.0+0x3a/0xa20 [ 2043.338463] should_failslab+0x5/0x20 [ 2043.339023] kmem_cache_alloc+0x5b/0x310 [ 2043.339631] create_object.isra.0+0x3a/0xa20 [ 2043.340277] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2043.341032] kmem_cache_alloc_trace+0x151/0x320 [ 2043.341745] io_uring_setup+0x258/0x2980 [ 2043.342350] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2043.343067] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2043.343818] ? wait_for_completion_io+0x270/0x270 [ 2043.344561] do_syscall_64+0x33/0x40 [ 2043.345115] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2043.345879] RIP: 0033:0x7f1ba3a34b19 [ 2043.346429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2043.349125] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2043.350254] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2043.351305] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2043.352352] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2043.353397] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2043.354459] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:50:42 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0xa, 0x1f012, r0, 0x0) 08:50:42 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 4) 08:50:42 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x140, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x2, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r2, 0x0, r2) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000080)={'veth0_to_bond\x00', &(0x7f0000000000)=@ethtool_link_settings={0x4d, 0x7, 0x40, 0xa1, 0x1, 0x1f, 0x0, 0x1, 0xf2, 0x7, [0x1, 0x3, 0xffffffff, 0x7, 0xa43, 0x8, 0x0, 0x9], [0xff, 0x1, 0x200, 0x4, 0x8, 0x9]}}) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2056.983028] FAULT_INJECTION: forcing a failure. [ 2056.983028] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2056.984696] CPU: 1 PID: 10763 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2056.985676] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2056.986833] Call Trace: [ 2056.987210] dump_stack+0x107/0x167 [ 2056.987740] should_fail.cold+0x5/0xa [ 2056.988290] __alloc_pages_nodemask+0x182/0x600 [ 2056.988969] ? lock_release+0x680/0x680 [ 2056.989554] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2056.990452] ? lock_downgrade+0x6d0/0x6d0 [ 2056.991033] alloc_pages_current+0x187/0x280 [ 2056.991632] kmalloc_order+0x35/0x160 [ 2056.992136] kmalloc_order_trace+0x14/0xa0 [ 2056.992715] io_uring_setup+0x33c/0x2980 [ 2056.993274] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2056.993973] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2056.994669] ? wait_for_completion_io+0x270/0x270 [ 2056.995381] do_syscall_64+0x33/0x40 [ 2056.995954] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2056.996688] RIP: 0033:0x7f1ba3a34b19 [ 2056.997216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2056.999839] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2057.000918] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2057.001965] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2057.002980] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2057.004008] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2057.004998] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:50:42 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x8000000) 08:50:42 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x3000000, 0xffffffffffffffff) 08:50:42 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:42 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:42 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 18) [ 2057.056559] FAULT_INJECTION: forcing a failure. [ 2057.056559] name failslab, interval 1, probability 0, space 0, times 0 [ 2057.058430] CPU: 1 PID: 10774 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2057.059421] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2057.060625] Call Trace: [ 2057.061022] dump_stack+0x107/0x167 [ 2057.061515] should_fail.cold+0x5/0xa [ 2057.062054] ? percpu_ref_init+0xd8/0x3d0 [ 2057.062654] should_failslab+0x5/0x20 [ 2057.063194] kmem_cache_alloc_trace+0x55/0x320 [ 2057.063833] ? io_async_queue_proc+0x80/0x80 [ 2057.064431] percpu_ref_init+0xd8/0x3d0 [ 2057.064969] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2057.065688] io_uring_setup+0x14f6/0x2980 [ 2057.066242] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2057.066900] ? wait_for_completion_io+0x270/0x270 [ 2057.067583] do_syscall_64+0x33/0x40 [ 2057.068102] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2057.068866] RIP: 0033:0x7f0e6488ab19 [ 2057.069384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2057.071982] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2057.073022] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2057.074005] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2057.075054] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 08:50:42 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r0, 0x8000000) [ 2057.076017] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2057.077226] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:50:42 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:42 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0xa00, 0x1f012, r0, 0x0) 08:50:42 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4000000, 0xffffffffffffffff) 08:50:42 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 5) 08:50:42 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:42 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x8020, 0x1f012, r0, 0x0) 08:50:42 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r0, 0x8000000) 08:50:42 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2057.214733] FAULT_INJECTION: forcing a failure. [ 2057.214733] name failslab, interval 1, probability 0, space 0, times 0 [ 2057.216343] CPU: 0 PID: 10791 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2057.217298] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2057.218455] Call Trace: [ 2057.218849] dump_stack+0x107/0x167 [ 2057.219340] should_fail.cold+0x5/0xa [ 2057.219852] ? create_object.isra.0+0x3a/0xa20 [ 2057.220494] should_failslab+0x5/0x20 [ 2057.221034] kmem_cache_alloc+0x5b/0x310 [ 2057.221600] create_object.isra.0+0x3a/0xa20 [ 2057.222232] ? kasan_unpoison_shadow+0x33/0x50 [ 2057.222862] kmalloc_order+0xfe/0x160 [ 2057.223410] kmalloc_order_trace+0x14/0xa0 [ 2057.223992] io_uring_setup+0x33c/0x2980 [ 2057.224565] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2057.225231] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2057.225927] ? wait_for_completion_io+0x270/0x270 [ 2057.226609] do_syscall_64+0x33/0x40 [ 2057.227122] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2057.227830] RIP: 0033:0x7f1ba3a34b19 [ 2057.228350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2057.230847] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2057.231915] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2057.232892] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2057.233854] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2057.234828] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2057.235823] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:50:42 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(0xffffffffffffffff, 0x0) dup3(r0, r1, 0x0) 08:50:42 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = getpid() r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/nvmem', 0x480001, 0xa1) ptrace$setopts(0x4206, r1, 0x0, 0x4) perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x5, 0x1, 0x4, 0x9, 0x0, 0x3, 0x440, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x5, 0x2, @perf_config_ext={0x1, 0x40}, 0xa14, 0x101, 0x7, 0x4, 0x80, 0x5, 0x7ff, 0x0, 0x5, 0x0, 0x3}, r1, 0xe, r2, 0x1) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) ioctl$PERF_EVENT_IOC_ID(r0, 0x80082407, &(0x7f00000000c0)) shutdown(r3, 0x0) dup3(r0, r3, 0x0) 08:50:42 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xa000000, 0xffffffffffffffff) 08:50:42 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x80000, 0x1f012, r0, 0x0) 08:50:43 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 19) 08:50:43 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:43 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r0, 0x8000000) [ 2057.339089] FAULT_INJECTION: forcing a failure. [ 2057.339089] name failslab, interval 1, probability 0, space 0, times 0 [ 2057.340782] CPU: 0 PID: 10809 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2057.341737] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2057.342879] Call Trace: [ 2057.343240] dump_stack+0x107/0x167 [ 2057.343745] should_fail.cold+0x5/0xa [ 2057.344284] ? create_object.isra.0+0x3a/0xa20 [ 2057.344930] should_failslab+0x5/0x20 [ 2057.345463] kmem_cache_alloc+0x5b/0x310 [ 2057.346020] create_object.isra.0+0x3a/0xa20 [ 2057.346641] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2057.347334] kmem_cache_alloc_trace+0x151/0x320 [ 2057.347967] ? io_async_queue_proc+0x80/0x80 [ 2057.348568] percpu_ref_init+0xd8/0x3d0 [ 2057.349128] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2057.349886] io_uring_setup+0x14f6/0x2980 [ 2057.350483] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2057.351177] ? wait_for_completion_io+0x270/0x270 [ 2057.351843] do_syscall_64+0x33/0x40 [ 2057.352348] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2057.353048] RIP: 0033:0x7f0e6488ab19 [ 2057.353559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2057.356123] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2057.357161] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2057.358147] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2057.359130] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2057.360133] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2057.361111] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:50:43 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xc000000, 0xffffffffffffffff) 08:50:43 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(0xffffffffffffffff, 0x0) dup3(r0, r1, 0x0) 08:50:56 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 6) 08:50:56 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 20) 08:50:56 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(0xffffffffffffffff, 0x0) dup3(r0, r1, 0x0) 08:50:56 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x800000, 0x1f012, r0, 0x0) 08:50:56 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) 08:50:56 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:50:56 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x300000000, 0xffffffffffffffff) 08:50:56 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="240000001200210c0000100000000000020000000500000000000000080001000000000019b95bcc2d91bb83f126f98300ffef2546fe9a887b330ac2d26febae86a76935046a526935debefc930ccfd08649f4e65ef58ebe22ec31cee40af826a0ed50e955d5"], 0x24}}, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xef59, 0x10}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000640)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) r5 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000005c0)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r6, 0x0) getsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000480), &(0x7f0000000600)=0x4) dup3(r5, r6, 0x0) r7 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r7, 0x80284504, &(0x7f0000000040)=""/246) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x2, &(0x7f0000000500)=0x4, 0x4) mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x104040, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, 0xee00}}, {@aname={'aname', 0x3d, '/dev/hpet\x00'}}, {@access_user}, {@afid={'afid', 0x3d, 0x7}}], [{@dont_measure}]}}) r8 = syz_genetlink_get_family_id$devlink(&(0x7f00000002c0), r7) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000400)={&(0x7f0000000300)={0xc8, r8, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0xc1efb2cc3088cc5e}, {0xc}, {0xc, 0x90, 0x1000}}, {@pci={{0x8}, {0x11}}, {0x8}, {0xc, 0x8f, 0x40}, {0xc, 0x90, 0x6}}, {@pci={{0x8}, {0x11}}, {0x8}, {0xc, 0x8f, 0x8001}, {0xc}}]}, 0xc8}, 0x1, 0x0, 0x0, 0x20040000}, 0x800) sendmsg$DEVLINK_CMD_SB_GET(r0, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)={0x14, r8, 0x200, 0x70bd26, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4001}, 0x24008010) [ 2070.910241] FAULT_INJECTION: forcing a failure. [ 2070.910241] name failslab, interval 1, probability 0, space 0, times 0 [ 2070.912805] CPU: 1 PID: 10838 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2070.914287] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2070.916096] Call Trace: [ 2070.916663] dump_stack+0x107/0x167 [ 2070.917444] should_fail.cold+0x5/0xa [ 2070.918266] ? io_uring_setup+0x40b/0x2980 [ 2070.919185] should_failslab+0x5/0x20 [ 2070.920014] kmem_cache_alloc_trace+0x55/0x320 [ 2070.921028] io_uring_setup+0x40b/0x2980 [ 2070.921932] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2070.923008] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2070.924134] ? wait_for_completion_io+0x270/0x270 [ 2070.925229] do_syscall_64+0x33/0x40 [ 2070.926055] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2070.927196] RIP: 0033:0x7f1ba3a34b19 [ 2070.927995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2070.932483] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2070.934286] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2070.935968] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2070.937816] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2070.939714] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2070.941497] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2070.953668] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 2070.974335] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10836 comm=syz-executor.0 [ 2071.004731] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 2071.033127] FAULT_INJECTION: forcing a failure. [ 2071.033127] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2071.036173] CPU: 0 PID: 10830 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2071.037144] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2071.039696] Call Trace: [ 2071.040252] dump_stack+0x107/0x167 [ 2071.040969] should_fail.cold+0x5/0xa [ 2071.041660] _copy_to_user+0x2e/0x180 [ 2071.042407] io_uring_setup+0x11b5/0x2980 [ 2071.043279] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2071.044233] ? wait_for_completion_io+0x270/0x270 [ 2071.045209] do_syscall_64+0x33/0x40 [ 2071.045892] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2071.046927] RIP: 0033:0x7f0e6488ab19 [ 2071.047625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2071.051311] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2071.052766] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2071.054234] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2071.055665] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2071.057075] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2071.058554] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2085.794653] FAULT_INJECTION: forcing a failure. [ 2085.794653] name failslab, interval 1, probability 0, space 0, times 0 [ 2085.796269] CPU: 0 PID: 10854 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2085.797221] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2085.798371] Call Trace: [ 2085.798740] dump_stack+0x107/0x167 [ 2085.799253] should_fail.cold+0x5/0xa [ 2085.799782] ? create_object.isra.0+0x3a/0xa20 [ 2085.800154] FAULT_INJECTION: forcing a failure. [ 2085.800154] name failslab, interval 1, probability 0, space 0, times 0 [ 2085.800416] should_failslab+0x5/0x20 [ 2085.800438] kmem_cache_alloc+0x5b/0x310 [ 2085.803874] create_object.isra.0+0x3a/0xa20 [ 2085.804498] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2085.805242] kmem_cache_alloc_trace+0x151/0x320 [ 2085.805907] io_uring_setup+0x40b/0x2980 [ 2085.806492] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2085.807190] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2085.807916] ? wait_for_completion_io+0x270/0x270 [ 2085.808621] do_syscall_64+0x33/0x40 [ 2085.809155] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2085.809886] RIP: 0033:0x7f1ba3a34b19 [ 2085.810417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2085.812994] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2085.814063] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2085.815088] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2085.816081] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2085.817074] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2085.818063] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:51:11 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 21) 08:51:11 executing program 4: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) dup3(0xffffffffffffffff, r0, 0x0) 08:51:11 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 7) 08:51:11 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(0xffffffffffffffff, 0x0) dup3(r0, r1, 0x0) [ 2085.819090] CPU: 1 PID: 10850 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2085.820777] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2085.822537] Call Trace: [ 2085.823112] dump_stack+0x107/0x167 [ 2085.823887] should_fail.cold+0x5/0xa [ 2085.824695] ? __d_alloc+0x2a/0x990 [ 2085.825465] should_failslab+0x5/0x20 [ 2085.826268] kmem_cache_alloc+0x5b/0x310 [ 2085.827136] __d_alloc+0x2a/0x990 [ 2085.827871] ? find_held_lock+0x2c/0x110 08:51:11 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x200000000000000, 0xffffffffffffffff) 08:51:11 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x1000000, 0x1f012, r0, 0x0) 08:51:11 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) 08:51:11 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = fsmount(0xffffffffffffffff, 0x1, 0x2) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x5, 0x1, 0xff, 0x1f, 0x0, 0xffff, 0x80124, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x2, @perf_bp={&(0x7f0000000040), 0x1}, 0x10000, 0x40, 0x7f, 0x8, 0x5, 0x3, 0x2, 0x0, 0x9, 0x0, 0xff}, 0xffffffffffffffff, 0x3, r2, 0x9) bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x80, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x2, 0x1}, 0xe) shutdown(r1, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) dup3(r0, r1, 0x0) [ 2085.828728] d_alloc_pseudo+0x19/0x70 [ 2085.829670] alloc_file_pseudo+0xce/0x250 [ 2085.830549] ? trace_hardirqs_on+0x5b/0x180 [ 2085.831464] ? alloc_file+0x5a0/0x5a0 [ 2085.832285] anon_inode_getfile+0xc8/0x1f0 [ 2085.833186] io_uring_setup+0x138b/0x2980 [ 2085.834081] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2085.835166] ? wait_for_completion_io+0x270/0x270 [ 2085.836211] do_syscall_64+0x33/0x40 [ 2085.837003] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2085.838081] RIP: 0033:0x7f0e6488ab19 [ 2085.838871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2085.842749] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2085.844368] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2085.845876] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2085.847391] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2085.848896] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2085.850401] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:51:11 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 8) [ 2085.908448] FAULT_INJECTION: forcing a failure. [ 2085.908448] name failslab, interval 1, probability 0, space 0, times 0 [ 2085.910061] CPU: 0 PID: 10869 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2085.910994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2085.912117] Call Trace: [ 2085.912476] dump_stack+0x107/0x167 [ 2085.912972] should_fail.cold+0x5/0xa [ 2085.913491] ? create_object.isra.0+0x3a/0xa20 [ 2085.914121] should_failslab+0x5/0x20 [ 2085.914644] kmem_cache_alloc+0x5b/0x310 [ 2085.915203] create_object.isra.0+0x3a/0xa20 [ 2085.915810] kmemleak_alloc_percpu+0xa0/0x100 [ 2085.916421] pcpu_alloc+0x4e2/0x1240 [ 2085.916932] ? io_tctx_exit_cb+0xf0/0xf0 [ 2085.917490] percpu_ref_init+0x31/0x3d0 [ 2085.918040] io_uring_setup+0x47a/0x2980 [ 2085.918594] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2085.919260] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2085.919954] ? wait_for_completion_io+0x270/0x270 [ 2085.920626] do_syscall_64+0x33/0x40 [ 2085.921138] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2085.921835] RIP: 0033:0x7f1ba3a34b19 [ 2085.922331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2085.924848] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2085.925880] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2085.926844] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2085.927832] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2085.928788] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2085.929744] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:51:11 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2000000, 0x1f012, r0, 0x0) 08:51:11 executing program 4: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) dup3(0xffffffffffffffff, r0, 0x0) 08:51:11 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(0xffffffffffffffff, 0x0) dup3(r0, r1, 0x0) 08:51:11 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x400000000000000, 0xffffffffffffffff) 08:51:11 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) 08:51:11 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001d00210c55451087000000000200000005000000000000000800010000000000"], 0x24}}, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r6, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x0, 0x0}, 0x0) copy_file_range(r1, &(0x7f0000000000)=0x5, r6, 0x0, 0x400000000005, 0x0) 08:51:11 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(0xffffffffffffffff, 0x0) dup3(r0, r1, 0x0) 08:51:11 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 22) 08:51:11 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x4000000, 0x1f012, r0, 0x0) 08:51:11 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 9) 08:51:11 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xa00000000000000, 0xffffffffffffffff) [ 2086.103358] FAULT_INJECTION: forcing a failure. [ 2086.103358] name failslab, interval 1, probability 0, space 0, times 0 [ 2086.104824] CPU: 0 PID: 10888 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2086.105690] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2086.106723] Call Trace: [ 2086.107067] dump_stack+0x107/0x167 [ 2086.107528] should_fail.cold+0x5/0xa [ 2086.108009] ? create_object.isra.0+0x3a/0xa20 [ 2086.108581] should_failslab+0x5/0x20 [ 2086.109055] kmem_cache_alloc+0x5b/0x310 [ 2086.109566] create_object.isra.0+0x3a/0xa20 [ 2086.109784] FAULT_INJECTION: forcing a failure. [ 2086.109784] name failslab, interval 1, probability 0, space 0, times 0 [ 2086.110113] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2086.110133] kmem_cache_alloc+0x159/0x310 [ 2086.113648] __d_alloc+0x2a/0x990 [ 2086.114086] ? find_held_lock+0x2c/0x110 [ 2086.114607] d_alloc_pseudo+0x19/0x70 [ 2086.115098] alloc_file_pseudo+0xce/0x250 [ 2086.115620] ? trace_hardirqs_on+0x5b/0x180 [ 2086.116160] ? alloc_file+0x5a0/0x5a0 [ 2086.116660] anon_inode_getfile+0xc8/0x1f0 [ 2086.117196] io_uring_setup+0x138b/0x2980 [ 2086.117725] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2086.118364] ? wait_for_completion_io+0x270/0x270 [ 2086.118976] do_syscall_64+0x33/0x40 [ 2086.119454] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2086.120100] RIP: 0033:0x7f0e6488ab19 [ 2086.120565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2086.122860] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2086.123852] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2086.124760] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2086.125652] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2086.126524] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2086.127436] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2086.128337] CPU: 1 PID: 10890 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2086.129782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2086.131491] Call Trace: [ 2086.132057] dump_stack+0x107/0x167 [ 2086.132848] should_fail.cold+0x5/0xa [ 2086.133675] ? create_object.isra.0+0x3a/0xa20 [ 2086.134663] should_failslab+0x5/0x20 [ 2086.135461] kmem_cache_alloc+0x5b/0x310 [ 2086.136366] create_object.isra.0+0x3a/0xa20 [ 2086.137494] kmemleak_alloc_percpu+0xa0/0x100 [ 2086.138907] pcpu_alloc+0x4e2/0x1240 [ 2086.139817] ? io_tctx_exit_cb+0xf0/0xf0 [ 2086.140845] percpu_ref_init+0x31/0x3d0 [ 2086.141853] io_uring_setup+0x47a/0x2980 [ 2086.142918] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2086.144201] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2086.145403] ? wait_for_completion_io+0x270/0x270 [ 2086.146484] do_syscall_64+0x33/0x40 [ 2086.147315] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2086.148430] RIP: 0033:0x7f1ba3a34b19 [ 2086.149238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2086.153295] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2086.155230] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2086.157035] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2086.158656] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2086.160188] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2086.161677] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:51:25 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 10) 08:51:25 executing program 4: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) dup3(0xffffffffffffffff, r0, 0x0) 08:51:25 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0xa000000, 0x1f012, r0, 0x0) 08:51:25 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 23) 08:51:25 executing program 5: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) dup3(0xffffffffffffffff, r0, 0x0) 08:51:25 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r4, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r3, 0x9, r4, 0xa) syz_open_procfs(r3, &(0x7f0000004e80)='sched\x00') r5 = accept$inet(r2, &(0x7f0000000200)={0x2, 0x0, @private}, &(0x7f0000000240)=0x10) r6 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r6, 0x0, r6) sendmmsg(r5, &(0x7f0000004c80)=[{{&(0x7f0000000280)=@pppol2tpv3={0x18, 0x1, {0x0, r6, {0x2, 0x4e21, @loopback}, 0x3, 0x3, 0x1, 0x2}}, 0x80, &(0x7f0000001700)=[{&(0x7f0000000300)="077a9d188e2391ea9f397d39defcc41f2a2af90a9af12c52a4dcf2f4eadf30106f2450009bee92f9534d6d90b7ab4f125623ef12ed7156b3ff4e8e27915900f7cb28e352852567751a5a0e6d644482b52057451b788a52d4f7811c350825d6e2f39fe21aa6e3afee35e2f542", 0x6c}, {&(0x7f0000000380)="8cc34a6a61102e429c3cca99d2b185e279979293e8e013eab667a92c38b084a97b4c2180ef05bd0fbdc519b3b7f809441affab8c7215704f320eb35aa30acd39aa2ce9be265f85efc1445c0d2fcf78f9c8769334aa17b0c6a08a1b1facc61ce9c28a7687e30eee4928aa3f157f6dcc10d8d17b2ed1fa42d1e64dfd3b835bba19d4b349bb92476d5debb16533533c06148eb3c3893dc3f08ff263aee96e912b66f5d645cf726d974f23e95e111b7b1c995b159354ea787251ddaa04b35ba64907689ddd6d7df292726e188b5176fac547c02bd88ed19c580d195f785f9d8945e2c42edc", 0xe3}, {&(0x7f0000000480)="1051e9353ea25dd30eae8bf49ea5816330ed16ebbc63024bc69517ab2752b86f9ba2cdfb9d2d2b83636c5add5c0008d46a27a87f2642336486d4b816ae4024df30c0368015564385ae88d5", 0x4b}, {&(0x7f0000000500)="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", 0x1000}, {&(0x7f0000001500)="45798036b6f777139fae659d15057bd0800bbad146f3641d8acf6b770784ccd460725297934e028db2ad676ffe439d15ec176dd07f533c18fb16b684e0f410c44b74dd1505ab121ae0b9862fff4cd4436bee36c1729da9f713e687dabfcc14ed31afc73a171db82c6c4e7cf240caa8a051c8153ac792232349b76ccd41a1bf76da28f62be7e903048efa447623c6f347f5207df3482e0f57af9a1b193838a49ed678cb1b954d753502095d9da9d9538800", 0xb1}, {&(0x7f00000015c0)="7589eaa4fa6f5a8f9805ab647717a530cc30fb0fe864543c4b840b0e3919bd0d15425935331ee8b79bb8b55a6eefb19b18947c4d28271ea1ad09f19b0b14d1fc169d1962590ef70b679b763ce2bd86732aa0c42a50581e046c2e42241be8c0b25dda6b4ece99679410798fb53515a858e4213395f16a4e391677228869f774d6619e7c793d4fda0be03e084dd7ec01e92a0dab0b28ff7118217a3b1792e1a19be777e6047b0e9cbe1bda95b1852c71b4fd948ee72e888ec66fb37ddc920d6d0f43", 0xc1}, {&(0x7f00000016c0)="c20054885a4b99befa0f03d6337fd02a52075c0d0e6d247b68f8d8af8c1baac3c933ef4bd67d37571af271af0f264a9f9d949a93e11790d48c8334835434e2", 0x3f}], 0x7, &(0x7f0000004ec0)=[{0x98, 0x10a, 0x1c81, "c9761852611f2d7efc0b0c6d55bd9b8cbebb854dea5ebab9260af56b9dc32ae917a2e2dfd75b259908338a562edfac81cd0450d3fe34905da2ea0a847f19ef367cda92beac7f6ea2fbdd01da9d9f915b3475e7356ba299bacc8e8a8f2841ba1780e684478d7fcbec82a7df55e2ace5d12f893ce73e22c35f06964617692b16172167bd7f84"}, {0xc0, 0x116, 0x1, "04f081d645b4262c8191121857925f8a85b2e1acb2c496ab15bc40fdb7a861b118b699ff964b3b87de4ee4a5015d45a192ec297053ccf86086d568df032a7098cb40088b3c011e316fef450ede5a9e358a7da951ef97abc1a24651b3e44cb81d5e86256e5a60f504c18454be4ba00d604eac67deb8814977bb96fc33ba1245bbcb3d354359f4219508a6f337f45758c12a870331a914dea5afdaa3fe3d99ac1bd98333bc1a187cfafb12d34f1fa3a3"}, {0x30, 0x114, 0x3f, "ab7f0d69bee9a5d6692ac457e3e6baa00ece0a99af79c088b133ba77b1"}, {0x48, 0x13, 0xffffff2a, "42f7ea5ffa0ef84d2be9f030bdce74d7925cb4838e6f251973251afad8b2bc0ce3f4f3ebdb005d0e864274f74a476a52c57531fe"}, {0xf8, 0x110, 0x7, "2a6498e1d9dbf7a28204d2150d6dc4f1d6c3ba079fdabedfe1c6345191d5463872d6520a91d67cc1cab121adb73d35c45190e1f55540a3b199190f7eca2c5c46ceb705b078daa04ce615ecde0dded196cff263015f7f4c224e00f039041b0771cb99d3673ae26f0ed2994351c7189cfd017fa2c30f011c8b5d764e07274b36bfa14c520d64e44cb96d1ec79d31a851867f4656a3538501009a02e143d0161fa389cf9dce178fef885fbd29ca49f1d6e0f2c60e638ba6266d3546d69c927430d7ddc8f53963fc6b8e901848757b24dce26d658a70d696e0c7134921291d808e60b9"}, {0xe8, 0x110, 0x6, "1fa4899cd390bee7819485470f754543f1e50db117d6f5e1eeb7ec152d3fa361033cf73fcf880aba7b8ebfac272cbeec1137d0cdca871cda2433b5f1e0469f45b9ed61d3cca83d2979ba40da6c42a0f7d5d3e4bfc6d769e87354e0c5559246cbd31575421986cb6fad122af356e6e5ab371a95bc207b74f3c0460112384cbf53bc3265a1dddaab1dfed8d2aeb0165ed6456ff9888c43105dfd62448c99dbc066e6b3e8ed7c1154309ec68243d2dedc782792366ad5da3d91f7b1b3d4ad6779bb638d47d2b6a0bd89af14d35a2cbea2171decdffa7dd429"}, {0xc8, 0x29, 0x1, "b1cdbd6a37ba0e01b0cf37ca94a570cc9da05dfbc52b8bbabce98a306cd30ca1e5b91a60d0799aaf094fd37bee5fa0010c8e6d72c2b7a9f909994224e8c02615958661388605617b343c785f12256ffc43dce3d66306935025d548205acbea38243a844510ac89ea4fdb9d15767061491245ad80bdd6254854cbeeda0b5ed525f6a889c269c61b07bceb600ef4f6af090036dd4fc648dc5595314fdbd78c1e1b29fbc8882e7989699f0acbc0bcbd60de2d4b9f"}], 0x478}}, {{&(0x7f0000001b40)=@nfc_llcp={0x27, 0x0, 0x0, 0x4, 0x5, 0xfd, "852e14eb446bf2b543cd7bda116a7d65fe697c358d5fe1b2e29b77887056739e8cf21a43ff08972779fe6896df85a17395b3702dda4b96ddc3604616311b03", 0x27}, 0x80, &(0x7f0000001e40)=[{&(0x7f0000001bc0)="f59f41a119788fa7c12517fabac560b3c5138fd98c311d659541377ac8e36bcd1e2b29189cdf1a720239e46f0903f72662566d7e1fad48880acd755bb9fbb8a5de86", 0x42}, {&(0x7f0000001c40)="7c929a05e0f4ff8111e491789d14b42cb5aed454937861380c8d82a4bdd91d2405b33d05f525b3ea3f30130f2fbc331605a97966ce", 0x35}, {&(0x7f0000001c80)="bb860564cc39c83d3ef177fdd623ae57b3c07e95b99d4f7425c39284e12dc501f4df3689ddfbfc76ecca66d9d82e24bf6f1635b1f7c557cce96a743337430e88ea640942fc9f350c60d8b415ebdf6ed3f913e49b7d9a391a3315f86bbded1d0b7d2c8d4e68621d8102189841b1344e6dc30b72996dbd4e97acf8b0dcbc6b64de523f8523f99f818e3bd83bbb4fe0ee9681c65ed05558bffd2bef3361cc6ecfd1d969ea5098a44ec00ec6a2ada4b67dbeb9c8797f36021efa8a960687307988d10d40ef6631df77389b3b", 0xca}, {&(0x7f0000001e00)="f93448ca338972a80dafbe5ab0488ce62793453afe4665454551dea670efaec0d619580ddf71426b954305985a93035b88", 0x31}], 0x4}}, {{&(0x7f0000001e80)=@pppoe={0x18, 0x0, {0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3a}, 'veth1_to_team\x00'}}, 0x80, &(0x7f00000024c0)=[{&(0x7f0000001f00)="fe85f2893622e20114e525207393486d72fd954134f88c9b4663d8bf15200c5a734f0ef273b4ef8aa522ff232d0819886bafecb705162087b07c9a7318d7dcc604118c88c353592a37865ab6511d58c2ca47e853977b903529690c88cb3c8cd8e6bf6569ee229b3d573e4296a4e8985427937786cc7db8973f43b5a512af5b06bc50c47f2742963163fca06f3ad3bdbd66a724c1c0ae21b26d51f15ba60c43dab22909a2b53cdef6bc225f5904d875b4aefbc4e1d3c6564b315356", 0xbb}, {&(0x7f0000001fc0)="aa79dc76c4d4dba651dd260c2829b44a27284d02716da3e1e158a6edc35af51ed283fc0b0630e63a9efcc4dafe9d6b843122200a5d", 0x35}, {&(0x7f0000002000)="916f77e4b7fdc3a7d435eb4c22a0e2186d0b4ca6b3a155697d2b4e998bd27d36a3f3e6a65ec23527c0fd1b465129ba95309829c90896993245110db1540418269f2fbbb9322ee0611f1f31e515bbe1ede0db0db6e167ade0151bb77b0f63ab71aa0ceab61c1353a1927d865dcbca805d7c841460f3e984c8b378a24d983e9812e20a538df0395cfbb582be9bc6afcadb06a2fc4886b14448bbbcdf7066af5f9615904548981d0a74edf1d35f13e1aeddba9fdffba05abec48d46f34b6abad703aaa1012fbbcc16526f22ac", 0xcb}, {&(0x7f0000002100)="4d38a5a98bb67750bf02c3e551173214b5c93cd2a384dd7e817348531781633edc72b3bbc2903d5cfe43dee0499fb8aae763f958c53d5935a08a7ebcb927928d46709c9faf664ae9dc3adf7071f282539a1761383ed5195caf0527d8db962572fa117bdef22d0ba3088606666e0bf511ffd3ee3d789b0b732bdc38de6ca1b4b0", 0x80}, {&(0x7f0000002180)="5d84610e5be36804e3370552d26ff180e2b1287866af5b9c13a1aa0546858d73bff210d68fa79c0e047a1b9effc20cf9c3e7ed1f080a902226c8b1400bf3889d872d52b11e4276832131aa53ccc5eb62b61f97bc9f88210ebfce6cf82902b8c14d179ffeea3b6237b738bcb2aa5c3e12e309eb846b974a9c740559b558dc724002e043c65fb5afa696b624e4a4fe05cfe4ec405c8aff1b097f36159759564cfba0cf43f417", 0xa5}, {&(0x7f0000002240)="affa3c4324edfe25210db4ece468421e910953416ee7c559b67a24965e0d153e2cb87e0966549cbccef20686cc1e86b4bc", 0x31}, {&(0x7f0000002280)="5df9ebf4874567fecda7d72e75da4d03c953dc6a21ccb58701c2db0a0272743bdc4c9dd0b218763977f85dff59e9c96e9d7b1ff41d423b5ed102b89df02f59a635ebddfccd8965caced02d86eaad2c7c827d2981596550d20bb7679a2a4bcb445895f2a4228cef84b93b4fa230d81cb5593292b759415f8091806195b506476535baa6c66f6d00fe69809d3cc63bdecfa39aadc5ab0333b3528bcddfbd1403863308d9c22744fcd508334ac33ec19d974d6bbe7d948fd17d225b6a3165327dd4af7f04a8cc2d73", 0xc7}, {&(0x7f0000002380)="bbd8e8f09cc5f7f06cdd40e86860fe8c3f30050e0e1df201a79d041cad0eaaa8f68811dc730d187191675be536f1acb17c38eb8b90fe569ff94547856a5646cee26c06d4184a7d2735be970c22e58041f02a46f73d8be03c06972cb209128644a0bb54a12a1f233f45f596ef72abd901771ab9807c57b40d18bea4838c243b0ce1280fe3b2ad404c4d163ba2a2c27ad4f7056280d39f7794f808748671f4db92bdcd083540dd432b83301cbd9863b096742e0ed28ccd43ded8f03bbb4fba64f98544ccba581ad5263b887898e567aec41cb1", 0xd2}, {&(0x7f0000002480)="2455310d6cb7bbd9c35aee9ad259d8b303483f019caa156304df9856718bef02a98bd50946abe740efbf98de8b631085499a9ae2bbc763e9137bc1e17aa655e8", 0x40}], 0x9, &(0x7f0000002580)=[{0x108, 0x10a, 0x1, "68c2c1b97a30148ba6efa019a6f4446a8d6a91ccea8bb293489eab95a65b5713ee107035fc5c6fde3288e1f55562d861a21b6c72a0ca22d68edb003a37c073a025823a6179de6127a5e09eee7ac86232c5a7e29906e999fb70ba86d1b9ef40a4d33789e2ab51cae7b1aa0a5943c1c09e0f45aa0fa72c41d45ba2a1706951026ddfaf849cf353fe1ad4290e72b6b69dc03f7c711c29e1fc364993f6105c0e96cd17d840294963d2f532771a21bc1d97757426618e05b3230811dd63b437db4b065f0aedc3a27fb367d2088ee57ac288c41d251d0b993be423299a991d402f3a8749a7a55bdb1e8c62870a68d26f212d9491aa76ba0440"}, {0x98, 0x103, 0x7fff, "248b6075745dbc289339dd6a40800b6c48f4c153f33ccfa3c5a94cf1b7832c2b02de38a9094623191ccdf0118dbd456be41fb501043b0ba67a82c8103bc0523fe163620ca763bef63cffc776f078ae33a02c63207c654452ef48967050740e39b5fb0a9850f4e1a6ac328235272b2f6436e082a497126d1c015028252ec672278f2836ddeb"}, {0x78, 0x110, 0x6, "1c3b64d9f9eb2acdde3b94b75772f2616a9b945c6fd79226bb3fd011d3294f4d932ff53761217778bf9c552e9e45a65826d4a2db52ca5eaab49fde882fe0ad8632aa65579a8727ee44fc6a78388f90f95d0261371d6b01e1c2fe49b3b45d4959d675e939"}, {0xd8, 0x116, 0x76f20025, "4ce13fc9d9ea0e301017afcadc18f7aa7abd6de12c1996ebee27773c9959be709133c2f09d5133a7a441a36242722ed58db442efb42e6409dc65cf9cf0cdcbb57fb997bdcc9ef5b9f544a98be1153a04a81314c69b43a548d8608a6d593a70ec1a5d78ab2255e56c953ddbdbdedea0059f86bc2b99938c3c538eda49163b9f99323cf183ca9b4e1157b30087d1e2df9930f259b379b4e1b9bfe124faa0cb9e7eb4433a21900a6cccb65c198937994403a27ef56b474dac8cf9bf5277fc87d775da460249"}, {0x100, 0x88, 0x0, "03357bce1c2726014c24092f8b9cc05d0bcf9db856b55b51fcb7b32115f8cf0d6b7a2b423353b495d8d25a584a8274219a00be4c0ca8413f38f981ea636ad921b078caff0447dbb64ec367ec63b52ae606ba4cf970d4b435a77b65b0b03c5abf77ca09cd18e61a38ea50e8d47c2aacea188ab1ac41a577be963679fd93642e9a4386b9c01ae9e69401474c0e425242673ac6641d887182c3d6de2642a00b79c68364ad6e50b47bc51a8fb986f45e070ae17f3e488f034fb3af5a2d641c978f8120bf4f34412c8f7015d0da67eec0d910c342fc3c9abc716ff0e08035d29da9d46bcbe1d5bf9f66e3fab46327"}, {0x100, 0x117, 0x9, "4ceefadf0e2ee77da760bdb7f77fde15b6ef23d3410545b5af7c7b2b6c59b9f608a4896ed664abd401dd9870a897a38082398d906e0a93075a3aa800d69a19c67a70d5a8e42d8199d008508f38206e832101dc8d27202f09c200f552541dc963f290562d4c97cd113c5c906b12e68098c2f83112f39e404136b8c1d801263819c8dd3634049c32c684835f01c364bb09c34e8363026e638eb3185f9067f88af3d4f5c4125ffcd91e6b3911b483d2ffb48a18afc4069e7f3a6538361598705fee05ae6dbed15ce936d136df6f3380384331b3bc8bc0fd000c655a37a078e6f20dcb842a0b1583f3d0d614"}], 0x4f0}}, {{&(0x7f0000002a80)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000004b00)=[{&(0x7f0000002b00)="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", 0x1000}, {&(0x7f0000003b00)="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", 0x1000}], 0x2, &(0x7f0000001780)=[{0xf8, 0x10c, 0x7a75, "6cdabad8b4a5cd112ad58d68fc98dd1a92c9fcba97771e86176fffdd49decc8a432a75f8354281bceff4b254b3e0ab7a89c4b99f8da483604fa8b35dd695b8b701c203ab5a27f57f095b40eb9d87b725562017aad5c7806a3bfb3cdcd84adafdd85ad5cece233527edb795ce20a5bbcb71894abb152d06be4a5d497e72b2b5dd79e1288edf9777b856d26cc7038a92d6aa7e73e83b74788bda39487e65424a515a2b1731c8a9ef2063fddd65ee96e65a8911cb6dd7b3bf2a040740d14d11ee1d6bc698170c8701a6daab439c2aa82e7486e4fd27499c9372d179e02f520617f90628ecb1d0643c32"}, {0x70, 0x102, 0x8001, "d6d4f7e993de3144b3d9542c98fdcfeb05299007f5111d609c8732b1a2da08dc682a311283a847e2798e75ea1de92f16ebddcde5cffd32c5cf98c8f05287fb1e1c21e2a2c4604a55fc26af7ce15d0ca06a1bce7fa470bd5c02340ae0ac"}, {0x18, 0x10e, 0x5, "121fcbc7d7"}], 0x180}}], 0x2, 0xc000) sendmsg$IPSET_CMD_TEST(r2, &(0x7f0000004e40)={&(0x7f0000004d80)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004e00)={&(0x7f0000004dc0)={0x20, 0xb, 0x6, 0x201, 0x0, 0x0, {0x3, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20004000}, 0x4000814) sendmsg$AUDIT_LIST_RULES(r6, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x3f5, 0x100, 0x70bd2b, 0x25dfdbff, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8840}, 0x4040001) sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0881877e057244d429007519cbe097799800", @ANYRES32=0x0, @ANYBLOB="0c0099000600000074000000"], 0x28}, 0x1, 0x0, 0x0, 0x800}, 0xccb0f8c3cab177be) 08:51:25 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:51:25 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xc00000000000000, 0xffffffffffffffff) [ 2099.746945] FAULT_INJECTION: forcing a failure. [ 2099.746945] name failslab, interval 1, probability 0, space 0, times 0 [ 2099.748525] CPU: 0 PID: 10902 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2099.749469] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2099.750601] Call Trace: [ 2099.750966] dump_stack+0x107/0x167 [ 2099.751467] should_fail.cold+0x5/0xa [ 2099.752008] ? percpu_ref_init+0xd8/0x3d0 [ 2099.752583] should_failslab+0x5/0x20 [ 2099.753108] kmem_cache_alloc_trace+0x55/0x320 [ 2099.753739] ? io_tctx_exit_cb+0xf0/0xf0 [ 2099.754305] percpu_ref_init+0xd8/0x3d0 [ 2099.754865] io_uring_setup+0x47a/0x2980 [ 2099.755438] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2099.756124] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2099.756834] ? wait_for_completion_io+0x270/0x270 [ 2099.757529] do_syscall_64+0x33/0x40 [ 2099.758055] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2099.758772] RIP: 0033:0x7f1ba3a34b19 [ 2099.759296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2099.761908] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2099.762988] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2099.764002] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2099.764997] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2099.765989] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2099.766974] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:51:25 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x20800000, 0x1f012, r0, 0x0) 08:51:25 executing program 5: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) dup3(0xffffffffffffffff, r0, 0x0) 08:51:25 executing program 3: pkey_mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x2) madvise(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x64) pkey_mprotect(&(0x7f0000ff2000/0x4000)=nil, 0x4000, 0x3000009, r0) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0) r1 = pkey_alloc(0x0, 0x3) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) pkey_mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000009, r0) 08:51:25 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, 0xffffffffffffffff, 0x0) 08:51:25 executing program 3: syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000140)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x80, 0x40, 0x0, [{{0x9, 0x4, 0x0, 0x1f, 0x2, 0x7, 0x1, 0x1, 0xf7, "", {{{0x9, 0x5, 0x1, 0x2, 0x3ff, 0xbd, 0x4, 0xb6}}}}}]}}]}}, &(0x7f0000000300)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x250, 0x0, 0x7, 0x3f, 0x10, 0x80}, 0x3a, &(0x7f00000001c0)={0x5, 0xf, 0x3a, 0x3, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0xb, 0x20, 0x2e, 0x6}, @ext_cap={0x7, 0x10, 0x2, 0x10, 0x5, 0x1, 0x5}, @ssp_cap={0x24, 0x10, 0xa, 0x0, 0x6, 0x7, 0xf000, 0x1f, [0xffc030, 0xff0000, 0x3f30, 0xff3ff0, 0xfffff0, 0x3f30]}]}, 0x2, [{0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0x42b}}, {0x85, &(0x7f0000000240)=ANY=[@ANYBLOB="850392d91f678f12c9df842fc96a4c9ad26f2bc7078e1e9e42aed8443611cf5b64bf07ee1597e57f5e91afcfc9a274d576fea17d94d6756a42dbc5a9ef1289084f3fd923a4e08bb2a3f9a9407467150377791a83c7b216ea6660420708399a04e4e23ad0656ea5428e1ccae0b59a3ba219107dd8e79011ca26c396c25a370f49ab8146"]}]}) r0 = socket$netlink(0x10, 0x3, 0xe) fcntl$dupfd(r0, 0x0, r0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x4002, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000380)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000000}, 0xfffffffffffffcdf, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x184}, 0x1, 0x0, 0x0, 0x80}, 0x4000004) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="cd656d69f282f46caedc9da09676f7d5fb29e8f4e5806ac5ea118e763750a9", 0x1f) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, 0x42, 0xe21}, 0x14}}, 0x800) r4 = syz_open_dev$vcsu(0x0, 0x0, 0x0) fsetxattr$trusted_overlay_nlink(r2, 0x0, 0x0, 0xfffffffffffffd69, 0x0) syz_io_uring_setup(0x4113, &(0x7f0000000600)={0x0, 0x69ec, 0x2, 0x0, 0x2d1}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000005c0), &(0x7f00000004c0)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108) r6 = accept$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @multicast1}, &(0x7f0000000200)=0x10) close_range(0xffffffffffffffff, r6, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x80202, 0x100) 08:51:25 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x18, 0x25, 0x4, 0x70bd2c, 0x25dfdbff, {0x7}, [@typed={0x4, 0x4b}]}, 0x18}, 0x1, 0x0, 0x0, 0x68051}, 0x804) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:51:25 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x800000000000, 0x1f012, r0, 0x0) 08:51:25 executing program 5: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) dup3(0xffffffffffffffff, r0, 0x0) [ 2099.946611] udc-core: couldn't find an available UDC or it's busy [ 2099.947641] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 08:51:25 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 11) 08:51:25 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, 0xffffffffffffffff, 0x0) 08:51:25 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x802000000000, 0x1f012, r0, 0x0) [ 2099.990228] FAULT_INJECTION: forcing a failure. [ 2099.990228] name failslab, interval 1, probability 0, space 0, times 0 [ 2099.991932] CPU: 0 PID: 10912 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2099.992908] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2099.994080] Call Trace: [ 2099.994459] dump_stack+0x107/0x167 [ 2099.994975] should_fail.cold+0x5/0xa [ 2099.995515] ? __alloc_file+0x21/0x320 [ 2099.996071] should_failslab+0x5/0x20 [ 2099.996084] kmem_cache_alloc+0x5b/0x310 [ 2099.996104] __alloc_file+0x21/0x320 [ 2099.997741] alloc_empty_file+0x6d/0x170 [ 2099.998315] alloc_file+0x5e/0x5a0 [ 2099.998820] alloc_file_pseudo+0x16a/0x250 [ 2099.999410] ? alloc_file+0x5a0/0x5a0 [ 2099.999971] anon_inode_getfile+0xc8/0x1f0 [ 2100.000571] io_uring_setup+0x138b/0x2980 [ 2100.001159] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2100.001895] do_syscall_64+0x33/0x40 [ 2100.002426] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2100.003144] RIP: 0033:0x7f0e6488ab19 [ 2100.003672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2100.006227] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2100.007284] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2100.008291] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2100.009279] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2100.010270] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2100.011273] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2100.044757] FAULT_INJECTION: forcing a failure. [ 2100.044757] name failslab, interval 1, probability 0, space 0, times 0 [ 2100.046508] CPU: 1 PID: 10946 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2100.047498] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2100.048702] Call Trace: [ 2100.049088] dump_stack+0x107/0x167 [ 2100.049606] should_fail.cold+0x5/0xa [ 2100.050160] ? create_object.isra.0+0x3a/0xa20 [ 2100.050809] should_failslab+0x5/0x20 [ 2100.051351] kmem_cache_alloc+0x5b/0x310 [ 2100.051960] create_object.isra.0+0x3a/0xa20 [ 2100.052602] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2100.053340] kmem_cache_alloc_trace+0x151/0x320 [ 2100.054004] ? io_tctx_exit_cb+0xf0/0xf0 [ 2100.054586] percpu_ref_init+0xd8/0x3d0 [ 2100.055158] io_uring_setup+0x47a/0x2980 [ 2100.055760] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2100.056457] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2100.057163] ? wait_for_completion_io+0x270/0x270 [ 2100.057883] do_syscall_64+0x33/0x40 [ 2100.058414] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2100.059126] RIP: 0033:0x7f1ba3a34b19 [ 2100.059654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2100.062257] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2100.063259] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2100.064239] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2100.065252] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2100.066286] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2100.067304] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2100.529510] udc-core: couldn't find an available UDC or it's busy [ 2100.530408] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 08:51:39 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, 0xffffffffffffffff, 0x0) 08:51:39 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="240000001d00210c0600000000000000020000000500000000b6f36e9772d8edd3260000000800010000000000"], 0x24}}, 0x0) ioctl$TUNSETVNETLE(r1, 0x400454dc, &(0x7f0000000000)=0x1) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) 08:51:39 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, 0xffffffffffffffff, 0x0) 08:51:39 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 12) 08:51:39 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 24) 08:51:39 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x7fffffffff7ff, 0x1f012, r0, 0x0) [ 2114.104168] FAULT_INJECTION: forcing a failure. [ 2114.104168] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2114.106021] CPU: 1 PID: 10964 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2114.107089] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2114.108362] Call Trace: [ 2114.108743] dump_stack+0x107/0x167 [ 2114.109302] should_fail.cold+0x5/0xa [ 2114.109830] __alloc_pages_nodemask+0x182/0x600 [ 2114.110552] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2114.111424] ? cap_capable+0x1cd/0x230 [ 2114.111953] alloc_pages_current+0x187/0x280 [ 2114.112630] __get_free_pages+0xc/0xa0 [ 2114.113156] io_uring_setup+0xe27/0x2980 [ 2114.113768] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2114.114565] ? wait_for_completion_io+0x270/0x270 [ 2114.115275] do_syscall_64+0x33/0x40 [ 2114.115792] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2114.116566] RIP: 0033:0x7f1ba3a34b19 [ 2114.117067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2114.119757] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2114.120890] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2114.121922] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2114.122971] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2114.123988] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2114.125020] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2114.136776] FAULT_INJECTION: forcing a failure. [ 2114.136776] name failslab, interval 1, probability 0, space 0, times 0 [ 2114.139857] CPU: 1 PID: 10973 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 2114.140829] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2114.141907] Call Trace: [ 2114.142340] dump_stack+0x107/0x167 [ 2114.142793] should_fail.cold+0x5/0xa [ 2114.143331] ? vm_area_dup+0x78/0x290 [ 2114.143813] should_failslab+0x5/0x20 [ 2114.144377] kmem_cache_alloc+0x5b/0x310 [ 2114.144892] vm_area_dup+0x78/0x290 [ 2114.145473] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2114.146123] ? mark_lock+0xf5/0x2df0 [ 2114.147126] ? mark_lock+0xf5/0x2df0 [ 2114.148174] ? lock_acquire+0x197/0x470 [ 2114.149259] ? lock_chain_count+0x20/0x20 [ 2114.150399] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2114.151613] ? lock_downgrade+0x6d0/0x6d0 [ 2114.152853] ? lock_chain_count+0x20/0x20 [ 2114.153781] ? vm_area_alloc+0x110/0x110 [ 2114.154442] ? __lock_acquire+0x1657/0x5b00 [ 2114.155039] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2114.155819] ? vmacache_find+0x55/0x2a0 [ 2114.156438] __split_vma+0xa8/0x4e0 [ 2114.156939] __do_munmap+0xfae/0x1260 [ 2114.157526] ? arch_get_unmapped_area+0x450/0x450 [ 2114.158183] ? lock_release+0x680/0x680 [ 2114.158811] mmap_region+0x7c8/0x1500 [ 2114.159398] do_mmap+0xcdb/0x11e0 [ 2114.159871] vm_mmap_pgoff+0x198/0x1f0 [ 2114.160477] ? randomize_page+0xb0/0xb0 [ 2114.161027] ksys_mmap_pgoff+0x41c/0x560 [ 2114.161637] ? find_mergeable_anon_vma+0x250/0x250 [ 2114.162399] do_syscall_64+0x33/0x40 [ 2114.162904] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2114.163630] RIP: 0033:0x7f69fd0c4b19 [ 2114.164115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2114.166594] RSP: 002b:00007f69fa63a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 08:51:39 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x0, 0x8cb}, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000180)={0x1f, 0x2, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x2, 0x1}, 0xe) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000100)={0x2, 0x80, 0xd0, 0x2, 0x40, 0x6, 0x0, 0x100, 0x800, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x5, 0x4, @perf_bp={&(0x7f0000000040), 0x9}, 0x40020, 0xfffffffffffffff9, 0x2, 0x3, 0x6, 0x9, 0x8, 0x0, 0x4, 0x0, 0x200}) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240), 0xc001, 0x0) sendfile(r2, r0, &(0x7f00000002c0)=0xd88e, 0x15b8) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) bind$bt_l2cap(r1, &(0x7f0000000200)={0x1f, 0x6, @any, 0x9, 0x1}, 0xe) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f00000001c0)) io_uring_enter(r3, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) bind$bt_l2cap(r3, &(0x7f0000000000)={0x1f, 0x7ff}, 0xe) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000400)=ANY=[@ANYBLOB="0002000000000000", @ANYRES32=r3, @ANYBLOB="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"]) connect$bt_l2cap(r4, &(0x7f00000017c0)={0x1f, 0x3, @any, 0xfffd, 0x1}, 0xe) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r3, 0xc018937d, &(0x7f0000000300)={{0x1, 0x1, 0x18, r0, {0x80}}, './file0\x00'}) ioctl$INCFS_IOC_CREATE_FILE(r5, 0xc058671e, &(0x7f0000001700)={{'\x00', 0x2}, {}, 0x4, 0x0, 0x0, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f00000005c0)="be99922629ec8de2b40618267e07a937c285d252539201bc03e6b2da21121b2fc7d4baf0d4e04e203b7af779408f488c9aa7e6280ddebd893e1107fa26fa31d64ccf4c16b9e72fb1f162da008e1d58882e3f2f263eb4cbbbda30e57eb764bd7b261ba7eb0e5d7456931f2504bab9539eb964a5fb1c2ced28deb77c9b1b", 0x7d, 0x0, &(0x7f0000000640)={0x2, 0x100d, {0x1, 0xc, 0x0, "", 0x1000, "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"}, 0xa6, "01145a8041e72a5cb837424db167e5075c51f426b8f7e85bd496db168cd4864b8b47346a972d84629b167918723774ad02e7a3832a070577c86f4b8350756ca31e1bfe4d0763b3781eb00f910eb0b89b3bc598226cd0e4ac5fdb71a8bfdc29c8424798889760e6326f429d78a44fc531faa34d28fa52a4fe49940f697d5789b15c456e0ec42de2343691f1d1a1689da5b81af70c537da392b96857d385f163db20594ad5eb40"}, 0x10bf}) shutdown(r1, 0x0) dup3(r0, r1, 0x0) accept4$packet(r3, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000001780)=0x14, 0x800) 08:51:39 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) (fail_nth: 1) [ 2114.167635] RAX: ffffffffffffffda RBX: 00007f69fd1d7f60 RCX: 00007f69fd0c4b19 [ 2114.168937] RDX: 000000000000000f RSI: 0000000000002000 RDI: 0000000020ffe000 [ 2114.169982] RBP: 00007f69fa63a1d0 R08: 0000000000000003 R09: 0000000008000000 [ 2114.170962] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 2114.171957] R13: 00007ffde89c45df R14: 00007f69fa63a300 R15: 0000000000022000 [ 2114.181240] FAULT_INJECTION: forcing a failure. [ 2114.181240] name failslab, interval 1, probability 0, space 0, times 0 [ 2114.182753] CPU: 1 PID: 10969 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2114.183682] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2114.184790] Call Trace: [ 2114.185156] dump_stack+0x107/0x167 [ 2114.185641] should_fail.cold+0x5/0xa [ 2114.186117] ? create_object.isra.0+0x3a/0xa20 [ 2114.186702] should_failslab+0x5/0x20 [ 2114.187185] kmem_cache_alloc+0x5b/0x310 [ 2114.187699] create_object.isra.0+0x3a/0xa20 [ 2114.188285] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2114.188929] kmem_cache_alloc+0x159/0x310 [ 2114.189493] __alloc_file+0x21/0x320 [ 2114.189972] alloc_empty_file+0x6d/0x170 [ 2114.190500] alloc_file+0x5e/0x5a0 [ 2114.190971] alloc_file_pseudo+0x16a/0x250 [ 2114.191507] ? alloc_file+0x5a0/0x5a0 [ 2114.192000] anon_inode_getfile+0xc8/0x1f0 [ 2114.192552] io_uring_setup+0x138b/0x2980 [ 2114.193078] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2114.193727] ? wait_for_completion_io+0x270/0x270 [ 2114.194357] do_syscall_64+0x33/0x40 [ 2114.194823] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2114.195475] RIP: 0033:0x7f0e6488ab19 [ 2114.195952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2114.198482] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2114.199443] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2114.200649] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2114.202468] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2114.204367] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2114.205339] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:51:39 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, 0xffffffffffffffff, 0x0) 08:51:39 executing program 3: r0 = fsmount(0xffffffffffffffff, 0x0, 0x9) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r1, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x80, 0x0) r3 = socket$packet(0x11, 0x2, 0x300) ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r3, 0x8008f512, &(0x7f0000000140)) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r2, 0x40189429, &(0x7f0000000040)={0x0, 0x3, 0x8}) ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000000)=0x8) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) 08:51:39 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x8000000000000, 0x1f012, r0, 0x0) 08:51:39 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 13) 08:51:39 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x100000000000000, 0x1f012, r0, 0x0) 08:51:40 executing program 3: openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2/custom1\x00', 0x2, 0x0) r0 = socket$inet(0x2, 0x1, 0x7) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="0000000000000000000000ff6c6544302f66696c65307774ba39892523b640de219959a58be22a33c98475fb56e32d4ca32084acacc6af1821653c32c85d7e7d4a069d9bf5ed5435fc616880c01c54678ee628cf"]) getsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000040)=0x7, &(0x7f0000000080)=0x2) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) ioctl$VFAT_IOCTL_READDIR_BOTH(r3, 0x82307201, &(0x7f0000000100)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) 08:51:40 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, 0xffffffffffffffff, 0x0) 08:51:40 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) (fail_nth: 2) [ 2114.325222] FAULT_INJECTION: forcing a failure. [ 2114.325222] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2114.326896] CPU: 0 PID: 10988 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2114.327759] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2114.328835] Call Trace: [ 2114.329175] dump_stack+0x107/0x167 [ 2114.329642] should_fail.cold+0x5/0xa [ 2114.330133] __alloc_pages_nodemask+0x182/0x600 [ 2114.330729] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2114.331487] ? cap_capable+0x1cd/0x230 [ 2114.331995] alloc_pages_current+0x187/0x280 [ 2114.332590] __get_free_pages+0xc/0xa0 [ 2114.333086] io_uring_setup+0xe27/0x2980 [ 2114.333609] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2114.334254] ? wait_for_completion_io+0x270/0x270 [ 2114.334872] do_syscall_64+0x33/0x40 [ 2114.335350] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2114.336004] RIP: 0033:0x7f1ba3a34b19 [ 2114.336519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2114.338820] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2114.339777] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2114.340709] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2114.341597] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2114.342497] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2114.343409] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:51:40 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x200000000000000, 0x1f012, r0, 0x0) [ 2114.361422] FAULT_INJECTION: forcing a failure. [ 2114.361422] name failslab, interval 1, probability 0, space 0, times 0 [ 2114.362952] CPU: 1 PID: 10990 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 2114.363833] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2114.364884] Call Trace: [ 2114.365233] dump_stack+0x107/0x167 [ 2114.365708] should_fail.cold+0x5/0xa [ 2114.366221] ? create_object.isra.0+0x3a/0xa20 [ 2114.366830] should_failslab+0x5/0x20 [ 2114.367330] kmem_cache_alloc+0x5b/0x310 [ 2114.367867] create_object.isra.0+0x3a/0xa20 [ 2114.368474] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2114.369135] kmem_cache_alloc+0x159/0x310 [ 2114.369673] vm_area_dup+0x78/0x290 [ 2114.370142] ? mark_lock+0xf5/0x2df0 [ 2114.370624] ? mark_lock+0xf5/0x2df0 [ 2114.371103] ? lock_acquire+0x197/0x470 [ 2114.371619] ? lock_chain_count+0x20/0x20 [ 2114.372171] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2114.372793] ? lock_downgrade+0x6d0/0x6d0 [ 2114.373331] ? lock_chain_count+0x20/0x20 [ 2114.373866] ? vm_area_alloc+0x110/0x110 [ 2114.374395] ? __lock_acquire+0x1657/0x5b00 [ 2114.374972] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2114.375653] ? vmacache_find+0x55/0x2a0 [ 2114.376183] __split_vma+0xa8/0x4e0 [ 2114.376678] __do_munmap+0xfae/0x1260 [ 2114.377173] ? arch_get_unmapped_area+0x450/0x450 [ 2114.377800] ? lock_release+0x680/0x680 [ 2114.378322] mmap_region+0x7c8/0x1500 [ 2114.378837] do_mmap+0xcdb/0x11e0 [ 2114.379350] vm_mmap_pgoff+0x198/0x1f0 [ 2114.379916] ? randomize_page+0xb0/0xb0 [ 2114.380493] ksys_mmap_pgoff+0x41c/0x560 [ 2114.381066] ? find_mergeable_anon_vma+0x250/0x250 [ 2114.381752] do_syscall_64+0x33/0x40 [ 2114.382264] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2114.382983] RIP: 0033:0x7f69fd0c4b19 [ 2114.383496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2114.386009] RSP: 002b:00007f69fa63a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2114.387048] RAX: ffffffffffffffda RBX: 00007f69fd1d7f60 RCX: 00007f69fd0c4b19 [ 2114.388043] RDX: 000000000000000f RSI: 0000000000002000 RDI: 0000000020ffe000 [ 2114.389027] RBP: 00007f69fa63a1d0 R08: 0000000000000003 R09: 0000000008000000 [ 2114.389987] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 2114.390954] R13: 00007ffde89c45df R14: 00007f69fa63a300 R15: 0000000000022000 08:51:40 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 14) [ 2114.421233] FAULT_INJECTION: forcing a failure. [ 2114.421233] name failslab, interval 1, probability 0, space 0, times 0 [ 2114.422854] CPU: 0 PID: 10998 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2114.423795] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2114.424942] Call Trace: [ 2114.425304] dump_stack+0x107/0x167 [ 2114.425804] should_fail.cold+0x5/0xa [ 2114.426342] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2114.427099] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2114.427863] should_failslab+0x5/0x20 [ 2114.428401] kmem_cache_alloc_trace+0x55/0x320 [ 2114.429033] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2114.429776] io_uring_setup+0x14f6/0x2980 [ 2114.430387] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2114.431128] ? wait_for_completion_io+0x270/0x270 [ 2114.431804] do_syscall_64+0x33/0x40 [ 2114.432333] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2114.433041] RIP: 0033:0x7f1ba3a34b19 [ 2114.433550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2114.436201] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2114.437239] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2114.438217] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2114.439191] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2114.440186] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2114.441159] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:51:40 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 25) [ 2114.503683] FAULT_INJECTION: forcing a failure. [ 2114.503683] name failslab, interval 1, probability 0, space 0, times 0 [ 2114.505337] CPU: 1 PID: 11007 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2114.506288] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2114.507404] Call Trace: [ 2114.507745] dump_stack+0x107/0x167 [ 2114.508314] should_fail.cold+0x5/0xa [ 2114.508829] ? security_file_alloc+0x34/0x170 [ 2114.509437] should_failslab+0x5/0x20 [ 2114.509962] kmem_cache_alloc+0x5b/0x310 [ 2114.510544] security_file_alloc+0x34/0x170 [ 2114.511130] __alloc_file+0xb7/0x320 [ 2114.511641] alloc_empty_file+0x6d/0x170 [ 2114.512226] alloc_file+0x5e/0x5a0 [ 2114.512725] alloc_file_pseudo+0x16a/0x250 [ 2114.513307] ? alloc_file+0x5a0/0x5a0 [ 2114.513846] anon_inode_getfile+0xc8/0x1f0 [ 2114.514577] io_uring_setup+0x138b/0x2980 [ 2114.515182] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2114.516020] ? wait_for_completion_io+0x270/0x270 [ 2114.516690] do_syscall_64+0x33/0x40 [ 2114.517161] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2114.517802] RIP: 0033:0x7f0e6488ab19 [ 2114.518298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2114.520949] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2114.522038] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2114.523020] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2114.524046] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2114.525030] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2114.526057] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2128.241868] FAULT_INJECTION: forcing a failure. [ 2128.241868] name failslab, interval 1, probability 0, space 0, times 0 [ 2128.243490] CPU: 1 PID: 11017 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2128.244449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2128.245595] Call Trace: [ 2128.245966] dump_stack+0x107/0x167 [ 2128.246469] should_fail.cold+0x5/0xa [ 2128.246992] ? create_object.isra.0+0x3a/0xa20 [ 2128.247633] should_failslab+0x5/0x20 [ 2128.248149] kmem_cache_alloc+0x5b/0x310 [ 2128.248730] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 2128.249511] create_object.isra.0+0x3a/0xa20 [ 2128.250152] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2128.250821] kmem_cache_alloc+0x159/0x310 [ 2128.251363] security_file_alloc+0x34/0x170 [ 2128.251932] __alloc_file+0xb7/0x320 [ 2128.252491] alloc_empty_file+0x6d/0x170 [ 2128.253057] alloc_file+0x5e/0x5a0 [ 2128.253561] alloc_file_pseudo+0x16a/0x250 [ 2128.254152] ? alloc_file+0x5a0/0x5a0 [ 2128.254660] anon_inode_getfile+0xc8/0x1f0 [ 2128.255217] io_uring_setup+0x138b/0x2980 [ 2128.255782] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2128.256109] FAULT_INJECTION: forcing a failure. [ 2128.256109] name failslab, interval 1, probability 0, space 0, times 0 [ 2128.256473] ? wait_for_completion_io+0x270/0x270 [ 2128.256511] do_syscall_64+0x33/0x40 [ 2128.259185] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2128.259905] RIP: 0033:0x7f0e6488ab19 [ 2128.260413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2128.262882] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2128.263888] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2128.264894] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2128.265912] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2128.266934] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2128.267963] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2128.269042] CPU: 0 PID: 11025 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2128.270024] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2128.271164] Call Trace: [ 2128.271561] dump_stack+0x107/0x167 [ 2128.272054] should_fail.cold+0x5/0xa [ 2128.272631] ? create_object.isra.0+0x3a/0xa20 [ 2128.273256] should_failslab+0x5/0x20 [ 2128.273774] kmem_cache_alloc+0x5b/0x310 [ 2128.274325] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2128.275142] create_object.isra.0+0x3a/0xa20 [ 2128.275738] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2128.276432] kmem_cache_alloc_trace+0x151/0x320 [ 2128.277085] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2128.278098] io_uring_setup+0x14f6/0x2980 [ 2128.278672] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2128.279371] ? wait_for_completion_io+0x270/0x270 [ 2128.279921] FAULT_INJECTION: forcing a failure. [ 2128.279921] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2128.280042] do_syscall_64+0x33/0x40 [ 2128.282190] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2128.282892] RIP: 0033:0x7f1ba3a34b19 [ 2128.283401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2128.285920] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2128.286965] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2128.287936] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2128.288920] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2128.289888] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2128.290860] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2128.291859] CPU: 1 PID: 11026 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2128.292964] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2128.294121] Call Trace: [ 2128.294506] dump_stack+0x107/0x167 [ 2128.294997] should_fail.cold+0x5/0xa [ 2128.295512] _copy_to_user+0x2e/0x180 [ 2128.296061] simple_read_from_buffer+0xcc/0x160 [ 2128.296728] proc_fail_nth_read+0x198/0x230 [ 2128.297336] ? proc_sessionid_read+0x230/0x230 [ 2128.297954] ? security_file_permission+0xb1/0xe0 [ 2128.298599] ? proc_sessionid_read+0x230/0x230 [ 2128.299206] vfs_read+0x228/0x620 [ 2128.299696] ksys_read+0x12d/0x260 [ 2128.300187] ? vfs_write+0xb10/0xb10 [ 2128.300700] do_syscall_64+0x33/0x40 [ 2128.301180] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2128.301792] FAULT_INJECTION: forcing a failure. [ 2128.301792] name failslab, interval 1, probability 0, space 0, times 0 [ 2128.301891] RIP: 0033:0x7f42b3f1a69c [ 2128.303926] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 2128.306529] RSP: 002b:00007f42b14dd170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2128.307572] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f42b3f1a69c [ 2128.308573] RDX: 000000000000000f RSI: 00007f42b14dd1e0 RDI: 0000000000000004 [ 2128.309565] RBP: 00007f42b14dd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2128.310558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2128.311534] R13: 00007ffdd94ef07f R14: 00007f42b14dd300 R15: 0000000000022000 [ 2128.312528] CPU: 0 PID: 11024 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 2128.313525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2128.314655] Call Trace: 08:51:53 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 26) 08:51:53 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 15) 08:51:53 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x400000000000000, 0x1f012, r0, 0x0) 08:51:53 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) (fail_nth: 1) 08:51:53 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000017, 0xffffffffffffffff) 08:51:53 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) (fail_nth: 3) 08:51:53 executing program 0: ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004f2c0)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0xb5, "408581fc6c3232"}) ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000056b00)={{0x0, 0x8, 0x7, 0x9, 0x3, 0x5, 0x6, 0xffff, 0x3, 0x1, 0x0, 0x2, 0x3f, 0x1000, 0x5}}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000057b00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1, r4}], 0x80, "5fabd34a60e47f"}) ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f00000502c0)={{0x0, 0x6, 0x7fff, 0x740c369f, 0x8, 0x7, 0x80, 0x1f, 0x9, 0xffff, 0x4, 0x98, 0x80000000, 0x1, 0x7}}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000512c0)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f00000514c0)={{0x0, 0x20, 0xe77, 0x7d0e, 0x6, 0x7, 0xf745, 0xfffffe00, 0x7ff, 0x4, 0x7, 0x80000001, 0x0, 0xe263, 0xffffffff}}) ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000056b00)={{0x0, 0x8, 0x7, 0x9, 0x3, 0x5, 0x6, 0xffff, 0x3, 0x1, 0x0, 0x2, 0x3f, 0x1000, 0x5}}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r13}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000057b00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r13}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9, r12}], 0x80, "5fabd34a60e47f"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000524c0)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000526c0)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r0}, {r5}, {r6, r7}, {r8, r12}, {0x0, r14}], 0x5, "5ad48f945c570b"}) r15 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r16 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r16, 0x0) dup3(r15, r16, 0x0) [ 2128.315023] dump_stack+0x107/0x167 [ 2128.315893] should_fail.cold+0x5/0xa [ 2128.316420] ? vm_area_alloc+0x1c/0x110 [ 2128.316977] should_failslab+0x5/0x20 [ 2128.317500] kmem_cache_alloc+0x5b/0x310 [ 2128.318059] vm_area_alloc+0x1c/0x110 [ 2128.318580] mmap_region+0x97e/0x1500 [ 2128.319109] do_mmap+0xcdb/0x11e0 [ 2128.319595] vm_mmap_pgoff+0x198/0x1f0 [ 2128.320128] ? randomize_page+0xb0/0xb0 [ 2128.320693] ksys_mmap_pgoff+0x41c/0x560 [ 2128.321251] ? find_mergeable_anon_vma+0x250/0x250 [ 2128.321930] do_syscall_64+0x33/0x40 [ 2128.322436] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2128.323143] RIP: 0033:0x7f69fd0c4b19 [ 2128.323651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2128.326167] RSP: 002b:00007f69fa63a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2128.327206] RAX: ffffffffffffffda RBX: 00007f69fd1d7f60 RCX: 00007f69fd0c4b19 [ 2128.328188] RDX: 000000000000000f RSI: 0000000000002000 RDI: 0000000020ffe000 [ 2128.329171] RBP: 00007f69fa63a1d0 R08: 0000000000000003 R09: 0000000008000000 [ 2128.330165] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 2128.331146] R13: 00007ffde89c45df R14: 00007f69fa63a300 R15: 0000000000022000 [ 2128.344350] FAULT_INJECTION: forcing a failure. [ 2128.344350] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2128.346113] CPU: 1 PID: 11030 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 2128.347091] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2128.348237] Call Trace: [ 2128.348614] dump_stack+0x107/0x167 [ 2128.349124] should_fail.cold+0x5/0xa [ 2128.349658] _copy_to_user+0x2e/0x180 [ 2128.350184] simple_read_from_buffer+0xcc/0x160 [ 2128.350856] proc_fail_nth_read+0x198/0x230 [ 2128.351453] ? proc_sessionid_read+0x230/0x230 [ 2128.352078] ? security_file_permission+0xb1/0xe0 [ 2128.352753] ? proc_sessionid_read+0x230/0x230 [ 2128.353380] vfs_read+0x228/0x620 [ 2128.353868] ksys_read+0x12d/0x260 [ 2128.354356] ? vfs_write+0xb10/0xb10 [ 2128.354874] do_syscall_64+0x33/0x40 [ 2128.355390] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2128.356094] RIP: 0033:0x7fbb8172369c 08:51:54 executing program 3: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000001340)={0x0, @l2={0x1f, 0x0, @fixed}, @can, @xdp, 0x0, 0x0, 0x0, 0x0, 0xffff}) pkey_mprotect(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x2000001, 0xffffffffffffffff) 08:51:54 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) (fail_nth: 1) [ 2128.356620] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 2128.359349] RSP: 002b:00007fbb7ece6170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2128.360450] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fbb8172369c [ 2128.361469] RDX: 000000000000000f RSI: 00007fbb7ece61e0 RDI: 0000000000000004 [ 2128.362444] RBP: 00007fbb7ece61d0 R08: 0000000000000000 R09: 0000000000000000 [ 2128.363424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2128.364400] R13: 00007ffe7121abcf R14: 00007fbb7ece6300 R15: 0000000000022000 08:51:54 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0xa00000000000000, 0x1f012, r0, 0x0) 08:51:54 executing program 0: ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x3e}) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) r4 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) r5 = openat(r4, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r6 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r5, r6, 0x0, 0x10000000c) syz_io_uring_setup(0x77d5, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r6, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r5}, './file0\x00'}) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r7, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r8, 0x0, &(0x7f0000000440)="037ec052eb7052ecc311eb97be349b472124662ef4dede168d2cc6b84523e469f7de3551a997ff1a436a6a460d6c7b3b654058217932b9b4e725b61005069a94b0023b61ffa96663ecdf9beb68cbd35d7220f33536b1ffa44c6249741c19fb3b87fc119879864c8fd9e2289f682666006227ca0c846b8af077e9fddcb04be43575ac9567d837f2f5d2333716fd4d", 0x8e, 0x12140, 0x1, {0x0, r9}}, 0x80000000) syz_io_uring_submit(0x0, r2, &(0x7f00000018c0)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001880)={&(0x7f0000000080)=@un=@file={0x1, './file0\x00'}, 0x80, &(0x7f00000013c0)=[{&(0x7f0000000100)="580e4b05905ec4939e16336f7c9cc5c6a34436175829596ae595ed263196", 0x1e}, {&(0x7f0000000140)="aafc790540d9f64858b9aaa3fdc7f9e31181fe74032c504fd7b36ca72180697572c52ed669a1fbcb96e24515cf8b1fec5afcbfc954f57cfaf52fd84ec8c34073ec9b199d7a8fef548fd3b699a53915c32b8eeb291a7ff9cd6de7233919b25ab45ae913e74b6001d74ec83c8a1b3e77ca7178953a2d36a15c999d7575159b94fd7b1ec58b9932e7162b199dfdd551ca1de67a29cd52e7bd7a9a35afe53dae42d8cb1c3e53244372b034310e96b6bb6f9d9ef1c542e3f6cfd0c6568090aba2d74d70ee3c5492e2af13aed321b195700e1e9046e08130573ff27359b195bf455b0d88c65981948c6fdad2", 0xe9}, {&(0x7f0000000240)="03fbc57158cd605f2c4a2537859671627302558846ef4bbed8bdb66b2b555ae15dbdab18e3f2026794004e6e81aa6d7adbb66f3e164e871af9e3fadcd14c63950e448134666f23f205a115f220983d6b6f3927accc013df4a2490f23772eec722a22851a1bc0bfdaf4b08ee0ea25a4125b250e5d83ad1d2689e7bc2c262cfa34e67be00d4c060b670e5b4faf0a27b235ee2dff23fbc4105f5fffe0d9cc03b38f4893449447efebacff6b997fb19368a466b44a97187367103cfe7d18d196b860db819c2bfda866e0bb65dd58e5beb2e0", 0xd0}, {&(0x7f0000000340)="5b26de4a34504b06f1cf78ed8f051febee3a2f62845c9443f8", 0x19}, {&(0x7f0000000380)="d0597dce8722db6f9fc52751e6c56bbc07d6bca1a076634f478b7defd44c3e600e9ce9697e00b8218162807eabf75ce6585c5aa1eab5f6656f690c257625d22c42df54fd19ea3bd7d7f9fe68f246730d3e948d6a436beda282d2025414f206de032e2c9d8f806bff81b6993f2b259014da3036dd6ce2e359664d0c2ea5109e6082f9b40c2f1694c6ffb3eaf9e79995c9a2d954091fdf81222053da3694df92d31bb450f152d37add74080a27e692503c81c10d195a20bb8d6555dcf9d609a4517c5388073130618c663cefbf2853682c0ddd7c777625039c818f35ccea00f5d0d2133636f6151090b140bd3d2b202148ce1e0d038bd4bc18786af2a89f8f45ee022a9a1d670cffbafbb644aa6e1217c3fc22239bb5024ca9c18682a1eb1b7451f9b519946cbcb5b7738bfd2e23065bd417ca0c860770c6fa04773151440278ec92fa33a812d9f14af7521820d4494684c2b2ee738d60cbbc072f39f0db4bf709cc83f09bf20ac46e370e41dd2646ffd6e1fff49df65ce1cb2cccdcd0c5c196f388dd85be245c2ea1312404775afa6b7fbd40a5ccef2219fc5a0002587a91070fa45949921f6e669b1b034eb608e04328e160358458c2f76de2151efc477ed0bbabbbe9bae65b5eb02fae65ff7105f5167c9ed9a322f2f03b8016cacfaa4ef87a8832ecd9fb23432a26684b61f217fa29b64ef34483fd20789e0d906d4852d35737fc1d31fe4fe51c78774bcb74a242d536956f2e6456f8acba664fc35c027abb29b06cbab328695ce5c0049b7382d3d52d7b51449215239573d9685513e2b93b6a50e468ade6bbfa4b4f7d2321bdef07f2b1e622e2413c75a68c95119a9b7016dd4081769568cf6b822f801fb64708fee08924901156590bfab4fe162a64a70e73ca68739eae7d622dad4a88c821a8ee4fe37e70731ac19d0b3e4a7a9c2d27ae5f123dbfb72af9f1f65968f59eee9e45a431c38cfd0d10e96e1e5762a80fbe46560dfdc505c3c178247c544922d893aaece298559cc9b4c4fe3cdd0a101065771031aa09bab7b8f0ef6b10b16940179a54dd3c0bb87d46637e009fdf4185ea16de073f4517fdda9581a93477ff988e541844157751b9dd4a71547121d418f4be29bf9da15fc6e35ee8a9267817c42e8899a628e3e0b7c5eaeb1b8cef9b6852a6e863b2485aa3a5d4d630179476352a875977536f3d6afe33653df81cb267abf2328dce4d2fe2fc372cea370423b25e6c3801db3678e11191f104d06c3a2a9902b3f91e914cc70dcd97f7e3221c8539bed8805170e364a982d95fff8f8a410e3ae9838b904a6564b9f0235f1fc4e3b2ea614d85cb1f82e701202f4a444195f86bc994ccb697c27c47f8b0fc7da9a8e6a0464babf421e68eee45004c1a0bb8cb1b8872a0bcb1ca6be6e902b338057b8f23b8b5fd992bd4b313f0f2c38a427050bbf39e705c7a1f196266ccb6a8c085adcc76138b97070f6bbdaa9fa67cf5cf543a1001fffbd3b0690df9d654e327ca2f715d0263bf934f026475b378d1c60f3fb7bb867f230623e1eb53377d7e06969209f4dba735457a1b44e2679e60e7498d618377a851bf228676aab0096cbff53de288a2bb33a3278fb69e7bae93079e6e881ca5bb8f5fe23df751f6a043ee0e00c67d043db0a6705c80a6ff4df704d5c0a30fbce9ff579e5ef4d25782204c7a4800ebcfa56ed286db0b458634faba34fa8f2ae2c41b34eeed6930a14f008c4994d8f4ee25de0cf0ce76fcf7c626e150b65a6aafbe49a29f49bc9c9089153bb3a71aff06e314d773687625337c50662d29ef35f574b5c425c5aa6d59e76179e1b6f4ecb72b6e698a098781bd2e5fb77ecc03da74d9915bc9878f39ffe8c854887a401da8579cc588756749d7e164f38c423fa2070c1d764c40f1cf8564e111dea99494f79238a04d8660ebf317be03f1ac70103421bf3320109ded17de9ef8769ea5a699effa0b9c6df8cb1cd2dd85b3b466a225431bf987867760c5f4c5583526082e44889c4625cd2913dee53cac40b4e829304d97534b4433b1be93c32c2f5d1a1b622b276a55d1c431ca733588f86d7b8dba1cd451cfbe07f67c8b58ac18a0339106193dfc467fdf6e000d892b254b47d1127f71a51abd656edf19e3ab1b0f8fdbbc1fa2ad4b21231b9b1f145649ed909e8a972d7a3c2c599a8452403418178a3dbbc19337ab26e6d9b89e28f7714c7f88b96dc230e5d201377d3bd7089d1e124f8568fa78eab8cd908619f4811fa402b3bd650967316e5e69fd10e7e082affaf5a0a037f12a5f31e39310a75261999d3204530c58b9afed2ca29bd743b0bd23849ccb29ce9edeba3c9493d46d4db0aea7a695c2aa74a967cf1ffff9a7b424116905e4d76bfbebfc2bd897bbd497ece18eae688fbf28102061905cebd23e49a9c4d16592126f8f279b4f1e7b0dba91e091c4b3eb4af0cc7c753a36332bc5daf51d49edc0fbe0855d83a51092f71ba0bdd94d95791f3a3ed1d50e44fb982bebc94c0fc325e1029a6464bbd61eb86cbe1e4bc4bc76400c40f37a9ebc6c8e9f4ad95f43f96ab3564771e0ce7e0c752ea8426d01d6f5822515568728b92a728c4a416dad987ab2fe5ccff8fea31d28bff789c10dcf0b99c1a6545d199c54a7283aa30996d23d7cd0a89491e64e76140a71e5f06955655cb7d4cd8acbf58a88085686555d72bc96614130aa5b02525610b498975d2d27f3562e18ba255ce85ce88ecd57ff425b4a1fdcf33eb084f285e9f3c71975235b23abedbb818fbaa9997e2c81d920e609dd4688fc13794e60dc7fae59dde59199b3220c7d3e79ee17f1ab60377a80bfbf87b7e997984718bbe6e02b7c1b6165e7478258e622776b68c71e23cf0262e9db9eec6451afbb4af03c4c1415f999a7167126364c22f87f034d1586da8077ec26cc12d171beeed44464fb1ad7937b184a39715d3eee6b272b2415613948873ed33c0204835695b2e44fbed41b54ec1f3e947063caae12e14f38384ed346e1af7d57bbe4c1f07d2df29e94b9d82ea0c34d79a8294218e427828e2b95afa0b1fd8d10829dad8529f4edfcd588de40c21fa3a2696279aee5330af07522041e0057a511ab23be9ed319dd0701ea418bbc08a98cb97e46f04e98647535e4e867baad158583ddd04e92370d0b331c5e852c2c3ec28d33b49fae5192119aa232f6a80e603791dd4811d24e5b64a25907dd0f426a33311eb8b79741c06f0bf194820039d1e2337e83beba334000b400b27d6af1a904af0dc6e10ca61d2e86f6d8e75f2cba85014ed19c41738dbddef6189e34623617998f46acf421ff093ff13821813b142abfcee1e4fefd1e46c5d23a86dd005d0e7ad3da929a914b103a88212b171201402fd5c88685309abcf6569a970257f08a97af5f5fade9bb91e86e181c270a76a3c11a091197f09cb1366e03b077a780b226d825d63e5366794617f58cd83cd2a1fe385b7752025bcae8fee312ed0bf167b70081d73b28c00642a5f4d75efa8479354d0f2c3ec5ac6fe71ad452bd1f09cc5951679c431dc01561b971bbf8e9c39f04bede10a201a7a2c6323a8f23d001b666aa976d6ebaaa44f270b007206b8c8910255d693b8ac6aa63d30a0aa55b5d7ccfef00137963cdbf2c35d9d26373cff08cab203f2f6c839ddddfd3bd78f8e0dd927f8c4b8a5865381d1671985ef3eaed0031278dc5b008df35bc0c9a8768839683a5f1594f66c53d6a94d49c70b99e4a72cb8295dd8bcd98245081bbd22e8428767bf8c106897db043d1d711832924035b096d4d34f14eb7acc00294347144e701ff087438c315b21270b68aee4ae382b7a92fbb8923a3254d626be2ac17d14305c8e76d59a13a9418bb44c4c16a63ad4c79f0fe052dc655bf1bd3959aab732da37766f354c153d80496bb86504a2f8c6a07d691903019969e40fa34db9b8b2d027d6cc343acf21cc5ca513be7c8e1adda24496b874cc2ac2f34fb6d0fc9f845085615ab02a0fffc8e4c3ac4b7bae1e159a03d934b866f00db8abb06ffa2365c24414bcf90c27e1e400fd67cccd83072badb905f99e6bd079225f481dbc8271c0cb9e8bfce862014d1ca3e0cd4584bb6140664ab8c8f677a3d1c123f8e1abe4e5738ac8e3cfbba538efd37e1e78db485764817393593465ba75b700c74b940bd92a1b6626e34fb8ea8e5e183d0489c03b5e2e30672570adb854df7948b4c585d55913cca4cd433ddad6e8d83f5ae580018cd4f6d9df45e31eab253471cb2f5fa5cabd99ee8c1bfaec3d837fa9f114f3448ac88fde4f0728a460846322dd0fc566590de14e5f6aa5fad93cdd371ae3c8a665df5bec69f76da1ba8dc3e47d93099ad5bfc849447520551230b5a6794422d9317825471ae0fe617639ff7e3c1873a32c13c81b00b9cd0ba4d46b3f0c2423a1a0251edd1376544517a9ff94cce8e961c5249ff19442aaf77422c14ec6851384169232349953084e7dcd4e46731d51aa6151add0f5a4f93b016ee75b25d0a4afa7878dcfbc098973361bbafdac86a46040393a1919acc647218f4ce005ea741eeb92f7b137713304ab48069ec54df1fa8a63b336d389474705aea674e2a96cb28d8271a551a6c582e2f2960b179d6cf7b108e55f61ba4a102c2c4d77041b55003caf80d8f37786c6fc66d6c6ce3f850345021c1c1f9a385fafd92357c1152b4ff944b6837881cf7c2187679ea42f141534dcb4f6001338f96606d9ea9aa867c139e5a01b15b9d122024b8a606dac1e6a4f90bd715c486147cd2e9ef42134df1420853ccb2c9a13a11b482224f7cef44b886c6949ac3542a0fa2b686c22e7b69bb65bed04bdcf059e473b03cdde4ae5a8e571525c44892bfd021a08b9f48122fbae3a865647e5a2a1e6b1dee18e9ba2e8b4547089e79dfd8a609dd87870b3a252195622c884ea15e8a6699cf96277bb3fbd779fe01338be5fa89c154c1370bf3260c52c8c3d4b2d290829979820c78ed03d56763150f6dfb55651011ed65fe4d179349c3e83d774bfd72ce3891b1ff47f2b92d67418bc5215251493eb509e7ae3218579419cbd528d3f2911d81d46ea8453c5e973d6b66c9654f9c6b274243090fa2bb6943be321e42e9a78a509ea4e327ed3c42c2710a61eb581f58b7550f0a922df6f0c7884fcd1cc30417bf3f69b281201d38c35c294fcede87f3d08b0656a2ae458c34119d6fd3ece1fd60f2c729c4b7e953189ee1417df0cd17d02011417111ab86d4d32fa9226f19844d268344f1f7655871014f1578651f0db05a24d431dc33194004be30534603295616a256776a947c70b2fe18a1b77a8538e85fbc1c1efbc29432b772c1cf6e28869752b10941ea6122126862e97ff84cd78d5672657cb16224aea6a15c1014ebd958ac0250aa35db5eb5a2e964f140ce9738f2ee01213540de55bb0fd6d2ba369294298f556e4bc4ccae3f4582be5ae04717a097806d57b4b1aac494f88fb04de4fe11be199ef7b284e86035e006c118cb06eea8ae20facc793bdd792759c48c3cb0a5435ab4eeb7ea6a0d4acaaff8802812f36947cc8955c0df54eb6844577236c1cd59a36efda58e67a034cf408a8aa7e76edbc81eb99bafb5b101663596d3f29206b63a7de8c14a5ae8ab7b0c5f5b989a18c54d44c31722133c60c9fa886e89a09fdc5bf771cddc952ecdd309cdc558d1805dbb363bdf58600ce28b51f3586ae642ee133144bf0b26f18894625b0d7198c60c95b1a74fe07c3d86cd066e103591bbe2b8ad8450dc03874daa3a989cf6147dce98b2d6bd2aff132c4ffdc1", 0x1000}, {&(0x7f0000001380)="ecedc57a203773693bb69997277c6d9d884f", 0x12}], 0x6, &(0x7f0000001440)=[{0x18, 0x118, 0x1, "a36ce8d16c"}, {0xf8, 0x84, 0x3, "4b29526362e0effb335da8af3f52c9ca4de162db873c573e5d30ca70977995235ed85bb1480783bf92e03c5ccd795597bb39a6a664c6c126a8b93b04b07fb479cbdcfb5fd74163c086e31d77cadb294cca96c804617c0cb9169c5a868e4e28029c99e3316eb0499a28056f7f231f9b024d9ae66b7c87744b620a3e51ee58fa8ff6428ba084a5de7a0401b9b4062db820fb4415a58a537e39a289d25969c3797c28b4ffbfb818933bcf14f7ade7a834f5ddb704fa0a18502f91b6ecec141e6b5965ecbfebc6c5549b34da94ad64eeb3996af5392c2f476f2818b4e3ca83fabe56cf09"}, {0xc0, 0x101, 0xffffffff, "13bf4f91918509582100e06950c0670e6943326b1f1e4af51b6bc0012a0ef57af660e59bd3873ec09591e5984fe97ed78bbcb94f03981b6592134e330285a62a0dbeb2b346a77615b6c205159e963c1491f52e3ca6fd5a167085baa149eb52947dc638e47af2115c29c4f667eade8f96e118f579b6c3d0dab7ea333ef51e12cbffce45f64ed2e9581a57e4f2b467004b318e6c956770c03c66c836cb4f96c3241ac7e99ab08845120d7faed342"}, {0x50, 0x3a, 0xa824, "08bf692c5c5680326331e88103737be74a2056097f434cba2bfbc8122c2b8c905bb1745b9dbf0b36c0e430b8a35a826807e46173bcc033f6262b74"}, {0x100, 0x88, 0x3, "e00144e33b508049db5bb36f5fe1143146d9cce44238d4ead45f87ae70bed19da02526ea19a46e27f8a2b96b3bc2aaeb8e732e7e4eaa4568c0a8be359510bf74ea78aa7ec923cf8fcfcdcae7ca2a0114c8950e4e5b7db60e933693cd30d67329d496999b24776a1f35159fb3aaea890677c8ef8a47dcd300575d219e16293159612ff958543d002819141afdaf8d98a7ee5da7a1a897da6c18ad38214f82e056e2edc7123bcb3682630f8272cf0015789ee6a4e4f988caa9d39362cc4b0d1f68fbdfbdc3c8c54a4df21fcc958e4eb8555ef21a1695a098ca9d9c8156ca4376a48291e7a196784f86778e97cead"}, {0xe8, 0x109, 0x3, "971d5f8422bbea8e2bdcbb780ccbb5c78ac14a05defd6f9a9c6909b544a3f3691384aa70aa1d468a49272390d0de4c5025196615749b84dd3cf70612e5d5df6ac2c22c7c4d199fb15e85f96868aa7df1b591d85da200180a7ecbb981b63f07d839baabca50ee8bd714d317279fd465d5d70f74a0e38d98e5dd6d0702b9ba6f6c858af617c9c29f647f665d64c312869d68923df570879401bc151a7efcf070a3923b68481d8256b7a666a111ee481eac902f1dc3d6b88c96714c11296d1096e2a6071db0cb5d2194923fd6ca1fd70be4f36dc9fa4cab"}], 0x408}, 0x0, 0x82, 0x1, {0x0, r9}}, 0x0) shutdown(r0, 0x0) 08:51:54 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) (fail_nth: 4) [ 2128.444258] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 2128.473130] FAULT_INJECTION: forcing a failure. [ 2128.473130] name failslab, interval 1, probability 0, space 0, times 0 [ 2128.475106] CPU: 0 PID: 11040 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 2128.476053] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2128.477205] Call Trace: [ 2128.477574] dump_stack+0x107/0x167 [ 2128.478074] should_fail.cold+0x5/0xa [ 2128.478600] ? create_object.isra.0+0x3a/0xa20 [ 2128.479227] should_failslab+0x5/0x20 [ 2128.479747] kmem_cache_alloc+0x5b/0x310 [ 2128.480307] create_object.isra.0+0x3a/0xa20 [ 2128.480911] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2128.481605] kmem_cache_alloc+0x159/0x310 [ 2128.482173] vm_area_alloc+0x1c/0x110 [ 2128.482686] mmap_region+0x97e/0x1500 [ 2128.483213] do_mmap+0xcdb/0x11e0 [ 2128.483688] vm_mmap_pgoff+0x198/0x1f0 [ 2128.484216] ? randomize_page+0xb0/0xb0 [ 2128.484768] ksys_mmap_pgoff+0x41c/0x560 [ 2128.485328] ? find_mergeable_anon_vma+0x250/0x250 [ 2128.486004] do_syscall_64+0x33/0x40 [ 2128.486508] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2128.487201] RIP: 0033:0x7f69fd0c4b19 [ 2128.487704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2128.490207] RSP: 002b:00007f69fa63a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2128.491237] RAX: ffffffffffffffda RBX: 00007f69fd1d7f60 RCX: 00007f69fd0c4b19 [ 2128.492201] RDX: 000000000000000f RSI: 0000000000002000 RDI: 0000000020ffe000 [ 2128.493174] RBP: 00007f69fa63a1d0 R08: 0000000000000003 R09: 0000000008000000 [ 2128.494140] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 2128.495106] R13: 00007ffde89c45df R14: 00007f69fa63a300 R15: 0000000000022000 [ 2128.536219] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 08:52:07 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 27) 08:52:07 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:52:07 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) (fail_nth: 5) 08:52:07 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 16) 08:52:07 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0xfff7ffffffff0700, 0x1f012, r0, 0x0) [ 2141.832130] FAULT_INJECTION: forcing a failure. [ 2141.832130] name failslab, interval 1, probability 0, space 0, times 0 [ 2141.833848] CPU: 0 PID: 11051 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 2141.834828] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2141.835999] Call Trace: [ 2141.836379] dump_stack+0x107/0x167 [ 2141.836987] should_fail.cold+0x5/0xa [ 2141.837550] ? perf_event_mmap+0x51a/0xd90 [ 2141.838119] should_failslab+0x5/0x20 [ 2141.838494] FAULT_INJECTION: forcing a failure. [ 2141.838494] name failslab, interval 1, probability 0, space 0, times 0 [ 2141.838684] kmem_cache_alloc_trace+0x55/0x320 [ 2141.838704] perf_event_mmap+0x51a/0xd90 [ 2141.841401] ? perf_event_namespaces+0x50/0x50 [ 2141.842028] ? vma_link+0x619/0x820 [ 2141.842574] mmap_region+0x3a2/0x1500 [ 2141.843103] do_mmap+0xcdb/0x11e0 [ 2141.843583] vm_mmap_pgoff+0x198/0x1f0 [ 2141.844112] ? randomize_page+0xb0/0xb0 [ 2141.844663] ksys_mmap_pgoff+0x41c/0x560 [ 2141.845233] ? find_mergeable_anon_vma+0x250/0x250 [ 2141.845916] do_syscall_64+0x33/0x40 [ 2141.846459] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2141.847154] RIP: 0033:0x7f69fd0c4b19 [ 2141.847661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2141.850185] RSP: 002b:00007f69fa63a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2141.851261] RAX: ffffffffffffffda RBX: 00007f69fd1d7f60 RCX: 00007f69fd0c4b19 [ 2141.852230] RDX: 000000000000000f RSI: 0000000000002000 RDI: 0000000020ffe000 [ 2141.853202] RBP: 00007f69fa63a1d0 R08: 0000000000000003 R09: 0000000008000000 [ 2141.854189] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 2141.855200] R13: 00007ffde89c45df R14: 00007f69fa63a300 R15: 0000000000022000 [ 2141.856197] CPU: 1 PID: 11053 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2141.857286] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2141.858530] Call Trace: [ 2141.858918] dump_stack+0x107/0x167 [ 2141.859446] should_fail.cold+0x5/0xa [ 2141.860005] ? create_object.isra.0+0x3a/0xa20 [ 2141.860668] should_failslab+0x5/0x20 [ 2141.861249] kmem_cache_alloc+0x5b/0x310 [ 2141.861843] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2141.862660] ? trace_hardirqs_on+0x5b/0x180 [ 2141.863283] create_object.isra.0+0x3a/0xa20 [ 2141.863897] kmemleak_alloc_percpu+0xa0/0x100 [ 2141.864518] pcpu_alloc+0x4e2/0x1240 [ 2141.865055] ? io_async_queue_proc+0x80/0x80 [ 2141.865684] percpu_ref_init+0x31/0x3d0 [ 2141.866240] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2141.867046] io_uring_setup+0x14f6/0x2980 [ 2141.867635] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2141.868355] ? wait_for_completion_io+0x270/0x270 [ 2141.869055] do_syscall_64+0x33/0x40 [ 2141.869603] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2141.870324] RIP: 0033:0x7f1ba3a34b19 [ 2141.870886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2141.873527] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2141.874632] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2141.875620] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2141.876634] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2141.877669] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2141.878652] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:52:07 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff8000/0x4000)=nil, 0x4000, 0x1, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x0) pkey_mprotect(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x5, r0) pkey_mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x4, 0xffffffffffffffff) 08:52:07 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:52:07 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2141.965087] FAULT_INJECTION: forcing a failure. [ 2141.965087] name failslab, interval 1, probability 0, space 0, times 0 [ 2141.966831] CPU: 0 PID: 11060 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2141.967834] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2141.969037] Call Trace: [ 2141.969430] dump_stack+0x107/0x167 [ 2141.969946] should_fail.cold+0x5/0xa [ 2141.970491] ? io_uring_alloc_task_context+0x99/0x6a0 [ 2141.971225] should_failslab+0x5/0x20 [ 2141.971765] kmem_cache_alloc_trace+0x55/0x320 [ 2141.972419] io_uring_alloc_task_context+0x99/0x6a0 [ 2141.973144] ? io_import_iovec+0x1120/0x1120 [ 2141.973772] ? lock_downgrade+0x6d0/0x6d0 [ 2141.974355] ? do_raw_spin_lock+0x121/0x260 [ 2141.974962] ? rwlock_bug.part.0+0x90/0x90 [ 2141.975564] __io_uring_add_tctx_node+0x2c6/0x520 [ 2141.976245] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2141.976988] ? alloc_fd+0x2e7/0x670 [ 2141.977531] io_uring_setup+0x1fbb/0x2980 [ 2141.978120] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2141.978842] ? wait_for_completion_io+0x270/0x270 [ 2141.979543] do_syscall_64+0x33/0x40 [ 2141.980069] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2141.980793] RIP: 0033:0x7f0e6488ab19 [ 2141.981335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2141.983976] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2141.985073] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2141.986088] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2141.987102] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2141.988108] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2141.989122] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:52:21 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0xffffffff00000000, 0x1f012, r0, 0x0) 08:52:21 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 28) 08:52:21 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) (fail_nth: 6) [ 2155.434354] FAULT_INJECTION: forcing a failure. [ 2155.434354] name failslab, interval 1, probability 0, space 0, times 0 [ 2155.436042] CPU: 1 PID: 11082 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 2155.437042] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2155.438253] Call Trace: [ 2155.438646] dump_stack+0x107/0x167 [ 2155.439214] should_fail.cold+0x5/0xa [ 2155.439775] ? create_object.isra.0+0x3a/0xa20 [ 2155.440483] should_failslab+0x5/0x20 [ 2155.441033] kmem_cache_alloc+0x5b/0x310 [ 2155.441662] create_object.isra.0+0x3a/0xa20 [ 2155.442300] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2155.443036] kmem_cache_alloc_trace+0x151/0x320 [ 2155.443692] perf_event_mmap+0x51a/0xd90 [ 2155.444262] ? perf_event_namespaces+0x50/0x50 [ 2155.444909] ? vma_link+0x619/0x820 [ 2155.445442] mmap_region+0x3a2/0x1500 [ 2155.446016] do_mmap+0xcdb/0x11e0 [ 2155.446508] vm_mmap_pgoff+0x198/0x1f0 [ 2155.447068] ? randomize_page+0xb0/0xb0 [ 2155.447650] ksys_mmap_pgoff+0x41c/0x560 [ 2155.448227] ? find_mergeable_anon_vma+0x250/0x250 [ 2155.448906] do_syscall_64+0x33/0x40 [ 2155.449420] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2155.450128] RIP: 0033:0x7f69fd0c4b19 [ 2155.450644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2155.453113] RSP: 002b:00007f69fa63a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2155.454203] RAX: ffffffffffffffda RBX: 00007f69fd1d7f60 RCX: 00007f69fd0c4b19 [ 2155.455222] RDX: 000000000000000f RSI: 0000000000002000 RDI: 0000000020ffe000 [ 2155.456194] RBP: 00007f69fa63a1d0 R08: 0000000000000003 R09: 0000000008000000 [ 2155.457164] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 2155.458149] R13: 00007ffde89c45df R14: 00007f69fa63a300 R15: 0000000000022000 [ 2155.482094] FAULT_INJECTION: forcing a failure. 08:52:21 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) mlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000) 08:52:21 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x3) 08:52:21 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x3) 08:52:21 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_l2cap_L2CAP_CONNINFO(r1, 0x6, 0x2, &(0x7f0000000000)={0x5, "ffee5e"}, 0x6) shutdown(r1, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r2, 0x0, r2) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, 0x0, 0x1, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8001, 0x54}}}}, [@NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x88fb}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0x40}, 0x1, 0x0, 0x0, 0x40840}, 0x0) dup3(r0, r1, 0x0) 08:52:21 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 17) [ 2155.482094] name failslab, interval 1, probability 0, space 0, times 0 [ 2155.484082] CPU: 0 PID: 11085 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2155.485090] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2155.486319] Call Trace: [ 2155.486716] dump_stack+0x107/0x167 [ 2155.487255] should_fail.cold+0x5/0xa [ 2155.487821] ? create_object.isra.0+0x3a/0xa20 [ 2155.488491] should_failslab+0x5/0x20 [ 2155.489044] kmem_cache_alloc+0x5b/0x310 [ 2155.489655] create_object.isra.0+0x3a/0xa20 [ 2155.490303] kmemleak_alloc_percpu+0xa0/0x100 [ 2155.490967] pcpu_alloc+0x4e2/0x1240 [ 2155.491536] ? io_async_queue_proc+0x80/0x80 [ 2155.492195] percpu_ref_init+0x31/0x3d0 [ 2155.492778] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2155.493620] io_uring_setup+0x14f6/0x2980 [ 2155.494218] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2155.495027] ? wait_for_completion_io+0x270/0x270 [ 2155.495755] do_syscall_64+0x33/0x40 [ 2155.496301] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2155.497040] RIP: 0033:0x7f1ba3a34b19 [ 2155.497585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2155.500207] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2155.501279] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2155.502313] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2155.503306] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2155.504314] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2155.505343] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:52:21 executing program 3: r0 = pkey_alloc(0x0, 0x0) r1 = pkey_alloc(0x0, 0x1) pkey_mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x4, r1) pkey_free(r0) 08:52:21 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x2) [ 2155.511011] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11087 comm=syz-executor.0 [ 2155.520548] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11092 comm=syz-executor.0 [ 2155.553630] FAULT_INJECTION: forcing a failure. [ 2155.553630] name failslab, interval 1, probability 0, space 0, times 0 [ 2155.555313] CPU: 0 PID: 11077 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2155.556313] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2155.557524] Call Trace: [ 2155.557925] dump_stack+0x107/0x167 [ 2155.558472] should_fail.cold+0x5/0xa [ 2155.559027] ? create_object.isra.0+0x3a/0xa20 [ 2155.559702] should_failslab+0x5/0x20 [ 2155.560258] kmem_cache_alloc+0x5b/0x310 [ 2155.560862] create_object.isra.0+0x3a/0xa20 08:52:21 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x300) [ 2155.561513] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2155.562467] kmem_cache_alloc_trace+0x151/0x320 [ 2155.563137] io_uring_alloc_task_context+0x99/0x6a0 [ 2155.563820] ? io_import_iovec+0x1120/0x1120 [ 2155.564469] ? lock_downgrade+0x6d0/0x6d0 [ 2155.565027] ? do_raw_spin_lock+0x121/0x260 [ 2155.565677] ? rwlock_bug.part.0+0x90/0x90 [ 2155.566262] __io_uring_add_tctx_node+0x2c6/0x520 [ 2155.566948] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2155.567664] ? alloc_fd+0x2e7/0x670 [ 2155.568187] io_uring_setup+0x1fbb/0x2980 [ 2155.568758] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2155.569475] ? wait_for_completion_io+0x270/0x270 [ 2155.570157] do_syscall_64+0x33/0x40 [ 2155.570685] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2155.571377] RIP: 0033:0x7f0e6488ab19 [ 2155.571907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2155.574417] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2155.575501] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2155.576521] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2155.577524] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2155.578554] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2155.579563] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:52:21 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x300) 08:52:21 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 18) 08:52:21 executing program 3: r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff5000/0x1000)=nil, 0x1000, 0x0, r1) msync(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2) madvise(&(0x7f0000fef000/0x3000)=nil, 0x3000, 0xf) 08:52:21 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x1, 0x0, 0x4, 0x6, 0x6}, 0xffffffffffffffff, 0x4000000000000, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000001, 0x10, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(r2, r5, &(0x7f0000000040)=@IORING_OP_NOP={0x0, 0x5}, 0x40) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r6, 0x0) dup3(r0, r6, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r9, 0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x0, 0x0}, 0x0) r10 = socket$netlink(0x10, 0x3, 0x0) r11 = fcntl$dupfd(r10, 0x0, r10) sendmsg$nl_generic(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) r12 = syz_open_dev$ttys(0xc, 0x2, 0x1) syz_io_uring_submit(r7, r5, &(0x7f0000000080)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd=r11, 0x9, {0x0, r12}, 0x0, 0xb, 0x0, {0x0, 0x0, r1}}, 0x6) 08:52:21 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x4) 08:52:21 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 29) 08:52:21 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) (fail_nth: 7) [ 2155.666547] FAULT_INJECTION: forcing a failure. [ 2155.666547] name failslab, interval 1, probability 0, space 0, times 0 [ 2155.668187] CPU: 1 PID: 11113 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2155.669168] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2155.670332] Call Trace: [ 2155.670546] FAULT_INJECTION: forcing a failure. [ 2155.670546] name failslab, interval 1, probability 0, space 0, times 0 [ 2155.670713] dump_stack+0x107/0x167 [ 2155.672748] should_fail.cold+0x5/0xa [ 2155.673295] ? percpu_ref_init+0xd8/0x3d0 [ 2155.673877] should_failslab+0x5/0x20 [ 2155.674414] kmem_cache_alloc_trace+0x55/0x320 [ 2155.675064] ? io_async_queue_proc+0x80/0x80 [ 2155.675693] percpu_ref_init+0xd8/0x3d0 [ 2155.676255] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2155.677019] io_uring_setup+0x14f6/0x2980 [ 2155.677618] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2155.678312] ? wait_for_completion_io+0x270/0x270 [ 2155.679007] do_syscall_64+0x33/0x40 [ 2155.679515] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2155.680231] RIP: 0033:0x7f1ba3a34b19 [ 2155.680747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2155.683263] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2155.684308] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2155.685280] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2155.686273] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2155.687256] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2155.688235] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2155.689252] CPU: 0 PID: 11116 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2155.690413] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2155.691596] Call Trace: [ 2155.691994] dump_stack+0x107/0x167 [ 2155.692517] should_fail.cold+0x5/0xa [ 2155.693072] ? create_object.isra.0+0x3a/0xa20 [ 2155.693737] should_failslab+0x5/0x20 [ 2155.694286] kmem_cache_alloc+0x5b/0x310 [ 2155.694874] create_object.isra.0+0x3a/0xa20 [ 2155.695505] kmemleak_alloc_percpu+0xa0/0x100 [ 2155.696158] pcpu_alloc+0x4e2/0x1240 [ 2155.696704] __percpu_counter_init+0x10d/0x2d0 [ 2155.697366] io_uring_alloc_task_context+0xcc/0x6a0 [ 2155.698095] ? io_import_iovec+0x1120/0x1120 [ 2155.698726] ? lock_downgrade+0x6d0/0x6d0 [ 2155.699327] ? do_raw_spin_lock+0x121/0x260 [ 2155.699948] ? rwlock_bug.part.0+0x90/0x90 [ 2155.700556] __io_uring_add_tctx_node+0x2c6/0x520 [ 2155.701273] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2155.702034] ? alloc_fd+0x2e7/0x670 [ 2155.702566] io_uring_setup+0x1fbb/0x2980 [ 2155.703174] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2155.703901] ? wait_for_completion_io+0x270/0x270 [ 2155.704669] do_syscall_64+0x33/0x40 [ 2155.705216] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2155.705988] RIP: 0033:0x7f0e6488ab19 [ 2155.706529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2155.709189] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2155.710292] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2155.711317] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2155.712349] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2155.713369] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2155.714406] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:52:21 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x80000) 08:52:21 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x8) 08:52:21 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x80000) [ 2155.748001] FAULT_INJECTION: forcing a failure. [ 2155.748001] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2155.749708] CPU: 0 PID: 11118 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 2155.750683] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2155.751851] Call Trace: [ 2155.752237] dump_stack+0x107/0x167 [ 2155.752752] should_fail.cold+0x5/0xa [ 2155.753314] _copy_to_user+0x2e/0x180 [ 2155.753892] simple_read_from_buffer+0xcc/0x160 [ 2155.754580] proc_fail_nth_read+0x198/0x230 [ 2155.755200] ? proc_sessionid_read+0x230/0x230 [ 2155.755883] ? security_file_permission+0xb1/0xe0 [ 2155.756564] ? proc_sessionid_read+0x230/0x230 [ 2155.757216] vfs_read+0x228/0x620 [ 2155.757717] ksys_read+0x12d/0x260 [ 2155.758218] ? vfs_write+0xb10/0xb10 [ 2155.758760] do_syscall_64+0x33/0x40 [ 2155.759306] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2155.760041] RIP: 0033:0x7f69fd07769c [ 2155.760569] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 2155.763211] RSP: 002b:00007f69fa63a170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2155.764334] RAX: ffffffffffffffda RBX: 0000000020ffe000 RCX: 00007f69fd07769c [ 2155.765351] RDX: 000000000000000f RSI: 00007f69fa63a1e0 RDI: 0000000000000004 [ 2155.766376] RBP: 00007f69fa63a1d0 R08: 0000000000000000 R09: 0000000008000000 [ 2155.767390] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 2155.768392] R13: 00007ffde89c45df R14: 00007f69fa63a300 R15: 0000000000022000 08:52:21 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) r1 = pkey_alloc(0x0, 0x1) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_alloc(0x0, 0x2) r2 = pkey_alloc(0x0, 0x2) r3 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r3) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r3) pkey_mprotect(&(0x7f0000ff3000/0x1000)=nil, 0x1000, 0x100000a, r3) pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xc, r2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r2) pkey_mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, r2) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r2) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r2) pkey_free(r2) madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x65) 08:52:21 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:52:21 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0xa) 08:52:21 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x3000000) 08:52:35 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x80000000000) 08:52:35 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 19) 08:52:35 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0xa00) 08:52:35 executing program 3: ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0) pkey_mprotect(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x2000009, 0xffffffffffffffff) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0) ioctl$int_in(r2, 0x5452, &(0x7f0000000000)=0x1) pkey_alloc(0x0, 0x3) 08:52:35 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x3000000) 08:52:35 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:52:35 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="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"/1894], 0x767) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r2, 0x40047211, &(0x7f0000000780)=0x2) 08:52:35 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 30) [ 2169.500242] FAULT_INJECTION: forcing a failure. [ 2169.500242] name failslab, interval 1, probability 0, space 0, times 0 [ 2169.503280] CPU: 1 PID: 11159 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2169.505068] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2169.507171] Call Trace: [ 2169.507782] dump_stack+0x107/0x167 [ 2169.508629] should_fail.cold+0x5/0xa [ 2169.509504] ? create_object.isra.0+0x3a/0xa20 [ 2169.510575] should_failslab+0x5/0x20 [ 2169.511457] kmem_cache_alloc+0x5b/0x310 [ 2169.512409] create_object.isra.0+0x3a/0xa20 [ 2169.513415] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2169.514610] kmem_cache_alloc_trace+0x151/0x320 [ 2169.515736] ? io_async_queue_proc+0x80/0x80 [ 2169.516925] percpu_ref_init+0xd8/0x3d0 [ 2169.518008] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2169.519259] io_uring_setup+0x14f6/0x2980 [ 2169.520226] ? setup_APIC_eilvt+0x2f0/0x2f0 [ 2169.521216] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2169.522390] ? tick_program_event+0xa8/0x140 [ 2169.523420] do_syscall_64+0x33/0x40 [ 2169.524275] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2169.525451] RIP: 0033:0x7f1ba3a34b19 [ 2169.526311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2169.530582] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2169.532347] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2169.533987] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2169.535648] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2169.537264] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2169.538882] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2169.555573] FAULT_INJECTION: forcing a failure. 08:52:35 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x300000000000000) 08:52:35 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2002, 0xf, 0x13, r0, 0x8000000) [ 2169.555573] name failslab, interval 1, probability 0, space 0, times 0 [ 2169.558345] CPU: 1 PID: 11162 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2169.559910] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2169.561786] Call Trace: [ 2169.562406] dump_stack+0x107/0x167 [ 2169.563232] should_fail.cold+0x5/0xa [ 2169.564094] ? create_object.isra.0+0x3a/0xa20 [ 2169.565164] should_failslab+0x5/0x20 [ 2169.566041] kmem_cache_alloc+0x5b/0x310 [ 2169.567002] create_object.isra.0+0x3a/0xa20 [ 2169.568005] kmemleak_alloc_percpu+0xa0/0x100 [ 2169.569060] pcpu_alloc+0x4e2/0x1240 [ 2169.569950] __percpu_counter_init+0x10d/0x2d0 [ 2169.571052] io_uring_alloc_task_context+0xcc/0x6a0 [ 2169.572239] ? io_import_iovec+0x1120/0x1120 [ 2169.573286] ? lock_downgrade+0x6d0/0x6d0 [ 2169.574267] ? do_raw_spin_lock+0x121/0x260 [ 2169.575295] ? rwlock_bug.part.0+0x90/0x90 [ 2169.576290] __io_uring_add_tctx_node+0x2c6/0x520 [ 2169.577444] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2169.578672] ? alloc_fd+0x2e7/0x670 [ 2169.579632] io_uring_setup+0x1fbb/0x2980 [ 2169.580597] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2169.581763] ? wait_for_completion_io+0x270/0x270 [ 2169.582940] do_syscall_64+0x33/0x40 [ 2169.583816] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2169.585096] RIP: 0033:0x7f0e6488ab19 [ 2169.585954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2169.590258] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2169.592034] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2169.593691] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2169.595354] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2169.597009] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2169.598675] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:52:49 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 31) 08:52:49 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 20) 08:52:49 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2003, 0xf, 0x13, r0, 0x8000000) 08:52:49 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x8020) 08:52:49 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) openat(r2, &(0x7f0000000500)='./file0/file0\x00', 0x80, 0x124) shutdown(r1, 0x0) r3 = dup3(r0, r1, 0x0) syz_io_uring_setup(0x5e9, &(0x7f00000000c0)={0x0, 0x20c6, 0x10, 0x1, 0xfe, 0x0, r3}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000140)=0x0, &(0x7f0000000180)) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, 0x0, &(0x7f00000004c0)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r1, 0x0, &(0x7f0000000480)={&(0x7f0000000300)=@xdp, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000380)=""/121, 0x79}], 0x1, &(0x7f0000000400)=""/105, 0x69}, 0x0, 0x2, 0x0, {0x2, r5}}, 0x8) ioctl$AUTOFS_DEV_IOCTL_VERSION(r3, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0x776d, 0x10, 0x0, 0xfffffffd, 0x0, r6}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r9, 0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x0, 0x0}, 0x0) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r7, 0x0, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, {0x0, r10}}, 0x7) 08:52:49 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x80000000000) 08:52:49 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x1, 0x12, 0xbf, 0x5, 0x0, 0x9, 0x4002, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000440), 0x1}, 0x2400, 0x81, 0x10, 0x9, 0x2, 0x5, 0x6, 0x0, 0x68d, 0x0, 0x72}, 0x0, 0x3, r3, 0x1) statx(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x412, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', 0x0}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000003c0)={&(0x7f00000001c0)=@updpolicy={0x1c4, 0x19, 0x1, 0x70bd2a, 0x25dfdbff, {{@in=@dev={0xac, 0x14, 0x14, 0x3d}, @in=@multicast1, 0x4e23, 0x4, 0x4e22, 0x0, 0x2, 0x20, 0x0, 0xff, 0x0, r4}, {0x9, 0x5, 0x9fa, 0x1, 0x4, 0x80, 0xffff, 0x2f}, {0xfff, 0x1, 0xd5, 0xcc93}, 0x1000, 0x6e6bb2, 0x1, 0x1, 0x0, 0x1}, [@XFRMA_IF_ID={0x8, 0x1f, r5}, @XFRMA_IF_ID={0x8}, @mark={0xc, 0x15, {0x35075b, 0x8}}, @replay_esn_val={0x38, 0x17, {0x7, 0x70bd2a, 0x70bd27, 0x70bd2b, 0x70bd26, 0x1, [0x401, 0x8000, 0x1b, 0x80000001, 0x5, 0x2, 0x80000001]}}, @replay_thresh={0x8, 0xb, 0x3}, @algo_comp={0x84, 0x3, {{'deflate\x00'}, 0x1e0, "4fc40ed2e91f53d68a62dc3373c92d849916a2b4e721a8e4c31e67ff1a85e98cd7187c3a1a856fecbb9df4715ebd34db6693483b1f2a3469d492e56a"}}, @proto={0x5, 0x19, 0x6c}, @coaddr={0x14, 0xe, @in=@empty}, @replay_thresh={0x8, 0xb, 0x7}, @XFRMA_SET_MARK={0x8, 0x1d, 0x1000}]}, 0x1c4}, 0x1, 0x0, 0x0, 0x10}, 0x810) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:52:49 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r0, 0x0, r0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x280100, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH(r1, 0xd0009411, &(0x7f0000000140)={{0x0, 0x3, 0x5, 0x480000000, 0x3, 0x4, 0xffffffffffffffff, 0x2, 0x7fff, 0x2, 0xe821, 0x0, 0x0, 0x1, 0x9498}}) fgetxattr(r0, &(0x7f0000001180)=ANY=[@ANYBLOB="6f73322e2a407d2d40257d9a00caefe2ee271cbce07e54c7e872198816b8fef6fa87b0fb4abab788eb513a06c2c5a5b7c2dfa70d61c9d639ef8b5de0606f8e0a6dca5aa8233aeb05f0e1c2f7d0af1a28ee92843e9de445f280b800e99a7d85babfbab716e832f2e79ba6d407f7a027"], &(0x7f0000000040)=""/189, 0xbd) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) prctl$PR_SET_MM(0x23, 0xb, &(0x7f0000ffc000/0x1000)=nil) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) ioctl$TIOCPKT(r2, 0x5420, &(0x7f0000001140)=0x2de4) [ 2183.935924] FAULT_INJECTION: forcing a failure. [ 2183.935924] name failslab, interval 1, probability 0, space 0, times 0 [ 2183.938926] CPU: 1 PID: 11186 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2183.940476] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2183.942465] Call Trace: [ 2183.943133] dump_stack+0x107/0x167 [ 2183.943955] should_fail.cold+0x5/0xa [ 2183.944880] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 2183.944921] should_failslab+0x5/0x20 [ 2183.944946] kmem_cache_alloc_trace+0x55/0x320 [ 2183.947629] io_uring_alloc_task_context+0x4a3/0x6a0 [ 2183.948771] ? io_import_iovec+0x1120/0x1120 [ 2183.949754] ? lock_downgrade+0x6d0/0x6d0 [ 2183.950704] ? do_raw_spin_lock+0x121/0x260 [ 2183.951669] ? rwlock_bug.part.0+0x90/0x90 [ 2183.952620] __io_uring_add_tctx_node+0x2c6/0x520 [ 2183.953696] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2183.954885] ? alloc_fd+0x2e7/0x670 [ 2183.955713] io_uring_setup+0x1fbb/0x2980 [ 2183.956648] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2183.957777] ? wait_for_completion_io+0x270/0x270 [ 2183.958893] do_syscall_64+0x33/0x40 [ 2183.959739] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2183.960879] RIP: 0033:0x7f0e6488ab19 [ 2183.961710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2183.965823] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2183.967536] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2183.969133] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2183.970744] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2183.972340] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2183.973933] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2183.983298] FAULT_INJECTION: forcing a failure. [ 2183.983298] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2183.985999] CPU: 1 PID: 11189 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2183.987569] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2183.989407] Call Trace: [ 2183.989985] dump_stack+0x107/0x167 [ 2183.990810] should_fail.cold+0x5/0xa [ 2183.991666] _copy_to_user+0x2e/0x180 08:52:49 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) [ 2183.992530] io_uring_setup+0x11b5/0x2980 [ 2183.993680] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2183.994824] ? wait_for_completion_io+0x270/0x270 [ 2183.995921] do_syscall_64+0x33/0x40 [ 2183.996763] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2183.997899] RIP: 0033:0x7f1ba3a34b19 [ 2183.998739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2184.002826] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2184.004518] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2184.006107] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2184.007709] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2184.009440] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2184.011266] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:52:49 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x80000) 08:52:49 executing program 5: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) 08:52:49 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x300000000000000) 08:52:49 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2004, 0xf, 0x13, r0, 0x8000000) 08:52:49 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000000, 0xffffffffffffffff) 08:52:49 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0xf7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r1, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) write$binfmt_elf64(r1, &(0x7f0000000100)={{0x7f, 0x45, 0x4c, 0x46, 0x5, 0x3, 0x3, 0x7, 0x8, 0x3, 0x3e, 0x0, 0x1fb, 0x40, 0x3a8, 0x400, 0xd70, 0x38, 0x2, 0x1, 0x6, 0x3}, [{0x4, 0x0, 0xffffffffffffa3d3, 0x1f, 0x1000, 0x100, 0x40, 0x745}, {0x5, 0x40, 0x4, 0xffff, 0x1, 0x8, 0x3a, 0x7}], "824ceebcf1b66d2fb2d2859423b68679efd06b68195ca6c56a13723b5eaeb85c8839ca60aa98c5d9258aa8fc32a0e77f7fda12266f1b7f485038cbaf39ff5ee7897d26631df85ed1ecca9a0cbbce7fcbae2d9a8c12e37fbcf551fb33433035b9ea32c95686fbf3ebc7e15ae813a7ba1d562fae615577a1e568decda4039aa8b7bc0143"}, 0x133) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x0) dup3(r0, r2, 0x0) pwrite64(r2, &(0x7f0000000000)="a5323b2fa546d8f1d1508265e42777724c451830536d44974621663b1dc661e12477ef4b34a9368ad2f898592f9fd1b8f70cbe7f73095962a0aa4290163b00813dd5f2d90226c5df4826863e722138720f521a6d35e5ed9f55c6b02bc8e5426159e9d2a96558b2f530efd1b9399ee17c7ff9634f34345cfd5591b20c75513b76af2a8bea59d0b1355459a0eabcc282a7208f7fbf89f22fd149cdbc1f3c363b985dbe6d57d66793a55edafea2db64e0da0c11fbf9fff2a6d1d5b0e8c9fd2d9e0ca463c9ca19bbac8853aee6f170ef7d1231039679fcdab38e709de0a6d37b", 0xde, 0x4) 08:53:02 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ea}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:53:02 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x800000) 08:53:02 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 21) 08:53:02 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) pkey_mprotect(&(0x7f0000ff7000/0x2000)=nil, 0x2000, 0x2800001, r0) pkey_mprotect(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff) 08:53:02 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffc, 0x0, 0x20000000000080, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0xb) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:53:02 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x3f, 0x1, 0x70bd26, 0x25dfdbfe, {0x8}, [@generic="0bd5f071e48ba8324df7a88aa2"]}, 0x24}}, 0x80) dup3(r0, r1, 0x0) 08:53:02 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2005, 0xf, 0x13, r0, 0x8000000) 08:53:02 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 32) 08:53:02 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) [ 2197.060431] FAULT_INJECTION: forcing a failure. [ 2197.060431] name failslab, interval 1, probability 0, space 0, times 0 [ 2197.061991] CPU: 0 PID: 11234 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2197.062900] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2197.063645] FAULT_INJECTION: forcing a failure. [ 2197.063645] name failslab, interval 1, probability 0, space 0, times 0 [ 2197.064003] Call Trace: [ 2197.064027] dump_stack+0x107/0x167 [ 2197.066417] should_fail.cold+0x5/0xa [ 2197.066951] ? __d_alloc+0x2a/0x990 [ 2197.067467] should_failslab+0x5/0x20 [ 2197.067994] kmem_cache_alloc+0x5b/0x310 [ 2197.068562] __d_alloc+0x2a/0x990 [ 2197.069045] ? find_held_lock+0x2c/0x110 [ 2197.069611] d_alloc_pseudo+0x19/0x70 [ 2197.070139] alloc_file_pseudo+0xce/0x250 [ 2197.070714] ? trace_hardirqs_on+0x5b/0x180 [ 2197.071323] ? alloc_file+0x5a0/0x5a0 [ 2197.071864] anon_inode_getfile+0xc8/0x1f0 [ 2197.072457] io_uring_setup+0x138b/0x2980 [ 2197.073038] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2197.073745] ? wait_for_completion_io+0x270/0x270 [ 2197.074433] do_syscall_64+0x33/0x40 [ 2197.074951] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2197.075671] RIP: 0033:0x7f1ba3a34b19 [ 2197.076188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2197.078753] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2197.079824] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2197.080812] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2197.081805] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2197.082798] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2197.083798] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2197.084816] CPU: 1 PID: 11243 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2197.085820] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2197.086995] Call Trace: [ 2197.087384] dump_stack+0x107/0x167 [ 2197.087901] should_fail.cold+0x5/0xa [ 2197.088445] ? create_object.isra.0+0x3a/0xa20 [ 2197.089090] should_failslab+0x5/0x20 [ 2197.089629] kmem_cache_alloc+0x5b/0x310 [ 2197.090212] create_object.isra.0+0x3a/0xa20 [ 2197.090831] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2197.091560] kmem_cache_alloc_trace+0x151/0x320 [ 2197.092223] io_uring_alloc_task_context+0x4a3/0x6a0 [ 2197.092940] ? io_import_iovec+0x1120/0x1120 [ 2197.093562] ? lock_downgrade+0x6d0/0x6d0 [ 2197.094147] ? do_raw_spin_lock+0x121/0x260 [ 2197.094752] ? rwlock_bug.part.0+0x90/0x90 [ 2197.095363] __io_uring_add_tctx_node+0x2c6/0x520 [ 2197.096043] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2197.096788] ? alloc_fd+0x2e7/0x670 [ 2197.097312] io_uring_setup+0x1fbb/0x2980 [ 2197.097903] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2197.098622] ? wait_for_completion_io+0x270/0x270 [ 2197.099330] do_syscall_64+0x33/0x40 [ 2197.099858] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2197.100581] RIP: 0033:0x7f0e6488ab19 [ 2197.101108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2197.103714] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2197.104791] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2197.105800] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2197.106808] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2197.107821] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2197.108828] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:53:02 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x1000000) 08:53:02 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2006, 0xf, 0x13, r0, 0x8000000) 08:53:02 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) shutdown(r1, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x7, 0x3, 0x0, 0x80, 0x0, 0x2, 0x880, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0xe4312ecdaf45ce29, @perf_bp={&(0x7f0000000000), 0x4}, 0x200, 0x8c, 0x80, 0x2d5e826e3a9d09c2, 0x100, 0x4, 0x37, 0x0, 0x1, 0x0, 0x4}, 0x0, 0x9, r0, 0xa) r2 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x19, 0xff, 0x5, 0x78, 0x0, 0xff, 0x200, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xfffffff8, 0x4, @perf_config_ext={0x6, 0x4}, 0x1022a, 0x3ff, 0x0, 0x7, 0x237a, 0x1, 0x0, 0x0, 0xd9e, 0x0, 0x7426}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x7) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000140)={0x8, 0x1, 0x32d7019e, 0x1, 0x3ff}) r3 = dup3(r0, r1, 0x0) r4 = accept4$inet(r3, 0x0, &(0x7f0000000180), 0x80800) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r4, 0x6628) 08:53:02 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xa, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:53:02 executing program 3: ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, &(0x7f0000000000)={{}, 0xf8, 0x8e, 0x4}) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) 08:53:02 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x2000000) 08:53:02 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 22) 08:53:02 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/igmp\x00') r2 = dup3(r0, r1, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000000)={0x0, 'ipvlan0\x00', {}, 0x6}) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0xd0, 0x1d, 0xc21, 0x70bd2a, 0x0, {0x2}, [@generic="4ff5d98b73d0f49f7a07525675802a89a9332dfa0cd193cfb27eebd31d2640b3917c9be94ab730f6656a35fd3f0119b590e4caca7833fc81c86d244a34b09a902529c00a5212643db482668fd96dcd33c67ae211d7b1d213ca5e40515d682de645b1b35066bbb9ffd5bf13a757cf939b0178e345ebf413b145ef2b490874eb1104460ba7b03cd31e470fe9750be1009e1e332857626ca6d816ebc6ec68030ac745799b1a10fc5c9f1191f45bd6bd8440b41063fe", @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0xd0}, 0x1, 0x0, 0x0, 0x2004803c}, 0x0) ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000080)={{0x2, 0x4e24, @multicast1}, {0x306, @multicast}, 0x20, {0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'virt_wifi0\x00'}) [ 2197.251735] FAULT_INJECTION: forcing a failure. [ 2197.251735] name failslab, interval 1, probability 0, space 0, times 0 [ 2197.253348] CPU: 1 PID: 11268 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2197.254269] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2197.255393] Call Trace: [ 2197.255749] dump_stack+0x107/0x167 [ 2197.256246] should_fail.cold+0x5/0xa [ 2197.256759] ? create_object.isra.0+0x3a/0xa20 [ 2197.257376] should_failslab+0x5/0x20 [ 2197.257889] kmem_cache_alloc+0x5b/0x310 [ 2197.258443] create_object.isra.0+0x3a/0xa20 [ 2197.259034] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2197.259719] kmem_cache_alloc+0x159/0x310 [ 2197.260297] __d_alloc+0x2a/0x990 [ 2197.260768] ? find_held_lock+0x2c/0x110 [ 2197.261327] d_alloc_pseudo+0x19/0x70 [ 2197.261840] alloc_file_pseudo+0xce/0x250 [ 2197.262397] ? trace_hardirqs_on+0x5b/0x180 [ 2197.262975] ? alloc_file+0x5a0/0x5a0 [ 2197.263513] anon_inode_getfile+0xc8/0x1f0 [ 2197.264084] io_uring_setup+0x138b/0x2980 [ 2197.264653] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2197.265363] ? wait_for_completion_io+0x270/0x270 [ 2197.266048] do_syscall_64+0x33/0x40 [ 2197.266556] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2197.267266] RIP: 0033:0x7f1ba3a34b19 [ 2197.267776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2197.270309] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2197.271352] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2197.272312] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2197.273294] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2197.274256] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2197.275253] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:53:18 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x4000000) 08:53:18 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2007, 0xf, 0x13, r0, 0x8000000) 08:53:18 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) sendmmsg(r3, &(0x7f0000000cc0)=[{{&(0x7f0000000000)=@phonet={0x23, 0x9, 0x19, 0xc1}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000080)="ddab1f531a7874e54167954d305ea9b96c8b4d367e7a8c6c0488d7eaa8d728b3ac7e6907570f8f02e5625182b2632498fed9ccd276be4f645064890eb3615b15f92d55de9855bd06a3cfa552d65963b51f58fbabfe82c13ec870625c6cfcc4aff18926d8b8a2fa12f7a4cb9d18753f56531d0002abefb156b2d331c77b70cf08cb387430ed2ef915b7888f5c7603d88ddb85bb8702a9eb587f5599fc4edb807b2db13c83f9d85abdfa6ac204bd8d326ee7df0f254fbdd8a9507021cf9763de2d6ad868bd2b6e51c9b3a7c5174b0c328c98ee86467ec2f36dd5da879ce645568ac902e52184f500"/246, 0xf6}, {&(0x7f0000000180)="4f80027944817047d2d49b578c44175fba2a13cf1a27a964284899a50b5ac6efe054b961b952b404c903372292e1664ea2f58a9c97", 0x35}, {&(0x7f00000001c0)="3af2dfce95a6d8f38f833bff88ebe8f6ef660fa7a4af2d8840e363b71e7ec6e2f4649cf91fd6b09cd2c56920298ddccb69b6924e2e7b98e13e51a6f24c9ea27e84ef7263cf91ae85abf0c795692ca5d62fffc480f00ca242f72c4618b33148c946177c513ac528a303e34dd596083521b843998879a2d5feee8be3bc0d4c89bf7184754a8c3c51f6be66d9b71ffed981aa04b0aba230f008fd144dcac99212f7454221f0e8c53e483a0c8471df525b48d52f03b9896f7073b956c3fc40fc04df", 0xc0}], 0x3, &(0x7f00000002c0)=[{0x108, 0x119, 0x153, "6806e3fc9871423ded971ae467137b5e6c9546cf079a00bd975e93278e6cb24feaa5f84b6a7da624d2eb66fbfb96b87914a2d2aac491d505213c74909e4f7fe4a8e8724e9a0aa91b50b4a90a79579f63b90d96db1d70d6c811e5fe0ac2155b7101477e146d0417173220f5c7c9e3fa6719a0350cda9a8020b928fa7d1aff4a20e78c4781f3d17711d62ea32ab9012a7ea2027682d0545c06cb05e0a874c82b761e24afd10e4068f84856baa7384b278e1c63421b49b76a458e2bca284610ba790b00117498cc070d581ad2d67ccef062a883bc52a6b42895d39a2cc30a20e530f848ee11a23f77127a0288f541e81d94bd061c32b29e26"}], 0x108}}, {{&(0x7f0000000400)=@ieee802154={0x24, @none={0x0, 0xffff}}, 0x80, &(0x7f0000000480), 0x0, &(0x7f0000000d40)=[{0x68, 0x114, 0x7, "a716d5fa5b6e92e403a7b1ea71de66f6f706bcd78bb8a7d1669d34304ee9e937732e872fa7ff5a21959d3266af8dbe22b9e6291981c9c96c6824793ff89c522eee8ce99e71385564231f34d091f324b518326c7a"}, {0x108, 0x0, 0x8, "f76cec81ae1a7ee7c36a50c3c8ed40e8221643c592c00fc08513c75add28cbc50795122e2b15a2f81ae4b2a91a31fddd9cea2fbdff263aab1fdaba1ecea7bedd3bbdb276e43414179144aeb27097e299a997351d16c7e98e3e687e63e1064651b3fe1fb03c0221a520626c03ac5e48f61fc21ab3dff452ea2c47759928d6cae27bf5c7d71efd7609d5d8568e95d4889c1584e6d1db135e8e490f11dd4d21e9234b626ed1fff1efd2d953e396a2ec475e69c04dbb1e3a28cc409e8f82cdc8e6f9257d63d8d6496104acbabc615ad60da7e9a5ade5776f336739663b07f5a2442d8140a354f7ba83218187acc604d966b72c90b6"}, {0x10, 0x10d, 0x80000000}, {0xf8, 0x112, 0x7, "bc642ab3e757071558c5e2d2e77c45d3f7fb663dfa8859c246095e8ad364e13ff4686d8615f4e7d1e616bb3f1da782b505b2277b8ec68b08c6ee82e839801582acac6759cf8bd2bfd60f5bb27a40c72e7b303179bb8c0a170352d291b23816120a76cbafff56b27d5828e1a14a6a3e2c9f4822d8efd301bb4fc225a2c227a81fc90850f646a8693ec22bd1b06e106a240426391a72d84d3fcd2b404e0f18ebcdd799492086751a29f77c6635444dcde1527a5c0f363d5714dd3204ed11c63f2058c5888ca1250d40f87327055819be66f6c2b2d6ee14f9fc06aaff7274ba4647bd03cb27"}, {0x100, 0x119, 0x80000001, "d2546d88681d5b4513b81ee55e4c6bfc62b69deb82cb1da992d0cfe67d52005c6f750bfb19848b376442ae19461504747af65687d297babf72d3c88144ba8dfac1bd32d9ee3a6e27c98268e92ea99021273d078c9eaefb5b99b91338016bec8f06674754e23ec0c6b642fcdc6194beaff2e680f441a9cdf33a199597237348d7971d3d258d27217884ed3b0fcd600d364784faccf320d1de5739f2e2a2e962533fa4c36fc5ee66467a80dd4894a32481b548d5eb8b09bbe6e964605e65d6017a0c3f17ac028cbb6cdcf59c1771466e7202b4e760bc95854d349f4cb7cc0519294c9f3b22b577efefbc"}, {0xd8, 0x11, 0x7ec, "9c95128b90d14e8718d490cd14a8754388467ba4306d1f865b1ac22538042a5564b9afd405da039875383d004520b94bb216ce1033a7bdc6b4050929316d55ef92322109ef9491b6496baee0325d7d75dce841b3771c79ff3dae7c496af8dec8a1265359389f7f30b0d82c2dbc2bf85dcfedc48a3f5f7d8750a9f3301a2eace954188c9915e359a667b6aa58237b7c9a6b13fc98a469fb05b33c4004a3531a74f8078e402c58b7501513e96eff88937e2997cdda222b62b76b0fffa6fd93fa97ad3d56"}, {0xa0, 0x10a, 0xfffffff7, "789620bf38bbf613977ce90bf0d7ef1702b40a1495bd97e681af730eba258dd634bd50d41059420fdf7425e2329d9681ca1eb6b21b8e9faa0f8f7994ee75e98a19b9036ac153da9fe93954f06ed9ee9a1e8f6c7fc2e1d975baed68ae941f346f41826a42ecb3c116a043b9cefec58de645c68bab8af6168bc17b2daac7bc0020814eec99dd217c634ed7fd076e790854"}, {0x198, 0x102, 0x8, "e90f02e9d1d316390eb4de723f97eceb2d138eca193ef7150661bd9371bdb27ee4c01eff2c34b33721b85b3bb25bf95d1be2ac01e0cb0074fa72de928d899bc28af72a5b0147713c51f0fb9e378edac350e01224974f4671777f0e00000000000052b193ec470ac4507c177a4aa315ddedc503018633db033945895ad9ce531a87e05381292efd7c3e242d8f01d0cd64468fe6ba93b5f180f7059ca80e023ce4f842c76587f60c5b7031653032f8d6334d33112edcc4617593d5a0edcf22b13f76eb0000000000000000000000caa72395af5f2be3c679317d8b2601aee71d785b85441bcaac6cbe39db89c2f740d8feedc7d556c8033f83c7b8a087a0eeb3441a0a4c7a07fae50c2e4167f4ec4b5bb0f54e319e18dbd818a7f3ee9e5c18e319644f5cee7bc1c25d4cee1b8b2ca857550bb50f04b557087785c89d1eba664acae1e430cda5c358ff4d2f7ea678538c60fce8276c72d61a1e5f7e3fde035357d5bd34d6d92b6decd25a927e9267a650ea6f4a2f9f7af4f40372311ef989165b0aaf"}, {0x108, 0x88, 0x3f, "4abb29606a637c7ff005c6d09ee1396a8e1cb96c056d39e7425e35b64799c5f53ae050446979e0fe6ce41de4fe246df3caea67ac8ed482227e9785e620c1db4af393e3dbab353cedfc287af3bd89e44d422f62246a14d4ead389a92bd471f13b2e846784ede9506c8124466a43c14acf441142c8c9c3df5f5d6bee1f9b915ee193e961387dbe646bbc5b2eafef1cc397a98bb2209e6a0d1cf3fb067c9f4d904090abe8f83aa29176a7c925d4eafd95360b3a54fdb51ca9ae589ea55986f37e384f203a1c9385cd8117f1372cbbcf2e2884b45ca2cf29933e84ff209c6983312e9f9b6352c70c848907f31d6ebc0565505f8f1fd3c3159e54"}, {0x108, 0x3a, 0x40000000, "a4381f9d89a531ee91060c457af92f381b90f052b3ae569be0f823484902429c9fa304bbb26114e8d1d6387005c95ae533df636a1726e887a651ff0cdc043f571a67c21d400e0305a8029a5005e1fc916fcb6aab2e7e92bcdf704afbed86e8302230a1bb2f991555b6cb877cfcaab1114caaea70edd010df47643dae1e1c0f493743cb335bfd100cca78656b6a54d2713c668f3781f569e38e625b5a8395b8c6af68844c130801673a32be4ef30e90a8163acec629dfebdd2f25aff130685536aab7fd9fc190f883404b0d675cd821af1606645f0fa18cfab6b2f9892acc2699f3c025317513dae3ed4a9655c6eee2d5c90e07645ac2"}], 0x898}}], 0x2, 0xd9ddc615d8d49f8) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000480)='\x00') dup3(r0, r1, 0x0) 08:53:18 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 23) 08:53:18 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x5, @none, 0x800, 0x2}, 0xe) 08:53:18 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x5) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0) pkey_alloc(0x0, 0x3) pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x100000f, r0) 08:53:18 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) shutdown(0xffffffffffffffff, 0x0) r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x525000, 0x12, 0x2}, 0x18) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r0, 0x8040942d, &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_WRITE={0x17, 0x0, 0x2004, @fd_index=0x3, 0x1, &(0x7f0000000080)="2d0872c5e321fbfdb03d4fdd0ec013f19e92ed334f9489017ded02aa76ec9865622f2b684b7e5a3121f04a2231a3e94431a211efafbd6c0f55db3606e8b641a3e776cf6a6888016f81977b08f687922910a4bc", 0x53, 0x1, 0x1}, 0xac9b) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) r4 = dup3(r1, r3, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_EEE_SET(r5, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000940)=ANY=[@ANYBLOB="18000000", @ANYRES16=r6, @ANYBLOB="010300000000000000000f00000004000180"], 0x18}}, 0x0) r7 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r7, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) fsetxattr$security_ima(r7, &(0x7f0000000200), &(0x7f0000000240)=@v1={0x2, "a87eabc6"}, 0x5, 0xd67033d5853b2dd5) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r3, 0x89f7, &(0x7f0000000300)={'ip6tnl0\x00', &(0x7f0000000280)={'sit0\x00', 0x0, 0x4, 0x83, 0x7c, 0x6, 0x8, @private0={0xfc, 0x0, '\x00', 0x1}, @private0, 0x700, 0x7800, 0x5}}) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r4, &(0x7f0000000480)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB="ec000000", @ANYRES16=r6, @ANYBLOB="00022bbd7000ffdbdf250200e5000c00018018411df4bf121933000300030000050000008008000100", @ANYRES32=0x0, @ANYBLOB="08000300040000001400020076657468315f746f5f6261746164760008000100", @ANYRES32=0x0, @ANYBLOB="6000018008000300010000001400020073797a6b616c6c6572310000000000001400020076657468305f746f5f6873720000000008000300020000001400020069705f76746930000000000000000000080003000000000008000300020000003c000180080003000600000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000300020000000800030002000000080003000200000008000100", @ANYRES32=r8, @ANYBLOB], 0xec}, 0x1, 0x0, 0x0, 0x40004}, 0x8000) 08:53:18 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 33) [ 2213.255764] FAULT_INJECTION: forcing a failure. [ 2213.255764] name failslab, interval 1, probability 0, space 0, times 0 [ 2213.256094] FAULT_INJECTION: forcing a failure. [ 2213.256094] name failslab, interval 1, probability 0, space 0, times 0 [ 2213.258218] CPU: 0 PID: 11294 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2213.258228] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2213.258234] Call Trace: [ 2213.258254] dump_stack+0x107/0x167 [ 2213.258280] should_fail.cold+0x5/0xa [ 2213.266470] ? __alloc_file+0x21/0x320 [ 2213.267289] should_failslab+0x5/0x20 [ 2213.268093] kmem_cache_alloc+0x5b/0x310 [ 2213.268952] __alloc_file+0x21/0x320 [ 2213.269732] alloc_empty_file+0x6d/0x170 [ 2213.270608] alloc_file+0x5e/0x5a0 [ 2213.271354] alloc_file_pseudo+0x16a/0x250 [ 2213.272243] ? alloc_file+0x5a0/0x5a0 [ 2213.273055] anon_inode_getfile+0xc8/0x1f0 [ 2213.274034] io_uring_setup+0x138b/0x2980 [ 2213.274910] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2213.275981] ? wait_for_completion_io+0x270/0x270 [ 2213.277010] do_syscall_64+0x33/0x40 [ 2213.277787] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2213.278854] RIP: 0033:0x7f1ba3a34b19 [ 2213.279642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2213.283486] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2213.285087] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2213.286579] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2213.288086] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2213.289577] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2213.291067] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2213.292596] CPU: 1 PID: 11293 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2213.294163] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2213.296034] Call Trace: [ 2213.296623] dump_stack+0x107/0x167 [ 2213.297433] should_fail.cold+0x5/0xa [ 2213.298279] ? io_wq_create+0xeb/0xc00 [ 2213.299145] should_failslab+0x5/0x20 [ 2213.300013] __kmalloc+0x72/0x390 [ 2213.300791] io_wq_create+0xeb/0xc00 [ 2213.301627] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2213.302756] ? io_import_iovec+0x1120/0x1120 [ 2213.303756] ? io_apoll_task_func+0x2d0/0x2d0 [ 2213.304748] ? __io_req_find_next+0x300/0x300 [ 2213.305739] ? do_raw_spin_lock+0x121/0x260 [ 2213.306697] ? rwlock_bug.part.0+0x90/0x90 [ 2213.307668] __io_uring_add_tctx_node+0x2c6/0x520 [ 2213.308740] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2213.309902] ? alloc_fd+0x2e7/0x670 [ 2213.310839] io_uring_setup+0x1fbb/0x2980 [ 2213.311813] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2213.312962] ? wait_for_completion_io+0x270/0x270 [ 2213.314082] do_syscall_64+0x33/0x40 [ 2213.314926] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2213.316125] RIP: 0033:0x7f0e6488ab19 [ 2213.316969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2213.321161] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2213.322884] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2213.324522] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2213.326135] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2213.327773] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2213.329383] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:53:19 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0xa000000) 08:53:19 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) prctl$PR_SET_MM(0x23, 0xc5628c4ac644c1de, &(0x7f0000ffb000/0x3000)=nil) 08:53:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) dup3(r0, r0, 0x0) 08:53:19 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2f00, 0xf, 0x13, r0, 0x8000000) 08:53:19 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x20800000) 08:53:19 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 24) [ 2213.581692] FAULT_INJECTION: forcing a failure. [ 2213.581692] name failslab, interval 1, probability 0, space 0, times 0 [ 2213.584470] CPU: 1 PID: 11319 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2213.586042] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2213.587950] Call Trace: [ 2213.588550] dump_stack+0x107/0x167 [ 2213.589377] should_fail.cold+0x5/0xa [ 2213.590242] ? create_object.isra.0+0x3a/0xa20 [ 2213.591280] should_failslab+0x5/0x20 [ 2213.592169] kmem_cache_alloc+0x5b/0x310 [ 2213.593091] create_object.isra.0+0x3a/0xa20 [ 2213.594086] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2213.595246] kmem_cache_alloc+0x159/0x310 [ 2213.596220] __alloc_file+0x21/0x320 [ 2213.597064] alloc_empty_file+0x6d/0x170 [ 2213.597985] alloc_file+0x5e/0x5a0 [ 2213.598794] alloc_file_pseudo+0x16a/0x250 [ 2213.599777] ? alloc_file+0x5a0/0x5a0 [ 2213.600655] anon_inode_getfile+0xc8/0x1f0 [ 2213.601617] io_uring_setup+0x138b/0x2980 [ 2213.602563] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2213.603748] ? wait_for_completion_io+0x270/0x270 [ 2213.604867] do_syscall_64+0x33/0x40 [ 2213.605711] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2213.606875] RIP: 0033:0x7f1ba3a34b19 [ 2213.607746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2213.611940] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2213.613677] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2213.615299] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2213.616946] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2213.618563] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2213.620205] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:53:32 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 25) 08:53:32 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x10000000000000}, 0x4001c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r4, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r2, 0x9, r4, 0xa) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) sendmsg$nl_generic(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="241000001d00210c00000000000000000200000005000000000000070000000000000000ac4a0eff01fae0d6b18f245fe0d3b32d05c1fccd599f5fb9dc7d86c9df3788885b61e83ec1f6b625276d0074a854fc5cb077e58d75c3a762a3d8b1f0b6"], 0x24}}, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, &(0x7f0000000200)={0x0, 0x0, {0x0, @usage, 0x0}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}}) ioctl$BTRFS_IOC_BALANCE_V2(r6, 0xc4009420, &(0x7f0000000940)={0x8, 0x0, {0x8000000000, @struct={0x1, 0x80000000}, 0x0, 0xffffffff, 0x8, 0x1, 0xcc, 0x3, 0x400, @struct={0x800}, 0xffffffff, 0x9623, [0x2, 0x0, 0x0, 0x4, 0x8, 0x8000]}, {0x3f, @usage=0x1, 0x0, 0xf52b, 0x3, 0x3, 0xded, 0x8001, 0x40, @struct={0x8000, 0x765}, 0x3, 0x5, [0x1, 0x8001, 0x1f, 0xfffffffffffffffe, 0x9, 0x3f]}, {0x10001, @usage=0xfffffffffffffff9, 0x0, 0x8000, 0xb78, 0x7, 0x4, 0x0, 0x80, @struct={0x80000000, 0x2}, 0x10000, 0x40, [0x6, 0x5, 0x6, 0x1f, 0x9f18, 0xc8b]}, {0x2, 0x8, 0x6}}) ioctl$BTRFS_IOC_BALANCE_V2(r1, 0xc4009420, &(0x7f0000000d40)={0xb, 0x6, {0x8, @struct={0x40, 0x5}, 0x0, 0x0, 0x5e1, 0x400, 0x6, 0xffff, 0x2, @usage=0x8, 0x6, 0x3, [0x1ff, 0x1, 0x80, 0x1eef3cf2, 0x7, 0x2]}, {0x2, @struct={0x2454bc43, 0x4}, r7, 0x9, 0x6, 0x7fff, 0x3, 0xffffffffffffff9d, 0x418, @struct={0x89, 0x3ff}, 0x4, 0x0, [0xfff, 0xbc, 0x8, 0x4, 0x8, 0x1]}, {0x2, @usage=0x2, r8, 0x21e5, 0x3f, 0xfffffffffffffc1e, 0x4, 0xc29, 0x84, @usage, 0x4, 0x9, [0x200000000000, 0xf05, 0x8, 0x7, 0x0, 0xfffffffffffffff9]}, {0xffffffffffffffff, 0x29, 0xfffffffffffff800}}) perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x4, 0x40, 0x81, 0x0, 0x0, 0x7, 0x40, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x6}, 0x8040, 0x6, 0x58000, 0x5, 0x6, 0x7fffffff, 0x1, 0x0, 0x4, 0x0, 0xe2}, r2, 0x2, r6, 0xa) dup3(r0, r1, 0x0) 08:53:32 executing program 3: r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1, r0) pkey_mprotect(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2, r0) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0) munlock(&(0x7f0000ff7000/0x4000)=nil, 0x4000) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, r0) 08:53:32 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = getpid() perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0x81, 0x2, 0x71, 0x4, 0x0, 0x3, 0x584, 0xa, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc3, 0x1, @perf_bp={&(0x7f0000000000), 0xd}, 0x50800, 0x6, 0x81, 0x1, 0x7, 0x5ec0, 0x4, 0x0, 0x8000, 0x0, 0x9}, r2, 0x0, r0, 0x9) dup3(r0, r1, 0x0) 08:53:32 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x40, 0x3d, 0x7f, 0x0, 0x2, 0x2000, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x6, 0x4, @perf_config_ext={0x10001, 0x7c7}, 0x301, 0x17, 0x9, 0x0, 0xfffffffffffffffc, 0x80, 0x3, 0x0, 0x800, 0x0, 0x7fffffff}, 0xffffffffffffffff, 0xc, 0xffffffffffffffff, 0x7) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) dup3(r0, r1, 0x0) 08:53:32 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 34) 08:53:32 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x800000000000) 08:53:32 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x200000, 0xf, 0x13, r0, 0x8000000) [ 2226.994846] FAULT_INJECTION: forcing a failure. [ 2226.994846] name failslab, interval 1, probability 0, space 0, times 0 [ 2226.997483] CPU: 1 PID: 11338 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2226.999049] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2227.000951] Call Trace: [ 2227.001552] dump_stack+0x107/0x167 [ 2227.002382] should_fail.cold+0x5/0xa [ 2227.003251] ? create_object.isra.0+0x3a/0xa20 [ 2227.004318] should_failslab+0x5/0x20 [ 2227.005181] kmem_cache_alloc+0x5b/0x310 [ 2227.006109] create_object.isra.0+0x3a/0xa20 [ 2227.007102] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2227.008288] __kmalloc+0x16e/0x390 [ 2227.009105] io_wq_create+0xeb/0xc00 [ 2227.009963] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2227.011099] ? io_import_iovec+0x1120/0x1120 [ 2227.012122] ? io_apoll_task_func+0x2d0/0x2d0 [ 2227.013129] ? __io_req_find_next+0x300/0x300 [ 2227.014141] ? do_raw_spin_lock+0x121/0x260 [ 2227.015102] ? rwlock_bug.part.0+0x90/0x90 [ 2227.016089] __io_uring_add_tctx_node+0x2c6/0x520 [ 2227.017196] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2227.018383] ? alloc_fd+0x2e7/0x670 [ 2227.019217] io_uring_setup+0x1fbb/0x2980 [ 2227.020191] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2227.021349] ? wait_for_completion_io+0x270/0x270 [ 2227.022469] do_syscall_64+0x33/0x40 [ 2227.023316] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2227.024501] RIP: 0033:0x7f0e6488ab19 [ 2227.025320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2227.029392] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2227.031060] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2227.031393] FAULT_INJECTION: forcing a failure. [ 2227.031393] name failslab, interval 1, probability 0, space 0, times 0 [ 2227.032668] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2227.032681] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2227.032692] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2227.032704] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2227.043706] CPU: 0 PID: 11345 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2227.045608] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2227.047884] Call Trace: [ 2227.048630] dump_stack+0x107/0x167 [ 2227.049632] should_fail.cold+0x5/0xa 08:53:32 executing program 5: r0 = perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r1, &(0x7f0000000100)={0x1f, 0x5e85, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x4, 0x2}, 0xe) shutdown(r1, 0x0) dup3(r0, r1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/cgroup\x00') syncfs(r2) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r3, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) connect$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x6, @none, 0x2}, 0xe) [ 2227.050676] ? create_object.isra.0+0x3a/0xa20 [ 2227.052095] should_failslab+0x5/0x20 [ 2227.053142] kmem_cache_alloc+0x5b/0x310 [ 2227.054270] create_object.isra.0+0x3a/0xa20 [ 2227.055486] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2227.056763] kmem_cache_alloc+0x159/0x310 [ 2227.057715] __alloc_file+0x21/0x320 [ 2227.058584] alloc_empty_file+0x6d/0x170 [ 2227.059500] alloc_file+0x5e/0x5a0 [ 2227.060353] alloc_file_pseudo+0x16a/0x250 [ 2227.061379] ? alloc_file+0x5a0/0x5a0 [ 2227.062298] anon_inode_getfile+0xc8/0x1f0 [ 2227.063296] io_uring_setup+0x138b/0x2980 [ 2227.064291] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2227.065480] ? wait_for_completion_io+0x270/0x270 [ 2227.066641] do_syscall_64+0x33/0x40 [ 2227.067489] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2227.068701] RIP: 0033:0x7f1ba3a34b19 [ 2227.069540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2227.073908] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2227.075705] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2227.077391] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2227.079080] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2227.080781] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2227.082404] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:53:32 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000009, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) munlock(&(0x7f0000fff000/0x1000)=nil, 0x1000) 08:53:32 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x802000000000) 08:53:32 executing program 0: add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f0000000280)={'fscrypt:', @desc1}, &(0x7f00000002c0)={0x0, "ee303ac9c850b08585c9ccb83dcf90930d1020fc54f45394d9232f49d7e5bd77e9c01e37376f4c765bca7d6657f84944c54259b7675d3f4b17ee83362638fe5c", 0x24}, 0x48, 0xffffffffffffffff) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1100}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x2, 0x1, 0xb9, 0x60, 0x0, 0x4, 0x10280, 0x4, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd8e, 0x0, @perf_config_ext={0x5, 0x8d}, 0x8, 0x1, 0x7, 0x0, 0x2f3, 0x800, 0x8000, 0x0, 0x3}, 0x0, 0x0, r0, 0x7) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) sendmsg$nl_generic(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="24000093ea0f7b1b3e72b958286e542a300af5001d00210c000002000000"], 0x24}}, 0x0) fsetxattr$security_selinux(r5, &(0x7f0000000080), &(0x7f00000000c0)='system_u:object_r:lost_found_t:s0\x00', 0x22, 0x79a2edb108becf9b) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001d00210c000000000235653117a66d00a5050000000000000039000177d18a8bd0a27d53eaffde00d8e6be14f34f67c47760d03d688cf9ac99c3b74eec9100"/78], 0x24}}, 0x0) fsmount(r3, 0x1, 0x7b) dup3(r0, r1, 0x0) 08:53:32 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x7fffdf001000, 0xf, 0x13, r0, 0x8000000) 08:53:32 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) sendmsg$NL80211_CMD_TESTMODE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x68, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5e}}}}, [@NL80211_ATTR_TESTDATA={0x47, 0x45, "2e0e69b978af8dc2b51d9b2baea22c0dccd5759e9840f80f2f29491e59e8d8df618c4c606c335047019aa4fdc191645c77800f68fed7beba75c8de8294330876c1bac4"}]}, 0x68}}, 0x1) 08:53:32 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x7fffffffff7ff) 08:53:32 executing program 3: r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x3, r0) pkey_mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, r0) 08:53:46 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 26) 08:53:46 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x7ffffffff000, 0xf, 0x13, r0, 0x8000000) 08:53:46 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) recvmmsg$unix(r2, &(0x7f0000005a00)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000140)=""/74, 0x4a}], 0x1, &(0x7f0000000200)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x88}}, {{&(0x7f00000002c0)=@abs, 0x6e, &(0x7f0000001540)=[{&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/40, 0x28}, {&(0x7f0000001e00)=""/4096, 0x1000}, {&(0x7f0000001380)=""/210, 0xd2}, {&(0x7f0000002e00)=""/4096, 0x1000}, {&(0x7f0000001480)=""/32, 0x20}, {&(0x7f00000014c0)=""/71, 0x47}], 0x7, &(0x7f00000015c0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x120}}, {{&(0x7f0000001700), 0x6e, &(0x7f0000001c00)=[{&(0x7f0000003e00)=""/4096, 0x1000}, {&(0x7f0000001780)=""/135, 0x87}, {&(0x7f0000001840)=""/70, 0x46}, {&(0x7f00000018c0)=""/227, 0xe3}, {&(0x7f00000019c0)=""/71, 0x47}, {&(0x7f0000001a40)=""/230, 0xe6}, {&(0x7f0000001b40)=""/144, 0x90}], 0x7}}, {{&(0x7f0000001c80)=@abs, 0x6e, &(0x7f0000005140)=[{&(0x7f0000001d00)=""/10, 0xa}, {&(0x7f0000004e00)=""/190, 0xbe}, {&(0x7f0000004ec0)=""/221, 0xdd}, {&(0x7f0000004fc0)=""/206, 0xce}, {&(0x7f00000050c0)=""/128, 0x80}], 0x5, &(0x7f00000051c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb0}}, {{&(0x7f0000005280), 0x6e, &(0x7f0000005880)=[{&(0x7f0000001d40)=""/7, 0x7}, {&(0x7f0000005300)=""/150, 0x96}, {&(0x7f00000053c0)=""/58, 0x3a}, {&(0x7f0000005400)=""/49, 0x31}, {&(0x7f0000005440)=""/208, 0xd0}, {&(0x7f0000005540)=""/52, 0x34}, {&(0x7f0000005580)=""/241, 0xf1}, {&(0x7f0000005680)=""/112, 0x70}, {&(0x7f0000005700)=""/133, 0x85}, {&(0x7f00000057c0)=""/183, 0xb7}], 0xa, &(0x7f0000005940)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xc0}}], 0x5, 0x2, &(0x7f0000005b40)={0x0, 0x989680}) perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0xa2, 0x80, 0x49, 0x5, 0x0, 0xfffffffffffffffc, 0x280, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x100, 0x0, @perf_bp={&(0x7f0000000000), 0x5}, 0x805, 0x2, 0x3, 0x1, 0x7, 0x8, 0x1, 0x0, 0x0, 0x0, 0x5}, r3, 0x4, 0xffffffffffffffff, 0x2) [ 2241.051374] FAULT_INJECTION: forcing a failure. [ 2241.051374] name failslab, interval 1, probability 0, space 0, times 0 [ 2241.054477] CPU: 1 PID: 11383 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2241.056182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2241.058246] Call Trace: [ 2241.058899] dump_stack+0x107/0x167 [ 2241.059797] should_fail.cold+0x5/0xa [ 2241.060748] ? create_object.isra.0+0x3a/0xa20 [ 2241.061888] should_failslab+0x5/0x20 [ 2241.062827] kmem_cache_alloc+0x5b/0x310 [ 2241.063833] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 2241.065229] create_object.isra.0+0x3a/0xa20 [ 2241.066314] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2241.067580] kmem_cache_alloc+0x159/0x310 [ 2241.068630] security_file_alloc+0x34/0x170 [ 2241.069703] __alloc_file+0xb7/0x320 [ 2241.070643] alloc_empty_file+0x6d/0x170 [ 2241.071647] alloc_file+0x5e/0x5a0 [ 2241.072528] alloc_file_pseudo+0x16a/0x250 [ 2241.073589] ? alloc_file+0x5a0/0x5a0 [ 2241.074552] anon_inode_getfile+0xc8/0x1f0 [ 2241.075611] io_uring_setup+0x138b/0x2980 [ 2241.076653] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2241.077924] ? wait_for_completion_io+0x270/0x270 [ 2241.079148] do_syscall_64+0x33/0x40 [ 2241.080066] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2241.081360] RIP: 0033:0x7f1ba3a34b19 [ 2241.082285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2241.086811] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2241.088700] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2241.090459] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2241.092216] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2241.093993] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2241.095772] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:53:46 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 35) 08:53:46 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f0000009680)={'ip6tnl0\x00', &(0x7f0000009600)={'ip6gre0\x00', 0x0, 0x4, 0x80, 0x8, 0x7fffffff, 0x49, @private2, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x8000, 0x7800, 0x80, 0x2}}) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000001cc0)=0xfff) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) shutdown(r3, 0x0) r4 = dup3(r0, r3, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r5, &(0x7f0000003800)={&(0x7f0000001d00)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000003680)={&(0x7f0000003740)={0x9c, 0x30, 0x4, 0x70bd2c, 0x25dfdbfc, {0x3}, [@nested={0x87, 0x66, 0x0, 0x1, [@generic="ba1edfd0072d042a35e057bace90088381768d1e3f53d49b1c9f63c61bd971614b51050c4b53373d433d584700359d23f19510f40bec6e2b8c9e38da5c7f9a56203c31643bf5fa47c0b343a65868e28a765473e45c31486c6394bc62f6973e78827d559e89f05d2f2b2f4dcf1abc1eab9da9a13be9957c6880e2b1d48cc99f904103a4"]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x40094}, 0x20040801) r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r6, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) setsockopt$inet_IP_IPSEC_POLICY(r6, 0x0, 0x10, &(0x7f0000003500)={{{@in6=@mcast2, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4e21, 0x0, 0x4e22, 0x200, 0xa, 0x0, 0x80, 0x2f, 0x0, 0xffffffffffffffff}, {0xf47, 0x9, 0x7, 0x7fff, 0x9, 0x100, 0x9, 0xfff}, {0x3, 0x80000000, 0x1, 0x100000001}, 0x400, 0x6e6bb1, 0x1, 0x1, 0x2, 0x3}, {{@in6=@private1, 0x4d4, 0x6c}, 0x2, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3501, 0x3, 0x0, 0x9, 0x3ff, 0x2ae4, 0x2}}, 0xe8) r7 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r7, 0x0, r7) getsockopt$inet6_mreq(r4, 0x29, 0x1c, &(0x7f00000036c0)={@remote, 0x0}, &(0x7f0000003700)=0x14) sendmsg$ETHTOOL_MSG_RINGS_SET(r7, &(0x7f00000039c0)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000003980)={&(0x7f00000038c0)={0x84, 0x0, 0x4, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x80}, @ETHTOOL_A_RINGS_RX_MINI={0x8}, @ETHTOOL_A_RINGS_TX={0x8, 0x9, 0xfffffb14}, @ETHTOOL_A_RINGS_HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}]}, @ETHTOOL_A_RINGS_TX={0x8, 0x9, 0x7}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x2}, @ETHTOOL_A_RINGS_TX={0x8, 0x9, 0x8}]}, 0x84}, 0x1, 0x0, 0x0, 0x4000801}, 0x40) recvmmsg$unix(r4, &(0x7f0000003280)=[{{&(0x7f0000000000), 0x6e, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}], 0x1, &(0x7f0000000180)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xe8}}, {{&(0x7f0000000280), 0x6e, &(0x7f0000000480)=[{&(0x7f0000000300)=""/90, 0x5a}, {&(0x7f0000000380)=""/228, 0xe4}], 0x2, &(0x7f00000004c0)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f0000000500)=@abs, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000580)=""/37, 0x25}, {&(0x7f00000005c0)=""/80, 0x50}, {&(0x7f0000000640)=""/40, 0x28}], 0x3, &(0x7f00000006c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c}}], 0x90}}, {{&(0x7f0000000780)=@abs, 0x6e, &(0x7f0000000d40)=[{&(0x7f0000000800)=""/103, 0x67}, {&(0x7f0000000880)=""/47, 0x2f}, {&(0x7f00000008c0)=""/118, 0x76}, {&(0x7f0000000940)=""/251, 0xfb}, {&(0x7f0000000a40)=""/12, 0xc}, {&(0x7f0000000a80)=""/124, 0x7c}, {&(0x7f0000000b00)=""/226, 0xe2}, {&(0x7f0000000c00)=""/36, 0x24}, {&(0x7f0000000c40)=""/187, 0xbb}, {&(0x7f0000000d00)}], 0xa, &(0x7f0000000e00)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000000e40), 0x6e, &(0x7f0000001240)=[{&(0x7f0000001e00)=""/4096, 0x1000}, {&(0x7f0000000ec0)=""/104, 0x68}, {&(0x7f0000000f40)=""/187, 0xbb}, {&(0x7f0000001000)=""/224, 0xe0}, {&(0x7f0000001100)=""/91, 0x5b}, {&(0x7f0000001180)=""/2, 0x2}, {&(0x7f00000011c0)=""/124, 0x7c}], 0x7, &(0x7f00000012c0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x88}}, {{0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000001380)=""/67, 0x43}, {&(0x7f0000001400)=""/13, 0xd}, {&(0x7f0000001440)=""/229, 0xe5}], 0x3, &(0x7f0000001580)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000020000000002020000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x98}}, {{&(0x7f0000001640), 0x6e, &(0x7f0000001bc0)=[{&(0x7f00000016c0)=""/152, 0x98}, {&(0x7f0000001780)=""/56, 0x38}, {&(0x7f00000017c0)=""/110, 0x6e}, {&(0x7f0000001840)=""/109, 0x6d}, {&(0x7f00000018c0)=""/216, 0xd8}, {&(0x7f00000019c0)=""/218, 0xda}, {&(0x7f0000001ac0)=""/229, 0xe5}], 0x7, &(0x7f0000001c40)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x80}}, {{&(0x7f0000003600)=@abs, 0x6e, &(0x7f0000003180)=[{&(0x7f0000002e00)=""/86, 0x56}, {&(0x7f0000002e80)=""/251, 0xfb}, {&(0x7f0000001d40)=""/22, 0x16}, {&(0x7f0000002f80)=""/116, 0x74}, {&(0x7f0000003000)=""/229, 0xe5}, {&(0x7f0000003100)=""/85, 0x55}], 0x6, &(0x7f0000003200)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x78}}], 0x8, 0x40, &(0x7f0000003480)) bind$bt_l2cap(r9, &(0x7f00000034c0)={0x1f, 0x6, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x8}, 0xe) 08:53:46 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xc, 0xffffffffffffffff) 08:53:46 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x8000000000000) 08:53:46 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x40, 0x1, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20}, 0x788043303f4955ac, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) splice(r0, &(0x7f0000000000)=0x556, r0, &(0x7f0000000040)=0x6, 0x9, 0xc) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) io_uring_enter(0xffffffffffffffff, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x3, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001e00)="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", 0x1000, 0x81, 0x1}, 0x1) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x90000, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000500)={0x1070, 0x3c, 0x20, 0x70bd29, 0x25dfdbfe, {0x13}, [@generic="debaceed769d76cd2e14a6d239bce4126784618ca92daaa14b6ee679c196d8741c11de2962a08c45fa4611b325e8f5063f4b41b3093cd66630234a5534b650280d000258f51185823fe10d5187fea2f1ed9eec3170c5e66e9b76820c993516ea05cc5977706078c8680389543c562577fdef7085bd7ca6d41c490417453c9acf542f3e12fa5d18b0525154fa6591c40bc4ce199cf06f538852c82362386de25d646541595955e6a7d520650f3e976f793e5d1835df4b05a0db29733650252609861f010088352b22b6bafe9813f98d18c5cb56bc110ff5b6ffb1991577ac4ccd9d897ab863286bbdd163257023e13bea0866a3d6e4f03ba4d6f6e42553d1dff79335d72e8a4ef87291450a106c9cbe9968d71074429ad20e6536b1df6788d8e290bd66d674b25a08caefc7058e0fb751c83731f5160f41d2d67a55566b86ae8f521fe664a71545efe841883960096e87a8328f2af7c7a8cd13c2f41389e8c08bf9b8bac2a5cad8f97f66802e7254450c6b23644b779fc438c22398df690429fe32a38cb3de48d4ec9a7614eb12441877a51b4c42fdba25dd75579c083e099ebb3ef5e6248736e6abf6607fc911dcbbcc3eaaadb3a9ba023a492bbd0abe1c94fd6ad7017f9a1cc103725fa31f3748aee9548c50001753a61d02ad42e1a5080253da8bebcdc4ff22ba9ee809f847a74ea7f42a5e1c8c892a481fa67c095595a422200fe9e188d2ff8799304b258f2d416d5f9b6098cabb842113a201222b641e26f7c8e105e95a880cb4638f72c05d98024d3c3b5cee5795d3e87ec9cddf8112a52b4b23ca51b2a621691ef80f32531028a4d3606840e4e0035374abf9775ce84d41772005c76e94d6e2ba952dd06dfb28105a4464f04f6b236865e041c44bc8621d4a4dc7eb03e5be7ed4d6bec75f0a6949735695efb5af0510e5cb48a1626c2577a8734253833c64bf82a92407e1fa8b592b2757e96da58122786d18fe28c6c09897211e1422826a3dd27ffa60e49492edda5cbefb41f1dd4c7677e85cd2180218939e4a5e3004f86f56a8a8726a13c621f327dc3c17877482c14a41662a05b20c3584b7727330006985b5baa0c40ee27f3845c92c8e72dbb10c669b4bb637c78d619ce9cef5dd3bdc113b151bb97de4f14d84f314df1188be4e78071f0c2b358bc8f59e84591567370deeedaf1a6c1a0bce2108ba8d567d174e444ce0124aa45e7b01eab7385671485d85179535f6502452eb62a09a7cfa0c9399fcb5a84f8be67731b8164b573613306b6e517c9d90994f3f64d72dd6bb38d42b424475ee5d882fd7feab34a59747991e2c5210ea145706d26b0afb504f27b496320dc86cf34413eecc22c16725e8a2a7e06d443432e4fde399bed85a458ed5b2e9fe89e2c635798d3b07d02d8c546162892c7449bd1e65d59c04830e79500c5fe6b1102552bc0817ae1323c27ed5018b5c1d21f6445dbae92d7175ad7a2c268f74d635c279ba80b7dfe6ee91e43a542c9de4fa9f8b54dd62b33d7413e0e81ef2e01d1e0d576fdd1a48f23799b070c847c0ae6db31f60e9e48227afa2340db4174382533d8c2af5b0aadaba15f0ad6274d379217faa40bf14cba53b5a6a144980b17cb35bed190657d5bd28a7305d9b065a5a4eaa9dc821d31f10ac1f3fb4ddfd4bf06321c9dcbd1991167e4e40d931e35d96559e9230e89817e28b37f80cf29295893a5d2b8c770c9ad99fd23209bce266a008f17c4e8877de1c8de5cf8bc8e36c2c36a6527c32c5ce9ca397d91964947a4809f32c3a8c0f7df0b7d63e7120a904ec9999c16691a7281f40e8cdfcf93067c7ab9c7e7de45f011cb8a4e5f7421a8985e4e28fdc7ed8fe50f4e0ea4cac20ef586ac7af54163fb320d7ccde5bb13d886ffcfcb71ef327c0e3416d823691c6654a31e52e4a96b9575f7aab1b72ba09adeab420c055e4a157f558b00bbac36eb8089136bcc56fbedd384d96c6fc14fec089b1e90c0cdca8e2c18376377c4f5e9c6af9974d3b9df96cb4cfb0657fd6a2256685843665bec057782613574da3caac655d7e2d97fec5d41e6dfb668e1d7ec370e0fafc0e32d3505039fd8056910a27cb7f8a827e78daad34559adec6a3b8980eef94d7f37f418d2a74c4f9fff63734e9c9c740a2bc969cfc725ed0ad44a7d9ef37667b5c118abab1964f1dd78f4cfb14d6aef1c739fcb22470900f81922b3d2f349fe0926bb181c383de8d879f2287cdba17c78dbf1797d6aa396ec0ff951f793b31fd29e25147834e63213fbd3b6afdb9ba1a1cf48f2c44f1babd8e967777757083a2366245cc7a22f9801dfd1727cfe1f87d7b3e1113cca3d2dc31493845edca0bf03d7c4fa5cbc931d11a29b1e3ba293d3dea6e90e557d4635f566f307cbb7850072a56e5eba34d7f202ec69651931aa4e41f4a40e8061b5b200b64e64d00a2eaa82348a8a08f335da9c803f1f8e5ef8b3abb23fe798baaa411cad74286db266ca388d64d98d5db86f77acdfe13e6b98d5cf9c69e523949b478d6fd4228970a92a3fdbc4dac1b4ab3380291a23d2e8ec99764f5296d46e98f5b106a25d53572023a69d4d3d651f6a39acc63f8cc4520b0ee69094acd0fa95269556b0b4fbd740c93f9528eb43a6e8452d35479de286c676b89385f42fe598dd441e8c12703967a21acc41caf6c2cbfb7b7bffd3f2311ee0086966462851f07f1c337879c0cb170d5fc533c6107ad8e1f88523891b0b57960077d2f707c98a88c8357b221dfb7e05b30112f7427c4579af01cd47aada0a69b9ee3ad45664f69f2db37748106b4dbf9c8c0a13640b62615e3791ceedf375faf18e125e1ed26f95abdc7c37ba9cefc97166405bffc02e120602874ad7f7373a84181420267864105ce1df265986beff31ab91e17784da0021ba0a9a78516382aa2c3906c1916b041568054121e288bd8ca37457aa64369e5ec1a92f154c0f480b24381082cebd56a3e85fb07bcd9f8a46dab977442d3a252608d9ff41884b4af5090ef8a27993e32977a2e69158fe8c47d14f311d84d7764648de4d6feb188425aa976401ffd3c4149e3fc2d73c3f2806c371827e564ac8f90e6be55562379fd9414ea130c401b4f1e1e71b2cce1b2a24259c4b3bfdfb9e74abec1afdb9ad2fd4fc03e7366e281e63168944aeb3042ddfde3b028685fcf86eff35f4362ff315638dad36eda1393585e1cbf0ab8ea279d2b6886f1ab1ff714836eaa7da4e60ce605a74a5c946061378f90a52f25d07a9efe266de64fe7a76fcc646f867f3d4f0f3d5ba12532d46dab6602eeaa4a6fbe5b734b64209f76bf794448783902aa6246fbc8b0d0244a5433bd2fa16d18c1647d5600db57e4b2e350373c98e2c04936f16a0cfdd1bdf64c784fa2b537ffab28b26b9e3c0ad5dad141c33ab85cf7df274cb9a78139fa67a887cf8a631a4900ebf1162e7fc836c29709a541af414e24b25b8ab60528d038cd02fa9c357cc963b7725023c925829193efa498fd991f344c3cdba29bc30d4cb4fad00ce5c54655bb7ec16c6faba0259939a52fa7b85cda31c87361463647705093bd778f6cf5d2d42eaa753cdb1b68321caa97ad6fbf324b2f1a5bd8038953ac7a6c35908a3485423cf8341b7121ecfb5254630b52cfcc6b1881ab6cd335b8d983a741e5753a5b3718d0df91e2dc59e9512583f1cde1aa1ed73d982c524699d07c4107c32107ff4179ab0188add3066bb55c31dc21e08c69a5fe990243de26b8b16d2aa1314db03c51aa8923761e5ef86819f94a3b4d37d6cb75fb0a5621861c28c1174dd78582b8f184fe21287d644d95a2617bb8da3d819e359837abb30c2cd68ea1486b1b46c81f06212a48fc738b2d8f9a914e017d1208023faef0bec0c32b6ad201132907f8ca50ceb3741084b11888b5e2e476ce98162738ac8ea8dc67e21ca25c1b7c4e5b9e008c892c9af4ffe1797ccce6906fd069439588481c37b7513a1c49795172d48d88df0e98e3433bf7382ee56b25068291fc37a88153a2d22cbae9adf78312a969fc32d4d433053ec976078547746cb16ff2a44d6bf56fb1476de48daab809474a3fc48ad7713ead54ebec85680713e54720f55e1d0d353efa46016002f15b2a68cc6c7f522b85968516ddb0216e9dbf7aac4cae564a8c095f6b07a394aa0c934916da1ca9cce0ff617039514f81e8c9b3ba34cf4673d1980ac443ce937a3fbad89f11ef1b5e975c6412268409b45137332c04f3e83e48ebdad045d190f92a2f7da63f4a83cb90028665222ef8f25053b271d208aedcb90c80a2eccf2be562c0ae45a600e35140e50c24cbe3aa3f2faae55405b45a6567f7f97daef8964a47e1218d0cba0ad9b0265ce938b668ae9eaeaf2f24a21be4973e0b031ef32bc1e18444fe6be248a7ecdb785b62a20ad1b4db1ccb42681c448498fc4106737b1a499a5ce42e7f68d4288b5cdf1a544ddd033962a618c7132b1eb81a8a7c77b9ed4950de7c3c667f090887935e525430ce5c73ab143840b50b05093dc6fc53eb7da5b590593e2f8aaf34dd2ee35dd5853fc9e4d0e2422c63429d5d4169335a594ec36174b542e2a24cde87f53ca164af1fe4e5b971a155cd411649ca8eb457d1b9f1a3e2bc4f7b114637b105d31a801fc8d0f5a579b0956b09e8b8c39eb3fab47bab42d8b092fa85122a4faee11da4aa696601f5477c52b3ef7d1674ae6d36fff1074fb0077f4db0cdf09587930efcfa135d50e4603bfd78cb9ddb902eeb4bdf70a768ff7ee399b3a096b0c6c0e6026afa59f7ac7caafa8a240fcff81ab87d1f582c53dba8546e0210436511780ded03eaebb2ddf16d779ba08c7ac6782994a5bfb191c142b4b1aa566615f1486fe89cc06fdb4d1524beba22db35427d0c49d74377c66fdde80d73bb4acf80454c44c7572e15a734a6aa25f9617c4b1370078e8f871424946c1a9ea1f0f1492dee9b626d340a82691360efd78bd8cef79da3550a494cb125f1f48053d89c5fa73ed5c66f796b4f2f6ba6c69d50971c0d77af2b2c5b1a0b80965a624c094928fcef027b9c445efc0c80d86e57ab3414f2b0b11fe9243ea0073697b04b4ce1289b3276eb51293a7bb5fa688cf8b9ca65cc659ff62443daf624abbec808cd2441b35de43d2fc459d9d28791756dad1652b38f12e7ccba083c537c8e4bcb0a1cf3c3fe63bc4e0211a7e15daed46a083de3c071a3384bcc0c3feaab78514bc6e864fe2e9142436e61c1e6e5d096419471180f3c9aa97d45b3d9b9f76d66a6fe5491a41f161a8c1e9491b2450451f753461087b9c75e11f28bf9d6b40f7e4d85bd5b6567bee592c8e9ba3d5b8045bc5a0b7bc5a4a889acbd1386bfd09269f85f1e36204bce71b27ef560ea65a7ff855d16625cfa2a526b2409c58d5ef555fa7b7e7a7ae2fdeef4102cfc4eacf99dffa94ab25c5748513efeb9143fee23254cdfa071b55660d003cedeb0425c04d9c7941670dcf30430ddf40bf7cb300caec4aabe9e7f4c8568c619e954a7b916c8b0c191c2f4ad115fe8719c0a6ccd0ca49fbd5cf870583a7b4eceb050b9a5307ec9e17eca60fafe54c49db319272f0d7cc4ff8fd1f2bc6bb7959bb06d7be72444ee2756174f490d02eaac6ee0a48098712cf25b32fe12a6940375f13084b382927576f66e49213e6e47dffa3de5214815955d65be1e74bdb14ac3d07c674d50af0bc84b3684fa0d7d96248a2b6fee06d7acd14b53ebae4068f9870b28ab7d8ab4452ea19b426a2311e979edd249f8d9624954dd5baea0c2818180cb3e6b3883efb776c692eb82718d750934c0", @typed={0x8, 0x1f, 0x0, 0x0, @fd=r3}, @generic="443b6271f6aafe5cc7cb162f78b1c3e12569ea021c62d1fae98db2f729aea4476ea88a443b644fd4d14ea9217723a08d6eb78651567bcaab0a19fdd7e64f7dff1868138fbc06358f65", @typed={0x5, 0x95, 0x0, 0x0, @str='\x00'}]}, 0x1070}, 0x1, 0x0, 0x0, 0x20040000}, 0x44) r4 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r4, 0x0, 0x10000000c) syz_io_uring_setup(0x77d5, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f0000000340)=ANY=[@ANYRESDEC, @ANYRES16, @ANYRESHEX, @ANYRESHEX, @ANYRES64, @ANYRESOCT]) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)="037ec052eb7052ecc311eb97be349b472124662ef4dede168d2cc6b84523e469f7de3551a997ff1a436a6a460d6c7b3b654058217932b9b4e725b61005069a94b0023b61ffa96663ecdf9beb68cbd35d7220f33536b1ffa44c6249741c19fb3b87fc119879864c8fd9e2289f682666006227ca0c846b8af077e9fddcb04be43575ac9567d837f2f5d2333716fd4d", 0x8e, 0x12140, 0x1, {0x0, r6}}, 0x80000000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TEE={0x21, 0x64d0e335eeaad029, 0x0, @fd=r2, 0x0, 0x0, 0x18, 0x0, 0x0, {0x0, r6, r0}}, 0xfffffffa) dup3(r0, r1, 0x0) 08:53:46 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4, 0x13, r0, 0x8000000) [ 2241.194826] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11392 comm=syz-executor.0 08:53:46 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) syz_io_uring_setup(0x4db7, &(0x7f0000000000)={0x0, 0x9fa, 0x20, 0x2, 0x3ae}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000003000/0x2000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000100), 0x20000, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f0000000140)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x6000, @fd=r3, 0x3, 0x7, 0xb7, 0x4, 0x0, {0x1}}, 0x2) 08:53:46 executing program 3: sendmsg$NFT_MSG_GETCHAIN(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="44c4000000040a01010000000000000000030000040900010073797a31000000000900030073797a32000000000a000700726f7574650000000900010073797a31000000000da2b77c7e2c7ada6af90401d9b11a6918a09f575f3dc7bf4eff94af891c1a843473d5fab8f49e0e33eaedd2ce452dbc456780c57f9c7bffcd4b6bc054c3ab339ed19544d86e8a28778d83ef75ece294e80e653305c41c8196977e812d3e55defc0ecbd47f0521b728add5e4bab8cba991bbdf1994d032346df0"], 0x44}, 0x1, 0x0, 0x0, 0x4880}, 0x4000000) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) [ 2241.211042] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11392 comm=syz-executor.0 [ 2241.222118] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 08:53:46 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x100000000000000) 08:53:46 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0) bind$bt_l2cap(r2, &(0x7f0000000040)={0x1f, 0x7, @any, 0x1f, 0x6214e6c5217fc6b1}, 0xe) r3 = accept$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @broadcast}, &(0x7f0000000100)=0x10) shutdown(r3, 0x1) dup3(r0, r1, 0x0) 08:53:47 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 27) [ 2241.363450] FAULT_INJECTION: forcing a failure. [ 2241.363450] name failslab, interval 1, probability 0, space 0, times 0 [ 2241.365107] CPU: 0 PID: 11381 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2241.365993] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2241.367079] Call Trace: [ 2241.367432] dump_stack+0x107/0x167 [ 2241.367903] should_fail.cold+0x5/0xa [ 2241.368392] ? io_wq_create+0x6ef/0xc00 [ 2241.368900] should_failslab+0x5/0x20 [ 2241.369396] kmem_cache_alloc_node_trace+0x59/0x340 [ 2241.370036] io_wq_create+0x6ef/0xc00 [ 2241.370537] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2241.371187] ? io_import_iovec+0x1120/0x1120 [ 2241.371764] ? io_apoll_task_func+0x2d0/0x2d0 [ 2241.372343] ? __io_req_find_next+0x300/0x300 [ 2241.372934] ? do_raw_spin_lock+0x121/0x260 [ 2241.373504] ? rwlock_bug.part.0+0x90/0x90 [ 2241.374056] __io_uring_add_tctx_node+0x2c6/0x520 [ 2241.374699] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2241.375379] ? alloc_fd+0x2e7/0x670 [ 2241.375866] io_uring_setup+0x1fbb/0x2980 [ 2241.376413] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2241.377084] ? wait_for_completion_io+0x270/0x270 [ 2241.377741] do_syscall_64+0x33/0x40 [ 2241.378229] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2241.378893] RIP: 0033:0x7f0e6488ab19 [ 2241.379378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2241.381753] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2241.382732] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2241.383638] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2241.384542] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2241.385461] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2241.386376] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2241.397457] FAULT_INJECTION: forcing a failure. [ 2241.397457] name failslab, interval 1, probability 0, space 0, times 0 [ 2241.398908] CPU: 0 PID: 11415 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2241.399802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2241.400901] Call Trace: [ 2241.401264] dump_stack+0x107/0x167 [ 2241.401742] should_fail.cold+0x5/0xa [ 2241.402236] ? io_uring_alloc_task_context+0x99/0x6a0 [ 2241.402915] should_failslab+0x5/0x20 [ 2241.403404] kmem_cache_alloc_trace+0x55/0x320 [ 2241.403993] io_uring_alloc_task_context+0x99/0x6a0 [ 2241.404645] ? io_import_iovec+0x1120/0x1120 [ 2241.405210] ? lock_downgrade+0x6d0/0x6d0 [ 2241.405747] ? do_raw_spin_lock+0x121/0x260 [ 2241.406306] ? rwlock_bug.part.0+0x90/0x90 [ 2241.406872] __io_uring_add_tctx_node+0x2c6/0x520 [ 2241.407512] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2241.408194] ? alloc_fd+0x2e7/0x670 [ 2241.408699] io_uring_setup+0x1fbb/0x2980 [ 2241.409246] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2241.409902] ? wait_for_completion_io+0x270/0x270 [ 2241.410570] do_syscall_64+0x33/0x40 [ 2241.411076] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2241.411757] RIP: 0033:0x7f1ba3a34b19 [ 2241.412249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2241.414652] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2241.415655] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2241.416595] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2241.417537] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2241.418483] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2241.419390] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:54:01 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x200000000000000) 08:54:01 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 28) 08:54:01 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 36) 08:54:01 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/9p', 0x2000, 0xaa) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r2, &(0x7f0000000040)={0x1000201f}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000001c0)={0x0}, &(0x7f0000000200)=0xc) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) sendmsg$nl_generic(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x4, 0x1, 0xc0, 0x71, 0x0, 0x5, 0x40, 0x8, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x7, 0x0, @perf_config_ext={0x20, 0x3000000}, 0x8000, 0x4, 0x1, 0x1, 0x6, 0x1, 0x3, 0x0, 0x2, 0x0, 0x1}, r3, 0xa, r5, 0x3) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) sendmsg$TIPC_NL_BEARER_DISABLE(r2, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000002c0)={&(0x7f00000004c0)={0x1a0, 0x0, 0x100, 0x70bd2f, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0xac, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x20}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x400}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x1}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7044}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7b38}]}, @TIPC_NLA_LINK={0x64, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x97}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x887}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}]}, @TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_PUBL={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x81}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfd}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x1}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffffffa}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x79}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x3}]}]}, 0x1a0}, 0x1, 0x0, 0x0, 0x40800}, 0x20000000) shutdown(r6, 0x0) dup3(r0, r6, 0x0) 08:54:01 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:54:01 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000000, r0) 08:54:01 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x2000000) 08:54:01 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000500)={0x34c, 0x3c, 0x8, 0x70bd2c, 0x25dfdbfd, {0xe}, [@generic="993fc4617f7f3403122a008590b69ba5ae38e40c1fd8f49515526eab0a33a7c93689c1a7cf76ce08f98bc564d4bb1fc604a3a0a36dfefa4b50b27cfacdf7b571182bce13977445b0fac549f43fda351bbfb5e8ae8b2ac99a743cfffb0ac3c17667c65145d5ffd8f9258d5a32b302", @nested={0x2bd, 0x3b, 0x0, 0x1, [@generic="3eb8563b00d778b1a066f36206ee61b58307e6fedc498c1603c677e6f34d8b618db67c929576f6f54c091992e30645aaff926251bd514595d7a44638e3298ee239edbe96ba7c04c262083b10078bfec08d8002b7fb5f25b35090a80a0b514f85b4fee79b337ec15d7e38dcb544e180ac2e0b155652b8d13d173042836360a23e93a75751", @generic="d160e98b7dc8f118fffd9fbb256f30468b0c4cfc7310141d938392c1e2961ee6edd8fe8dc4385a9402e92f1d753d771bd86602d320d4d4e16b17dbf847c473297bc1c30c6615322983869350ecaf36af5cc3d6a95742694d37b8e7386035a7f8ef31915a438bbfce4b9cb43bfa89b9e2e21422d7409766db2f1430951b7a1c56e9f034361376c0e9d9cfb05c8c677caa894da358ebbc8448f4ca454e0bc8cf8f55fcaa957641be3f309b04f0c6a3e9a506e4a0e3220d08236bbab4d037f70bc7d9ac6477cdd153dc", @generic="8a1cc0ad17431d86caf0abf92032b99ed6b15219998adf1d2804d1aeb5b3964df61cd504499ed4d5b73a3a8d1fe2de0d98374a7d6c9afe700692a50e883f447566ebe9b66d70f6243f85a1015e83cb21dcfd9bfb91a841e2f9b65829040718e4c6a33dc8efe7f2a2a5449b59f9f7eba6d29e18a3999d94f124ce6e3121ed4ef2c23239fae941790ee7e2113d8df21ddae1df371ed0ef212456298b457b78373d78eefcdb5530d43db1323820d520ba48bf6fa153f06ba3bbf24e0ea05f67f4", @generic="3a4021fa8a93a1350dc1109c56ca7e5441d895d657613bcd316c7e0e3dbf842940e48e443eaa35bf40dc327b30970fb38719506b572975e3fa062eb1c5ec68d3dd4aa9dceca4754bf692d71a5578fb8a", @generic="b7a911e8d0df0daea33aa09db2fbdf309d5057031b525c10436913df8b92ccfa95a7ee679b4180381e75415e56888f12443e45a8e9bb33f0c12c020b2067ed79cf7831354711a0c2eb03cdd8d75cc0aee239eaed0507a8afb906ff7ff922"]}, @typed={0x5, 0x52, 0x0, 0x0, @str='\x00'}]}, 0x34c}, 0x1, 0x0, 0x0, 0x4080}, 0x200480c0) shutdown(r1, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r3 = openat(r2, &(0x7f0000000280)='./file1\x00', 0x105103, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x9) sendfile(r3, r4, 0x0, 0x10000000c) syz_io_uring_setup(0x77d5, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r6, 0x0, &(0x7f0000000440)="037ec052eb7052ecc311eb97be349b472124662ef4dede168d2cc6b84523e469f7de3551a997ff1a436a6a460d6c7b3b654058217932b9b4e725b61005069a94b0023b61ffa96663ecdf9beb68cbd35d7220f33536b1ffa44c6249741c19fb3b87fc119879864c8fd9e2289f682666006227ca0c846b8af077e9fddcb04be43575ac9567d837f2f5d2333716fd4d", 0x8e, 0x12140, 0x1, {0x0, r7}}, 0x80000000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_CONNECT={0x10, 0x3, 0x0, r1, 0x80, &(0x7f0000000000)=@llc={0x1a, 0x335, 0x1, 0x1f, 0x80, 0xef, @local}, 0x0, 0x0, 0x1, {0x0, r7}}, 0xffff) dup3(r0, r1, 0x0) [ 2255.764918] FAULT_INJECTION: forcing a failure. [ 2255.764918] name failslab, interval 1, probability 0, space 0, times 0 [ 2255.766457] CPU: 0 PID: 11428 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2255.767385] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2255.768536] Call Trace: [ 2255.768907] dump_stack+0x107/0x167 [ 2255.769425] should_fail.cold+0x5/0xa [ 2255.769955] ? create_object.isra.0+0x3a/0xa20 [ 2255.770594] should_failslab+0x5/0x20 [ 2255.771124] kmem_cache_alloc+0x5b/0x310 [ 2255.771690] create_object.isra.0+0x3a/0xa20 [ 2255.772298] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2255.773010] kmem_cache_alloc_trace+0x151/0x320 [ 2255.773671] io_uring_alloc_task_context+0x99/0x6a0 [ 2255.774365] ? io_import_iovec+0x1120/0x1120 [ 2255.774950] ? lock_downgrade+0x6d0/0x6d0 [ 2255.775522] ? do_raw_spin_lock+0x121/0x260 [ 2255.776119] ? rwlock_bug.part.0+0x90/0x90 [ 2255.776711] __io_uring_add_tctx_node+0x2c6/0x520 [ 2255.777390] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2255.778115] ? alloc_fd+0x2e7/0x670 [ 2255.778626] io_uring_setup+0x1fbb/0x2980 [ 2255.779206] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2255.779911] ? wait_for_completion_io+0x270/0x270 [ 2255.780601] do_syscall_64+0x33/0x40 [ 2255.781107] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2255.781822] RIP: 0033:0x7f1ba3a34b19 [ 2255.782320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2255.784882] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2255.784897] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2255.784904] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2255.784912] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2255.784919] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2255.784926] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2255.839720] FAULT_INJECTION: forcing a failure. [ 2255.839720] name failslab, interval 1, probability 0, space 0, times 0 [ 2255.839737] CPU: 0 PID: 11435 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2255.839744] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2255.839747] Call Trace: [ 2255.839763] dump_stack+0x107/0x167 [ 2255.839778] should_fail.cold+0x5/0xa 08:54:01 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 29) 08:54:01 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x5) pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000003, r0) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0) pkey_mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000000, r0) 08:54:01 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r2, 0x8008f511, &(0x7f0000000000)) shutdown(r1, 0x0) dup3(r0, r1, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) sendfile(0xffffffffffffffff, r4, &(0x7f0000000040)=0x8, 0xb67) 08:54:01 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x400000000000000) [ 2255.839792] ? create_object.isra.0+0x3a/0xa20 [ 2255.839806] should_failslab+0x5/0x20 [ 2255.839819] kmem_cache_alloc+0x5b/0x310 [ 2255.839832] ? io_wq_create+0x114/0xc00 [ 2255.839847] create_object.isra.0+0x3a/0xa20 08:54:01 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000002) [ 2255.839858] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2255.839875] kmem_cache_alloc_node_trace+0x16d/0x340 [ 2255.839892] io_wq_create+0x6ef/0xc00 [ 2255.839909] io_uring_alloc_task_context+0x1f1/0x6a0 08:54:01 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 37) [ 2255.839923] ? io_import_iovec+0x1120/0x1120 [ 2255.839935] ? io_apoll_task_func+0x2d0/0x2d0 [ 2255.839946] ? __io_req_find_next+0x300/0x300 [ 2255.839956] ? do_raw_spin_lock+0x121/0x260 [ 2255.839968] ? rwlock_bug.part.0+0x90/0x90 [ 2255.839984] __io_uring_add_tctx_node+0x2c6/0x520 [ 2255.839996] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2255.840008] ? alloc_fd+0x2e7/0x670 [ 2255.840027] io_uring_setup+0x1fbb/0x2980 [ 2255.840045] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2255.840058] ? wait_for_completion_io+0x270/0x270 [ 2255.840088] do_syscall_64+0x33/0x40 [ 2255.840100] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2255.840108] RIP: 0033:0x7f0e6488ab19 [ 2255.840120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 08:54:01 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x5) pkey_free(r0) r1 = pkey_alloc(0x0, 0x2) r2 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r2) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r2) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r2) pkey_mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, r2) r3 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x7, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff2000/0x1000)=nil, 0x1000, 0x2000001, r3) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_alloc(0x0, 0x1) r4 = pkey_alloc(0x0, 0x1) pkey_mprotect(&(0x7f0000fef000/0x1000)=nil, 0x1000, 0x1000004, r4) pkey_free(r0) 08:54:01 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 30) [ 2255.840127] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2255.840141] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2255.840148] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2255.840156] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2255.840163] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2255.840171] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2255.848223] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 2255.931214] FAULT_INJECTION: forcing a failure. [ 2255.931214] name failslab, interval 1, probability 0, space 0, times 0 [ 2255.931230] CPU: 0 PID: 11450 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2255.931237] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2255.931241] Call Trace: [ 2255.931259] dump_stack+0x107/0x167 [ 2255.931273] should_fail.cold+0x5/0xa [ 2255.931288] ? create_object.isra.0+0x3a/0xa20 [ 2255.931304] should_failslab+0x5/0x20 [ 2255.931317] kmem_cache_alloc+0x5b/0x310 [ 2255.931334] create_object.isra.0+0x3a/0xa20 [ 2255.931352] kmemleak_alloc_percpu+0xa0/0x100 [ 2255.931367] pcpu_alloc+0x4e2/0x1240 [ 2255.931391] __percpu_counter_init+0x10d/0x2d0 [ 2255.931413] io_uring_alloc_task_context+0xcc/0x6a0 [ 2255.931426] ? io_import_iovec+0x1120/0x1120 [ 2255.931441] ? lock_downgrade+0x6d0/0x6d0 [ 2255.931452] ? do_raw_spin_lock+0x121/0x260 [ 2255.931463] ? rwlock_bug.part.0+0x90/0x90 [ 2255.931479] __io_uring_add_tctx_node+0x2c6/0x520 [ 2255.931492] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2255.931503] ? alloc_fd+0x2e7/0x670 [ 2255.931523] io_uring_setup+0x1fbb/0x2980 [ 2255.931540] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2255.931553] ? wait_for_completion_io+0x270/0x270 [ 2255.931584] do_syscall_64+0x33/0x40 [ 2255.931596] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2255.931605] RIP: 0033:0x7f1ba3a34b19 [ 2255.931616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2255.931623] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2255.931637] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2255.931645] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2255.931652] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2255.931659] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2255.931666] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2255.985974] FAULT_INJECTION: forcing a failure. [ 2255.985974] name failslab, interval 1, probability 0, space 0, times 0 [ 2255.985999] CPU: 1 PID: 11457 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2255.986010] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2255.986016] Call Trace: [ 2255.986041] dump_stack+0x107/0x167 [ 2255.986062] should_fail.cold+0x5/0xa [ 2255.986081] ? __io_uring_add_tctx_node+0x15c/0x520 [ 2255.986100] ? __io_uring_add_tctx_node+0x15c/0x520 [ 2255.986123] should_failslab+0x5/0x20 [ 2255.986142] kmem_cache_alloc_trace+0x55/0x320 [ 2255.986167] __io_uring_add_tctx_node+0x15c/0x520 [ 2255.986187] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2255.986204] ? alloc_fd+0x2e7/0x670 [ 2255.986234] io_uring_setup+0x1fbb/0x2980 [ 2255.986261] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2255.986281] ? wait_for_completion_io+0x270/0x270 [ 2255.986326] do_syscall_64+0x33/0x40 [ 2255.986345] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2255.986365] RIP: 0033:0x7f0e6488ab19 [ 2255.986383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2255.986393] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2255.986415] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2255.986426] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2255.986437] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2255.986447] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2255.986458] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2256.060274] FAULT_INJECTION: forcing a failure. [ 2256.060274] name failslab, interval 1, probability 0, space 0, times 0 [ 2256.060291] CPU: 0 PID: 11464 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2256.060298] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2256.060302] Call Trace: [ 2256.060320] dump_stack+0x107/0x167 [ 2256.060334] should_fail.cold+0x5/0xa [ 2256.060349] ? create_object.isra.0+0x3a/0xa20 [ 2256.060365] should_failslab+0x5/0x20 [ 2256.060383] kmem_cache_alloc+0x5b/0x310 [ 2256.060399] create_object.isra.0+0x3a/0xa20 [ 2256.060417] kmemleak_alloc_percpu+0xa0/0x100 [ 2256.060433] pcpu_alloc+0x4e2/0x1240 [ 2256.060457] __percpu_counter_init+0x10d/0x2d0 [ 2256.060473] io_uring_alloc_task_context+0xcc/0x6a0 [ 2256.060486] ? io_import_iovec+0x1120/0x1120 [ 2256.060501] ? lock_downgrade+0x6d0/0x6d0 [ 2256.060512] ? do_raw_spin_lock+0x121/0x260 [ 2256.060523] ? rwlock_bug.part.0+0x90/0x90 [ 2256.060544] __io_uring_add_tctx_node+0x2c6/0x520 [ 2256.060557] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2256.060569] ? alloc_fd+0x2e7/0x670 [ 2256.060588] io_uring_setup+0x1fbb/0x2980 [ 2256.060606] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2256.060619] ? wait_for_completion_io+0x270/0x270 [ 2256.060649] do_syscall_64+0x33/0x40 [ 2256.060662] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2256.060670] RIP: 0033:0x7f1ba3a34b19 [ 2256.060683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2256.060690] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2256.060704] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2256.060712] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2256.060719] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2256.060727] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2256.060734] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:54:16 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 38) 08:54:16 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x3}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001d00210c00000000000000001200000005000000000000000800012000000000"], 0x24}}, 0x0) openat$incfs(r2, &(0x7f0000000000)='.pending_reads\x00', 0x509040, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) r4 = dup3(r0, r3, 0x0) connect$bt_l2cap(r4, &(0x7f00000000c0)={0x1f, 0x8, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x20}, 0xe) r5 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r5, 0x0, r5) fcntl$lock(r5, 0x7, &(0x7f0000000080)={0x0, 0x4, 0x3, 0xffffffffffffffff}) [ 2270.497267] FAULT_INJECTION: forcing a failure. [ 2270.497267] name failslab, interval 1, probability 0, space 0, times 0 [ 2270.499163] CPU: 1 PID: 11476 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2270.500304] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2270.501682] Call Trace: [ 2270.502115] dump_stack+0x107/0x167 [ 2270.502715] should_fail.cold+0x5/0xa [ 2270.503333] ? create_object.isra.0+0x3a/0xa20 [ 2270.504079] should_failslab+0x5/0x20 [ 2270.504705] kmem_cache_alloc+0x5b/0x310 [ 2270.505362] create_object.isra.0+0x3a/0xa20 [ 2270.506087] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2270.506912] kmem_cache_alloc_trace+0x151/0x320 [ 2270.507671] __io_uring_add_tctx_node+0x15c/0x520 [ 2270.508457] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2270.509309] ? alloc_fd+0x2e7/0x670 [ 2270.509916] io_uring_setup+0x1fbb/0x2980 [ 2270.510590] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2270.511399] ? wait_for_completion_io+0x270/0x270 [ 2270.512192] do_syscall_64+0x33/0x40 [ 2270.512787] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2270.513621] RIP: 0033:0x7f0e6488ab19 [ 2270.514223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2270.517188] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2270.518422] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2270.519573] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2270.520718] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2270.521902] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2270.523048] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2270.561669] FAULT_INJECTION: forcing a failure. [ 2270.561669] name failslab, interval 1, probability 0, space 0, times 0 [ 2270.563623] CPU: 1 PID: 11485 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2270.564726] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2270.566070] Call Trace: [ 2270.566490] dump_stack+0x107/0x167 [ 2270.567072] should_fail.cold+0x5/0xa 08:54:16 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, r2, {0x7ff}}, './file0\x00'}) ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r3, 0x8983, &(0x7f0000000040)={0x2, 'virt_wifi0\x00', {0x7}, 0x8f3c}) 08:54:16 executing program 3: pkey_mprotect(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) 08:54:16 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000003) 08:54:16 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 31) 08:54:16 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x2000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0_virt_wifi\x00'}) dup3(r0, r1, 0x0) 08:54:16 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0xa00000000000000) [ 2270.567686] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 2270.568801] should_failslab+0x5/0x20 [ 2270.569407] kmem_cache_alloc_trace+0x55/0x320 [ 2270.570146] io_uring_alloc_task_context+0x4a3/0x6a0 [ 2270.570933] ? io_import_iovec+0x1120/0x1120 [ 2270.571634] ? lock_downgrade+0x6d0/0x6d0 [ 2270.572278] ? do_raw_spin_lock+0x121/0x260 [ 2270.572947] ? rwlock_bug.part.0+0x90/0x90 [ 2270.573628] __io_uring_add_tctx_node+0x2c6/0x520 [ 2270.574396] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2270.575218] ? alloc_fd+0x2e7/0x670 [ 2270.575797] io_uring_setup+0x1fbb/0x2980 [ 2270.576445] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2270.577250] ? wait_for_completion_io+0x270/0x270 [ 2270.578041] do_syscall_64+0x33/0x40 [ 2270.578629] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2270.579432] RIP: 0033:0x7f1ba3a34b19 [ 2270.580018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2270.582934] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2270.584137] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2270.585261] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2270.586387] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2270.587505] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2270.588630] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:54:16 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 39) 08:54:16 executing program 3: pkey_mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) 08:54:16 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0xfff7ffffffff0700) [ 2270.639481] FAULT_INJECTION: forcing a failure. [ 2270.639481] name failslab, interval 1, probability 0, space 0, times 0 [ 2270.641448] CPU: 1 PID: 11492 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2270.642519] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2270.643790] Call Trace: [ 2270.644189] dump_stack+0x107/0x167 [ 2270.644738] should_fail.cold+0x5/0xa [ 2270.645320] ? xas_alloc+0x336/0x440 [ 2270.645907] should_failslab+0x5/0x20 [ 2270.646489] kmem_cache_alloc+0x5b/0x310 [ 2270.647125] ? stack_trace_consume_entry+0x160/0x160 [ 2270.647906] xas_alloc+0x336/0x440 [ 2270.648444] xas_create+0x34a/0x10d0 [ 2270.649014] ? kernel_text_address+0xf2/0x120 [ 2270.649742] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2270.650530] xas_store+0x8c/0x1c40 [ 2270.651079] __xa_store+0x164/0x2d0 [ 2270.651618] ? xa_delete_node+0x280/0x280 [ 2270.652261] ? trace_hardirqs_on+0x5b/0x180 [ 2270.652911] xa_store+0x31/0x50 [ 2270.653417] __io_uring_add_tctx_node+0x1cf/0x520 [ 2270.654171] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2270.654968] ? alloc_fd+0x2e7/0x670 [ 2270.655546] io_uring_setup+0x1fbb/0x2980 [ 2270.656194] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2270.656971] ? wait_for_completion_io+0x270/0x270 [ 2270.657714] do_syscall_64+0x33/0x40 [ 2270.658278] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2270.659053] RIP: 0033:0x7f0e6488ab19 [ 2270.659623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2270.662376] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2270.663554] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2270.664644] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2270.665734] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2270.666829] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2270.667901] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:54:16 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000004) 08:54:16 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x9813}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) dup3(r1, r4, 0x0) 08:54:16 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x3, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x1, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) r5 = pidfd_getfd(0xffffffffffffffff, r2, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r8, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x0, 0x0}, 0x0) syz_io_uring_submit(r6, r3, &(0x7f0000000040)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd=r5}, 0x0) r9 = dup2(0xffffffffffffffff, r1) fcntl$dupfd(r4, 0x0, r9) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:54:16 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 40) 08:54:16 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 32) 08:54:16 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x7, r0) 08:54:16 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0xffffffff00000000) [ 2270.827631] FAULT_INJECTION: forcing a failure. [ 2270.827631] name failslab, interval 1, probability 0, space 0, times 0 [ 2270.829288] CPU: 1 PID: 11514 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2270.830316] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2270.831445] Call Trace: [ 2270.831835] dump_stack+0x107/0x167 [ 2270.832370] should_fail.cold+0x5/0xa [ 2270.832935] ? xas_alloc+0x336/0x440 [ 2270.833481] should_failslab+0x5/0x20 [ 2270.834053] kmem_cache_alloc+0x5b/0x310 [ 2270.834653] ? stack_trace_consume_entry+0x160/0x160 [ 2270.835399] xas_alloc+0x336/0x440 [ 2270.835920] xas_create+0x34a/0x10d0 [ 2270.836470] ? kernel_text_address+0xf2/0x120 [ 2270.837136] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2270.837915] xas_store+0x8c/0x1c40 [ 2270.838444] __xa_store+0x164/0x2d0 [ 2270.838978] ? xa_delete_node+0x280/0x280 [ 2270.839593] ? trace_hardirqs_on+0x5b/0x180 [ 2270.840227] xa_store+0x31/0x50 [ 2270.840712] __io_uring_add_tctx_node+0x1cf/0x520 [ 2270.841412] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2270.842182] ? alloc_fd+0x2e7/0x670 [ 2270.842719] io_uring_setup+0x1fbb/0x2980 [ 2270.843324] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2270.844062] ? wait_for_completion_io+0x270/0x270 [ 2270.844779] do_syscall_64+0x33/0x40 [ 2270.845317] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2270.846071] RIP: 0033:0x7f0e6488ab19 [ 2270.846611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2270.849234] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2270.850313] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2270.851354] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2270.852392] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2270.853435] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2270.854478] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2270.868356] FAULT_INJECTION: forcing a failure. [ 2270.868356] name failslab, interval 1, probability 0, space 0, times 0 [ 2270.871050] CPU: 0 PID: 11518 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2270.872660] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2270.874586] Call Trace: [ 2270.875200] dump_stack+0x107/0x167 [ 2270.876047] should_fail.cold+0x5/0xa [ 2270.876934] ? create_object.isra.0+0x3a/0xa20 [ 2270.878005] should_failslab+0x5/0x20 [ 2270.878888] kmem_cache_alloc+0x5b/0x310 [ 2270.879837] create_object.isra.0+0x3a/0xa20 [ 2270.880855] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2270.882051] kmem_cache_alloc_trace+0x151/0x320 [ 2270.883137] io_uring_alloc_task_context+0x4a3/0x6a0 [ 2270.884311] ? io_import_iovec+0x1120/0x1120 [ 2270.885335] ? lock_downgrade+0x6d0/0x6d0 [ 2270.886303] ? do_raw_spin_lock+0x121/0x260 [ 2270.887302] ? rwlock_bug.part.0+0x90/0x90 [ 2270.888292] __io_uring_add_tctx_node+0x2c6/0x520 [ 2270.889410] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2270.890629] ? alloc_fd+0x2e7/0x670 [ 2270.891487] io_uring_setup+0x1fbb/0x2980 [ 2270.892458] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2270.893646] ? wait_for_completion_io+0x270/0x270 [ 2270.894841] do_syscall_64+0x33/0x40 [ 2270.895788] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2270.897078] RIP: 0033:0x7f1ba3a34b19 [ 2270.898034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2270.902696] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2270.904617] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2270.906427] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2270.908229] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2270.910040] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2270.911839] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:54:31 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 33) 08:54:31 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) r1 = syz_io_uring_setup(0x2487, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000640)={0xfffffffc, 0x4efc, 0x3, 0x4, 0x1}) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) pwritev2(r4, &(0x7f0000000580)=[{&(0x7f0000000080)="1e1ca911d0785cd20999b0661d956bfbb658044c9c3ccd58dde35334dbf1e2a6c85a3d3db62514949862f5ff46f2584bfa7f4e108a47e6ee3c6eff6c85912f4269007bc2105d8d837e249877123f3ce082fdd9aaf553fcc3ddebf03cfae4797d761fba97175e0130d071cc6c0de76d116ba6bd", 0x73}, {&(0x7f0000000100)="a3e8df94c029fd05d58cf9a0fe1ea3b47840cec19b784fc87d4b4215c42959331464f5a959c1d5c25aa3e3314a0a35790ee6c72e732c54edd4e51cdff7eced26553378cf5894c9852432221f47a9bd6864dc8df40341184c2beb77e63e6c7b20ecdd3ab426cdd138f78102a6808c7703bc00a61f9efb31eba0922045c9603adba91647214b94a4e3d13b88f348972adad8bca36c283b127788a65b83c08532ca67ef996ce0691e27fdd6182fb7c02e6249f29018c042f8734dc3b0a9ad09821756c1d134d3746ced2e75c8", 0xcb}, {&(0x7f0000000200)="51c531996d8be2535305214fdcd2fcbe3edb078f7b97a85d221817deed8e2fd2d1e2c828d95b8faf8c7f3cca9d3b503c6f2c1023e2d028ee046cbee96c32e87d2728a871b027e856494d7d3506f6341ee3decd1e0ab1fa5b1b01dd4ddc06f7cb494036f96532f3d801ce4a1a1981b0b1e7ad221bb9d61b28cca7cf069e494521df58450b7ead43e0f3b5cff036c7a337695f789e", 0x94}, {&(0x7f00000002c0)="d691392c40692f3272cf36849ef43b83e09d50f245e62d129714e723582e44c19f9102d485ecaab300867f64ee87f67250af5ab720d5d414ccffe5100c91d8448d67c55d5f6c28d7c50629d988d0a0ab612a8237e7b394f29472143d43bef9d53db418790124fd3ba13c8c4f173ad500d5933f2564c1398f5d7cf872132e39572e207b783f6b86e3cd379aad10282cfdc5f38e14cd36f2dacb0f9f3aa50c2c8f6aa16e250425da78", 0xa8}, {&(0x7f0000000380)="c1a985d8d06ee05cb7b969ba4273c40e16e4dfb0946ee8788fe73681b8457b71624b42a2280c9a58e2604bb6b0ec1e450413e5566eedbc7a4cc139d318c710e8ddf28d8643280f3ab83bac5b465eec8241249f3ed640e5c842c99035e547ece19f465fb408f89e0e856e562e598ba5e49b7a474dfc59a2f7f3d5763038471023ceeb87a1", 0x84}, {&(0x7f0000000440)="65e8f164e397a026dcb3dcbedf8b3cd5d48cd93f1c7ed23464c19d0194195cda93b0d446ab9553e6f306143cf66d7d9a22033a8e332169972f15e3635cf4062854aa9a47ed5e767ce5a297398569a5b9647aae570ad0ba3755b51580577469a5a821d4c32c0b15989e8a477d09951becf0642cfceeb2092e5992cbbecc6f88ddee32d6add2e4fb1eb84592dd59", 0x8d}, {&(0x7f0000000500)="0ed180fe6a4f9439f6a78470c103e77309c76cb93340f7208300dee3eb004b25b136d0ee7a8982cfe66edd6f7405fa6cf845e9fd8a1087f3200bbfc3b5744795ce24246d95d96e8695f4f24c87941f8e63fe48bfc553c826b900aa", 0x5b}, {&(0x7f0000000000)="24fa7c5c61754df9a2cbdcde00ac3b", 0xf}], 0x8, 0x5, 0xdc, 0x0) syz_io_uring_setup(0x14b8, &(0x7f0000000680)={0x0, 0x2c3f, 0x4, 0x3, 0x1f5, 0x0, r1}, &(0x7f0000b1d000/0x3000)=nil, &(0x7f0000c3c000/0x2000)=nil, &(0x7f0000000700), &(0x7f0000000740)) r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r5, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r6, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) ioctl$EXT4_IOC_MOVE_EXT(r6, 0xc028660f, &(0x7f0000000780)={0x0, r4, 0x1, 0xfff, 0x63b, 0x54}) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000600)={'netpci0\x00'}) 08:54:31 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000005) 08:54:31 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 41) 08:54:31 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) sendfile(0xffffffffffffffff, r3, &(0x7f0000000100)=0x80000000, 0x80000001) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000080)={0x0, 0x0}) perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x7, 0x98, 0x7f, 0x56, 0x0, 0x0, 0x2000, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7ff, 0x0, @perf_config_ext={0x1, 0x80000001}, 0x12, 0x1f, 0xfd, 0x8, 0x4, 0x8372, 0x4, 0x0, 0x3, 0x0, 0x8ea}, r5, 0x0, r0, 0x2) shutdown(r4, 0x0) dup3(r0, r4, 0x0) 08:54:31 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$sock_int(r2, 0x1, 0x12, &(0x7f0000000000)=0xc1f2, 0x4) 08:54:31 executing program 3: socket$inet6_icmp_raw(0xa, 0x3, 0x3a) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) 08:54:31 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r7, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x0, 0x0}, 0x0) syz_io_uring_submit(r2, r6, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd_index=0x1, 0x0, 0x0, 0x6c72, 0x0, 0x1}, 0x343) dup3(r0, r1, 0x0) [ 2286.262335] FAULT_INJECTION: forcing a failure. [ 2286.262335] name failslab, interval 1, probability 0, space 0, times 0 [ 2286.264288] CPU: 0 PID: 11540 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2286.265466] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2286.266865] Call Trace: [ 2286.267330] dump_stack+0x107/0x167 [ 2286.267943] should_fail.cold+0x5/0xa [ 2286.268590] ? io_wq_create+0xeb/0xc00 [ 2286.269246] should_failslab+0x5/0x20 [ 2286.269884] __kmalloc+0x72/0x390 [ 2286.270481] io_wq_create+0xeb/0xc00 [ 2286.271120] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2286.271975] ? io_import_iovec+0x1120/0x1120 [ 2286.272705] ? io_apoll_task_func+0x2d0/0x2d0 [ 2286.273454] ? __io_req_find_next+0x300/0x300 [ 2286.274217] ? do_raw_spin_lock+0x121/0x260 [ 2286.274952] ? rwlock_bug.part.0+0x90/0x90 [ 2286.275672] __io_uring_add_tctx_node+0x2c6/0x520 [ 2286.276473] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2286.277341] ? alloc_fd+0x2e7/0x670 [ 2286.277957] io_uring_setup+0x1fbb/0x2980 [ 2286.278684] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2286.279547] ? wait_for_completion_io+0x270/0x270 [ 2286.280385] do_syscall_64+0x33/0x40 [ 2286.281010] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2286.281878] RIP: 0033:0x7f1ba3a34b19 [ 2286.282513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2286.285529] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2286.286855] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2286.288060] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2286.289281] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2286.290610] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2286.291802] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:54:32 executing program 3: chdir(&(0x7f0000000000)='./file0\x00') r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) pkey_mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x4, r0) pkey_mprotect(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x200000f, r0) 08:54:32 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000006) 08:54:32 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) recvmmsg(r1, &(0x7f0000001280)=[{{&(0x7f0000000000)=@ieee802154={0x24, @short}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/12, 0xc}], 0x1, &(0x7f0000000100)=""/127, 0x7f}, 0x7f}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000180)=""/141, 0x8d}], 0x1, &(0x7f0000000280)=""/4096, 0x1000}, 0x5d0d5c82}], 0x2, 0x21, &(0x7f0000001300)) 08:54:32 executing program 3: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) io_setup(0x1, &(0x7f0000000040)=0x0) r2 = eventfd(0x0) io_submit(r1, 0x1, &(0x7f00000004c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) r3 = syz_open_dev$vcsn(&(0x7f00000001c0), 0x6, 0x109400) r4 = fsmount(0xffffffffffffffff, 0x0, 0x70) r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r5, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) sendmsg$nl_generic(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) r8 = open_tree(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x20d199418c831ccb) io_submit(r1, 0x3, &(0x7f0000000440)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x7, 0x7ff, 0xffffffffffffffff, &(0x7f0000000100)="4e42cbdc329db722bb4724d104910f9bbbab7389716a6ade26fcffb336bafbfcca8b790f1148d00ae9527db8a04656bd59f263d5f7703ba263e9cb43e85584c91f4e3dcb40123f2f3d53c4ef99c3f7afdcf233ad8ce79fc9feaebab1a4d5dbf4571ef6830bb1a22d559fabc50bcc69f9551885eed7bc945ecf5f741abf6c5a4018ab6d4aaa26d16def09ea5a744c9a1479179e902d80389e", 0x98, 0x2, 0x0, 0x1, r3}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x4, r4, &(0x7f0000000240)="3dcb333499de6eed75f653eb013702e7b4ad66dd952417426519709b4b9e3fa816821bee52aa1f42e54a9c36d5cb31bb4c", 0x31, 0x8, 0x0, 0x0, r5}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x3, 0x3, r7, &(0x7f00000002c0)="34fdb32ca1288798293cbe9148f45bc41da102850ffdc4a3c1e630f99014c38d6b4c7fd16c96be3d52856832cfaab295b55dfe6349d79c895b8fbeb638bd9c8d984325c6823457ddb91a2330ad06964e306b7f287d7c01a4d528cdaeed8a60d149050624877ae65c19baf6048fd2beb22d251257754aa831f42bfa7f00794fc283a7f25429ed51e3c40515cc1d79579bf0295fb39db67f56cadd9adc4ebcd88cfd07c62b4845519fed64fa59da17db45556eaf4136c1fdcd185e8a1fb028d3ac012824a0309aba4333a57d281f1d767d4fbaeff1941999e77c0d99d34dac6d", 0xdf, 0x1a81, 0x0, 0x4, r8}]) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r9 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r9, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r0, 0x9, r9, 0xa) rt_sigqueueinfo(r0, 0x2, &(0x7f0000000000)={0x15, 0x2, 0xf245}) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x2b, 0x1, 0x3, 0x8, 0x0, 0x101, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200, 0x2, @perf_config_ext={0x0, 0x5}, 0x880, 0x1000, 0x4, 0x8, 0x8f, 0x0, 0x9beb, 0x0, 0xfffffffa, 0x0, 0xfffffffffffffff8}, r0, 0x5, 0xffffffffffffffff, 0x1) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) 08:54:32 executing program 0: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) 08:54:32 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe00000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0x7, &(0x7f00000007c0)=0x1, 0x4) shutdown(r1, 0x0) r4 = dup3(r0, r1, 0x0) r5 = accept$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000040)=0x1c) sendmmsg(r5, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000080)="e2e630f705c5568e42ad98ef42a454af5ce57a2e918cadfdb280cc035760bad350bc709e4addf8a3d31be7d39a3bed441681289e5bbd5f95f28f38d074915b4c8024ce269722479432d2bf8b4b77c2db4b806fd9ad4aae578d1650ba5ddfa6d6a33f3280e58a0dcc291759017ad027c9ce755e20f7ade23d86c7cc7634263b58fcdec8157de0d6c2884df6580e2a8b2449368365b7ffcb55e7d449d2c142017aafd9bcc20ffc1449c1ec8af2", 0xac}, {&(0x7f0000000140)="abb3464e2b3573a470b1d4d3725bd8ae9ec0d62de0497e075624d349460dcad508a6bdd2e4f2822e5be1e8e461e7fbb53733eea701178617ab54aacc271d798937d1eb", 0x43}, {&(0x7f00000001c0)="e327e4c6667c4d6715b50ff520845e0451ec2b10fe52ea16a467a97efcbd3f34055e523a2f68b53d3dd7e8a433eac3ccb41c8b6074a656052e0ba78f3a6c140b597bc9f2a5a617cc3a9b767e9d1673cc860947ddee5a8a162e01b7", 0x5b}, {&(0x7f0000000240)="4d57905f3354687a348f0b1d4a0aed68a69fac7f5a8f93d291d7f9f2b646baccf979b6bcbf00fb0cc758c07f445b55e1e1c5f8afc3d83e7a34337ab7d98d46e159c78624005ff7ba27480c1129271fd7c745dd4466cda03656242b1d465127abbe9f82324d0c5acc7f559910760ca5d59fcd785d0d36a13315ad55c5375dc14ecebb29b422e3904734d5748bbed4362abc1427c103a209f475bdfa77e63ffc6b5daf9d54e317202f89e3fd0f7060", 0xae}, {&(0x7f0000000300)="a6ac0b5ae71d39e1c92c7d9e", 0xc}], 0x5, &(0x7f00000003c0)=[{0x88, 0x114, 0x0, "388138e0330b72179b8b80dd6c8074e38bb31446b479ec6185b760901c66c484755784f9be78b27791e0498ab133378d5c5a5293a49e91e4b0f1af57eec8000d0ddae39e4347b413ae1ea1e1ec57bdd8e3bb792f851bf9334daa31da5c9729f291cd4372b65917d6725a8fdbe8cfa6034605"}, {0x68, 0x84, 0x3, "110feec58fc738fe5b6c797c0f1a56d31f82059e0be75caa97f88512f435d17c1e5b9336ca01c08584a89048ad4e5b65665c474f7d62dfeb6bc6cc4dafb5e3d40217683ce9adc11525d6ccaf91eb3d6fdae8"}, {0x90, 0x10e, 0xfff, "a9d7ecdbb6b8bf7427bffcbf7a5ac4e716cfa113833a26a8c3b6af873e804b1cbd2ebb9094ba77cb3d75fea3eb4496b58971e32c6495474127f6b218fef446f66c69c1cd687098c2e702edb6907279310b0a5d44843d0ead28700280d3959f75a6af06fe9a4d426b50721702a3e2d0dc01ada9d9dfa575b758e05b827c"}, {0x90, 0x1c7, 0x7, "b29c58fd385c7ddeca6570513b4d3581009ce19fbc8333dcf7c0c3a86c6b90ad9b251cc746da88ada9c409db436ebe4d531110bc55f249123e9731914ec4654fb0328d2880477b527d2247046d4f57712db407cfc2bd34cd4c8cc4fd738e224f364be2f3c33b08f77f9e52d3924b342a013161708ac0f4cb1fe0c000464b490e"}, {0xa0, 0x107, 0xffff, "11f3719b21691c4b9cb4698c4e54b7de58525e62d03eea7fae28ffc3cd5f15f8b99819b81802d82105155d216f2c25b64999755d378b62e87f02e46d4b652ec65c482c39e627814d7e0d847a0f277fa1f95cc4e8e7c7c7cae13c1314dc9202476e76e704744b1726ad978ceccd9a1745f1ddc551bd8520afc412142506a96d65b068270d453712af82321bf5"}, {0xa0, 0x101, 0x3, "f83cf14f28d16ddc71b557c35959aea833f7abe41ed062bc72287d245b160b2cf5cc358577640c71e4dcc32920fd79a2c35b6bf2fed4695494a2944838261831fb0c648841270aebb0529fc59f313dfcdaa92cc2977470fcad6d29656bb72fa03c49cd3457ed5031d4f5d2c26aa4a278cae2958a4af8fc030c4ce87659cde271e67f2a881f2f589c046dc22d5576"}], 0x350}}], 0x1, 0x4008000) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r5, 0xc0096616, &(0x7f0000000780)={0x1, [0x0]}) 08:54:32 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 34) 08:54:32 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) r1 = syz_open_dev$ttys(0xc, 0x2, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r7, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x0, 0x0}, 0x0) syz_io_uring_submit(r2, r6, &(0x7f0000000240)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd=r0, 0x756f, 0x0, 0x1}, 0x10001) r8 = socket$netlink(0x10, 0x3, 0x0) r9 = fcntl$dupfd(r8, 0x0, r8) sendmsg$nl_generic(r8, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="e00000001500000429bd7000ffdbdf251c00000035e5729b00272778e01caa006488c470b08960e4c64fca1d0836dddaac514209000000000000002ff90a00005a000d80c08e7cb84c0f61ad6d58a29d3bc263e8d713f053f33ea75b2736b21e49db5cb4f307aa23899f419840c633efcdc3e81c864857d8ac1248f78d66d76a1eee61d723d1b0ccbb133d61b4bb56f2546c035539e9784bbe86000006e5e15f7b60ebb7651b7ee68c0f8010964460b9c08e55cc298ce56757c0bd045c463fbb9640479638c3e730c6096f0c9cb10d103e02eaf56b34b8561bb04d8056000000"], 0xe0}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000) mmap(&(0x7f0000b20000/0x1000)=nil, 0x1000, 0x1000000, 0x8010, r1, 0x64196000) memfd_create(&(0x7f0000000000)='#\x94\x00', 0x0) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r9, 0x89f5, &(0x7f0000000380)={'sit0\x00', &(0x7f0000000300)={'ip6gre0\x00', 0x0, 0x29, 0x2, 0x4, 0x2, 0x0, @remote, @private2, 0x80, 0x80, 0x4e929c77, 0xa5}}) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) [ 2286.466571] FAULT_INJECTION: forcing a failure. [ 2286.466571] name failslab, interval 1, probability 0, space 0, times 0 [ 2286.468010] CPU: 0 PID: 11569 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2286.468845] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2286.469851] Call Trace: [ 2286.470164] dump_stack+0x107/0x167 [ 2286.470638] should_fail.cold+0x5/0xa [ 2286.471102] ? create_object.isra.0+0x3a/0xa20 [ 2286.471663] should_failslab+0x5/0x20 [ 2286.472110] kmem_cache_alloc+0x5b/0x310 [ 2286.472611] create_object.isra.0+0x3a/0xa20 [ 2286.473128] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2286.473729] __kmalloc+0x16e/0x390 [ 2286.474158] io_wq_create+0xeb/0xc00 [ 2286.474601] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2286.475214] ? io_import_iovec+0x1120/0x1120 [ 2286.475734] ? io_apoll_task_func+0x2d0/0x2d0 [ 2286.476247] ? __io_req_find_next+0x300/0x300 [ 2286.476775] ? do_raw_spin_lock+0x121/0x260 [ 2286.477279] ? rwlock_bug.part.0+0x90/0x90 [ 2286.477789] __io_uring_add_tctx_node+0x2c6/0x520 [ 2286.478372] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2286.478993] ? alloc_fd+0x2e7/0x670 [ 2286.479421] io_uring_setup+0x1fbb/0x2980 [ 2286.479909] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2286.480517] ? wait_for_completion_io+0x270/0x270 [ 2286.481092] do_syscall_64+0x33/0x40 [ 2286.481545] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2286.482147] RIP: 0033:0x7f1ba3a34b19 [ 2286.482597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2286.484964] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2286.485882] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2286.486753] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2286.487593] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2286.488446] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2286.489393] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2286.500019] FAULT_INJECTION: forcing a failure. [ 2286.500019] name failslab, interval 1, probability 0, space 0, times 0 [ 2286.502796] CPU: 1 PID: 11534 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2286.504418] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2286.506406] Call Trace: [ 2286.507041] dump_stack+0x107/0x167 [ 2286.507967] should_fail.cold+0x5/0xa [ 2286.508957] ? xas_alloc+0x336/0x440 [ 2286.509969] should_failslab+0x5/0x20 [ 2286.511007] kmem_cache_alloc+0x5b/0x310 [ 2286.512113] xas_alloc+0x336/0x440 [ 2286.513085] xas_create+0x34a/0x10d0 [ 2286.514105] ? kernel_text_address+0xf2/0x120 [ 2286.515334] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2286.516751] xas_store+0x8c/0x1c40 [ 2286.517739] __xa_store+0x164/0x2d0 [ 2286.518691] ? xa_delete_node+0x280/0x280 [ 2286.519790] ? trace_hardirqs_on+0x5b/0x180 [ 2286.520975] xa_store+0x31/0x50 [ 2286.521848] __io_uring_add_tctx_node+0x1cf/0x520 [ 2286.523096] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2286.524443] ? alloc_fd+0x2e7/0x670 [ 2286.525395] io_uring_setup+0x1fbb/0x2980 [ 2286.526474] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2286.527771] ? wait_for_completion_io+0x270/0x270 [ 2286.529045] do_syscall_64+0x33/0x40 [ 2286.529999] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2286.531319] RIP: 0033:0x7f0e6488ab19 [ 2286.532275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2286.537256] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2286.539348] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2286.541284] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2286.543210] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2286.545121] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2286.547065] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:54:32 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) connect$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x3, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x0, 0x2}, 0xe) 08:54:32 executing program 0: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x3, 0x3, &(0x7f0000000200)=[{&(0x7f0000000080)="4cee80ba3e8f20ce90a01cf851f9f92ed3d5b6189258eb38d7a4d2581f3ce43baee78928e6c701f4a67e4f0240c8e820db2bbd0cd9c26551fe53913328458415af32fea12779848d270b70dd7a76e4cf0269036b7da6478bc8fa3031dddbd3730e278b26dada49c6185a0d59", 0x6c, 0x2}, {&(0x7f0000000100)="2ac0bebc3173678bd340b92cb70e97491e1fdbbbe5634cf7fcb7ee93613a90e053aecccf2550bab54a552eeac962c1006dac25ce042e949f531d988c2202f52242531b67472460c9b005387428db651544c421e438de6f88a3690a22eb962162ff5db224c9cece21", 0x68, 0x6}, {&(0x7f0000000180)="78e1b385c2ff51e503dafaf7d37f71d8a81ecf422d30f6832a95c2ae4ec16cec85f430619bb537a6d0592f25fa1dc9b0fa093ff7fa38ba591ce3ee7ed5e45060628c", 0x42, 0x1c0000}], 0x1100000, &(0x7f0000000280)={[{@uni_xlate}, {@uni_xlateno}, {@utf8no}, {@numtail}, {@utf8no}, {@utf8}, {@shortname_lower}, {@utf8}, {@shortname_mixed}], [{@smackfshat={'smackfshat', 0x3d, '['}}, {@audit}, {@fsmagic={'fsmagic', 0x3d, 0xffffffff8bcbf7be}}, {@smackfsfloor={'smackfsfloor', 0x3d, '}$!'}}, {@appraise}, {@smackfshat}, {@uid_lt={'uid<', 0xee01}}]}) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:54:32 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000007) 08:54:32 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 42) 08:54:32 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 35) 08:54:32 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f000087c000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0) [ 2286.689646] FAULT_INJECTION: forcing a failure. [ 2286.689646] name failslab, interval 1, probability 0, space 0, times 0 [ 2286.692244] CPU: 0 PID: 11587 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2286.693758] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2286.695582] Call Trace: [ 2286.696159] dump_stack+0x107/0x167 [ 2286.696956] should_fail.cold+0x5/0xa [ 2286.697926] ? create_object.isra.0+0x3a/0xa20 [ 2286.697966] should_failslab+0x5/0x20 [ 2286.697985] kmem_cache_alloc+0x5b/0x310 [ 2286.698005] ? mark_held_locks+0x9e/0xe0 [ 2286.698028] create_object.isra.0+0x3a/0xa20 [ 2286.698044] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2286.698069] kmem_cache_alloc+0x159/0x310 [ 2286.698095] xas_alloc+0x336/0x440 [ 2286.698117] xas_create+0x34a/0x10d0 [ 2286.698146] ? kernel_text_address+0xf2/0x120 [ 2286.698167] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2286.698201] xas_store+0x8c/0x1c40 [ 2286.698236] __xa_store+0x164/0x2d0 [ 2286.698257] ? xa_delete_node+0x280/0x280 [ 2286.698284] ? trace_hardirqs_on+0x5b/0x180 [ 2286.698311] xa_store+0x31/0x50 [ 2286.698332] __io_uring_add_tctx_node+0x1cf/0x520 [ 2286.698353] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2286.698369] ? alloc_fd+0x2e7/0x670 [ 2286.698401] io_uring_setup+0x1fbb/0x2980 [ 2286.698429] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2286.698449] ? wait_for_completion_io+0x270/0x270 [ 2286.698498] do_syscall_64+0x33/0x40 [ 2286.698517] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2286.698530] RIP: 0033:0x7f0e6488ab19 [ 2286.698549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2286.698560] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2286.698580] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2286.698592] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2286.698603] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2286.698614] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2286.698625] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2286.707453] FAULT_INJECTION: forcing a failure. [ 2286.707453] name failslab, interval 1, probability 0, space 0, times 0 [ 2286.707477] CPU: 1 PID: 11590 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2286.707488] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2286.707494] Call Trace: [ 2286.707520] dump_stack+0x107/0x167 [ 2286.707542] should_fail.cold+0x5/0xa [ 2286.707565] ? io_wq_create+0x6ef/0xc00 [ 2286.707589] should_failslab+0x5/0x20 [ 2286.707611] kmem_cache_alloc_node_trace+0x59/0x340 [ 2286.707637] io_wq_create+0x6ef/0xc00 [ 2286.707673] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2286.707703] ? io_import_iovec+0x1120/0x1120 [ 2286.707729] ? io_apoll_task_func+0x2d0/0x2d0 [ 2286.707746] ? __io_req_find_next+0x300/0x300 [ 2286.707762] ? do_raw_spin_lock+0x121/0x260 [ 2286.707780] ? rwlock_bug.part.0+0x90/0x90 [ 2286.707805] __io_uring_add_tctx_node+0x2c6/0x520 [ 2286.707825] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2286.707842] ? alloc_fd+0x2e7/0x670 [ 2286.707872] io_uring_setup+0x1fbb/0x2980 [ 2286.707900] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2286.707921] ? wait_for_completion_io+0x270/0x270 [ 2286.707967] do_syscall_64+0x33/0x40 [ 2286.707986] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2286.707998] RIP: 0033:0x7f1ba3a34b19 [ 2286.708017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2286.708028] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2286.708048] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2286.708059] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2286.708071] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2286.708082] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2286.708093] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:54:46 executing program 4: ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7ff, 0xc3}}, './file0\x00'}) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60204, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x200000000000}, 0x0, 0x0, r0, 0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x0) getsockopt$SO_COOKIE(r2, 0x1, 0x39, &(0x7f0000000000), &(0x7f0000000040)=0x8) dup3(r1, r2, 0x0) [ 2300.702494] FAULT_INJECTION: forcing a failure. [ 2300.702494] name failslab, interval 1, probability 0, space 0, times 0 [ 2300.705083] CPU: 1 PID: 11600 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2300.706627] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2300.708493] Call Trace: [ 2300.709087] dump_stack+0x107/0x167 [ 2300.709904] should_fail.cold+0x5/0xa [ 2300.710767] ? xas_alloc+0x336/0x440 [ 2300.711606] should_failslab+0x5/0x20 [ 2300.712458] kmem_cache_alloc+0x5b/0x310 [ 2300.713370] xas_alloc+0x336/0x440 [ 2300.714167] xas_create+0x34a/0x10d0 [ 2300.715024] ? kernel_text_address+0xf2/0x120 [ 2300.716029] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2300.717201] xas_store+0x8c/0x1c40 [ 2300.718011] __xa_store+0x164/0x2d0 [ 2300.718833] ? xa_delete_node+0x280/0x280 [ 2300.719768] ? trace_hardirqs_on+0x5b/0x180 [ 2300.720738] xa_store+0x31/0x50 [ 2300.721482] __io_uring_add_tctx_node+0x1cf/0x520 [ 2300.722558] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2300.723733] ? alloc_fd+0x2e7/0x670 [ 2300.724569] io_uring_setup+0x1fbb/0x2980 [ 2300.725501] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2300.726685] ? wait_for_completion_io+0x270/0x270 [ 2300.727792] do_syscall_64+0x33/0x40 [ 2300.728650] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2300.729795] RIP: 0033:0x7f0e6488ab19 [ 2300.730656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2300.734981] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2300.736742] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2300.738391] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2300.740049] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2300.741691] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2300.743329] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2300.767453] FAULT_INJECTION: forcing a failure. [ 2300.767453] name failslab, interval 1, probability 0, space 0, times 0 [ 2300.770093] CPU: 1 PID: 11611 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2300.771653] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2300.773698] Call Trace: [ 2300.774309] dump_stack+0x107/0x167 [ 2300.775140] should_fail.cold+0x5/0xa [ 2300.776006] ? create_object.isra.0+0x3a/0xa20 [ 2300.777057] should_failslab+0x5/0x20 [ 2300.777917] kmem_cache_alloc+0x5b/0x310 [ 2300.779066] ? io_wq_create+0x114/0xc00 [ 2300.779984] create_object.isra.0+0x3a/0xa20 [ 2300.781196] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 08:54:46 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, r0) 08:54:46 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 43) 08:54:46 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000060) 08:54:46 executing program 5: sendmsg$IPVS_CMD_GET_INFO(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000006c0)={&(0x7f00000005c0)={0xf4, 0x0, 0x4, 0x70bd2a, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7ff}, @IPVS_CMD_ATTR_SERVICE={0x68, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x0, 0x1}}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x0, 0x8}}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x67}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x100}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@loopback}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x3}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x6b}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x70000}, @IPVS_CMD_ATTR_DAEMON={0x58, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'team_slave_0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x2f}}}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0xfe00}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e24}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x40000}, 0x90) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) shutdown(r0, 0x0) io_uring_enter(0xffffffffffffffff, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r1 = syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r5, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000500)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, r5, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e24, 0x8000, @mcast1, 0x4}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000180)="86c0601071b03aa8ea132b8d06df4c180f31cb0700a2b6d4e254ce01ad9af5ac38c81d8335c1227f4433ace5c3b9a993c0f66c0d578a33e47c95759326b9e58dd8852899edbd7e05a916b8e3b6d244bf00928f33343217e3ec2b9d7a97bb541e9334c01a0ea60706a38d977672ee", 0x6e}, {&(0x7f0000000300)="71b3e12c2e8e5cc5b870a6c2fdc8441e0fd95e6d04d46f6041cc688bcec795522469e65f48a46f6ed61ddce81ae169ec18001401ce0d684987a31d7a094e9646e8c1d5e00ce4b2cb5aab629928c4755b64d20eb80b652db9a66f4b50a34339a4bcc29cb13edc6f7b0b6f94ad80a916cb847aa84c5992e21e1cddba1f488cde9f336dafa987b92fb2abd5e50102040b1196f10366d9cddf9ac7cd1609c047eedae244d4727eb0fca9e434b1b515203228681d92dfd207f2f9e3dfc11f185b5d4df842b624643a4d4ab45fdbba57b2ccfcc0b38d1588d628cf8350cb", 0xdb}, {&(0x7f0000000400)="38b17a1d36a58425d956ed255eb92091afd78dc241e5704e6a5ea0b4bf003c002cc9794acd887d936b8815187920676cedaec7fc0ddc7ed2bbfee90a2df995a12303a7a99c35ff324ed6432c19bd575921749f138c60b583c334af7d9b6f7bfbebf0deade55fcac7b387244000d3aeed3491f4c9c2afd7ae65dadce247a27223d26967c464edbbe560900ad013c395ba1635f3f762e32544e004070c643c6acaa9798593c64040816a39d0526864", 0xae}], 0x3}, 0x0, 0x0, 0x1, {0x0, r6}}, 0x7ff) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r9, 0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x0, 0x0}, 0x0) dup3(r4, 0xffffffffffffffff, 0x80000) 08:54:46 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) sendmsg$NL80211_CMD_JOIN_OCB(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x5c, 0x0, 0x300, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x307}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x40}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x18}, @NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x3f}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2ed}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x6}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x339}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x9a8}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40}, 0x4000) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) r5 = signalfd(r4, &(0x7f00000002c0)={[0x100000001]}, 0x8) r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r6, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) perf_event_open$cgroup(&(0x7f0000000240)={0x5, 0x80, 0x0, 0x6, 0x3f, 0x80, 0x0, 0x10000, 0xa8102, 0x8, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x85, 0x2, @perf_config_ext={0xa6, 0x3}, 0x0, 0x9, 0x4, 0x4, 0x2, 0x5267, 0x19c6, 0x0, 0x7fff, 0x0, 0x40}, r5, 0xffffffffffffffff, r6, 0xb) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(0xffffffffffffffff, &(0x7f0000007280)={0x0, 0x0, &(0x7f0000007240)={&(0x7f0000006e80)={0x28, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x28}}, 0x8080) getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000300)={{{@in6=@empty, @in6=@remote}}, {{@in6=@local}, 0x0, @in6=@mcast1}}, &(0x7f0000000400)=0xe8) connect$packet(r4, &(0x7f0000000000)={0x11, 0xae, r7, 0x1, 0x4, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x14) 08:54:46 executing program 2: ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff) r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xee01, 0xffffffffffffffff}}, './file0\x00'}) ioctl$IOC_PR_REGISTER(r1, 0x401870c8, &(0x7f0000000080)={0x401, 0x4b1}) close(r0) 08:54:46 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 36) [ 2300.781229] kmem_cache_alloc_node_trace+0x16d/0x340 [ 2300.781256] io_wq_create+0x6ef/0xc00 [ 2300.781284] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2300.781304] ? io_import_iovec+0x1120/0x1120 [ 2300.781324] ? io_apoll_task_func+0x2d0/0x2d0 [ 2300.781341] ? __io_req_find_next+0x300/0x300 [ 2300.781357] ? do_raw_spin_lock+0x121/0x260 [ 2300.781374] ? rwlock_bug.part.0+0x90/0x90 [ 2300.781399] __io_uring_add_tctx_node+0x2c6/0x520 08:54:46 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1d012, r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r1, 0x0, r1) ioctl$BTRFS_IOC_GET_FEATURES(r1, 0x80189439, &(0x7f0000000000)) 08:54:46 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000300) [ 2300.781419] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2300.781436] ? alloc_fd+0x2e7/0x670 [ 2300.781466] io_uring_setup+0x1fbb/0x2980 [ 2300.781493] ? __do_sys_io_uring_enter+0x1890/0x1890 08:54:46 executing program 3: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r0, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) ioctl$VT_DISALLOCATE(r0, 0x5608) ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000000)={0x1, 0x1, {0x3a, 0x7, 0x7, 0x18, 0x7, 0xfff, 0x1, 0x6}}) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x200000b, 0xffffffffffffffff) [ 2300.781515] ? wait_for_completion_io+0x270/0x270 08:54:46 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 37) [ 2300.781560] do_syscall_64+0x33/0x40 [ 2300.781579] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2300.781593] RIP: 0033:0x7f1ba3a34b19 [ 2300.781611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2300.781621] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2300.781642] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 08:54:46 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x42) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2300.781653] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2300.781665] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2300.781676] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2300.781687] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2300.942506] FAULT_INJECTION: forcing a failure. [ 2300.942506] name failslab, interval 1, probability 0, space 0, times 0 08:54:46 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 44) [ 2300.942526] CPU: 0 PID: 11625 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2300.942536] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2300.942542] Call Trace: [ 2300.942566] dump_stack+0x107/0x167 [ 2300.942589] should_fail.cold+0x5/0xa [ 2300.942610] ? __io_uring_add_tctx_node+0x15c/0x520 [ 2300.942634] should_failslab+0x5/0x20 [ 2300.942653] kmem_cache_alloc_trace+0x55/0x320 [ 2300.942675] __io_uring_add_tctx_node+0x15c/0x520 [ 2300.942706] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2300.942722] ? alloc_fd+0x2e7/0x670 08:54:46 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 38) [ 2300.942750] io_uring_setup+0x1fbb/0x2980 [ 2300.942782] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2300.942802] ? wait_for_completion_io+0x270/0x270 08:54:46 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x3, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0xc0e70000) [ 2300.942848] do_syscall_64+0x33/0x40 [ 2300.942868] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2300.942880] RIP: 0033:0x7f1ba3a34b19 [ 2300.942902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 08:54:46 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000500) [ 2300.942912] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2300.942933] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 08:54:46 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x40000000000}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x141a42, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) lseek(r2, 0x7ff, 0x4) [ 2300.942943] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2300.942954] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 08:54:46 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 45) [ 2300.942965] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 08:54:46 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x3}}, './file0\x00'}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) r5 = getgid() ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r4, {0xee01, r5}}, './file0\x00'}) [ 2300.942975] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2301.050121] FAULT_INJECTION: forcing a failure. [ 2301.050121] name failslab, interval 1, probability 0, space 0, times 0 [ 2301.050142] CPU: 0 PID: 11640 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2301.050151] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2301.050163] Call Trace: [ 2301.050186] dump_stack+0x107/0x167 [ 2301.050204] should_fail.cold+0x5/0xa [ 2301.050223] ? create_object.isra.0+0x3a/0xa20 [ 2301.050243] should_failslab+0x5/0x20 [ 2301.050259] kmem_cache_alloc+0x5b/0x310 [ 2301.050277] ? mark_held_locks+0x9e/0xe0 [ 2301.050297] create_object.isra.0+0x3a/0xa20 [ 2301.050310] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2301.050331] kmem_cache_alloc+0x159/0x310 [ 2301.050353] xas_alloc+0x336/0x440 [ 2301.050372] xas_create+0x34a/0x10d0 [ 2301.050395] ? kernel_text_address+0xf2/0x120 [ 2301.050413] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2301.050431] xas_store+0x8c/0x1c40 [ 2301.050460] __xa_store+0x164/0x2d0 [ 2301.050478] ? xa_delete_node+0x280/0x280 [ 2301.050501] ? trace_hardirqs_on+0x5b/0x180 [ 2301.050523] xa_store+0x31/0x50 [ 2301.050542] __io_uring_add_tctx_node+0x1cf/0x520 [ 2301.050559] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2301.050573] ? alloc_fd+0x2e7/0x670 [ 2301.050599] io_uring_setup+0x1fbb/0x2980 [ 2301.050623] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2301.050666] do_syscall_64+0x33/0x40 [ 2301.050695] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2301.050707] RIP: 0033:0x7f0e6488ab19 [ 2301.050723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2301.050732] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2301.050750] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2301.050761] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2301.050772] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2301.050781] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2301.050790] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2301.116737] FAULT_INJECTION: forcing a failure. [ 2301.116737] name failslab, interval 1, probability 0, space 0, times 0 [ 2301.116758] CPU: 0 PID: 11645 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2301.116767] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2301.116772] Call Trace: [ 2301.116793] dump_stack+0x107/0x167 [ 2301.116811] should_fail.cold+0x5/0xa [ 2301.116829] ? create_object.isra.0+0x3a/0xa20 [ 2301.116848] should_failslab+0x5/0x20 [ 2301.116864] kmem_cache_alloc+0x5b/0x310 [ 2301.116884] create_object.isra.0+0x3a/0xa20 [ 2301.116897] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2301.116917] kmem_cache_alloc_trace+0x151/0x320 08:54:46 executing program 2: sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x2, 0x7, 0x3, 0x0, 0x0, {0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x10) r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) [ 2301.116939] __io_uring_add_tctx_node+0x15c/0x520 [ 2301.116954] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2301.116968] ? alloc_fd+0x2e7/0x670 [ 2301.116992] io_uring_setup+0x1fbb/0x2980 [ 2301.117014] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2301.117032] ? wait_for_completion_io+0x270/0x270 [ 2301.117069] do_syscall_64+0x33/0x40 [ 2301.117084] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2301.117094] RIP: 0033:0x7f1ba3a34b19 [ 2301.117110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2301.117119] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2301.117137] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2301.117146] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2301.117155] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2301.117164] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2301.117172] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2301.173331] FAULT_INJECTION: forcing a failure. [ 2301.173331] name failslab, interval 1, probability 0, space 0, times 0 [ 2301.245689] CPU: 0 PID: 11653 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2301.245699] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2301.245705] Call Trace: [ 2301.245730] dump_stack+0x107/0x167 [ 2301.245749] should_fail.cold+0x5/0xa [ 2301.245769] ? xas_alloc+0x336/0x440 [ 2301.245791] should_failslab+0x5/0x20 [ 2301.245808] kmem_cache_alloc+0x5b/0x310 [ 2301.245831] xas_alloc+0x336/0x440 [ 2301.245852] xas_create+0x34a/0x10d0 [ 2301.245878] ? kernel_text_address+0xf2/0x120 [ 2301.245899] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2301.245919] xas_store+0x8c/0x1c40 [ 2301.245951] __xa_store+0x164/0x2d0 [ 2301.245970] ? xa_delete_node+0x280/0x280 [ 2301.245996] ? trace_hardirqs_on+0x5b/0x180 [ 2301.246021] xa_store+0x31/0x50 [ 2301.246041] __io_uring_add_tctx_node+0x1cf/0x520 [ 2301.246060] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2301.246075] ? alloc_fd+0x2e7/0x670 [ 2301.246104] io_uring_setup+0x1fbb/0x2980 [ 2301.246131] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2301.246149] ? wait_for_completion_io+0x270/0x270 [ 2301.246195] do_syscall_64+0x33/0x40 [ 2301.246212] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2301.246224] RIP: 0033:0x7f0e6488ab19 [ 2301.246243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2301.246252] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2301.246273] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2301.246283] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2301.246294] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2301.246304] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2301.246313] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:55:02 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 46) 08:55:02 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xa004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r2, {0xee01, 0xee00}}, './file0\x00'}) r4 = clone3(&(0x7f0000000300)={0x91040000, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)=0x0, {0x2}, &(0x7f0000000140)=""/128, 0x80, &(0x7f00000001c0)=""/233, &(0x7f00000002c0)=[0x0], 0x1, {r2}}, 0x58) sendmsg$nl_generic(r3, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, 0x39, 0x800, 0x70bd29, 0x25dfdbfe, {0x4}, [@typed={0x8, 0x1e, 0x0, 0x0, @pid=r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x10) perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x9, 0x9, 0xb, 0x80, 0x0, 0x80000000, 0x1, 0x4, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x81, 0x4, @perf_bp={&(0x7f0000000440), 0x2}, 0x4, 0x2, 0x7fffffff, 0x9, 0x3ff, 0x3a, 0xfffa, 0x0, 0x2, 0x0, 0x3ff}, r5, 0xd, 0xffffffffffffffff, 0x2) 08:55:02 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000600) 08:55:02 executing program 2: memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) r0 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r0, 0x0, r0) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x2010, r0, 0x0) 08:55:02 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 39) [ 2316.990206] FAULT_INJECTION: forcing a failure. [ 2316.990206] name failslab, interval 1, probability 0, space 0, times 0 [ 2316.994743] CPU: 1 PID: 11673 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2316.996218] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2316.997953] Call Trace: [ 2316.998507] dump_stack+0x107/0x167 [ 2316.999280] should_fail.cold+0x5/0xa [ 2317.000078] ? xas_alloc+0x336/0x440 [ 2317.000865] should_failslab+0x5/0x20 [ 2317.001662] kmem_cache_alloc+0x5b/0x310 [ 2317.002513] ? stack_trace_consume_entry+0x160/0x160 [ 2317.003600] xas_alloc+0x336/0x440 [ 2317.004377] xas_create+0x34a/0x10d0 [ 2317.005212] ? kernel_text_address+0xf2/0x120 [ 2317.006182] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2317.007328] xas_store+0x8c/0x1c40 [ 2317.008088] __xa_store+0x164/0x2d0 [ 2317.008849] ? xa_delete_node+0x280/0x280 [ 2317.009725] ? trace_hardirqs_on+0x5b/0x180 [ 2317.010632] xa_store+0x31/0x50 [ 2317.011334] __io_uring_add_tctx_node+0x1cf/0x520 [ 2317.012356] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2317.013484] ? alloc_fd+0x2e7/0x670 [ 2317.014260] io_uring_setup+0x1fbb/0x2980 [ 2317.015137] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2317.016215] ? wait_for_completion_io+0x270/0x270 [ 2317.017293] do_syscall_64+0x33/0x40 [ 2317.018072] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2317.019145] RIP: 0033:0x7f1ba3a34b19 [ 2317.019962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2317.023879] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2317.025489] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2317.026980] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2317.028509] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2317.030021] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2317.031520] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:55:02 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) r5 = syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r8, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x0, 0x0}, 0x0) syz_io_uring_submit(r2, r7, &(0x7f0000000000)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r1, 0x0, &(0x7f00000001c0)="bf6a86b1cd44598dc52b345d58b6b3da9f2187a0979a337d4458bad4", 0x1c, 0x140, 0x1, {0x0, r9}}, 0x8) shutdown(r1, 0x0) pwrite64(r8, &(0x7f0000000080)="827bf458d91819a169f7e918b9ee50496da2fd64f37ffba42a6e459d1aeffcb32bd1ad9bb907d78624b36a6dad1d61d43a71d01d56d07264ef41ec0602bd4ec2cc78f2355846494b4166cec8ecc808735fdc2f7eb591d213cf3cb3c699df58a22935da61daf09371273b032f45b4b84632e5d089c9d1c0f22f942ea05cef1b23c93a08d4c78ec02df8b9dc901c770a5b05a19d1ff05d4192ab84bf1b9ba5bb9b81a51c9c683d296cbf8925f0c2b8fcfd00e460c2674371e0534b868bb7896978d9e531b62ae3", 0xc6, 0x1d1) dup3(r0, r1, 0x0) 08:55:02 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x5, 0xffffffffffffffff) 08:55:02 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x0, 0xaa, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp, 0x1ca2, 0x80000000000, 0xa4, 0x0, 0x1, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0)={0x1f, 0x6, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3, 0x1}, 0xe) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:55:02 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) io_uring_enter(r2, 0x14a9, 0x5fc7, 0x3, &(0x7f0000000040)={[0x37]}, 0x8) dup3(r0, r1, 0x0) 08:55:02 executing program 2: r0 = syz_io_uring_complete(0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00'}) r1 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000e76000/0x4000)=nil, 0x4000, 0x0, 0x1f012, r1, 0x0) r2 = signalfd(r0, &(0x7f0000000200)={[0x6]}, 0x8) ioctl$SNDRV_TIMER_IOCTL_STATUS32(r2, 0x80585414, &(0x7f0000000240)) pwritev2(r1, &(0x7f0000000000)=[{&(0x7f0000000080)="b43b34e98947a26a155bf7c5a335e7939bb9c8187ddea34b80bb329c7bc551a0c14fdd4bdbf5a75d483d941908462a98b65ac2ebd4cbf99bb78a7afbe50f355794bfe77bba5ed0b08e24286f4a68c4dc2fe37786aa0c8d614b0db77484e5ceaa0c23bc1663d2c6db2510df5af731fe5cfc", 0x71}, {&(0x7f0000000100)="d73eb2d2e63e9d27b69a2901fd8b2350fccc1069df387b795c9250468e8e5925861ea41f483e83863c1e6271837c8c62be9c0aa690e28499fd9f984d547f31f55adc86f11e32ed0fd92750be55f15e9fbeccad97ed351bd37885f565bea905a983af5ba2ba3d435f20ea8a18a073867aecdaca1a57035a3fc05d88ccc306cbc2b2940c0c52cc7dad432bf5ee9625d76936ca5ca06aad4349b35e06d69354b18b11274457dcf73b3d5c2368bc3756b30cff", 0xb1}], 0x2, 0x780e, 0x9, 0x14) 08:55:02 executing program 3: syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0) ioctl$FS_IOC_GETVERSION(r2, 0x80087601, &(0x7f0000000000)) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) 08:55:02 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000700) [ 2317.192091] FAULT_INJECTION: forcing a failure. [ 2317.192091] name failslab, interval 1, probability 0, space 0, times 0 [ 2317.194569] CPU: 1 PID: 11680 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2317.196059] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2317.197822] Call Trace: [ 2317.198379] dump_stack+0x107/0x167 [ 2317.199144] should_fail.cold+0x5/0xa [ 2317.199961] ? create_object.isra.0+0x3a/0xa20 [ 2317.200919] should_failslab+0x5/0x20 08:55:02 executing program 5: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x6b19, &(0x7f0000000240)={0x0, 0x3ee8, 0x20, 0x0, 0x125}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f00000002c0), &(0x7f0000000300)=0x0) r5 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000340), 0x2, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r4, &(0x7f0000000380)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x1) r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r8 = openat$incfs(r7, &(0x7f00000003c0)='.log\x00', 0x10b000, 0x2) write$P9_RREADLINK(r8, &(0x7f0000000400)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10) recvfrom$unix(r7, &(0x7f0000000140)=""/225, 0xe1, 0x20010023, 0x0, 0x0) fallocate(r7, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r0, 0x9, r7, 0xa) r9 = perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc580, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x9088, 0x0, 0x0, 0x0, 0xff, 0x9, 0x5}, r0, 0x0, 0xffffffffffffffff, 0x8) r10 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r10, 0x0) dup3(r9, r10, 0x0) [ 2317.201731] kmem_cache_alloc+0x5b/0x310 [ 2317.202854] ? mark_held_locks+0x9e/0xe0 [ 2317.203729] create_object.isra.0+0x3a/0xa20 [ 2317.204645] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2317.205711] kmem_cache_alloc+0x159/0x310 [ 2317.206592] xas_alloc+0x336/0x440 [ 2317.207351] xas_create+0x34a/0x10d0 [ 2317.208139] ? kernel_text_address+0xf2/0x120 [ 2317.209104] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2317.210199] xas_store+0x8c/0x1c40 [ 2317.210954] __xa_store+0x164/0x2d0 [ 2317.211801] ? xa_delete_node+0x280/0x280 [ 2317.212684] ? trace_hardirqs_on+0x5b/0x180 [ 2317.213590] xa_store+0x31/0x50 [ 2317.214280] __io_uring_add_tctx_node+0x1cf/0x520 [ 2317.215303] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2317.216399] ? alloc_fd+0x2e7/0x670 [ 2317.217169] io_uring_setup+0x1fbb/0x2980 08:55:02 executing program 2: mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, 0xffffffffffffffff, 0x0) [ 2317.218044] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2317.219331] ? wait_for_completion_io+0x270/0x270 [ 2317.220366] do_syscall_64+0x33/0x40 [ 2317.221142] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2317.222207] RIP: 0033:0x7f0e6488ab19 [ 2317.222981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2317.226826] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2317.228425] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 08:55:02 executing program 3: ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000000)=0x1) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) [ 2317.229917] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2317.231531] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2317.233014] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2317.234494] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:55:02 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:55:17 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 47) 08:55:17 executing program 3: r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000100), 0x200042, 0x0) sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="000049407d2dca61fb8d2a037c2c3700000007"], 0x20}, 0x1, 0x0, 0x0, 0x200448c0}, 0x10) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, r1) 08:55:17 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0xe1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'ip6erspan0\x00'}) dup3(r0, r1, 0x0) bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x200, @any, 0x80, 0x2}, 0xe) 08:55:17 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8002000) 08:55:17 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 40) 08:55:17 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000080)={0x0, 0x0, 0x6, 0x0, '\x00', [{0xb5f5, 0x9, 0x9, 0x4, 0x3e1, 0x8001}, {0x3, 0x80, 0x8, 0x7, 0x10000, 0xffffffffffffd534}], ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) 08:55:17 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) getsockopt$bt_BT_POWER(r3, 0x112, 0x9, &(0x7f0000000000)=0x1, &(0x7f0000000040)=0x1) 08:55:17 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x7, 0x1, 0xe1, 0xff, 0x0, 0x0, 0x24000, 0x6, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x7, 0x4, @perf_bp, 0x8040, 0x5, 0x953, 0x8, 0x20, 0x1000, 0x9, 0x0, 0x7, 0x0, 0x5}, 0x0, 0xa, r0, 0x2) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) [ 2332.039271] FAULT_INJECTION: forcing a failure. [ 2332.039271] name failslab, interval 1, probability 0, space 0, times 0 [ 2332.041671] CPU: 0 PID: 11728 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2332.043087] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2332.044804] Call Trace: [ 2332.045350] dump_stack+0x107/0x167 [ 2332.046108] should_fail.cold+0x5/0xa [ 2332.046892] ? create_object.isra.0+0x3a/0xa20 [ 2332.047833] should_failslab+0x5/0x20 [ 2332.048610] kmem_cache_alloc+0x5b/0x310 [ 2332.049448] create_object.isra.0+0x3a/0xa20 [ 2332.050342] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2332.051385] kmem_cache_alloc+0x159/0x310 [ 2332.052245] xas_alloc+0x336/0x440 [ 2332.052971] xas_create+0x34a/0x10d0 [ 2332.053750] ? kernel_text_address+0xf2/0x120 [ 2332.054670] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2332.055754] xas_store+0x8c/0x1c40 [ 2332.056515] __xa_store+0x164/0x2d0 [ 2332.057263] ? xa_delete_node+0x280/0x280 [ 2332.058122] ? trace_hardirqs_on+0x5b/0x180 [ 2332.059018] xa_store+0x31/0x50 [ 2332.059698] __io_uring_add_tctx_node+0x1cf/0x520 [ 2332.060696] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2332.061768] ? alloc_fd+0x2e7/0x670 [ 2332.062528] io_uring_setup+0x1fbb/0x2980 [ 2332.063398] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2332.064453] ? wait_for_completion_io+0x270/0x270 [ 2332.065479] do_syscall_64+0x33/0x40 [ 2332.066251] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2332.067307] RIP: 0033:0x7f1ba3a34b19 [ 2332.068084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2332.071874] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2332.073438] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2332.074902] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2332.076374] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2332.077832] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2332.079304] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2332.123111] FAULT_INJECTION: forcing a failure. [ 2332.123111] name failslab, interval 1, probability 0, space 0, times 0 [ 2332.125556] CPU: 1 PID: 11738 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2332.126991] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2332.128739] Call Trace: [ 2332.129302] dump_stack+0x107/0x167 [ 2332.130050] should_fail.cold+0x5/0xa [ 2332.130842] ? xas_alloc+0x336/0x440 [ 2332.131617] should_failslab+0x5/0x20 [ 2332.132429] kmem_cache_alloc+0x5b/0x310 [ 2332.133303] xas_alloc+0x336/0x440 [ 2332.134033] xas_create+0x34a/0x10d0 [ 2332.134826] ? kernel_text_address+0xf2/0x120 [ 2332.135793] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2332.136887] xas_store+0x8c/0x1c40 [ 2332.137664] __xa_store+0x164/0x2d0 [ 2332.138426] ? xa_delete_node+0x280/0x280 [ 2332.139291] ? trace_hardirqs_on+0x5b/0x180 [ 2332.140216] xa_store+0x31/0x50 [ 2332.140898] __io_uring_add_tctx_node+0x1cf/0x520 [ 2332.141907] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2332.142988] ? alloc_fd+0x2e7/0x670 [ 2332.143760] io_uring_setup+0x1fbb/0x2980 [ 2332.144662] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2332.145729] ? wait_for_completion_io+0x270/0x270 [ 2332.146765] do_syscall_64+0x33/0x40 [ 2332.147554] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2332.148625] RIP: 0033:0x7f0e6488ab19 [ 2332.149422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2332.153249] RSP: 002b:00007f0e61ddf108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2332.154833] RAX: ffffffffffffffda RBX: 00007f0e6499e020 RCX: 00007f0e6488ab19 [ 2332.156332] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2332.157815] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2332.159305] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2332.160783] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:55:17 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x1) ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x80049367, &(0x7f0000000000)) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x0) bind$bt_l2cap(r2, &(0x7f0000000040)={0x1f, 0x7, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x7, 0x1}, 0xe) dup3(r0, r2, 0x0) 08:55:17 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1402}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000380)=ANY=[@ANYBLOB="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"]) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:55:17 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8004000) 08:55:17 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 41) 08:55:17 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000000)={0x0, 0x4, 0x8000, 0x9}) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) syz_io_uring_setup(0x7474, &(0x7f0000000140)={0x0, 0x9531, 0x28, 0x0, 0x13a}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000a49000/0x2000)=nil, &(0x7f0000000480), &(0x7f00000004c0)=0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/module/pcmcia_core', 0x20041, 0x2) syz_io_uring_submit(0x0, r3, &(0x7f00000005c0)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r4, 0x0, &(0x7f0000000540)="df67edac618d7b4f6c91ef0cf4b0d93cdf0cad151ad67e3207fe2ba4527adb9a0ad6e5c502c42cadff1f996495a94eeef00114479636ab1dfdefde47eaa0190cc0eb0817312c", 0x46, 0x4000001, 0x1}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r5, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r2, 0x9, r5, 0xa) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) getsockname(0xffffffffffffffff, &(0x7f0000000600)=@nfc_llcp, &(0x7f0000000680)=0x80) r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r7, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r6, 0x9, r7, 0xa) sendmsg$nl_generic(r0, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="580200002200000828bd7000fedbdf250600000008002700ac1414aa7100818008006600", @ANYRES32=r2, @ANYBLOB="14003900fe88000000000000e1c76a0cbd0015120fcf26cb81d6b56ac5a303bf1ff5d94ad279c117146530376d2ccafb21aa04bcf6793a9cc0bd1fac3f6dfc3f73081db6ce2cf238c6a6681ed9bb0d5c5e1545bbeaeecc685d5108000000ce00578008003c00", @ANYRES32=0xee00, @ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="16002b803bbba60b6828286b975826aa7f7d040051000000ca364c546c21d0dfa359dd1708c056d49eae2f5de83518691643b31fbd440aa0cde46227a65c791254f8b766f51242da69e65751d43c5883eb3ba684bf171c051c46828ac10ebde41d046e0edcc0d57908001800", @ANYRES32=r6, @ANYBLOB], 0x258}, 0x1, 0x0, 0x0, 0x20008080}, 0x20000040) r8 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r8, 0x0) [ 2332.295262] FAULT_INJECTION: forcing a failure. [ 2332.295262] name failslab, interval 1, probability 0, space 0, times 0 [ 2332.298262] CPU: 0 PID: 11757 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2332.300061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2332.302185] Call Trace: [ 2332.302879] dump_stack+0x107/0x167 [ 2332.303645] should_fail.cold+0x5/0xa [ 2332.304808] ? create_object.isra.0+0x3a/0xa20 [ 2332.305984] should_failslab+0x5/0x20 [ 2332.306955] kmem_cache_alloc+0x5b/0x310 [ 2332.308025] create_object.isra.0+0x3a/0xa20 [ 2332.309085] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2332.310252] kmem_cache_alloc+0x159/0x310 [ 2332.311191] xas_alloc+0x336/0x440 [ 2332.312016] xas_create+0x34a/0x10d0 [ 2332.312864] ? kernel_text_address+0xf2/0x120 [ 2332.313866] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2332.315039] xas_store+0x8c/0x1c40 [ 2332.315861] __xa_store+0x164/0x2d0 [ 2332.316681] ? xa_delete_node+0x280/0x280 [ 2332.317613] ? trace_hardirqs_on+0x5b/0x180 [ 2332.318584] xa_store+0x31/0x50 [ 2332.319328] __io_uring_add_tctx_node+0x1cf/0x520 [ 2332.320417] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2332.321587] ? alloc_fd+0x2e7/0x670 [ 2332.322422] io_uring_setup+0x1fbb/0x2980 [ 2332.323356] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2332.324501] ? wait_for_completion_io+0x270/0x270 [ 2332.325615] do_syscall_64+0x33/0x40 [ 2332.326448] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2332.327596] RIP: 0033:0x7f1ba3a34b19 [ 2332.328445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2332.332570] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2332.334284] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2332.335902] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2332.337508] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2332.339119] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2332.340738] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:55:32 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 48) 08:55:32 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 42) 08:55:32 executing program 3: getresgid(&(0x7f00000010c0), &(0x7f0000001100)=0x0, &(0x7f0000000280)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r0, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) setfsgid(r0) r1 = pkey_alloc(0x0, 0x0) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, r1) pkey_mprotect(&(0x7f0000ff9000/0x3000)=nil, 0x3000, 0x1000000, 0xffffffffffffffff) setfsgid(r0) 08:55:32 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x4c, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x100}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x1}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x400}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x20}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) 08:55:32 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81240, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x3, 0x110, r2, 0x0) syz_io_uring_setup(0x4592, &(0x7f0000000000)={0x0, 0xff4f, 0x4, 0x3, 0x291, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) r5 = openat$cgroup_ro(r1, &(0x7f00000001c0)='cgroup.stat\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0xa, 0x1010, r5, 0x8000000) syz_io_uring_submit(r3, r4, &(0x7f0000000140)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f0000000100)}, 0xae) 08:55:32 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0xfc, 0xfe, 0x0, 0x0, 0x0, 0x5e, 0x10080, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x7ff, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x40}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r3 = socket$inet6_udp(0xa, 0x2, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000180)=ANY=[@ANYBLOB="14df2501cbc7ef712b6a537c4a9fc9a4650646bbb4efdec1f8c0f16e1cf1435031421a3168aa4f826fa2562f4e1b1ca91b28012190352844b6a1bb00"/77], 0x14}}, 0x0) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0xf7ffffff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4}, 0x1c) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x5, 0xffffffffffffffff, 0x0) r5 = dup(0xffffffffffffffff) io_uring_enter(r5, 0x662e, 0x1e62, 0x3, &(0x7f0000000480), 0x8) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x0) sendmmsg$inet6(r3, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x1, 0x0) r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r6, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x40, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r2, 0xa, r6, 0x2) perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x1, 0x3, 0x8, 0x0, 0x0, 0x2, 0x40000, 0x3, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0x8, 0x7fff}, 0x4020, 0x4, 0x5, 0x4, 0x9, 0x10001, 0x4, 0x0, 0xfffffff8, 0x0, 0x10004}, r2, 0x6, r0, 0x2) dup3(r0, r1, 0x0) 08:55:32 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8006000) 08:55:32 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r1, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r2 = syz_open_dev$sg(0x0, 0x0, 0x2001) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f00000004c0)={0x0, 0x0, {0x0, @usage, 0x0}, {0x0, @struct}, {0x0, @struct}}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f00000008c0)={r3, 0x5, 0x80000001}) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000000000)={r3, 0x8000, 0xb6, 0x1}) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) dup3(r0, r4, 0x0) [ 2347.038849] FAULT_INJECTION: forcing a failure. [ 2347.038849] name failslab, interval 1, probability 0, space 0, times 0 [ 2347.041302] CPU: 1 PID: 11779 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2347.042745] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2347.044474] Call Trace: [ 2347.045025] dump_stack+0x107/0x167 [ 2347.045786] should_fail.cold+0x5/0xa [ 2347.046578] ? create_object.isra.0+0x3a/0xa20 [ 2347.047529] should_failslab+0x5/0x20 [ 2347.048352] kmem_cache_alloc+0x5b/0x310 [ 2347.049195] ? mark_held_locks+0x9e/0xe0 [ 2347.050042] create_object.isra.0+0x3a/0xa20 [ 2347.050951] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2347.052017] kmem_cache_alloc+0x159/0x310 [ 2347.052904] xas_alloc+0x336/0x440 [ 2347.053648] xas_create+0x34a/0x10d0 [ 2347.054433] ? kernel_text_address+0xf2/0x120 [ 2347.055372] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2347.056501] xas_store+0x8c/0x1c40 [ 2347.057262] __xa_store+0x164/0x2d0 [ 2347.058024] ? xa_delete_node+0x280/0x280 [ 2347.058895] ? trace_hardirqs_on+0x5b/0x180 [ 2347.059803] xa_store+0x31/0x50 [ 2347.060500] __io_uring_add_tctx_node+0x1cf/0x520 [ 2347.061512] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2347.062597] ? alloc_fd+0x2e7/0x670 [ 2347.063365] io_uring_setup+0x1fbb/0x2980 [ 2347.064238] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2347.065304] ? wait_for_completion_io+0x270/0x270 [ 2347.066335] do_syscall_64+0x33/0x40 [ 2347.067113] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2347.068183] RIP: 0033:0x7f0e6488ab19 [ 2347.068968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2347.072799] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2347.074380] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2347.075864] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2347.077360] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2347.078842] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2347.080331] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2347.084491] FAULT_INJECTION: forcing a failure. [ 2347.084491] name failslab, interval 1, probability 0, space 0, times 0 [ 2347.086893] CPU: 1 PID: 11784 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2347.088339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2347.090064] Call Trace: [ 2347.090614] dump_stack+0x107/0x167 [ 2347.091381] should_fail.cold+0x5/0xa [ 2347.092176] ? create_object.isra.0+0x3a/0xa20 [ 2347.093141] should_failslab+0x5/0x20 [ 2347.093936] kmem_cache_alloc+0x5b/0x310 [ 2347.094782] ? mark_held_locks+0x9e/0xe0 [ 2347.095626] create_object.isra.0+0x3a/0xa20 [ 2347.096551] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2347.097619] kmem_cache_alloc+0x159/0x310 [ 2347.098488] xas_alloc+0x336/0x440 [ 2347.099231] xas_create+0x34a/0x10d0 [ 2347.100014] ? kernel_text_address+0xf2/0x120 [ 2347.100959] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2347.102050] xas_store+0x8c/0x1c40 [ 2347.102804] __xa_store+0x164/0x2d0 [ 2347.103572] ? xa_delete_node+0x280/0x280 [ 2347.104450] ? trace_hardirqs_on+0x5b/0x180 [ 2347.105359] xa_store+0x31/0x50 [ 2347.106050] __io_uring_add_tctx_node+0x1cf/0x520 [ 2347.107054] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2347.108141] ? alloc_fd+0x2e7/0x670 [ 2347.108924] io_uring_setup+0x1fbb/0x2980 [ 2347.109792] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2347.110858] ? wait_for_completion_io+0x270/0x270 [ 2347.111890] do_syscall_64+0x33/0x40 [ 2347.112684] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2347.113750] RIP: 0033:0x7f1ba3a34b19 [ 2347.114531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2347.118396] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2347.119988] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2347.121488] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2347.122988] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2347.124491] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2347.125980] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:55:48 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) bind$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x5, @none, 0x5}, 0xe) dup3(r0, r1, 0x0) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x1, @remote, 0x80}, 0x1c) 08:55:48 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 49) [ 2362.549468] FAULT_INJECTION: forcing a failure. [ 2362.549468] name failslab, interval 1, probability 0, space 0, times 0 [ 2362.552441] CPU: 1 PID: 11799 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2362.554253] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2362.556394] Call Trace: [ 2362.557097] dump_stack+0x107/0x167 [ 2362.558033] should_fail.cold+0x5/0xa [ 2362.559023] ? xas_alloc+0x336/0x440 [ 2362.559979] should_failslab+0x5/0x20 [ 2362.560973] kmem_cache_alloc+0x5b/0x310 [ 2362.562016] xas_alloc+0x336/0x440 [ 2362.562939] xas_create+0x34a/0x10d0 [ 2362.563901] ? kernel_text_address+0xf2/0x120 [ 2362.565075] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2362.566416] xas_store+0x8c/0x1c40 [ 2362.567354] __xa_store+0x164/0x2d0 [ 2362.568290] ? xa_delete_node+0x280/0x280 [ 2362.569381] ? trace_hardirqs_on+0x5b/0x180 [ 2362.570503] xa_store+0x31/0x50 [ 2362.571359] __io_uring_add_tctx_node+0x1cf/0x520 [ 2362.572605] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2362.573962] ? alloc_fd+0x2e7/0x670 [ 2362.574905] io_uring_setup+0x1fbb/0x2980 [ 2362.575972] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2362.577316] do_syscall_64+0x33/0x40 [ 2362.578268] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2362.579562] RIP: 0033:0x7f0e6488ab19 [ 2362.580517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2362.585195] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2362.587139] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2362.588971] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2362.590848] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2362.592978] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2362.595098] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2362.625612] FAULT_INJECTION: forcing a failure. [ 2362.625612] name failslab, interval 1, probability 0, space 0, times 0 [ 2362.628083] CPU: 0 PID: 11812 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2362.629560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2362.631322] Call Trace: [ 2362.631881] dump_stack+0x107/0x167 [ 2362.632650] should_fail.cold+0x5/0xa [ 2362.633463] ? xas_alloc+0x336/0x440 [ 2362.634258] should_failslab+0x5/0x20 [ 2362.635060] kmem_cache_alloc+0x5b/0x310 [ 2362.635922] xas_alloc+0x336/0x440 [ 2362.636674] xas_create+0x34a/0x10d0 [ 2362.637477] ? kernel_text_address+0xf2/0x120 [ 2362.638426] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2362.639539] xas_store+0x8c/0x1c40 [ 2362.640302] __xa_store+0x164/0x2d0 [ 2362.641082] ? xa_delete_node+0x280/0x280 [ 2362.641965] ? trace_hardirqs_on+0x5b/0x180 [ 2362.642884] xa_store+0x31/0x50 [ 2362.643588] __io_uring_add_tctx_node+0x1cf/0x520 [ 2362.644606] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2362.645727] ? alloc_fd+0x2e7/0x670 [ 2362.646507] io_uring_setup+0x1fbb/0x2980 [ 2362.647394] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2362.648472] ? wait_for_completion_io+0x270/0x270 [ 2362.649525] do_syscall_64+0x33/0x40 [ 2362.650316] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2362.651395] RIP: 0033:0x7f1ba3a34b19 [ 2362.652177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2362.656098] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2362.657732] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2362.659255] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2362.660757] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2362.662268] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2362.663770] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:55:48 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xb3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x2, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:55:48 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x3) pkey_free(r0) 08:55:48 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x10000000) 08:55:48 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x10000, 0x40) r2 = syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff) sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000005c0), 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYRES16=r2, @ANYBLOB="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"], 0x100}, 0x1, 0x0, 0x0, 0x4804}, 0x44) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000004c0)={0x50, r2, 0x100, 0x0, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5}]}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@empty}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2f}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xcd}]}, 0x50}, 0x1, 0x0, 0x0, 0x800}, 0x4000) sendmsg$IPVS_CMD_ZERO(r1, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0xc0, r2, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x38, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e21}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x80000001}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@remote}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6}]}, @IPVS_CMD_ATTR_SERVICE={0x48, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x32}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x3b}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x36, 0x18}}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e21}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x3}]}, @IPVS_CMD_ATTR_DEST={0x2c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x3f}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x10001}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x1ff}]}]}, 0xc0}, 0x1, 0x0, 0x0, 0x4004000}, 0x2f6bf53563dcc9cf) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) mmap(&(0x7f0000f8b000/0x4000)=nil, 0x4000, 0x2, 0x11, r4, 0xdcc81000) 08:55:48 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 43) 08:55:48 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7}, 0x0, 0x0, 0xfffffffa, 0x0, 0x0, 0x3}, 0x0, 0x5, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:55:48 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000000, r0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xca902, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) ioctl$SG_IO(r2, 0x1278, &(0x7f00000011c0)={0x0, 0x0, 0x0, 0x0, @buffer={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2, &(0x7f0000000000)=0x4, 0x800, 0x2) 08:55:48 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000080)=""/80, 0x50}, {&(0x7f0000000100)=""/255, 0xff}, {&(0x7f0000000200)=""/237, 0xed}, {&(0x7f0000000300)=""/124, 0x7c}, {&(0x7f0000000000)=""/5, 0x5}], 0x5, 0x1, 0x7f) lseek(r0, 0x7fffffff, 0x3) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) 08:55:48 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x7, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x1, 0x3}, 0xa0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x9, 0x0, 0x800}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)={0x0, 0x0}) r2 = fcntl$dupfd(r0, 0x406, r0) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x6, 0xf9, 0xff, 0x83, 0x0, 0x7c, 0x8c0, 0x4, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000080), 0x1}, 0x2ac4, 0x7, 0x5, 0x8, 0x2, 0x1, 0x16e3, 0x0, 0x1, 0x0, 0x2}, r1, 0xe, r2, 0x2) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) r4 = dup3(r0, r3, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000180)={0x20, 0xffffffffffff8000, 0x81, 0xd7cd, 0x5, 0x9}) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00') ioctl$AUTOFS_DEV_IOCTL_READY(r4, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, r5, {0x9}}, './file0\x00'}) 08:55:48 executing program 6: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) readv(r0, &(0x7f0000000140)=[{&(0x7f0000000040)=""/145, 0x91}], 0x1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) dup3(r1, r1, 0x80000) 08:55:48 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 44) 08:55:48 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x8000) r4 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r1, 0x9, r3, 0xa) r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r5, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r6 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x9, 0x1f, 0x6, 0x40, 0x0, 0x7fff, 0x500, 0x8, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8001, 0x1, @perf_bp, 0x10000, 0x3, 0x2, 0x2, 0x1, 0x2000, 0x9, 0x0, 0x6, 0x0, 0xffffffff80000000}, r1, 0x0, r5, 0x2) ioctl$BTRFS_IOC_BALANCE_V2(r4, 0xc4009420, &(0x7f0000000100)={0x14, 0x7, {0xa30, @struct={0xffff, 0x5}, 0x0, 0x1, 0xffffffff, 0x3, 0x7, 0x200, 0x401, @struct={0x62d00, 0x8}, 0x62, 0xdda2, [0x3f, 0x3, 0x3, 0x8000000000000, 0x1, 0x6]}, {0x100, @usage, 0x0, 0xffff, 0x4, 0x3, 0x5, 0x9, 0x80, @usage=0x8, 0x9, 0x42, [0x3f, 0x1, 0x80, 0x81, 0x7, 0x4]}, {0x1, @struct={0x1f, 0xffff}, 0x0, 0x6, 0x8, 0x4, 0xffff, 0x9, 0x404, @usage=0x101, 0x0, 0x8, [0x9, 0x2, 0x5db3e351, 0x0, 0x2, 0x2]}, {0xffffffffffffff00, 0x4, 0x6}}) ioctl$BTRFS_IOC_GET_DEV_STATS(r2, 0xc4089434, &(0x7f0000000940)={r7, 0x7a1, 0x1, [0x4, 0x1000000000000, 0x6, 0x5, 0x800], [0x9, 0x2, 0x0, 0x4, 0x80000000, 0x401, 0x1, 0xdc3, 0x20, 0x5, 0x5, 0x7, 0x6, 0x8, 0x8, 0xfffffffffffffffa, 0x0, 0x0, 0x80d, 0x9, 0x2, 0x2aa, 0x5a3e21ee, 0x8, 0x0, 0x9, 0xe0d8, 0x4, 0x79a9, 0x42c1, 0x3f, 0x3, 0x3, 0x7, 0xa34, 0x2, 0xffffffff, 0x6, 0x6, 0xfffffffffffffffe, 0x8, 0x5, 0x0, 0x6, 0x3, 0x5, 0x401, 0x36fa, 0x40, 0xc3, 0xbff, 0x2, 0xfffffffffffffc6e, 0x8, 0x0, 0x2ee4, 0x4, 0x0, 0xffffffff, 0x100000001, 0x0, 0x7f, 0x8001, 0xb6e, 0x1, 0x4, 0xfffffffffffffffc, 0x19, 0x7, 0x4, 0x8d, 0x4, 0x3, 0x400, 0x6, 0x7, 0x1000, 0xfffffffffffffffb, 0x7fffffff, 0x80000001, 0xfffffffffffffffb, 0x5, 0x9, 0x3, 0x4, 0x1, 0xd8, 0x81, 0x1000, 0x3, 0x0, 0x8001, 0xffff, 0x40, 0xa33, 0x80000000, 0x1, 0x8, 0xffff, 0x400, 0x7, 0x21, 0x2, 0xffffffff, 0x1ff, 0xf7, 0x1, 0x1, 0x81, 0x805b, 0x10000, 0x81, 0x1f, 0x3, 0x0, 0x2, 0xfffffffffffff8ab, 0x6, 0x5, 0x0, 0x8]}) r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r8, 0x0) r9 = dup3(r0, r8, 0x0) socket$inet6(0xa, 0x6, 0x6c) r10 = socket$netlink(0x10, 0x3, 0x1) fcntl$dupfd(r10, 0x0, r10) ioctl$AUTOFS_DEV_IOCTL_READY(r9, 0xc0189376, &(0x7f00000006c0)={{0x1, 0x1, 0x18, r5, {0x1}}, './file0\x00'}) perf_event_open(&(0x7f0000000600)={0x1, 0x80, 0x6d, 0x0, 0x80, 0x3f, 0x0, 0x4, 0x10000, 0xb, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x401, 0x0, @perf_bp={&(0x7f00000005c0)}, 0x4a400, 0x0, 0x3, 0x1, 0x1, 0x585, 0xfff, 0x0, 0x401, 0x0, 0x9}, 0x0, 0xffffffffffffffff, r11, 0x1) ioctl$BTRFS_IOC_SEND(r10, 0x40489426, &(0x7f0000000540)={{r6}, 0x8, &(0x7f0000000500)=[0xeee, 0x11e5, 0x3, 0xffffffff, 0x2, 0x9, 0x9, 0x0], 0xff, 0x5, [0xfffffffffffffff7, 0x100000001, 0x7ff, 0x6]}) 08:55:48 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x0, 0x2, 0x8, 0x7, 0x0, 0x4e1, 0x40010, 0x14, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x2, @perf_bp={&(0x7f0000000000), 0x4}, 0x108, 0x8, 0xfffffff7, 0x9, 0x6, 0x98c, 0xcf21, 0x0, 0x8, 0x0, 0x1}, r1, 0x5, 0xffffffffffffffff, 0x2) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x0) dup3(r0, r2, 0x0) [ 2362.805814] FAULT_INJECTION: forcing a failure. [ 2362.805814] name failslab, interval 1, probability 0, space 0, times 0 [ 2362.808219] CPU: 0 PID: 11831 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2362.809691] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2362.811432] Call Trace: [ 2362.811989] dump_stack+0x107/0x167 [ 2362.812761] should_fail.cold+0x5/0xa [ 2362.813577] ? ___slab_alloc+0x155/0x700 [ 2362.814432] ? create_object.isra.0+0x3a/0xa20 [ 2362.815399] should_failslab+0x5/0x20 [ 2362.816198] kmem_cache_alloc+0x5b/0x310 [ 2362.817066] create_object.isra.0+0x3a/0xa20 [ 2362.817986] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2362.819057] kmem_cache_alloc+0x159/0x310 [ 2362.819933] xas_alloc+0x336/0x440 [ 2362.820681] xas_create+0x34a/0x10d0 [ 2362.821481] ? kernel_text_address+0xf2/0x120 [ 2362.822427] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2362.823528] xas_store+0x8c/0x1c40 [ 2362.824288] __xa_store+0x164/0x2d0 [ 2362.825071] ? xa_delete_node+0x280/0x280 [ 2362.825954] ? trace_hardirqs_on+0x5b/0x180 [ 2362.826869] xa_store+0x31/0x50 [ 2362.827571] __io_uring_add_tctx_node+0x1cf/0x520 [ 2362.828581] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2362.829689] ? alloc_fd+0x2e7/0x670 [ 2362.830464] io_uring_setup+0x1fbb/0x2980 [ 2362.831336] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2362.832405] ? wait_for_completion_io+0x270/0x270 [ 2362.833453] do_syscall_64+0x33/0x40 [ 2362.834233] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2362.835310] RIP: 0033:0x7f1ba3a34b19 [ 2362.836090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2362.839978] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2362.841594] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2362.843092] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2362.844590] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2362.846100] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2362.847598] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:55:48 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 50) [ 2362.891220] audit: type=1400 audit(1738745748.604:14): avc: denied { create } for pid=11825 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 08:55:48 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1010, r0, 0x0) 08:55:48 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup2(r0, r0) r1 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x20, 0x1, 0x17, 0x0, 0x8, 0x12000, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x236, 0x2, @perf_config_ext={0x3, 0x2}, 0x81051, 0x20, 0x87, 0x5, 0x4, 0xc4, 0x8001, 0x0, 0x7, 0x0, 0x401}, 0xffffffffffffffff, 0x10, r0, 0x2) perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0x9, 0x0, 0x8, 0x8, 0x0, 0x30000000000000, 0x11051, 0x6, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x30000, 0x4, @perf_bp={&(0x7f0000000000), 0x5}, 0x2, 0x5, 0x8, 0x5, 0x6f6ffc16000000, 0x6, 0xfffe, 0x0, 0x3b1c000, 0x0, 0x400}, 0xffffffffffffffff, 0xc, r1, 0x9) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x0) dup3(r0, r2, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r3, 0x0, r3) shutdown(r3, 0x0) [ 2362.924804] FAULT_INJECTION: forcing a failure. [ 2362.924804] name failslab, interval 1, probability 0, space 0, times 0 [ 2362.927270] CPU: 0 PID: 11844 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2362.928727] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2362.930494] Call Trace: [ 2362.931055] dump_stack+0x107/0x167 [ 2362.931827] should_fail.cold+0x5/0xa [ 2362.932635] ? create_object.isra.0+0x3a/0xa20 [ 2362.933608] should_failslab+0x5/0x20 [ 2362.934414] kmem_cache_alloc+0x5b/0x310 [ 2362.935273] ? mark_held_locks+0x9e/0xe0 [ 2362.936143] create_object.isra.0+0x3a/0xa20 [ 2362.937081] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2362.938162] kmem_cache_alloc+0x159/0x310 [ 2362.939044] xas_alloc+0x336/0x440 [ 2362.939799] xas_create+0x34a/0x10d0 [ 2362.940594] ? kernel_text_address+0xf2/0x120 [ 2362.941560] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2362.942674] xas_store+0x8c/0x1c40 [ 2362.943441] __xa_store+0x164/0x2d0 [ 2362.944212] ? xa_delete_node+0x280/0x280 [ 2362.945114] ? trace_hardirqs_on+0x5b/0x180 [ 2362.946037] xa_store+0x31/0x50 [ 2362.946744] __io_uring_add_tctx_node+0x1cf/0x520 [ 2362.947762] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2362.948877] ? alloc_fd+0x2e7/0x670 [ 2362.949659] io_uring_setup+0x1fbb/0x2980 [ 2362.950543] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2362.951617] ? wait_for_completion_io+0x270/0x270 [ 2362.952661] do_syscall_64+0x33/0x40 [ 2362.953457] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2362.954536] RIP: 0033:0x7f0e6488ab19 [ 2362.955320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2362.959226] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2362.960830] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2362.962345] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2362.963857] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2362.965379] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2362.966893] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:56:03 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) pipe(&(0x7f0000000000)) 08:56:03 executing program 6: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r0, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x7c, 0x0, 0x200, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0xffff, 0x3}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x5d}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x1d}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x9}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x60}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x31}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x71}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x8}]}, 0x7c}, 0x1, 0x0, 0x0, 0x10}, 0x4000004) perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) [ 2378.093971] FAULT_INJECTION: forcing a failure. [ 2378.093971] name failslab, interval 1, probability 0, space 0, times 0 [ 2378.095671] CPU: 1 PID: 11881 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2378.096619] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2378.097696] Call Trace: [ 2378.098081] dump_stack+0x107/0x167 [ 2378.098564] should_fail.cold+0x5/0xa [ 2378.099041] ? xas_alloc+0x336/0x440 [ 2378.099445] FAULT_INJECTION: forcing a failure. [ 2378.099445] name failslab, interval 1, probability 0, space 0, times 0 [ 2378.099529] should_failslab+0x5/0x20 [ 2378.101777] kmem_cache_alloc+0x5b/0x310 [ 2378.102343] xas_alloc+0x336/0x440 [ 2378.102802] xas_create+0x34a/0x10d0 [ 2378.103269] ? kernel_text_address+0xf2/0x120 [ 2378.103843] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2378.104514] xas_store+0x8c/0x1c40 [ 2378.105007] __xa_store+0x164/0x2d0 [ 2378.105493] ? xa_delete_node+0x280/0x280 [ 2378.106051] ? trace_hardirqs_on+0x5b/0x180 [ 2378.106643] xa_store+0x31/0x50 [ 2378.107093] __io_uring_add_tctx_node+0x1cf/0x520 [ 2378.107751] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2378.108464] ? alloc_fd+0x2e7/0x670 [ 2378.108965] io_uring_setup+0x1fbb/0x2980 [ 2378.109549] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2378.110224] ? wait_for_completion_io+0x270/0x270 [ 2378.110874] do_syscall_64+0x33/0x40 [ 2378.111405] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2378.112106] RIP: 0033:0x7f0e6488ab19 [ 2378.112613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2378.115145] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2378.116208] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2378.117125] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2378.118126] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2378.119051] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2378.119997] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2378.120968] CPU: 0 PID: 11885 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2378.121978] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2378.123075] Call Trace: [ 2378.123433] dump_stack+0x107/0x167 [ 2378.123923] should_fail.cold+0x5/0xa [ 2378.124458] ? xas_alloc+0x336/0x440 [ 2378.124968] should_failslab+0x5/0x20 [ 2378.125497] kmem_cache_alloc+0x5b/0x310 [ 2378.126015] xas_alloc+0x336/0x440 [ 2378.126515] xas_create+0x34a/0x10d0 [ 2378.127009] ? kernel_text_address+0xf2/0x120 [ 2378.127621] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2378.128340] xas_store+0x8c/0x1c40 [ 2378.128821] __xa_store+0x164/0x2d0 [ 2378.129319] ? xa_delete_node+0x280/0x280 [ 2378.129900] ? trace_hardirqs_on+0x5b/0x180 [ 2378.129916] xa_store+0x31/0x50 [ 2378.129931] __io_uring_add_tctx_node+0x1cf/0x520 [ 2378.129943] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2378.129954] ? alloc_fd+0x2e7/0x670 [ 2378.129972] io_uring_setup+0x1fbb/0x2980 [ 2378.129990] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2378.130003] ? wait_for_completion_io+0x270/0x270 [ 2378.130033] do_syscall_64+0x33/0x40 [ 2378.130046] entry_SYSCALL_64_after_hwframe+0x67/0xd1 08:56:03 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 51) 08:56:03 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) fcntl$setown(r4, 0x8, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r7, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x0, 0x0}, 0x0) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r7, 0xf504, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x1, 0x200000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r10 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r10, 0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x0, 0x0}, 0x0) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r9, &(0x7f00000000c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1, {0x0, r11}}, 0x7ff) fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000000), &(0x7f0000000080), 0x2, 0x2) memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000e52000/0x2000)=nil, 0x2000, 0x0, 0x1f012, 0xffffffffffffffff, 0x0) 08:56:03 executing program 5: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r0, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4000000000}, 0x0, 0x0, 0x3, 0x0, 0x8000000000000}, 0x0, 0x0, r0, 0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x0) dup3(r1, r2, 0x0) 08:56:03 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, r0) 08:56:03 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x8) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x40, @none, 0x9}, 0xe) shutdown(r1, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) r4 = dup3(r3, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x6}}, './file0\x00'}) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'netpci0\x00'}) 08:56:03 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 45) 08:56:03 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff) mbind(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, &(0x7f0000000000), 0x4, 0x3) 08:56:03 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r0, 0x0, r0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x28, 0x0, 0x200, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x3781, 0x1d}}}}}, 0x28}}, 0x8000) perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x5403, &(0x7f0000000300)={0x0, 0xcac3, 0x8}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) [ 2378.130055] RIP: 0033:0x7f1ba3a34b19 [ 2378.130069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 08:56:03 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8004}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_TIOCOUTQ(r1, 0x5411, &(0x7f0000000000)) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x0) dup3(r0, r2, 0x0) [ 2378.130076] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2378.130089] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2378.130097] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2378.130104] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2378.130112] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 08:56:03 executing program 4: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x503040, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000580)={{0x1, 0x1, 0x10, r1, {0xb43}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f00000005c0)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x8, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x3, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r0, 0x9, r3, 0xa) r4 = perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x100, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x10000000000000, 0x1}, r0, 0x800000000000e, 0xffffffffffffffff, 0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r5, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r6, 0x0, r6) ioctl$FICLONERANGE(r6, 0x4020940d, &(0x7f0000000000)={{r5}, 0x76, 0x4, 0x9}) dup3(r4, r5, 0x0) [ 2378.130119] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:56:03 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000000, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x5) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0) pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, r0) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x4, r0) pkey_mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x3, r1) munlock(&(0x7f0000ff9000/0x4000)=nil, 0x4000) r2 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1, r2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000002, 0xffffffffffffffff) [ 2378.176230] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11892 comm=syz-executor.6 [ 2378.199819] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11892 comm=syz-executor.6 08:56:17 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r3) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:56:17 executing program 6: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = dup2(r0, r0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000280)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) readv(r2, &(0x7f0000000880)=[{&(0x7f00000002c0)=""/212, 0xd4}, {&(0x7f0000000500)=""/250, 0xfa}, {&(0x7f00000003c0)=""/173, 0xad}, {&(0x7f0000000600)=""/241, 0xf1}, {&(0x7f0000000700)=""/214, 0xd6}, {&(0x7f0000000800)=""/115, 0x73}], 0x6) ioctl$FAT_IOCTL_GET_ATTRIBUTES(0xffffffffffffffff, 0x80047210, &(0x7f0000000900)) perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x80, 0x7, 0x80, 0x9, 0x0, 0x9, 0x400, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x6, @perf_bp={&(0x7f0000000040), 0x8}, 0x48, 0xb22, 0x7f, 0x0, 0x4, 0x5, 0x0, 0x0, 0x1a, 0x0, 0x20}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r3 = dup2(r0, r0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x1, 0x6, 0xf6, 0x6, 0x0, 0x13, 0x50000, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xffff, 0x0, @perf_bp={&(0x7f0000000140)}, 0x5a000, 0x100, 0x74a, 0x7, 0x101, 0x3, 0x5, 0x0, 0x4, 0x0, 0x1000}, 0x0, 0xe, r3, 0x3) r4 = syz_io_uring_setup(0x5407, &(0x7f0000000200)={0x0, 0xc204, 0x0, 0x1}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000) 08:56:17 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) syz_io_uring_setup(0x6f76, &(0x7f0000000000)={0x0, 0x5d47, 0x10, 0x1, 0x16e, 0x0, r2}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000080), &(0x7f0000000180)=0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x1010, r2, 0x8000000) r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs2/custom1\x00', 0x800, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f0000000140)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x1, 0x0, @fd=r4, 0x4, 0x0, 0x5, 0x2}, 0x1) 08:56:17 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x1000009, r0) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) r1 = pkey_alloc(0x0, 0x1) pkey_mprotect(&(0x7f0000ff6000/0x2000)=nil, 0x2000, 0x1000004, r1) pkey_free(r0) 08:56:17 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\bG\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) 08:56:17 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 46) [ 2391.711623] FAULT_INJECTION: forcing a failure. [ 2391.711623] name failslab, interval 1, probability 0, space 0, times 0 [ 2391.714107] CPU: 1 PID: 11918 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2391.715612] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2391.717411] Call Trace: 08:56:17 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 52) [ 2391.717997] dump_stack+0x107/0x167 08:56:17 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000000)=0x1f77) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2391.718864] should_fail.cold+0x5/0xa [ 2391.719799] ? create_object.isra.0+0x3a/0xa20 [ 2391.720801] should_failslab+0x5/0x20 [ 2391.721638] kmem_cache_alloc+0x5b/0x310 [ 2391.722539] ? mark_held_locks+0x9e/0xe0 [ 2391.723425] create_object.isra.0+0x3a/0xa20 [ 2391.724376] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2391.725483] kmem_cache_alloc+0x159/0x310 [ 2391.726397] xas_alloc+0x336/0x440 [ 2391.727171] xas_create+0x34a/0x10d0 [ 2391.727989] ? kernel_text_address+0xf2/0x120 [ 2391.728969] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2391.730117] xas_store+0x8c/0x1c40 [ 2391.730903] __xa_store+0x164/0x2d0 [ 2391.731696] ? xa_delete_node+0x280/0x280 [ 2391.732605] ? trace_hardirqs_on+0x5b/0x180 [ 2391.733549] xa_store+0x31/0x50 [ 2391.734276] __io_uring_add_tctx_node+0x1cf/0x520 [ 2391.735325] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2391.736463] ? alloc_fd+0x2e7/0x670 [ 2391.737270] io_uring_setup+0x1fbb/0x2980 [ 2391.738188] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2391.739292] ? wait_for_completion_io+0x270/0x270 [ 2391.740368] do_syscall_64+0x33/0x40 [ 2391.741180] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2391.742307] RIP: 0033:0x7f1ba3a34b19 [ 2391.743117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2391.747145] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2391.748805] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2391.750368] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2391.751920] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2391.753471] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2391.755031] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:56:17 executing program 3: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x55283f232b07c95f, 0x0) io_uring_enter(r0, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r1 = dup3(r0, 0xffffffffffffffff, 0x0) r2 = socket$unix(0x1, 0x2, 0x0) ioctl$BTRFS_IOC_FS_INFO(r2, 0x8400941f, &(0x7f0000000100)) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) io_cancel(0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x401, r2, &(0x7f0000000000)="3f5644cb54953621999b32460df15a6de4c99a7ef459bb3f37472f6c6d8fb0165defac7c73df9a2e713cf2", 0x2b, 0x101, 0x0, 0x0, r1}, &(0x7f0000000500)) 08:56:17 executing program 2: memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r0, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) mkdirat(r0, &(0x7f0000000080)='./file0\x00', 0x50) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) mmap(&(0x7f0000e85000/0x1000)=nil, 0x1000, 0x1000000, 0x4010, r2, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x9, 0x50, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r6, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x0, 0x0}, 0x0) syz_io_uring_submit(r3, r5, &(0x7f0000000140)=@IORING_OP_OPENAT={0x12, 0x3, 0x0, r2, 0x0, &(0x7f0000000100)='./file0\x00', 0x100, 0x300, 0x12345}, 0x7) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x38, 0x0, 0x200, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x7, 0x6b}}}}, [@NL80211_ATTR_BSSID={0xa, 0xf5, @from_mac}, @NL80211_ATTR_BSSID={0xa, 0xf5, @random="6b2318d9d340"}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000800}, 0x20040890) 08:56:17 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) r3 = fork() perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0xf6, 0xff, 0xc7, 0x7, 0x0, 0x1f, 0x10000, 0x6, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0xb688, 0x2, @perf_config_ext={0x10001, 0x5}, 0x400, 0x2, 0x10000, 0x7, 0x1, 0x8, 0x8001, 0x0, 0x227476f8, 0x0, 0x5}, r3, 0xa, 0xffffffffffffffff, 0x1a) r4 = openat2(r2, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040)={0x21000, 0x9, 0xd}, 0x18) fcntl$dupfd(r4, 0x0, r4) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) clone3(&(0x7f0000000380)={0x40800a00, &(0x7f0000000140)=0xffffffffffffffff, &(0x7f0000000180), &(0x7f00000001c0), {0x2f}, &(0x7f0000000200)=""/190, 0xbe, &(0x7f00000002c0)=""/115, &(0x7f0000000340)=[0x0], 0x1, {r2}}, 0x58) ioctl$EXT4_IOC_SWAP_BOOT(r6, 0x6611) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r7, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r5, 0x9, r7, 0xa) syz_open_procfs(r5, &(0x7f0000000000)='ns\x00') 08:56:17 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:56:17 executing program 3: pkey_mprotect(&(0x7f0000ff9000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) pkey_mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, r0) pkey_mprotect(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000005, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000001, 0xffffffffffffffff) 08:56:17 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0xff, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x6b6c, 0x0, 0x8, 0x100, 0x0, 0x0, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) stat(&(0x7f0000000140)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setuid(r2) sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x30, 0x1d, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x21, 0x0, 0x0, @u32}, @nested={0xc, 0x89, 0x0, 0x1, [@typed={0x8, 0x34, 0x0, 0x0, @uid=r2}]}]}, 0x30}}, 0x90) write$binfmt_elf64(r1, &(0x7f0000000500)={{0x7f, 0x45, 0x4c, 0x46, 0x4, 0x9, 0x20, 0x4, 0xfffffffffffffffd, 0x2, 0x3e, 0xa2, 0x377, 0x40, 0x3ff, 0x0, 0x2078, 0x38, 0x2, 0x9, 0x448, 0x3ff}, [{0x3, 0x4, 0x8, 0x20, 0x1f, 0x49014f60, 0x8, 0x2}, {0x6, 0x10000, 0x3, 0x80, 0x4, 0x89, 0x80, 0x1}], "944e939f649f35b87e15be14b93f4e1104571357ca6a073601660e7634ffad49b45b30e11c27898c539c51dab195a23698a1be2d66ff9b03cbdf902529a87f30c1dc7378284908a5f1c0271e8a36921158a4170d02f6bd10517ef696747cf2bccb062d6767dc9ec9b772fb59d1607826902020885a416a6b5688cbc2465a3fde3de589f1b1ed69a9029a816469b45cbcf4b6643a27b4cefec4d81e4823da3e77b6210308374a6b1c61e08553eb8881", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x65f) r3 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), r0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) 08:56:17 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffb}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0xff, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0xe04a, 0xffffffffffff8000, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xacbe}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r2, 0x9, r3, 0xa) r4 = perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x7, 0x7f, 0x8, 0x42, 0x0, 0x5a, 0x41080, 0x15, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_config_ext={0x5}, 0x0, 0x3, 0x9, 0x5, 0x0, 0x6, 0xb3d, 0x0, 0x100, 0x0, 0x7fff}, r2, 0x3, r0, 0x8) shutdown(r1, 0x0) shutdown(0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r7, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x0, 0x0}, 0x0) r8 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r8, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) syz_io_uring_submit(0x0, r6, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd=r8, 0x100000000, {0x0, r4}, 0xa8a, 0x4, 0x0, {0x0, 0x0, r1}}, 0x6a) ioctl$SIOCGSTAMP(r1, 0x8906, &(0x7f0000000000)) dup3(r0, r1, 0x0) 08:56:17 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x32ebc000) 08:56:17 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = syz_open_dev$mouse(&(0x7f0000000040), 0x10001, 0x200) connect$bt_l2cap(r2, &(0x7f0000000080)={0x1f, 0x1e7, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0xb3, 0x2}, 0xe) mmap$perf(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x4000003, 0xa14528452af98bb4, r2, 0x1ff) shutdown(r1, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r3, 0x8040942d, &(0x7f0000000000)) 08:56:17 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xd26c, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x5a}, 0xe) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x20010, r2, 0x8000000) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r6, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x52b6, &(0x7f0000001280)={0x0, 0xe885, 0x4, 0x3, 0x2b3, 0x0, r2}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000001300), &(0x7f0000001340)=0x0) r8 = socket$netlink(0x10, 0x3, 0x0) r9 = fcntl$dupfd(r8, 0x0, r8) sendmsg$nl_generic(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r7, &(0x7f0000001380)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd=r9, 0x1, 0x0, 0x1, 0x1, 0x1, {0x0, r10}}, 0x80) syz_io_uring_submit(r3, 0x0, &(0x7f0000001240)=@IORING_OP_WRITEV={0x2, 0x2, 0x2007, @fd=r0, 0x2, &(0x7f0000001200)=[{&(0x7f0000000040)="767b97586fd2bb050992529f5d26103323628701083f49ecc90e70a580529449abd50b914587a3c7a3b62e171808c9187c6b6c6dd242dbd0c76b2fede7481fd93084e0894bd244dfe0f4b2451219f29c242024d088528ca60e18b166e5c5b9d034f4cade2578fcb600012ea78d4031da04b1b32bc9bb4042d3cd85c20fb418dcdd93b97cd02503b45c38f69423b134811f89eed1d8cafd3b7b1acf19d77b2329617391e21d99db91e59654b7c69c5e4e49a0867079b223cb0b029b63e3b7176a8119a1c983c1a8bc2edf3450c970dda95328355586693f9c4b47d8a8e8702291e8c7dcfdf55aeb544069a782f277a1c821c7dcfd1379dbc8a25cda28a3d58868a62c3d2b22c39830dea6763d3273de5a04c61566fcd0f3fefd743e95e7b8e456df65474344d35117cdd80fddb6b242e13947500dd6b1ccf49baa15d57d59f558ac40461d28c066ff053f494ecefd736daadf49c54af820071279f3211daf64c0e4d6cb3b051bb61c4b4d0d1996b6eb1db5d2c588cb47cb5334abfc355cfe3bf8df3e2606843e8127d84f46f1cde7a54b6871d6b35d75cda11a1411a4383a9bb8fdc09b65ce0b3173af08beffe981fca3ed2c4386591b4491716594e15e6060e642000e82093bf502e2c7f2964025bae26acfdafecff363cf772073dcb69b38123662bbbf27c48efdd3bc152172238f36a84d89b8da70db96cdfd1c2e0faa55ec4b47b79b6679097da7b21de417317e17143cfaeb7b24bcdce3db0c05c4b57c21e363fdce2ce9765b0ca37a26f9099ac68f4e16eed9b2a98c33662f1e199c792deddfc6d852fc1b0ad58bae482d7000e574a2b7c2615fc78485d71849d22c91eae84237b89806fe299a651950482ee288226bd7d47a4e077f2abcf28d6b2bff96f2c1640a106e0e6f0962c3153e2516b7644bacf8495f0f4892083d2e3aedc0d5cf49fb2186a155ad95cc5a23be2bd6bfd8229123b75ab2408c616ea3c5a2513098b80b69fe56d144929f0c21218f3a6598f62bd83d497dc8d0678a014b59019875234bab23d2a7c0076db5978dea1d589c2534948925ff0917a2d5ec9c954df1aa392fa652b602c02d22b5e3ca6df89e8cd1b8304e894515804315009b2f9cff31b5067dac24e1ebbb182cd676a15fd04918b884376c86c2a2e54b62961b9a828e6c4c0c49c407eaf6dbe92296ba659af5cadcda512dc5be67afb3511eb5d8a612b1cdd986f990a62bfc154bbdb18696b0fea834888c04fb9dd8fb00092c85c1ed6aaf1ca8cc66d5583a99a940ae0c39dd43ce3abcdc63a91a1e37406e337dc3f8ab69d4b9af5f1587dc560b2cad5a6bb5190f461aa6a9672788ee78d223ebba96a45d963f6e77fd8d997a0559b0bf07035d40d6b0caa905f08fd468205d8819a4befcb016be705618165957e9f0a46a0a4cd7a920f173c1d41812edd128a31a18378a02a0bb99af11d5a2bf6d98393b1eeec089c196487326c10313432b543b9f9b53c16b438c27dd72d95526561106ce0cb3d5700ff3580c2ff4e272aeb3953205d7e048c66a597eb707be86265242cf1724277d255bd4e81309f9cdeca7b0e2ac6543535bab6d708493ca839ccdece30c9d49fd43d673813802da0039d369f9aeccd51dffe7119f17fef40aa3f31410045988cf52599a3c8858b246b9dcfa18a31c2137d8e73834c86765b16f19f165b06dca348034e5eda0252837bd9843aeedd2a84c18cf44cd40d836a6b5ab0e266e78d8e547eda1b98027e6305946b2c867685045be39b368b3a5128e3715ed6451b746102606035e55459344a9c574b4066e5d4b759e098d2f3cd119a7e87b3da95b425d52fc251080796761bfc9d1f32957bedf93dada1332e325a37e91ec31cb73910ae90c5c8f677425ae27ef872a1ab7d7a717cffbc6c1c682cd8f064fba669a610547d081fc54a4a354d317fd7cffbe77de7fe689f69df6d366c68a34829addb4cc98712cb086852ff91f9bffa2e989496ddf2e928bae0e787b5f0a1d82b2320442a4c189f7eb7a950fa52581805d10a24dd63c507525abee6dab54d1c5f57e6e4ffc964fe8e81a851a89162ba33389f4c4c4265fe202ebe3dabd53484156215b3451146d1cc841e2632c779878d58a20a54b1c46dc532967943d9324f697a2242da86853d19ff414460bfa0d98cd2570f56f3b8edfb46071419f157a8ec34c8803f4ddc6927ba70ef505627e1f9b409ab0d45089be8b86d31821c6cc2f33ff08888899ca6ae89b04822b9835ab2e7b8a507a3f2573e9be5d155392f9d401c3d7c81bd9a414d9af98aa70aa1f8745693b1d9ef6e1579e13123c8d0e35eb3c88800d26f30c4bfab03affbb022acfd65b48f859c04e9e8adbab850b266a0b55bffa5961373bc1809081272ff53c235a927acaacfd4040fea900bb61e8f599a5858dc7a9ab24637e1e79da145c367e2a38d1c9fa6a07d37bb29e22e876fa37407d87379a37a897e4ddec1dad274df70e2c3e5a1b62b3841bbc4c855640889cd25d5a73fee558ce34056f207138acc812b8dafd14e19d1c3804a58360fd60be069859f12954282f04dd982fdae2c367606b99a0d338aa076bb24ec4a01388ec987325e19e760a0ae571b62d5fd38e34988445c7c23b017e0ffb293c9719fd8662748bb0567d9d7ab97d0307dbc84600425e0e4d672566d350aac83f92ece8c9e288c68d19c30762d10575d1055f025f43fb6713e801073f2f1f53b890a833f54367653204b64fb613b08ad374935084c32d6712295cfefc88025d112e7eb0a3bdbc98c29a2df995e5a2fdd4d35e64f4571c630dad32a2c15952853f6548ded05bdf056a3b261b8d59abacbdbde818e4c18aeb66662cc356a65d584c27cbaa0029126ee31ca5599efeb0cbf1abd8c1e5ad74ab30af4e5b7d7a23721b7542fda1468008d79363c98537be1f2f9a8ba19447fa5c1e1888362b1ae7b7568222241a89bb9feab4405572494d157a3b398c5d77b81871fde4525d334c06f4c083c926d6bdb1ee30160da07223423537a5b1cbacd369faece55c52db2abea21d5656094dca61032a2eb7e27b5f9fcda1110b83097d389bdea38292e9a41e9697d28f365f4b83f0acb36befda33a27f50c6536270cdb7e0722a29387571c6de656e6752479bf582ebce70d7ab20adcebc4d06f50cf8da37b97c8598a9f7de8be3084aa17cd82a8a01ba7d9c72935241418f17b42ca4d75e2a8ac5a5690430b7e428f36ea3bce44c9ea1ee44e72785884163ee0593a4dc1ae05de65848ff6b2dd9a171676a3b3c54dcd4b1d99cf3fd8777acc128da184a03419a374538d5e008a595c3e211cf32f755c1201b080704657ed01a3247c716bb4d68c4702f95d26cbbc4d65ebbd12b175756b38762a36d772c6c4cdcdeb0bac6cfcd3246a517a7a2339763b76306c5934f1414612f745a9985e0beb675e66b343bd5352295c92340e02afda3f62f5ed712e8ad6703a0d17d6a260627baa413452cad327bea046f39984d4db6d6fc7e0e5e10a4e3b57879a1a7ac6eaab055e85ca852a1c082746040baa417e97ed386f3fac1df569d1ec8e4eae5688d9de4eb138c08f9adbcc54be2e975855a1c92d6dc147a40d955f4d7a44b35acb79b0ace0da89c9e76474539b307f207acc12b677748daf2cbfa46d33f8c3e95c984ce49ea877e960b2c213363cf567c1d07e082852a5c2890f0e4929ef0be79856cfc3698241918c67961532c3128d04444b5aa3260a607c321fb867e447ca983d36602db65b2d42eaad5bee2ba290e925ce7874d2999536905c547422dd42babb2c024de1c863f2f49e7cadcbca9fb477215d0207491487f6faa435f796d87755c0fa05cbc6545e1b40a949101344cdde46c92435b394ea49e2c3aa6df4a18f98a40f76af4bb62800e741b96f7fdb6bb741258138b5f341c1f22410151c6272166b66f64977c53c8fbbbb560b6791bc7d921d498c7f7f7d4e05e459ca83dd7f628d47249063eb3b54a1bd23d12b287f452908dbadc19734a97f413f5010de714a49b6220f3ce729bc2d9d1b648d7e012a1af594aa4051b089e7e6274f3e70ba9c1de3fad0fef029195219c77c6e42c1c415049d43a125e00eefee995901f2d63e821d08b8f46fe50c38d29601fb5e414bf10bbdeaf178c7021a85c368e7b52e8aaa6eac9e861de8c3ee5cdecd7f0b73d7be4b77aa03ca248364e4c48add6db420f88d01e89390277144217fe2350cc42468826f8b270eca8842181c1fe4d102b8e9e3261108e80f3bc45ce6e3e43017c004fd3467e081c91f4680ea077b6b42ba1e04694e8c082c9e64362222c4f6a1e50c58e814c45e45768cc391f87bda1d66bec660045f972e2d95098ddeaf5f3aef2a6e2d059aa21692ec4bd7ae9815c374a3aed350c7dd9f6bef734cd9918f665e82b8f5de2d22410ba8bbdbc9cb0647df68cc2e5539db2d7ceea614cea7842283b98ba53274fc958856cc6e7ac739bc727105ef171d989a54527b1f08797cbef8f509819668211f99696ccb59eb57f68e308fa425c4522b992540c2c8c0b9859c92d2b142511f2cf71d184beab5076233ab17ddb94b8031ba9897a7d717e1a20f7babb31c490fd23729bc15b7bcdd39fa948648caa869e977e43043beb0ce06d1216ec5cfb64f885b90388fc436aeeb43c242ef0cdbe376679be45ca4972fd26407200bb26303ff27429a2dc90b3c4c62ef1214ae792269861fc5e3a54d49a8542fe2fc23a949e110f14f7782802ef7defe910d78cbb2b30de495ab5779f3cd149a24e7895409af918fff98693c1395d1c578f26da359a20cc70ec7436b8773e9ecb2589dd4b72933613870989c26e6afcade1c092db05147458aad99a3367ed58b4ca3a0ae523209a581db2fd6fab708af1718ce7d91ed4d2674d148d7ec820173c539f48784ec137f5c9ff1398b55a3708da3b0427a287f00d494aa3d76cb8748386b8eef2b8f119931f0a9d9fe20342c8454b77c3e1c0b09bfce01160e192b0642713a436f7bf3fdb7993b63df58a13fddfd5bed9f0366b86f05fedfaa76a99f49ece2c6f066eb4c507f2a025b50caf11908af528a854358b28c62c5cf60b4f54e9d4bbd33babb9e2be5d876400282475604051bb885b57dd8236bb297fefcdc2308fdfa84d1f98ece9d26b2ccbdeb290373639180a813d7b2225d6fddf8a22abd9dc6cbe8d03ec058f7332d78ee32a05cc6a83502d4be3cff171ff7d716111df7e3b6bb44433d831d2935af76bb12846ead6b8e4dbe117cf26b7cbf4d5949b1a4f535e0cead9609023eac4f1fbbeadda21a63dfa4f1cab9841b37855c0f0f3f25c028bcd8028f4b6f5f5be3f9f93c8d375f7917897fe19cb83a6a2698e7153dbe1accd89bd77577c519a9690c8c59baaa78459c6ef89134c07069f4f96beb83f1105e6b0a96208ef459baf631ee11c16cf32862f8ab0f82f437971ba45adc66a42551af34b1af0f6e7a49300fc9f54b3e1945b596bb9eebd1ea96967d2133f10d25ba44940415edfdac6a0aadebb13fbb3fd4d170ec6deddb6334468520c50b34c5e67790b7faadf57b2d99ac40d7b44f6c06e9256ef004b3fe448cc5cd1e259c806ff21613c5fdb471974eefa604b21b60af796e4237c33e64a3296c9b55476bf7f1753def3e11055ba780551f1eb2b402989f92cb6494c0559a23c2f9a8ad263fff2af8d863033a2cb76e7c0bc9ed5b2eedd90e1f4819e8f9029252cf848930e80ddb4983256367e81154dd91963c467c885ec5e8fdfa591de195eb0df01ee4aeffca888277edd4b1b9e54aa", 0x1000}, {&(0x7f0000001040)="7b152d89379a6f513ae8731c1b9265a2cfbe253f21a4431739e11853be88750cb6ba19fbb4fcb6ecd7f8047593ac047bc785ca5218ab946851d5e65ef2e5101ee590359580acc84f3ec7c0471477afb2c9df6d5486c38ce6d05658f974021de13d428610cd400bd3a6840ecfa614626518b194a93e10d1bea8c74948f58046429919c1877cb81ae2110343f3ddc8237bb196", 0x92}, {&(0x7f0000001e00)="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", 0x1000}, {&(0x7f0000001100)="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", 0xff}], 0x4, 0xc, 0x1, {0x3}}, 0x1ff) [ 2392.018734] FAULT_INJECTION: forcing a failure. [ 2392.018734] name failslab, interval 1, probability 0, space 0, times 0 [ 2392.020508] CPU: 0 PID: 11922 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2392.021571] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2392.022632] Call Trace: [ 2392.023044] dump_stack+0x107/0x167 [ 2392.023603] should_fail.cold+0x5/0xa [ 2392.024195] ? create_object.isra.0+0x3a/0xa20 [ 2392.024898] should_failslab+0x5/0x20 [ 2392.025485] kmem_cache_alloc+0x5b/0x310 [ 2392.026128] ? mark_held_locks+0x9e/0xe0 [ 2392.026753] create_object.isra.0+0x3a/0xa20 [ 2392.027429] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2392.028211] kmem_cache_alloc+0x159/0x310 [ 2392.028854] xas_alloc+0x336/0x440 [ 2392.029391] xas_create+0x34a/0x10d0 [ 2392.029980] ? kernel_text_address+0xf2/0x120 [ 2392.030661] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2392.031462] xas_store+0x8c/0x1c40 [ 2392.032016] __xa_store+0x164/0x2d0 [ 2392.032577] ? xa_delete_node+0x280/0x280 [ 2392.033217] ? trace_hardirqs_on+0x5b/0x180 [ 2392.033880] xa_store+0x31/0x50 [ 2392.034394] __io_uring_add_tctx_node+0x1cf/0x520 [ 2392.035128] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2392.035929] ? alloc_fd+0x2e7/0x670 [ 2392.036486] io_uring_setup+0x1fbb/0x2980 [ 2392.037123] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2392.037913] ? wait_for_completion_io+0x270/0x270 [ 2392.038684] do_syscall_64+0x33/0x40 [ 2392.039261] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2392.040043] RIP: 0033:0x7f0e6488ab19 [ 2392.040612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2392.043432] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2392.044605] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2392.045492] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2392.046591] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2392.047480] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2392.048568] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:56:32 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 47) 08:56:32 executing program 4: r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x101002) dup2(r1, r0) write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0x120) mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) r2 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x800) setsockopt$bt_l2cap_L2CAP_OPTIONS(r4, 0x6, 0x1, &(0x7f0000000040)={0x0, 0x3, 0x6, 0x5, 0x9, 0x6, 0xa60}, 0xc) shutdown(r3, 0x0) dup3(r2, r3, 0x0) 08:56:32 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000005, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000fee000/0x10000)=nil, 0x10000, 0x3000000, 0xffffffffffffffff) [ 2406.667765] FAULT_INJECTION: forcing a failure. [ 2406.667765] name failslab, interval 1, probability 0, space 0, times 0 [ 2406.670296] CPU: 1 PID: 11979 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2406.671830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2406.673593] Call Trace: [ 2406.674155] dump_stack+0x107/0x167 [ 2406.674940] should_fail.cold+0x5/0xa [ 2406.675755] ? xas_alloc+0x336/0x440 [ 2406.676549] should_failslab+0x5/0x20 [ 2406.677356] kmem_cache_alloc+0x5b/0x310 [ 2406.678224] xas_alloc+0x336/0x440 [ 2406.678992] xas_create+0x34a/0x10d0 [ 2406.679787] ? kernel_text_address+0xf2/0x120 [ 2406.680741] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2406.681853] xas_store+0x8c/0x1c40 [ 2406.682636] __xa_store+0x164/0x2d0 [ 2406.683412] ? xa_delete_node+0x280/0x280 [ 2406.684296] ? trace_hardirqs_on+0x5b/0x180 [ 2406.685239] xa_store+0x31/0x50 [ 2406.685941] __io_uring_add_tctx_node+0x1cf/0x520 [ 2406.686971] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2406.688081] ? alloc_fd+0x2e7/0x670 [ 2406.688862] io_uring_setup+0x1fbb/0x2980 [ 2406.689748] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2406.690841] ? wait_for_completion_io+0x270/0x270 [ 2406.691888] do_syscall_64+0x33/0x40 [ 2406.692678] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2406.693765] RIP: 0033:0x7f1ba3a34b19 [ 2406.694562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2406.698461] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2406.700075] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2406.701592] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2406.703111] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2406.704619] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2406.706135] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:56:32 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r3, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) fsetxattr$security_ima(r3, &(0x7f0000000240), &(0x7f0000000280)=@ng={0x4, 0x11, "8ebe8f1c118a37f5733382b1db"}, 0xf, 0x3) sendmsg$nl_generic(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1080000}, 0xc, &(0x7f0000000180)={&(0x7f0000000040)={0x13c, 0x35, 0x100, 0x70bd29, 0x25dfdbfb, {0xd}, [@generic="6bd799569463500bfa1a8d4c424d1b3e0b04377b2563e0267b477a182a907939d911b2b47d569a617c1df3711e47ec2ada32370beb7c8d47194b98790c2ce71fcba9c1cb55364d9a8b8429c1ae239b27b3803112f85d510d41ed846667e67b05dc0267c4c245f10151", @typed={0x6, 0x3, 0x0, 0x0, @str='@\x00'}, @generic="d2b956b9743088612cc876dd16ed4d90bdd58e112449f8c3adf66dceefadad539bb4fd1ab4979801f9481d4d6fbc4feaef2bde2576e2cba703b2ef86827ea6ac8dfdf6fdbe701a19212a236efea94d8881979f4fd049dc011b6a578f39f4dc75fcaee082b95bc1f25a047cd0f0a4a5dd6f9c572282e0309e4adfc99f8ace95ef0bf545a983c72b9b6fa9e3509661f20e59ceaaf9d82e232e7414b8f4155fe99584fecc0c6e8c5ac9605663190c81fd2b938b0da3"]}, 0x13c}, 0x1, 0x0, 0x0, 0x20040050}, 0x0) 08:56:32 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) mmap(&(0x7f0000c01000/0x2000)=nil, 0x2000, 0x2000000, 0x8010, r2, 0x84db9000) 08:56:32 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x11, r0, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000140)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, r5, 0x0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)=""/56, 0x38}], 0x1}, 0x0, 0x40000040, 0x1, {0x1}}, 0x401) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:56:32 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) dup3(r2, r0, 0x0) sendfile(r1, r1, 0x0, 0x7f) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0x80000000, 0x4, 0x2077, 0xf796, 0x7}) 08:56:32 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 53) 08:56:32 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) fsmount(r2, 0x1, 0x38) [ 2406.830894] FAULT_INJECTION: forcing a failure. [ 2406.830894] name failslab, interval 1, probability 0, space 0, times 0 [ 2406.833347] CPU: 0 PID: 11987 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2406.834846] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2406.836600] Call Trace: [ 2406.837160] dump_stack+0x107/0x167 [ 2406.837928] should_fail.cold+0x5/0xa [ 2406.838768] ? xas_alloc+0x336/0x440 [ 2406.839560] should_failslab+0x5/0x20 [ 2406.840367] kmem_cache_alloc+0x5b/0x310 [ 2406.841228] xas_alloc+0x336/0x440 [ 2406.841978] xas_create+0x34a/0x10d0 [ 2406.842812] ? kernel_text_address+0xf2/0x120 [ 2406.843773] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2406.844881] xas_store+0x8c/0x1c40 [ 2406.845642] __xa_store+0x164/0x2d0 [ 2406.846458] ? xa_delete_node+0x280/0x280 [ 2406.847372] ? trace_hardirqs_on+0x5b/0x180 [ 2406.848290] xa_store+0x31/0x50 [ 2406.848994] __io_uring_add_tctx_node+0x1cf/0x520 [ 2406.850014] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2406.851150] ? alloc_fd+0x2e7/0x670 [ 2406.851926] io_uring_setup+0x1fbb/0x2980 [ 2406.852812] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2406.853886] ? wait_for_completion_io+0x270/0x270 [ 2406.854960] do_syscall_64+0x33/0x40 08:56:32 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000009, 0x810, r0, 0x8000000) [ 2406.855748] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2406.857014] RIP: 0033:0x7f0e6488ab19 [ 2406.857809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2406.861765] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2406.863411] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2406.864922] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2406.866453] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2406.868012] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2406.869524] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:56:32 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x9, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x7fff, 0x2}, 0xe) ioctl$AUTOFS_IOC_EXPIRE_MULTI(r1, 0x40049366, &(0x7f0000000000)=0x2) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:56:32 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 48) 08:56:32 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) setresuid(0xee00, 0xee00, 0xee01) clock_adjtime(0x0, &(0x7f0000000c00)={0x6}) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) ioctl$AUTOFS_IOC_EXPIRE_MULTI(r2, 0x40049366, &(0x7f0000000000)=0x2) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r5, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f00000002c0)=0x0) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r7, 0x0) recvmmsg$unix(r2, &(0x7f0000005240)=[{{&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000000180)=[{&(0x7f0000000100)=""/84, 0x54}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/75, 0x4b}], 0x3, &(0x7f0000001280)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}}, {{&(0x7f00000012c0)=@abs, 0xfffffffffffffe21, &(0x7f0000003580)=[{&(0x7f0000005500)=""/4106, 0x100a}, {&(0x7f0000006540)=""/4097, 0x1001}, {&(0x7f0000003340)=""/161, 0xa1}, {&(0x7f0000003400)=""/138, 0x8a}, {&(0x7f00000034c0)=""/172, 0xac}], 0x5, &(0x7f0000001480)=ANY=[@ANYRESDEC=r6, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRESHEX=r7, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESHEX=r5, @ANYBLOB='\x00\x00\x00\x00'], 0x68}}, {{&(0x7f0000003680), 0x6e, &(0x7f0000003bc0)=[{&(0x7f0000003700)=""/228, 0xe4}, {&(0x7f0000003800)=""/128, 0x80}, {&(0x7f0000003880)=""/140, 0x8c}, {&(0x7f0000003940)=""/93, 0x5d}, {&(0x7f00000039c0)=""/33, 0x21}, {&(0x7f0000003a00)=""/233, 0xe9}, {&(0x7f0000003b00)=""/126, 0x7e}, {&(0x7f0000003b80)=""/8, 0x8}], 0x8, &(0x7f0000003c40)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x58}}, {{&(0x7f0000003cc0), 0x6e, &(0x7f0000003d80)=[{&(0x7f0000003d40)=""/17, 0x11}], 0x1, &(0x7f0000003dc0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x138}}, {{&(0x7f0000003f00)=@abs, 0x6e, &(0x7f00000051c0)=[{&(0x7f0000003f80)=""/44, 0x2c}, {&(0x7f0000003fc0)=""/4096, 0x1000}, {&(0x7f0000004fc0)=""/101, 0x65}, {&(0x7f0000005040)=""/189, 0xbd}, {&(0x7f0000005100)=""/135, 0x87}], 0x5}}], 0x5, 0x2002, &(0x7f0000005380)={0x0, 0x989680}) r11 = openat2(r2, &(0x7f00000053c0)='./file0\x00', &(0x7f0000005400)={0x101000, 0x99, 0xc}, 0x18) kcmp$KCMP_EPOLL_TFD(0x0, r8, 0x7, r2, &(0x7f0000005440)={r11, r2, 0x5}) ioctl$F2FS_IOC_MOVE_RANGE(r10, 0xc020f509, &(0x7f00000054c0)={r9, 0xdd6, 0x3, 0x3ff}) syz_genetlink_get_family_id$devlink(&(0x7f0000005480), r12) 08:56:32 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x10000, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) clone3(&(0x7f0000000680)={0x80145100, &(0x7f0000000440), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x1, @remote, 0x875}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r2, 0x9, r3, 0xa) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6, 0x7, 0x8, 0x1, 0x0, 0x6, 0x20008, 0x8, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x4, @perf_bp={&(0x7f0000000000), 0x3}, 0x12408, 0x4, 0x1000, 0x3, 0xc57, 0x4, 0x6, 0x0, 0x5, 0x0, 0x5}, r2, 0x1, r0, 0x2) shutdown(r1, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000240)=0x0) perf_event_open(&(0x7f00000001c0)={0x3, 0x80, 0x80, 0x40, 0x7, 0x9, 0x0, 0x82, 0x40, 0xa, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x5, 0x3, @perf_bp={&(0x7f0000000180), 0x5}, 0x410, 0x7c7, 0x0, 0x5, 0x101, 0x4, 0x20, 0x0, 0x77, 0x0, 0xd4}, r4, 0xa, 0xffffffffffffffff, 0x2) r5 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r5, 0x0, r5) pread64(r5, &(0x7f0000000100)=""/66, 0x42, 0x9) [ 2406.950587] FAULT_INJECTION: forcing a failure. 08:56:32 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0xcdd842d1c29183d7, r0, 0x8000000) [ 2406.950587] name failslab, interval 1, probability 0, space 0, times 0 [ 2406.953298] CPU: 0 PID: 12015 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2406.954814] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2406.956568] Call Trace: [ 2406.957129] dump_stack+0x107/0x167 [ 2406.957903] should_fail.cold+0x5/0xa [ 2406.958746] ? create_object.isra.0+0x3a/0xa20 [ 2406.959715] should_failslab+0x5/0x20 [ 2406.960520] kmem_cache_alloc+0x5b/0x310 [ 2406.961379] ? mark_held_locks+0x9e/0xe0 [ 2406.962240] create_object.isra.0+0x3a/0xa20 [ 2406.963196] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2406.964275] kmem_cache_alloc+0x159/0x310 [ 2406.965158] xas_alloc+0x336/0x440 [ 2406.965911] xas_create+0x34a/0x10d0 [ 2406.966744] ? kernel_text_address+0xf2/0x120 [ 2406.967693] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2406.968802] xas_store+0x8c/0x1c40 [ 2406.969567] __xa_store+0x164/0x2d0 [ 2406.970340] ? xa_delete_node+0x280/0x280 [ 2406.971252] ? trace_hardirqs_on+0x5b/0x180 [ 2406.972173] xa_store+0x31/0x50 [ 2406.972877] __io_uring_add_tctx_node+0x1cf/0x520 [ 2406.973901] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2406.975039] ? alloc_fd+0x2e7/0x670 [ 2406.975817] io_uring_setup+0x1fbb/0x2980 [ 2406.976703] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2406.977781] ? wait_for_completion_io+0x270/0x270 [ 2406.978861] do_syscall_64+0x33/0x40 [ 2406.979649] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2406.980730] RIP: 0033:0x7f1ba3a34b19 [ 2406.981517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2406.985445] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2406.987070] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2406.988564] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2406.990057] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2406.991580] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2406.993068] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:56:47 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x3) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:56:47 executing program 3: r0 = fsmount(0xffffffffffffffff, 0x1, 0x82) r1 = syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff) sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000005c0), 0xc, &(0x7f0000000240)={&(0x7f0000000700)=ANY=[@ANYRES16=r1, @ANYBLOB="010029bd7000fcdbdf25040000004404004e24000014000300000000000000000000000000000000000c0007003000000004000000080005000400000008000b0e73697020060002005a00000038000280060002004e2100000800090000000000080006f54f00000014000100e000000200000000000000000000000008000900090000001c00038008000300000000000800010001000000080001000200000008000400200000004c000280080006000300000005000d00010000000800050005001c283171ff89dee001000800070086000000080009007c000000080004000900000006000f0002000078e00006000b000a00"], 0x100}, 0x1, 0x0, 0x0, 0x4804}, 0x44) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000004c0)={0x50, r1, 0x100, 0x0, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5}]}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@empty}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2f}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xcd}]}, 0x50}, 0x1, 0x0, 0x0, 0x800}, 0x4000) sendmsg$IPVS_CMD_ZERO(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, r1, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x80000000}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x7}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x4000) pkey_mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff) 08:56:47 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x2000002, 0x810, r2, 0x0) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r4, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f0000000340)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, r4, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@hci, 0x80, &(0x7f0000000280)=[{&(0x7f0000000080)=""/214, 0xd6}, {&(0x7f0000000180)=""/214, 0xd6}], 0x2, &(0x7f00000002c0)=""/58, 0x3a}, 0x0, 0x20, 0x0, {0x1, r5}}, 0x80000000) 08:56:47 executing program 2: r0 = memfd_create(&(0x7f0000000080)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\n\xf3t\xd8u\xd25\xfb\x8f\xa1\vt\xde\xa1\xf5\xb7\x01Q\xc6\tG/\xf9\n\v\x9f\xee\x7fn.\x14\x949\t\a\v\x96S\xa2\x95cV\x05\x8d\xb69\xbf\x1e\xc9I\xbf\xe7,hu\x80\x880\x19\xb4\n\x8b{\xdf;\x1b\xd6\xa5A\xb5:\xcb\x18\xc7\xdc#9\xd9=#!]\r\x9e\x11\xf4B\x9bLU\xf3\x9cR\xe4Tdd\xe72\'r\xb7\xf4M[lm\xa3\v\xf9_\x1fN\xd9\xde#\x85!L\xaa\xf1{\xb8\x14s\xed\xfb>\x1fz\x92\xd3\xbc\xb3\x12\xe66\n \xce\xdd\x81\x94n\x0e\x9d\xa9\x9fc:\xd8U\x04\xe5ma\xda\xeb\t', 0xe) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) 08:56:47 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:56:47 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 54) 08:56:47 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL, 0x6) syz_io_uring_setup(0x2eea, &(0x7f0000000080)={0x0, 0xeae, 0x10, 0x0, 0x15a}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000140), &(0x7f0000000180)=0x0) r1 = syz_io_uring_complete(0x0) r2 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) r3 = openat(r2, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x10000000c) syz_io_uring_setup(0x77d5, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r6, 0x0, &(0x7f0000000440)="037ec052eb7052ecc311eb97be349b472124662ef4dede168d2cc6b84523e469f7de3551a997ff1a436a6a460d6c7b3b654058217932b9b4e725b61005069a94b0023b61ffa96663ecdf9beb68cbd35d7220f33536b1ffa44c6249741c19fb3b87fc119879864c8fd9e2289f682666006227ca0c846b8af077e9fddcb04be43575ac9567d837f2f5d2333716fd4d", 0x8e, 0x12140, 0x1, {0x0, r7}}, 0x80000000) syz_io_uring_submit(0x0, r0, &(0x7f00000009c0)=@IORING_OP_SENDMSG={0x9, 0x5, 0x0, r1, 0x0, &(0x7f0000000980)={&(0x7f00000001c0)=@nl=@proc={0x10, 0x0, 0x25dfdbff, 0x400}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000380)="939eed9ba32af8aa7c094d303297dda0f5b6396f4eecbdcd07b6cd02f525103d22d6ca425072d41f2098ea226b4242a37a74dfc01ec1de900338c52699c6286a6e4bb3c68e9eb34d7dd681c7cc5b80be2ef0cc7208802d629ee30482c84cbfe951b3895957585dc011c124361ca6e6566cfbf6696e4665e3e3e43a0f11b763cbccf8ae7c47bf84766834fd13eb41bb13e479745e9841c9ed37f5edf524245ca6c2d45cb10c83a6c8d8672fdd84c8381ac871a6792fa4b219e8f443d5a7ede2026da920e86b", 0xc5}, {&(0x7f0000000240)="2f243b7a87a66dc72e8b459b811a76decaa7f09637ca43508f17f30fa85c7a354527cbe473ccc38b491b77a5d8dcd5b9a9a4a796dfe9b75378fe8c7562249d19b05dae142421d24246c7845739783b31dfd75ec72271730e7880d4964e5bb95db4e0e4625319a1e29eb41a6b40df457dfe412206151a6ecf9810f51f63f2286d8f36", 0x82}], 0x2, &(0x7f0000000540)=[{0x40, 0x10d, 0x2, "9afd5e2ee6afe9dcb54444abd3c3caafd3801bea620ce7a61e4638fb7ccef442f6434b5652a950d0be18088218"}, {0x100, 0x103, 0x9, "201c6ecccd4d233695f500accd7bda6d81eb395961bb00c3080f75a51493caa9becb88ade3f216dec320bf6bc04bc45ed2a983a3ca9648a3057c9c33b9f3b41e59a922bd117437d9fa58f12cccde874881eba573ed9d559d6d4ae1c0998076cd904464e836b6dd152e0d989e36ed0d1fe03ca2c1755d0b6ed82b09946a76cff3854d927c3a21904feda60f5d1f4a1f6a96923fb8d93afda6f55abea94ba23498f179ef3954f9cf0b1f6939463f95421c37ec27abccaaaa3149e778bd63674b34ed0b565aa136dd608a5bf64bc8dc7f2d9c913b617e5d4e4455aaa44b8e607d8c8ad16c7eb3f9c08098b78a4d"}, {0x28, 0x10d, 0x100, "638f2d6ec195ebf44a33f7c9a0da5ee40a0c3e2d"}, {0x100, 0x0, 0x0, "d68412cb82749ad75b2cb0dc05cc693b2e26a7f37a27dce08a92107f11073b4a739ed4e1e4a2dcf1abb53fa4790c38ddae87e960d642cbaa17ea25a1d0395833bb50628cef3fb71f435b656419d185de1f8ba43fcfb6bea4d3735318c19a433a83de0774c77bbab54539a8ae493aa502bd87c01f4d6a1164b2f5f3f6b364a55270d21cca4bd7a6f18d31c41d85535b547384bf01af3f836c77e88090e348fc5649406491052bb36205a781079f51a58780eaf28b1f5342510287660ae2cf045b7a793ab8a460ecfd5170e258c0b8b7d58a7535810313b0d1f19a02524115025579de4c976fb070f929ffc3"}, {0x28, 0x19, 0x80000000, "2d9302cb74419eae6ddbf228ca722146de0619718270f9"}, {0xa0, 0x117, 0x3, "34eb02a6c2dddd34c487a8d8487a8dd62f8d6ae12038374b2dc169ce4827928c8ce482fff0cb04a4b7cb3359f16e1d5c8ec9b1510f5a6b1a25a12f95bfc6d4d149e72f014954628167639ffc01fcb3b021fea49d723513401987eebc4b79e08348073a23f4d9401e2fbd5b17b007279c7f4dc8c44897295fee7278d7380a22a9f9c1be66809b2fb650fdbb4c68c79a"}, {0x110, 0x10, 0x9, "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"}], 0x440}, 0x0, 0x4000080, 0x0, {0x0, r7}}, 0x7) ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, &(0x7f0000000a00)) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) stat(&(0x7f0000000140)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setuid(r8) mount$9p_fd(0x0, &(0x7f0000000e00)='./file1\x00', &(0x7f0000000e40), 0x44c1, &(0x7f0000000e80)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@msize={'msize', 0x3d, 0x80000000}}], [{@mask={'mask', 0x3d, 'MAY_READ'}}, {@subj_type}, {@dont_hash}, {@uid_gt={'uid>', r8}}, {@dont_measure}]}}) r9 = syz_io_uring_setup(0x5407, &(0x7f0000000300)={0x0, 0x0, 0x20}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r9, 0x8000000) 08:56:47 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 49) 08:56:47 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x8, 0xffffffffffffffff) 08:56:47 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0x3ff, 0x10001, 0x1, 0x7, 0x8}) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2421.470275] FAULT_INJECTION: forcing a failure. [ 2421.470275] name failslab, interval 1, probability 0, space 0, times 0 [ 2421.471286] FAULT_INJECTION: forcing a failure. [ 2421.471286] name failslab, interval 1, probability 0, space 0, times 0 [ 2421.472139] CPU: 0 PID: 12056 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2421.474561] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2421.475732] Call Trace: [ 2421.476140] dump_stack+0x107/0x167 [ 2421.476656] should_fail.cold+0x5/0xa [ 2421.477162] ? xas_alloc+0x336/0x440 [ 2421.477684] should_failslab+0x5/0x20 [ 2421.478246] kmem_cache_alloc+0x5b/0x310 [ 2421.478784] xas_alloc+0x336/0x440 [ 2421.479272] xas_create+0x34a/0x10d0 [ 2421.479803] ? kernel_text_address+0xf2/0x120 [ 2421.480448] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2421.481176] xas_store+0x8c/0x1c40 [ 2421.481648] __xa_store+0x164/0x2d0 [ 2421.482146] ? xa_delete_node+0x280/0x280 [ 2421.482709] ? trace_hardirqs_on+0x5b/0x180 [ 2421.483305] xa_store+0x31/0x50 [ 2421.483725] __io_uring_add_tctx_node+0x1cf/0x520 [ 2421.484374] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2421.485063] ? alloc_fd+0x2e7/0x670 [ 2421.485621] io_uring_setup+0x1fbb/0x2980 [ 2421.486223] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2421.487021] ? wait_for_completion_io+0x270/0x270 [ 2421.487745] do_syscall_64+0x33/0x40 [ 2421.488299] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2421.489158] RIP: 0033:0x7f1ba3a34b19 [ 2421.489736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2421.492265] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2421.493395] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2421.494396] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2421.495381] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2421.496322] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2421.497276] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2421.498258] CPU: 1 PID: 12058 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2421.499242] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2421.500324] Call Trace: [ 2421.500670] dump_stack+0x107/0x167 [ 2421.501141] should_fail.cold+0x5/0xa [ 2421.501635] ? create_object.isra.0+0x3a/0xa20 [ 2421.502240] should_failslab+0x5/0x20 [ 2421.502738] kmem_cache_alloc+0x5b/0x310 [ 2421.503287] ? mark_held_locks+0x9e/0xe0 [ 2421.503857] create_object.isra.0+0x3a/0xa20 [ 2421.504476] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2421.505192] kmem_cache_alloc+0x159/0x310 [ 2421.505816] xas_alloc+0x336/0x440 [ 2421.506362] xas_create+0x34a/0x10d0 [ 2421.506985] ? kernel_text_address+0xf2/0x120 [ 2421.507690] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2421.508423] xas_store+0x8c/0x1c40 [ 2421.508884] __xa_store+0x164/0x2d0 [ 2421.509356] ? xa_delete_node+0x280/0x280 [ 2421.509933] ? trace_hardirqs_on+0x5b/0x180 [ 2421.510542] xa_store+0x31/0x50 [ 2421.511001] __io_uring_add_tctx_node+0x1cf/0x520 [ 2421.511624] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2421.512293] ? alloc_fd+0x2e7/0x670 [ 2421.512822] io_uring_setup+0x1fbb/0x2980 [ 2421.513467] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2421.514199] ? wait_for_completion_io+0x270/0x270 [ 2421.514838] do_syscall_64+0x33/0x40 [ 2421.515346] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2421.516049] RIP: 0033:0x7f0e6488ab19 [ 2421.516555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2421.519052] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2421.520112] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2421.521092] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2421.522073] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2421.523102] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2421.524112] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:56:47 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/ip_vs_stats\x00') setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0x7, &(0x7f0000000140), 0x4) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) getsockopt$bt_sco_SCO_CONNINFO(r2, 0x11, 0x2, &(0x7f0000000380)=""/242, &(0x7f0000000480)=0xf2) shutdown(r5, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r2, &(0x7f0000000180)=0x80, &(0x7f0000000300)=@qipcrtr, 0x0, 0x180000}, 0x8000) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0) getsockopt$bt_l2cap_L2CAP_CONNINFO(r5, 0x6, 0x2, &(0x7f0000000080), &(0x7f00000000c0)=0x6) 08:56:47 executing program 3: r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x1, r0) pkey_mprotect(&(0x7f0000ff8000/0x4000)=nil, 0x4000, 0x0, r0) pkey_mprotect(&(0x7f0000ff7000/0x2000)=nil, 0x2000, 0x0, r0) [ 2421.549888] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 08:56:47 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 50) [ 2421.582188] FAULT_INJECTION: forcing a failure. [ 2421.582188] name failslab, interval 1, probability 0, space 0, times 0 [ 2421.583791] CPU: 0 PID: 12063 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2421.584720] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2421.585828] Call Trace: [ 2421.586184] dump_stack+0x107/0x167 [ 2421.586670] should_fail.cold+0x5/0xa [ 2421.587181] ? create_object.isra.0+0x3a/0xa20 [ 2421.587783] should_failslab+0x5/0x20 [ 2421.588266] kmem_cache_alloc+0x5b/0x310 [ 2421.588802] ? mark_held_locks+0x9e/0xe0 [ 2421.589408] create_object.isra.0+0x3a/0xa20 [ 2421.590058] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2421.590815] kmem_cache_alloc+0x159/0x310 [ 2421.591402] xas_alloc+0x336/0x440 [ 2421.591910] xas_create+0x34a/0x10d0 [ 2421.592441] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 2421.593162] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2421.593898] xas_store+0x8c/0x1c40 [ 2421.594433] __xa_store+0x164/0x2d0 [ 2421.594971] ? xa_delete_node+0x280/0x280 [ 2421.595587] ? trace_hardirqs_on+0x5b/0x180 [ 2421.596234] xa_store+0x31/0x50 [ 2421.596698] __io_uring_add_tctx_node+0x1cf/0x520 [ 2421.597384] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2421.598104] ? alloc_fd+0x2e7/0x670 [ 2421.598643] io_uring_setup+0x1fbb/0x2980 [ 2421.599250] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2421.599916] ? wait_for_completion_io+0x270/0x270 [ 2421.600615] do_syscall_64+0x33/0x40 [ 2421.601114] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2421.601834] RIP: 0033:0x7f1ba3a34b19 [ 2421.602359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2421.604969] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2421.606026] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2421.607017] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2421.607979] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2421.608971] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2421.609941] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:56:47 executing program 2: memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) mmap(&(0x7f0000c96000/0x4000)=nil, 0x4000, 0x0, 0x4010, r1, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="24000000ff010000000100008cb7d3007e5400000002efea000000050000000000007f0000000000000000"], 0x24}}, 0x0) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f00000000c0)={0x2, &(0x7f0000000080)=[{0x9, 0x2, 0x8e, 0x1}, {0x40, 0x0, 0x6, 0x9}]}, 0x10) 08:56:47 executing program 0: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x9, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x55a3, 0x1}, 0x2, 0x9cf3, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r0, 0x6, r2, 0x6) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x1, 0x0, 0x1, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x2080, 0x9, 0xfffffffd, 0x6, 0x80000000004, 0x7, 0x2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x19e1f0ec}}, './file0\x00'}) bind$bt_l2cap(r5, &(0x7f00000000c0)={0x1f, 0x8, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x2, 0x2}, 0xe) shutdown(r4, 0x0) dup3(r3, r4, 0x0) 08:56:47 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x20, 0x49, 0x0, 0x0, 0x0, 0xd78, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x2}, 0x0, 0x80000001, 0x800, 0x6, 0x3, 0x0, 0xfffd, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000005, 0x40010, r2, 0x10000000) syz_io_uring_submit(0x0, r3, &(0x7f0000000000), 0x101) r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x47b96191abd3d38e, 0x10, r2, 0x10000000) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) sendmsg$nl_generic(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) syz_io_uring_submit(0x0, r4, &(0x7f0000000180)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r6, 0x0, &(0x7f0000000140)='./file0\x00', 0x104, 0x620140, 0x23456}, 0x5) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r9, 0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x0, 0x0}, 0x0) r10 = socket$netlink(0x10, 0x3, 0x0) r11 = fcntl$dupfd(r10, 0x0, r10) sendmsg$nl_generic(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) sendmsg$nl_generic(r11, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x1114}, 0x1, 0x0, 0x0, 0x4008081}, 0x800) ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r9, 0x8983, &(0x7f0000000040)={0x3, 'caif0\x00', {0x20000}, 0xc0}) 08:56:47 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 51) [ 2421.689842] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=511 sclass=netlink_route_socket pid=12074 comm=syz-executor.2 [ 2421.709050] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=23 sclass=netlink_route_socket pid=12072 comm=syz-executor.4 [ 2421.711115] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 2421.720767] FAULT_INJECTION: forcing a failure. [ 2421.720767] name failslab, interval 1, probability 0, space 0, times 0 [ 2421.722475] CPU: 0 PID: 12082 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2421.723462] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2421.724608] Call Trace: [ 2421.724977] dump_stack+0x107/0x167 [ 2421.725491] should_fail.cold+0x5/0xa [ 2421.726020] ? xas_alloc+0x336/0x440 [ 2421.726535] should_failslab+0x5/0x20 [ 2421.727076] kmem_cache_alloc+0x5b/0x310 [ 2421.727641] xas_alloc+0x336/0x440 [ 2421.728126] xas_create+0x34a/0x10d0 [ 2421.728652] ? kernel_text_address+0xf2/0x120 [ 2421.729275] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2421.730002] xas_store+0x8c/0x1c40 [ 2421.730505] __xa_store+0x164/0x2d0 [ 2421.731002] ? xa_delete_node+0x280/0x280 [ 2421.731577] ? trace_hardirqs_on+0x5b/0x180 [ 2421.732156] xa_store+0x31/0x50 [ 2421.732612] __io_uring_add_tctx_node+0x1cf/0x520 [ 2421.733262] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2421.734002] ? alloc_fd+0x2e7/0x670 [ 2421.734518] io_uring_setup+0x1fbb/0x2980 [ 2421.735152] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2421.735857] ? wait_for_completion_io+0x270/0x270 [ 2421.736550] do_syscall_64+0x33/0x40 [ 2421.737068] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2421.737782] RIP: 0033:0x7f1ba3a34b19 [ 2421.738309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2421.740872] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2421.741930] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2421.742953] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2421.743951] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2421.744942] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2421.745935] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2421.792224] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=23 sclass=netlink_route_socket pid=12084 comm=syz-executor.4 08:57:01 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 52) 08:57:01 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 55) 08:57:01 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xe11f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x2) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000000)) shutdown(r1, 0x0) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r3, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40286608, &(0x7f0000000200)={0x1, 0x7f, 0x2, 0x3e5, 0x4, 0x1}) r4 = syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r7, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x0, 0x0}, 0x0) r8 = openat(r3, &(0x7f0000000300)='./file0\x00', 0x180, 0x103) setsockopt$inet6_udp_int(r8, 0x11, 0x66, &(0x7f0000000340)=0x7, 0x4) fsetxattr(r7, &(0x7f0000000240)=@known='trusted.overlay.upper\x00', &(0x7f0000000280)='/dev/vcsu\x00', 0xa, 0x3) r9 = dup3(r0, r1, 0x0) syz_io_uring_setup(0x525e, &(0x7f00000014c0)={0x0, 0x86b2, 0x4, 0x2000, 0x3dc, 0x0, r4}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000400)=0x0, &(0x7f0000000440)) r11 = socket$inet_icmp(0x2, 0x2, 0x1) r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0) syz_io_uring_submit(r10, r6, &(0x7f0000001480)=@IORING_OP_SEND={0x1a, 0x4, 0x0, r11, 0x0, &(0x7f0000000480)="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", 0x1000, 0x4008000, 0x0, {0x0, r12}}, 0x7) 08:57:01 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) sendmsg$nl_generic(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x31, 0x1, 0x70bd27, 0x25dfdbff, {0x19}, [@typed={0x8, 0x5e, 0x0, 0x0, @ipv4=@remote}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8880}, 0x4000010) [ 2435.448957] FAULT_INJECTION: forcing a failure. [ 2435.448957] name failslab, interval 1, probability 0, space 0, times 0 [ 2435.450577] CPU: 0 PID: 12096 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2435.451551] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2435.452696] Call Trace: [ 2435.453077] dump_stack+0x107/0x167 [ 2435.453583] should_fail.cold+0x5/0xa [ 2435.454108] ? create_object.isra.0+0x3a/0xa20 [ 2435.454739] should_failslab+0x5/0x20 [ 2435.455262] kmem_cache_alloc+0x5b/0x310 [ 2435.455835] ? mark_held_locks+0x9e/0xe0 [ 2435.456422] create_object.isra.0+0x3a/0xa20 [ 2435.457031] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2435.457727] kmem_cache_alloc+0x159/0x310 [ 2435.458299] xas_alloc+0x336/0x440 [ 2435.458771] xas_create+0x34a/0x10d0 [ 2435.459283] ? kernel_text_address+0xf2/0x120 [ 2435.459917] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2435.460643] xas_store+0x8c/0x1c40 [ 2435.461146] __xa_store+0x164/0x2d0 [ 2435.461651] ? xa_delete_node+0x280/0x280 [ 2435.462231] ? trace_hardirqs_on+0x5b/0x180 [ 2435.462832] xa_store+0x31/0x50 [ 2435.463289] __io_uring_add_tctx_node+0x1cf/0x520 [ 2435.463963] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2435.464680] ? alloc_fd+0x2e7/0x670 [ 2435.465183] io_uring_setup+0x1fbb/0x2980 [ 2435.465757] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2435.466462] ? wait_for_completion_io+0x270/0x270 [ 2435.467167] do_syscall_64+0x33/0x40 [ 2435.467707] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2435.468420] RIP: 0033:0x7f1ba3a34b19 [ 2435.468944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2435.471510] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2435.472584] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2435.473525] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2435.474512] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2435.475512] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2435.476452] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:57:01 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x2, 0x2, &(0x7f00000002c0)=[{&(0x7f00000001c0)="f1e7fd7afd08ca88e1fda98aa6ba44bca5b5a8324fda26d33d32232a05461d4828fe99c0f8c4e8deba590b1a80b0fd97945b202c80069091e12760e1b92175084075c676701999c985dde78cd11ec2a7552424b240f9860bb25a11a3f1cc46ae526a7ebad9886d93604acbf7c52e6bdd22ce5c714b9b10ac85c5fb3f9667d037fe4353a32bcf89049b3b47364d4bea977117e31e33a96715319c37ef8858cc27d30ec51b275923a7bed5444ca23ae852eeec45cd4a2912fbe39760bb7a7a546bf53fc5dadab2c573ce6f818c469f72f5159c9eb09f7d132cc35e5845c5f18d3db5c8ddc4", 0xe4, 0x40}, {&(0x7f0000000380)="8b3e4e107fa1b0784ce3ea59bf264183c75ce2bc2eb7eef3fc39e85e748791145290d862faa69c84fe59e55ee22a0602ffaa4d17cc1167e8edbd98aa1a8374a09edd7864923d96d03a2f4855c831fc707afe6c48fcd8d12f5629ab6b08161d305e6fd7dd88ee355d966fb75c82c71a123a591ca72c7155954c3bc3b16807d8fe9eabce1a51eae85387882b23aa9b30db30b02a70394da4478dfe6db70967e605724ee2eaba46909c0f90", 0xaa, 0xffff}], 0x0, &(0x7f0000001cc0)=ANY=[@ANYBLOB='huge=never,euid<', @ANYRESDEC=0x0, @ANYBLOB="2c736d61636b66736465663d002c736d61636b6673726f6f743db4b449d0bd8065002f68a9c245357989053a20cfc158621b4ed2ea16c2ff493cc1616b352c646f6e745f61707072616973652c7569643e", @ANYRESDEC, @ANYBLOB="2c6673636f6e2c5003453da9a6a92c7365636c6162656c2c6d61736b3d4d41595f415050454e442c66736d616769633d307830303030303030303030303030158e08b05e2261e2a11ac9305a294d58793235b222c4829dbb1896891d5fcbd20e8a763d5a4633b25f3e820157b1d962bf82aed6ea2c5cb6acf7826ec222ef21c6de6a3f491a40d318821e84dea733f7ae0aca40307480df1ce2f91dc2c666fcfc341d18d624120f8982c800a8dc62b9025d8a53c0f476cba12eae"]) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000780)=""/179, 0xb3}, {&(0x7f0000000680)=""/236, 0xec}], 0x2) r1 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) syz_mount_image$vfat(&(0x7f0000000940), &(0x7f0000000980)='./file1\x00', 0xa0, 0x3, &(0x7f0000001b80)=[{&(0x7f00000009c0)="365931ac0107fad5dcc935390092d2eb34e8a1209f2c812e1041724e93da02a095a8e5ac6123c1eb11e05ff2861b88108503da3b3555a5112903382965c85ed2513aa4242770a6a7d2ff5ecbb7554f68621519e398e1bf4fcd4261beda02ec3e271f50b4050d6ed457f6ffd2505fc12fbb1f78f5d4920d1e1be7d4ccb311e3ac3b6643842ec51ce0d9c8", 0x8a, 0x6}, {&(0x7f0000000a80)="1edf9417eb20087b7a8f57b030b7a935d815dd913be5610ef9714baaceee26ebcc697706d553b0878c1ff607dbc4c5a25e937fcbc76a4a14f47f8cc4797e7c163653976021bfeee379d8d70c143d37f18a45f20c5a5d95d4b973699416fbc237c3621ec835a1a39b62aa96fcef93c1a02dc22331503fbcfbc7b128ef4634399c313cc90cbc81742a47be75fedb6d85b1a8b610a12b7221a005560fed437a7fb3c16c4404a6e9b2794f9627cf4a06e50f1e5c7b824e00314f7814b7ca1641abb53c94634b69f36e03b5bb8c83a5494ba14a748e6a29f611", 0xd7, 0x9}, {&(0x7f0000000b80)="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", 0x1000}], 0x800000, &(0x7f0000001c00)={[{@nonumtail}, {@fat=@flush}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@dont_hash}, {@pcr={'pcr', 0x3d, 0x20}}, {@subj_type={'subj_type', 0x3d, '-[]}\'}'}}]}) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3ff}}, './file0\x00'}) creat(&(0x7f0000001c80)='./file0\x00', 0x2) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) sendmsg$nl_generic(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) mknodat$loop(r5, &(0x7f00000005c0)='./file0\x00', 0xc000, 0x1) r6 = dup2(r1, r1) r7 = signalfd4(r3, &(0x7f0000000500)={[0x8]}, 0x8, 0x80800) sendmsg$nl_generic(r7, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000840)={0xcc, 0x17, 0x200, 0x70bd25, 0x25dfdbff, {0x9}, [@generic="2da7ce27fcb555d6e24fd490", @typed={0x14, 0x6d, 0x0, 0x0, @ipv6=@mcast2}, @generic="6fb48febae5e6fb62c798cc1f11fcc4f", @typed={0x14, 0x52, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @nested={0x68, 0x1a, 0x0, 0x1, [@typed={0x8, 0x86, 0x0, 0x0, @ipv4=@local}, @generic="d46641c72104dbd080ffcaf5ea2697405b8016e8344a547b533b3a329ab929c862c0a03ecf45179b5b72bf2d302f269a5b8c3ed63aedfa52db0b59126b6a4948afd6a86b907bb5215e2fa42ffd1cc5574b060af452769fca55", @generic="bb652d"]}, @typed={0x4, 0x79}, @typed={0x8, 0x90, 0x0, 0x0, @ipv4=@remote}]}, 0xcc}, 0x1, 0x0, 0x0, 0x4804}, 0x80) copy_file_range(r3, &(0x7f0000000080)=0x80000001, r6, &(0x7f00000000c0), 0x4, 0x0) 08:57:01 executing program 2: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000007c0), 0x129002, 0x0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000900)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000840)={0x44, 0x0, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x9}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x8}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x24048080}, 0x80) ioctl$SCSI_IOCTL_DOORUNLOCK(0xffffffffffffffff, 0x5381) r1 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x5, 0x1f012, r1, 0x1000) r2 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r2, 0x0, r2) socketpair(0x1a, 0x6, 0x5, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x10001}) r4 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r4, 0x0, r4) r5 = openat$random(0xffffffffffffff9c, &(0x7f00000002c0), 0x101003, 0x0) fcntl$dupfd(r4, 0x406, r5) writev(r2, &(0x7f0000000000)=[{&(0x7f0000000080)="196c381541897300be16cd66e6b589af53c14c47049e5db7102db6a01567e99f3a04270786c28edba0173d42381396932cf8a0f098559af484ccfef00993b6b6112688fc6235ffa0608671d35da8cd77866216329e2580ac5940d4f7bd12efe686dd19f6740bbfc41956c2dd1e87d3849919431460da2d5454bff15296649e4ede8112a196d64533a027952a1c0ab15ebe83f5f12f6a9b3fd51941fc10513f7dbfcdf48243757c8533d515bbd84f", 0xae}, {&(0x7f0000000140)="904beabbb6a7c184d7b7019da1f8e69d56b843215e1f87737dcca0a92c7d2f5cfd573c1ac54807560e9bb9d8d9f4a232c426ef70430fa2f30eccbfa7549a28da76c92e997d6b64ea3485", 0x4a}, {&(0x7f00000001c0)="e522a1fcfecd62a49b3738ef4ad944a768c08c67703e0527d0ce9e0fb9beed3a6108ef285c34159218f2ab71577a7d0d9516b0c38dbcbcef3c357540efde762f714b07b376a42932b70e", 0x4a}, {&(0x7f0000000240)="3a11229b5120b0bd3d3d3de40204ff2478d0d18373b8b1975f40c23150e7b918e5d75def5e8d487a490ce0b5f60a7f07f336e53ee6cd2f7582f51019627aa1e7ad0bcbbccbda5e5b3cafce43bd4d0198c4693aaaac5dc41047bd", 0x5a}], 0x4) 08:57:01 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x7, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x200}, 0xe) dup3(r0, r1, 0x0) [ 2435.496771] tmpfs: Unknown parameter 'euid<00000000000000000000' 08:57:01 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14380, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x100, 0x6}, 0x0, 0x3, 0xffffffffffffffff, 0x2) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2435.515872] FAULT_INJECTION: forcing a failure. [ 2435.515872] name failslab, interval 1, probability 0, space 0, times 0 [ 2435.517501] CPU: 1 PID: 12095 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2435.518421] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2435.519589] Call Trace: [ 2435.519970] dump_stack+0x107/0x167 [ 2435.520486] should_fail.cold+0x5/0xa [ 2435.521041] ? xas_alloc+0x336/0x440 [ 2435.521563] should_failslab+0x5/0x20 [ 2435.522139] kmem_cache_alloc+0x5b/0x310 [ 2435.522709] xas_alloc+0x336/0x440 [ 2435.523211] xas_create+0x34a/0x10d0 [ 2435.523760] ? kernel_text_address+0xf2/0x120 [ 2435.524382] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2435.525103] xas_store+0x8c/0x1c40 [ 2435.525609] __xa_store+0x164/0x2d0 [ 2435.526113] ? xa_delete_node+0x280/0x280 [ 2435.526688] ? trace_hardirqs_on+0x5b/0x180 [ 2435.527290] xa_store+0x31/0x50 [ 2435.527771] __io_uring_add_tctx_node+0x1cf/0x520 [ 2435.528436] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2435.529152] ? alloc_fd+0x2e7/0x670 [ 2435.529660] io_uring_setup+0x1fbb/0x2980 [ 2435.530241] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2435.530939] ? wait_for_completion_io+0x270/0x270 [ 2435.531637] do_syscall_64+0x33/0x40 [ 2435.532149] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2435.532844] RIP: 0033:0x7f0e6488ab19 [ 2435.533343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2435.535858] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2435.536938] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2435.537935] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2435.538925] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2435.539928] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2435.540984] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:57:01 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xfffffc01, 0x0, 0xd7b2}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = syz_open_dev$mouse(&(0x7f0000000100), 0x7, 0x230080) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x4, 0x0, 0x2, 0x8f, 0x0, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x40, 0x745680, 0x2, 0x1, 0x2, 0x1c000, 0x7, 0x0, 0x2, 0x0, 0x5}, 0xffffffffffffffff, 0x0, r2, 0x8) dup3(r0, r1, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r5, 0x1) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0) fchmod(r5, 0x2a) r6 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25, 0x8001}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) r7 = openat(r6, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r8 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x400000, 0x0) sendfile(r7, r8, 0x0, 0x10000000c) syz_io_uring_setup(0x77d5, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r8, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r7}, './file0\x00'}) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r9, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r10, 0x0, &(0x7f0000000440)="037ec052eb7052ecc311eb97be349b472124662ef4dede168d2cc6b84523e469f7de3551a997ff1a436a6a460d6c7b3b654058217932b9b4e725b61005069a94b0023b61ffa96663ecdf9beb68cbd35d7220f33536b1ffa44c6249741c19fb3b87fc119879864c8fd9e2289f682666006227ca0c846b8af077e9fddcb04be43575ac9567d837f2f5d2333716fd4d", 0x8e, 0x12140, 0x1, {0x0, r11}}, 0x80000000) syz_io_uring_submit(r3, r4, &(0x7f0000000140)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd=r0, 0x0, 0x0, 0x0, 0x1, 0x0, {0x0, r11}}, 0x8) 08:57:01 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) shutdown(r2, 0x0) dup3(r0, r1, 0x0) [ 2435.571071] FAT-fs (loop6): Unrecognized mount option "nnonumtail=1" or missing value 08:57:01 executing program 3: sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="840000000d060108000000000000000005000006100003006269746d61703a706f7274000c000300686173683a69700005000100070000000500050000001e0016000300686173683a6e65742c706f72742c6e657400000011000300686173683a69702c6d61766b00000000050005000c00000010000300686173683a69702c6d616300"], 0x84}, 0x1, 0x0, 0x0, 0x44000}, 0x4004) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000700), r0) sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x28, r1, 0x100, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x37}, @void, @val={0xc, 0x99, {0x0, 0x5}}}}, ["", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x2}, 0x4000000) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_TX_POWER(r2, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000400)=ANY=[@ANYBLOB="346c19b8fef5090098e4c5e0a54c000000f155378533a376ef65591b265afc007ee51820830e8fe4bbdda574c7a98fdcf88fbf88f3112c318e7c124afc", @ANYRES16=0x0, @ANYBLOB="00032dbd7000ffdbdf250c0000000c000600030000000300000008000b001f0000000c000600020000000200000008000300", @ANYRES32=0x0, @ANYBLOB="08000b000800000008000b0002000000"], 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x40) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000200), r3) sendmsg$IEEE802154_LLSEC_DEL_KEY(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)={0x38, r5, 0x401, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x2}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x24000000}, 0x0) sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(r2, &(0x7f0000000380)={&(0x7f00000002c0), 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, r5, 0xc1d, 0x70bd2a, 0x25dfdbfc, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x20048000) fcntl$dupfd(r0, 0x0, r0) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000680), r6) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_POWER_SAVE(r0, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000800)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="000826bd7000ffdbdf253e00000008000300", @ANYRES32=0x0, @ANYBLOB="0c009900080000005e00000075e6139b23eb8900a2269bedd1a961000024350014de3a7496c49e73b6e1ff53ea"], 0x28}, 0x1, 0x0, 0x0, 0x8008811}, 0x4000) sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x2c, r5, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x41}, 0x24008044) pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) munlock(&(0x7f0000ffd000/0x2000)=nil, 0x2000) [ 2435.602584] FAT-fs (loop5): bogus number of reserved sectors [ 2435.603556] FAT-fs (loop5): Can't find a valid FAT filesystem 08:57:01 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0xb13, &(0x7f00000021c0)=0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r2, 0x0) io_submit(r1, 0x1, &(0x7f0000002380)=[0x0]) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) dup3(r0, r3, 0x0) 08:57:01 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 53) [ 2435.632314] tmpfs: Unknown parameter 'euid<00000000000000000000' 08:57:01 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = socket(0x5, 0x2, 0x4) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00'}) dup3(r0, r1, 0x0) 08:57:01 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/sky2', 0x100, 0x0) r2 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000080)={r2, 0x17, 0x8, 0xcb4d}) [ 2435.650937] FAULT_INJECTION: forcing a failure. [ 2435.650937] name failslab, interval 1, probability 0, space 0, times 0 [ 2435.652913] CPU: 0 PID: 12130 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2435.653890] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2435.655083] Call Trace: [ 2435.655483] dump_stack+0x107/0x167 [ 2435.656012] should_fail.cold+0x5/0xa [ 2435.656564] ? create_object.isra.0+0x3a/0xa20 [ 2435.657217] should_failslab+0x5/0x20 [ 2435.657758] kmem_cache_alloc+0x5b/0x310 [ 2435.658328] ? mark_held_locks+0x9e/0xe0 [ 2435.658895] create_object.isra.0+0x3a/0xa20 [ 2435.659530] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2435.660234] kmem_cache_alloc+0x159/0x310 [ 2435.660808] xas_alloc+0x336/0x440 [ 2435.661302] xas_create+0x34a/0x10d0 [ 2435.661823] ? kernel_text_address+0xf2/0x120 [ 2435.662447] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2435.663179] xas_store+0x8c/0x1c40 [ 2435.663701] __xa_store+0x164/0x2d0 [ 2435.664206] ? xa_delete_node+0x280/0x280 [ 2435.664783] ? trace_hardirqs_on+0x5b/0x180 [ 2435.665367] xa_store+0x31/0x50 [ 2435.665795] __io_uring_add_tctx_node+0x1cf/0x520 [ 2435.666460] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2435.667204] ? alloc_fd+0x2e7/0x670 [ 2435.667729] io_uring_setup+0x1fbb/0x2980 [ 2435.668347] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2435.669043] ? wait_for_completion_io+0x270/0x270 [ 2435.669730] do_syscall_64+0x33/0x40 [ 2435.670249] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2435.670955] RIP: 0033:0x7f1ba3a34b19 [ 2435.671486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2435.674006] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2435.675069] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2435.676108] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2435.677126] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2435.678139] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2435.679125] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:57:01 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 56) [ 2435.702342] FAT-fs (loop6): Unrecognized mount option "nnonumtail=1" or missing value 08:57:01 executing program 3: r0 = accept4$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000080)=0x14, 0x80800) pidfd_getfd(0xffffffffffffffff, r0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x80000, 0x108) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) [ 2435.748644] FAULT_INJECTION: forcing a failure. [ 2435.748644] name failslab, interval 1, probability 0, space 0, times 0 [ 2435.750213] CPU: 1 PID: 12146 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2435.751139] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2435.752296] Call Trace: [ 2435.752641] dump_stack+0x107/0x167 [ 2435.753149] should_fail.cold+0x5/0xa [ 2435.753686] ? create_object.isra.0+0x3a/0xa20 [ 2435.754376] should_failslab+0x5/0x20 [ 2435.754917] kmem_cache_alloc+0x5b/0x310 [ 2435.755490] ? mark_held_locks+0x9e/0xe0 [ 2435.756051] create_object.isra.0+0x3a/0xa20 [ 2435.756666] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2435.757391] kmem_cache_alloc+0x159/0x310 [ 2435.757962] xas_alloc+0x336/0x440 [ 2435.758454] xas_create+0x34a/0x10d0 [ 2435.758984] ? kernel_text_address+0xf2/0x120 [ 2435.759634] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2435.760351] xas_store+0x8c/0x1c40 [ 2435.760883] __xa_store+0x164/0x2d0 [ 2435.761407] ? xa_delete_node+0x280/0x280 [ 2435.762009] ? trace_hardirqs_on+0x5b/0x180 [ 2435.762634] xa_store+0x31/0x50 [ 2435.763112] __io_uring_add_tctx_node+0x1cf/0x520 [ 2435.763801] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2435.764569] ? alloc_fd+0x2e7/0x670 [ 2435.765096] io_uring_setup+0x1fbb/0x2980 [ 2435.765685] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2435.766414] ? wait_for_completion_io+0x270/0x270 [ 2435.767120] do_syscall_64+0x33/0x40 [ 2435.767669] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2435.768403] RIP: 0033:0x7f0e6488ab19 [ 2435.768939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2435.771554] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2435.772647] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2435.773666] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2435.774684] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2435.775724] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2435.776745] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:57:15 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 57) 08:57:15 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r1, 0x0, r1) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r2, 0x9, r3, 0xa) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000040)={&(0x7f0000001e00)={0x27a0, 0x19, 0x8, 0x70bd27, 0x25dfdbfe, {0x18}, [@generic="a01ae2dc772b80eb2378ca49a33bcac363aca19aef561717f62324a42d63127c0918947ed7fa0bd1a4f83d231b19e75009858a109f68af5379c3690dedacde42b4f6dd7a479a03459f27f9ecbc4fc6d8d0db2d62269ecdb922cb", @typed={0x4, 0xe}, @generic="15863695767fa74c17508f85c7826691147be308548bdeadc91e57950d7b43078d82a65ba8ab9e287f3f0345be490c0002a6dc5648fa6d6cc941a0204360302323c8472ac5d59229e8853915b989978e2467fbe5cffbdf3095f753bd29086dbbe5f66be48c8684cafbc1332dba18f9f9420db3c9f74d1851bad98f5b37f5202d12e92fd707d159e4127276829420131e22b70a5c0da79cad13230bf49a17d5f9b2be4c7628a28fa2a8ba93e61521f6e06f206447792ec350fc3607e5a3e966b416541466ea575f090fd350", @nested={0xc, 0x10, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r1}]}, @nested={0x1299, 0x42, 0x0, 0x1, [@typed={0x8, 0x94, 0x0, 0x0, @pid=r2}, @generic="261b71fa154d84fbd56d5adba1dff21696749a370ff22d0b9824f45deaa0c872275764b8ecee4d4ac1b672686b49e2de652dcf2006687d23ef502785f27c51ce659d63df9fb9e3838f2eee66b829d3daddcbc82931f1e14d707ee40f6c83775bada18946a761d406a3269bf964ba9e8aa0f5df2e48c952b685ad796df46c1cd6549d8a8db3df58bb35732c72cb298922521fb6ecf1449c8dc9ccbdf1e610bc4eeb52bbfe82104f07b421c958f52358e551e021940658376539c7cd7cdb4dbedf93d0fc7e9a55451e43ffe73d01633676e16a64aa661a4d8c67c1f511bf4a8306f3ddfc99e62c91e61d70920bcc", @typed={0xc, 0x8d, 0x0, 0x0, @u64=0x2}, @typed={0x7, 0x7b, 0x0, 0x0, @str='((\x00'}, @typed={0x6, 0x7f, 0x0, 0x0, @str='#\x00'}, @generic="a5e08e9fcdfa372ec4a84bbe4a9b7077defe0daa79d43d634c837d93b6f064cff7e6b20faf15e5893384d9330d63048a30f6b010214e491def7807358b0f516973d94c57b732e0ded353c7a85219e4908f43754d7d3836f7bef74581abf856e5858ac0dbfa95370f1a082172a55eeedf6ebd4f954ade1a7cd46a24d0c0ece2fe2e564a80680f4ab0d73529a97fc3b23e86479cd5a69d7813443e219e5bdaef732334373b577f2072838ad8c37a33841a3ef5bc6a0b4e42dd7549f79f8565596302159968cc", @generic="88bba164d4c1b26e91eb0028f1676d1df635fc7259ee959790bf1bb2f2f946414c1eaf359a80ac74fae0a2ac0a4780cfade4488fbae30c3892415ec9b8630d25177b63a084f56a790f709693c10e2ed7ec2ff96f1b1a1c57708a7cf72784c933aad9af4f68a3bc3a9404eede95ae020ca5a47fef81915edaf88ad152ef1365df9189b01627b91be98e683636f87fa50736380bb3979f64a54702abe09760169b258e174cea291c4535ad0fb3584c639cac7ee8c02c89e17d0e5d2407bf1eb8", @generic="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"]}, @typed={0x14, 0x92, 0x0, 0x0, @ipv6=@mcast1}, @nested={0x10bf, 0x4b, 0x0, 0x1, [@generic="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", @generic="461b15b2d4e29f0b2229b1c4d383f83bc7b74a1c1af1129a94489c3c746c8bf579829399ffffa949b19bdcfe20bc2a5d6043254c70ea9f4d55ad5827ad65864becc0eb199a5ac6af32e862d993c3df75e804876ca112044518ee7c9497b3c93d1d4a315040e3a119fcd053ed33e52035b8ef31f948ed13c413be732f2ea426af15740c9c6291fed78c54c662086c25b5e472b3f1511005c40df79cff681a6f998bbbe7d973f6a709daf03cf834b4555ef499b8ffe2fc1192b2af75"]}, @nested={0x2e3, 0xd, 0x0, 0x1, [@generic="8c92115bacf107722c7ba77d4b211cffbc9e7ccb0885726b3a7cda2c72047c825154728d276c69f22030950535d1e6e82e9e37529c3b25ca4607516e3c314ad9481f5e1a50b21c861bde4862957b2dee66c725faf8be6df91788f0c45c5c1f1e5f1444c59dfd4d2dd655d1aff5c594b7dfe43b412f07d109a06cf2937fed360a145e66d1c1d5c45147f394cb0772148f685f37d1a20fa486a79e839e8cd0de10e9ce8f7c0edb8a487da1523f5505b80de88bc74ae9dff0670f68fcfa5488c7aac948beef7bb012bad9cfa36531ee3f5ca83542a7fed6e1b003d090ae4d3feba0df93386dd4", @generic="a8da4777c1e5867c9e5f6954b54d5d7b78d392a956b877f7ed510f9d4678a919e39289c09aaf5d9ada5622ee77e1be6ec19877110a4cc2e0b2878c6a44da3ac1a60f906cb8", @generic="81f9e18c1e4cf97b8492b9cc1bc85b4ae04850eaa1fa192dfaad766ede7e7e35c9a4203cf0c80517269775cb74659f77ce7c2695d2a559001d7759130623e4d48fd959bd687eb472c3bccbfd6322ec9b071b00b77854282c243d2639068393fb50f3a22117dceb762529929fed3124d863ec5873985a59c0a099b01d32d46d1b84555a85f5916e24487d4b9cf1f1e1b72da5b525ab2c043dd7fa074a5002e1ef582ece09db3b9c2b5534965398195019f06b15b890025e4e5115d5d5c73cbc7f37925c758b1f74cc858c7b6074913974af84809e0ca47f56c365e657bc152ba7269178beb2bb84467c7491604cef76c0a3467bd8d3ea", @generic="d29d3c1e02e9c249cdf726f6ffc113349cb69a46a8a3ed2a364f3f80b804f95d80a34b7fcb3dfa1ed895978fb11a15e485b5f76fee630ac8db00cd2df83a3292ce15c0ec91655c164b472e1b4511947df7a3cc1783a636290266802ad171d4a358c101cf490a1b393e6e9cf29e1e6f3476ab626b515ddc1baf0df2d3336306546d8c271a1a1f8aa089e6503105537149915d0d7952f3cc2fc91bf88243bf4479192c406185a8c19c68e7e42d7d36a4a9ca8d8637860cf64ebeff8fdf9f8ce3"]}]}, 0x27a0}}, 0x40000) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) dup3(r0, r4, 0x0) 08:57:15 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) sendmsg$nl_generic(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) fcntl$dupfd(r3, 0x406, r5) sendmmsg(r2, &(0x7f0000000000), 0x0, 0x4008050) dup3(r0, r1, 0x0) 08:57:15 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2/binder0\x00', 0x2, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) copy_file_range(r1, &(0x7f0000000080)=0xffffffff, r4, 0x0, 0x9, 0x0) 08:57:15 executing program 6: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x2054, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fallocate(r0, 0x4, 0xe5a, 0x7) r1 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)=0x0) r3 = signalfd4(r0, &(0x7f0000000040)={[0x80]}, 0x8, 0x80000) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) syz_io_uring_submit(0x0, r2, &(0x7f00000000c0)=@IORING_OP_OPENAT={0x12, 0x3, 0x0, r3, 0x0, &(0x7f0000000080)='./file0\x00', 0x84, 0x2000, 0x12345}, 0x5) 08:57:15 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ff3000/0x3000)=nil, 0x3000, 0x3000000, r0) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xc, r0) munlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000) 08:57:15 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x30, 0xffffffffffffffff, 0x10000000) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r3, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) syz_io_uring_submit(0x0, r2, &(0x7f0000000180)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r3, 0x0, &(0x7f0000000080)="2e822109fce0093bba3a5bd9aad380db34bd56acebeed8e56a21a812110c91577294f5e51a96f977495c9d43bee57665e30dc535a5936e255cebfe9b712aee1420eeaa5a6030e019cbb2fb88b60888a63648fc775331163b976dc31f93a6208bf4171fd5860e9db5c31ae12a3325be8393b3c8d95b396b9895680afaeec5d26e4b14428d00ff333f4fea243b04f2ec8f97fb0061aa35728210e7bd87b7f5e2ba981874ebbbf10f9e6e0e28344ff1baa5f9cad970b083abec8ea0099287ce0c69e19a5186b75437eda75468ca76746f23a33f4b8d215c6a", 0xd7, 0x40000000, 0x1}, 0x4) shutdown(r1, 0x0) r4 = dup3(r0, r1, 0x0) r5 = signalfd(r4, &(0x7f0000000000)={[0x8000]}, 0x8) io_uring_enter(r5, 0x7249, 0x42dd, 0x0, &(0x7f0000000040)={[0x4]}, 0x8) 08:57:15 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 54) [ 2449.521708] FAULT_INJECTION: forcing a failure. [ 2449.521708] name failslab, interval 1, probability 0, space 0, times 0 [ 2449.523330] CPU: 1 PID: 12174 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2449.524313] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2449.524317] Call Trace: [ 2449.524335] dump_stack+0x107/0x167 [ 2449.524349] should_fail.cold+0x5/0xa [ 2449.524364] ? create_object.isra.0+0x3a/0xa20 [ 2449.524379] should_failslab+0x5/0x20 [ 2449.524393] kmem_cache_alloc+0x5b/0x310 [ 2449.524414] ? mark_held_locks+0x9e/0xe0 [ 2449.529300] create_object.isra.0+0x3a/0xa20 [ 2449.529313] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2449.529331] kmem_cache_alloc+0x159/0x310 [ 2449.529350] xas_alloc+0x336/0x440 [ 2449.529364] xas_create+0x34a/0x10d0 [ 2449.529383] ? kernel_text_address+0xf2/0x120 [ 2449.529405] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2449.533582] xas_store+0x8c/0x1c40 [ 2449.534087] __xa_store+0x164/0x2d0 [ 2449.534292] FAULT_INJECTION: forcing a failure. [ 2449.534292] name failslab, interval 1, probability 0, space 0, times 0 [ 2449.534593] ? xa_delete_node+0x280/0x280 [ 2449.534617] ? trace_hardirqs_on+0x5b/0x180 [ 2449.534637] xa_store+0x31/0x50 [ 2449.537876] __io_uring_add_tctx_node+0x1cf/0x520 [ 2449.538546] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2449.539286] ? alloc_fd+0x2e7/0x670 [ 2449.539801] io_uring_setup+0x1fbb/0x2980 [ 2449.540392] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2449.541089] ? wait_for_completion_io+0x270/0x270 [ 2449.541772] do_syscall_64+0x33/0x40 [ 2449.542287] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2449.542999] RIP: 0033:0x7f1ba3a34b19 [ 2449.543520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2449.546047] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2449.547105] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2449.548116] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2449.549117] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2449.550126] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2449.551127] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2449.552164] CPU: 0 PID: 12163 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2449.553183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2449.554387] Call Trace: [ 2449.554790] dump_stack+0x107/0x167 [ 2449.555327] should_fail.cold+0x5/0xa 08:57:15 executing program 3: pkey_mprotect(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x3000000, 0xffffffffffffffff) [ 2449.555884] ? xas_alloc+0x336/0x440 [ 2449.556631] should_failslab+0x5/0x20 [ 2449.557197] kmem_cache_alloc+0x5b/0x310 [ 2449.557793] xas_alloc+0x336/0x440 [ 2449.558315] xas_create+0x34a/0x10d0 [ 2449.558872] ? kernel_text_address+0xf2/0x120 [ 2449.559528] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2449.560309] xas_store+0x8c/0x1c40 [ 2449.560841] __xa_store+0x164/0x2d0 [ 2449.561375] ? xa_delete_node+0x280/0x280 [ 2449.561992] ? trace_hardirqs_on+0x5b/0x180 [ 2449.562620] xa_store+0x31/0x50 [ 2449.563099] __io_uring_add_tctx_node+0x1cf/0x520 [ 2449.563790] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2449.564569] ? alloc_fd+0x2e7/0x670 [ 2449.565106] io_uring_setup+0x1fbb/0x2980 [ 2449.565726] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2449.566475] ? wait_for_completion_io+0x270/0x270 [ 2449.567199] do_syscall_64+0x33/0x40 [ 2449.567743] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2449.568490] RIP: 0033:0x7f0e6488ab19 [ 2449.569032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2449.571712] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2449.572829] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2449.573868] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2449.574892] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2449.575900] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2449.576932] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:57:15 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x10, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0xe7367197d58ba7d7, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2}}, 0x9) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x0) dup3(r0, r2, 0x0) 08:57:15 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000002, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x2000002, 0xffffffffffffffff) 08:57:15 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, r2, @in_args={0x3}}, './file0\x00'}) getsockopt$IP_SET_OP_GET_BYINDEX(r3, 0x1, 0x53, &(0x7f0000000040), &(0x7f0000000080)=0x28) 08:57:15 executing program 2: r0 = memfd_create(&(0x7f00000003c0)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xdcp\xb0\x06\x00\xfd\x7f\x00\x00\x00\x00\x00\x00\xda\xacQB\xa7\x8d\xb7\x01TI\x0fG/\xf9\xb4,\xa0\"\xe0\x9b&\x13\x89\xbd;\xec\x90\x11\x8ah\x18\x10m\x13\xa7\xb9A\x02\xab\xff\x84V\xb4\xcc.r=(\xb7\xc9\xb0\v\x12\'m\x96\xf3\xc6\x7f}cPC%Bf\r\xff\x00\x1dh\x14\xc8\xedL\x83 \x00\xce\b\xe7v\xc6d\a\x87+\xf6\xebB\xd0cO\xde\xbf\x00\x00\xad\xf1I\\B4\xf6\xff\xd6{X`\xa2\xa3\x8c\xb9\xea\x8d\xf6\x04`<\xc4db\xfd\n\x00\x00\x00\x00\x00\x00\x00\x00\x00\x84\xd6\x06\xbc$]\xad\xd95\x9e\xf4q\x8c\x02\xaf\xf4\x01\xa8\x11\xe3\x7f\xf6\xfbPIs\x97x\xe5\xcd\xdb\xea\xcb1^\x86\xb2\xd2-\xe4\xab\xec\x91\xf8\x8f\xee\xef\xefE\xb1\xe9\xb0\xd3\x93\xb2\xd1\xffj\x10e\x9a\x1b\xc2XbSdiQ\x8c\xbc2\x15\xf0\x19O\xe80\xc6%\xa0\f<\x9d~\xbb\xebo\xc6)\xcdT%\xb0\x05B\x0e\xe3+\x8ee\xba\xd2+\x12\xe7\xff\xbf\xe1\x8c\xc7\x14I\xfc\x98\xc0\x15\xd0[$\xa9\x13\xc7n\x105\x10B\x13\x13\xb7\xd3`f9\xfe\xce\x8e\xef\x1cQ\a\xc3?\x84\xb8q\xf5\xdah*x\'\xc0\xab4\xb8[2\xe8d \xb0\xb0$u7\xb5lR.\xd59^\x11_\xce\xaaQ\xa8\xc6\xd8!\x9d\x96\x82\xf6\x8b\xc3\xce\xea1\xfe1\xf8\b\x1b\xe4\'J?5\x04[\xd3\xea<\x15\xb3\xab\xd6\x0fn0\x90F\v\xc8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1c?\xad\xfc\xc7\xb2n\x88>\v+\xb0\xfe|\x87|\xf8\xc8Hr\xff\x00,.\xe2\x1fUAi\x1a\xf8\xe1Z\xf2\x88.<\xff}\x11\x80\xfaM\xc7\x81\xeeP\xf6\x96\x85\xf1\xbcS\x98\xadsI\xe0sg\x9c\xbb4_\xb9mc\xd6\x02\xc0\xd5\xaf\xdc\x82r\xe2\\a\xe7\x7f\xc3\xd2\x1cx\x8e\x14\x18\xbd\xfe\x8d\xfe\xf7t1*1D@\xeb\xd4\xfc\x9d+[\xb2\x7f\x17\x88]T\xad\xa5\xac\xd9\xa0\xe8bQFi\xba\xce\x1aXO\x06\x96&3\nx\xbd\x10\x1c]aGb\xfb#7\xcaZ<\t\xf9\x8d\xfc\x98q\x85\xb5\xf2\x9b\xa7\xe7p\xbe\xfb\xe1\xdc)\xc7\xd5\x0e3\x15\xabhf\x9ct\x0fL\xf6J\x897\xa6\xff\x89d\xae|\x81\x87cqy0\x1c\xf7\xa7\xdd\xcb\x1a[Lw\xd1g#a\x9e\xef~\x1c^@\xfd\xa7\xf4\x05&M(\xb5\xf8\n\xfdc\x03\xa3\x82\xf6\xa9+\xe3\xb3\x1eJ\xb4\x89C\xea\xed\x0e\xc1\x05\x9a\v\xe2\xde\xa2\xc1Q?\x94\xe0%\xca\x8aN_\xfb\xed\x17k\xac\xc9\x00\x14', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x1000000, 0x10010, r0, 0xaf847000) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000000)) [ 2463.405116] FAULT_INJECTION: forcing a failure. [ 2463.405116] name failslab, interval 1, probability 0, space 0, times 0 [ 2463.407217] CPU: 0 PID: 12222 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2463.408182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2463.409352] Call Trace: [ 2463.409727] dump_stack+0x107/0x167 [ 2463.410232] should_fail.cold+0x5/0xa [ 2463.410762] ? xas_alloc+0x336/0x440 [ 2463.411282] should_failslab+0x5/0x20 [ 2463.411805] kmem_cache_alloc+0x5b/0x310 [ 2463.412370] xas_alloc+0x336/0x440 [ 2463.412873] xas_create+0x34a/0x10d0 [ 2463.413407] ? kernel_text_address+0xf2/0x120 [ 2463.414041] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2463.414768] xas_store+0x8c/0x1c40 [ 2463.415274] __xa_store+0x164/0x2d0 [ 2463.415780] ? xa_delete_node+0x280/0x280 [ 2463.416362] ? trace_hardirqs_on+0x5b/0x180 [ 2463.416975] xa_store+0x31/0x50 [ 2463.417448] __io_uring_add_tctx_node+0x1cf/0x520 [ 2463.418129] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2463.418853] ? alloc_fd+0x2e7/0x670 [ 2463.419373] io_uring_setup+0x1fbb/0x2980 [ 2463.419952] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2463.420675] ? wait_for_completion_io+0x270/0x270 [ 2463.421363] do_syscall_64+0x33/0x40 [ 2463.421887] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2463.422620] RIP: 0033:0x7f1ba3a34b19 [ 2463.423150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2463.425730] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2463.426814] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2463.427834] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2463.428834] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2463.429808] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2463.430793] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:57:29 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = accept4$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed}, &(0x7f00000000c0)=0xe, 0x80800) bind$bt_l2cap(r2, &(0x7f0000000100)={0x1f, 0x200, @none, 0x8, 0x2}, 0xe) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001d00210c88000000000000000200000005000000000000000800010000000000"], 0x24}}, 0x0) fcntl$dupfd(r4, 0x0, r0) openat$hpet(0xffffffffffffff9c, &(0x7f0000000140), 0x40400, 0x0) dup3(r0, r1, 0x0) 08:57:29 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 58) 08:57:29 executing program 0: sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x40, 0x2, 0x3, 0x401, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFQA_CFG_CMD={0x8, 0x1, {0x3, 0x0, 0x28}}, @NFQA_CFG_CMD={0x8, 0x1, {0x0, 0x0, 0x8ca243dad5cb0ab0}}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x20}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x10000, 0x1}}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000040) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r1, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) dup3(r1, r0, 0x0) 08:57:29 executing program 2: ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000006c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0/file0\x00'}) tee(0xffffffffffffffff, r0, 0x7, 0x1) r1 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = open(&(0x7f00000000c0)='./file0\x00', 0x10d8c0, 0x3c) sendmsg$nl_generic(r2, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="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", @ANYRES32=r4, @ANYBLOB='\x00'], 0x11c}}, 0x40080d4) ioctl$AUTOFS_DEV_IOCTL_READY(r4, 0xc0189376, &(0x7f0000000700)=ANY=[@ANYBLOB="01000100000018000000000062e6adb5a7f009cbb4211c77aa66bc52766929072d7f597e738974d09bd37b28b92cc785d60d8c634017685413f64b34d9c56963166973a4ecd87bf67b1ff8e12fc8a21ffbeeb4dfdb20b343434a48bf98ae1bb96b17756ef7c54873874c5e0ac89c242106d009dc78b818b061185fa12e878016c4", @ANYRES32=r3, @ANYBLOB="06000000000000002e2f66696c653000"]) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_CHANNEL(r6, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000580)={0x1c, r7, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r5, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40180100}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x38, r7, 0x400, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x48}}}}, [@NL80211_ATTR_NAN_FUNC={0x10, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_SERVICE_ID={0xa, 0x2, "21a7386e1e0a"}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20044000}, 0x40) r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000440), r6) sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r0, &(0x7f0000000680)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000980)={0xf4, r9, 0x100, 0x70bd2d, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x4}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x5}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x101}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x2}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x6b9}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x5}}]}, 0xf4}, 0x1, 0x0, 0x0, 0x90}, 0xc4) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r1, 0x0) 08:57:29 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) preadv(r2, &(0x7f0000000380)=[{&(0x7f0000000140)=""/33, 0x21}, {&(0x7f0000000180)=""/59, 0x3b}, {&(0x7f00000001c0)=""/178, 0xb2}, {&(0x7f0000000280)=""/225, 0xe1}], 0x4, 0x1, 0x5) shutdown(r1, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r3, 0x0, r3) r4 = syz_io_uring_setup(0x157d, &(0x7f0000000040)={0x0, 0x3503, 0x1, 0x0, 0x379, 0x0, r0}, &(0x7f0000003000/0x3000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100)) r5 = dup3(r4, r3, 0x0) openat(r5, &(0x7f0000000000)='./file0\x00', 0x20c0, 0x184) 08:57:29 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 55) 08:57:29 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x101181, 0x148) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) 08:57:29 executing program 3: ioctl$TUNSETVNETBE(0xffffffffffffffff, 0x400454de, &(0x7f0000000000)=0x1) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4, 0xffffffffffffffff) fchdir(0xffffffffffffffff) 08:57:29 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x6, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x5) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x3000004, r1) mlock2(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1) pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, r0) [ 2463.437893] FAULT_INJECTION: forcing a failure. [ 2463.437893] name failslab, interval 1, probability 0, space 0, times 0 [ 2463.439489] CPU: 0 PID: 12224 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2463.440452] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2463.441588] Call Trace: [ 2463.441954] dump_stack+0x107/0x167 [ 2463.442456] should_fail.cold+0x5/0xa [ 2463.442977] ? xas_alloc+0x336/0x440 [ 2463.443503] should_failslab+0x5/0x20 [ 2463.444030] kmem_cache_alloc+0x5b/0x310 08:57:29 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xf, 0xffffffffffffffff) prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffa000/0x3000)=nil) [ 2463.444601] xas_alloc+0x336/0x440 [ 2463.445306] xas_create+0x34a/0x10d0 [ 2463.445822] ? kernel_text_address+0xf2/0x120 [ 2463.446436] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2463.447161] xas_store+0x8c/0x1c40 [ 2463.447661] __xa_store+0x164/0x2d0 [ 2463.448165] ? xa_delete_node+0x280/0x280 [ 2463.448750] ? trace_hardirqs_on+0x5b/0x180 [ 2463.449346] xa_store+0x31/0x50 [ 2463.449799] __io_uring_add_tctx_node+0x1cf/0x520 [ 2463.450458] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2463.451180] ? alloc_fd+0x2e7/0x670 [ 2463.451688] io_uring_setup+0x1fbb/0x2980 [ 2463.452265] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2463.452969] ? wait_for_completion_io+0x270/0x270 [ 2463.453653] do_syscall_64+0x33/0x40 [ 2463.454162] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2463.454858] RIP: 0033:0x7f0e6488ab19 [ 2463.455379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2463.457908] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2463.458949] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2463.459938] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2463.460933] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2463.461909] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2463.462891] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:57:29 executing program 6: timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x77359400}}, 0x0) perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300)={0x0, 0x0, 0x4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x4, 0x80800) read(r1, &(0x7f0000000080)=""/80, 0x50) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x81, 0x1f, 0xed, 0x9, 0x0, 0xfff, 0x8, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x10000, 0x1, @perf_config_ext={0xfe7b}, 0x800, 0x7fffffff, 0x3fc0, 0x8, 0x80000000, 0x7fff, 0xf6c0, 0x0, 0x34}, 0x0, 0x10, 0xffffffffffffffff, 0x2) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000007, 0x13, r0, 0x8000000) 08:57:29 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x4410, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x556}, 0x0, 0x0, 0xffffffffffffffff, 0x1) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x2, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x6, 0x1}, 0xe) r2 = dup3(r0, r1, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, &(0x7f0000000000)={0x7, 0x9, 0x6, 0x1, 0x0, 0x6, 0x4}, 0xc) 08:57:29 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xe, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000002, r0) 08:57:29 executing program 2: mmap(&(0x7f0000946000/0x2000)=nil, 0x2000, 0x0, 0x1f012, 0xffffffffffffffff, 0x0) 08:57:29 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2000002, 0x4010, r0, 0x8000000) syz_io_uring_setup(0x5d6c, &(0x7f0000000040)={0x0, 0x8320, 0x2, 0x1, 0xfe}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r4 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='blkio.throttle.write_iops_device\x00', 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd=r0, 0x9, {0x0, r0}, 0x4, 0x8, 0x1f0ff44dfd42e806, {0x0, r3, r4}}, 0x3) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:57:29 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x8, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) sync_file_range(0xffffffffffffffff, 0xba8e, 0x489, 0x0) shutdown(r1, 0x0) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0) r2 = dup3(r0, r1, 0x0) bind$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x8, @none, 0x52}, 0xe) 08:57:29 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 56) 08:57:29 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 59) [ 2463.636315] FAULT_INJECTION: forcing a failure. [ 2463.636315] name failslab, interval 1, probability 0, space 0, times 0 [ 2463.637831] CPU: 0 PID: 12258 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2463.638767] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2463.639825] Call Trace: [ 2463.640170] dump_stack+0x107/0x167 [ 2463.640649] should_fail.cold+0x5/0xa [ 2463.641147] ? create_object.isra.0+0x3a/0xa20 [ 2463.641738] should_failslab+0x5/0x20 [ 2463.642236] kmem_cache_alloc+0x5b/0x310 [ 2463.642783] ? mark_held_locks+0x9e/0xe0 [ 2463.643317] FAULT_INJECTION: forcing a failure. [ 2463.643317] name failslab, interval 1, probability 0, space 0, times 0 [ 2463.643347] create_object.isra.0+0x3a/0xa20 [ 2463.645316] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2463.646006] kmem_cache_alloc+0x159/0x310 [ 2463.646564] xas_alloc+0x336/0x440 [ 2463.647050] xas_create+0x34a/0x10d0 [ 2463.647568] ? kernel_text_address+0xf2/0x120 [ 2463.648187] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2463.648892] xas_store+0x8c/0x1c40 [ 2463.649411] __xa_store+0x164/0x2d0 [ 2463.649905] ? xa_delete_node+0x280/0x280 [ 2463.650488] ? trace_hardirqs_on+0x5b/0x180 [ 2463.651086] xa_store+0x31/0x50 [ 2463.651543] __io_uring_add_tctx_node+0x1cf/0x520 [ 2463.652187] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2463.652906] ? alloc_fd+0x2e7/0x670 [ 2463.653415] io_uring_setup+0x1fbb/0x2980 [ 2463.653994] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2463.654682] ? wait_for_completion_io+0x270/0x270 [ 2463.655354] do_syscall_64+0x33/0x40 [ 2463.655858] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2463.656566] RIP: 0033:0x7f1ba3a34b19 [ 2463.657083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2463.659588] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2463.660621] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2463.661582] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2463.662543] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2463.663503] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2463.664472] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2463.665455] CPU: 1 PID: 12259 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2463.666342] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2463.667393] Call Trace: [ 2463.667716] dump_stack+0x107/0x167 [ 2463.668127] should_fail.cold+0x5/0xa [ 2463.668564] ? xas_alloc+0x336/0x440 [ 2463.669021] should_failslab+0x5/0x20 [ 2463.669520] kmem_cache_alloc+0x5b/0x310 [ 2463.670044] xas_alloc+0x336/0x440 [ 2463.670464] xas_create+0x34a/0x10d0 [ 2463.670935] ? kernel_text_address+0xf2/0x120 [ 2463.671496] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2463.672126] xas_store+0x8c/0x1c40 [ 2463.672602] __xa_store+0x164/0x2d0 [ 2463.673061] ? xa_delete_node+0x280/0x280 [ 2463.673600] ? trace_hardirqs_on+0x5b/0x180 [ 2463.674116] xa_store+0x31/0x50 [ 2463.674495] __io_uring_add_tctx_node+0x1cf/0x520 [ 2463.675032] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2463.675687] ? alloc_fd+0x2e7/0x670 [ 2463.676132] io_uring_setup+0x1fbb/0x2980 [ 2463.676617] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2463.677188] ? wait_for_completion_io+0x270/0x270 [ 2463.677754] do_syscall_64+0x33/0x40 [ 2463.678234] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2463.678859] RIP: 0033:0x7f0e6488ab19 08:57:29 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x9, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x8020}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r2, 0x9, r3, 0xa) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r4, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x9, 0x1, 0x6, 0x7f, 0x0, 0x9, 0x2310, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x2, @perf_config_ext={0xff, 0x6}, 0x10000, 0x1, 0x7, 0x3, 0x3, 0x9, 0x2, 0x0, 0x7, 0x0, 0x8c}, r2, 0x6, r4, 0x8) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r6, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r5, 0x9, r6, 0xa) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x5, 0x1, 0x9, 0xfe, 0x0, 0x4, 0x10402, 0xb, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0xcc63, 0x7}, 0xc8a6, 0x3, 0x200, 0x1, 0x3d17, 0x80, 0x0, 0x0, 0x3, 0x0, 0x858}, r5, 0xf, 0xffffffffffffffff, 0x2) dup3(r0, r1, 0x0) [ 2463.679536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2463.682256] RSP: 002b:00007f0e61e00108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2463.683332] RAX: ffffffffffffffda RBX: 00007f0e6499df60 RCX: 00007f0e6488ab19 [ 2463.684336] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2463.685360] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2463.686370] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2463.687375] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:57:44 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 57) 08:57:44 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2, 0xffffffffffffffff) 08:57:44 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x4000000000000000, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0xfffffffe}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e24, 0x3, @remote, 0x7}, 0x1c) 08:57:44 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x1b32, &(0x7f0000000080)={0x0, 0x2f94, 0x20, 0x0, 0x12a}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000b52000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000100)=0x0) r5 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) r6 = openat(r5, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r7 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r6, r7, 0x0, 0x10000000c) syz_io_uring_setup(0x77d5, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r7, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r6}, './file0\x00'}) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r8, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r9, 0x0, &(0x7f0000000440)="037ec052eb7052ecc311eb97be349b472124662ef4dede168d2cc6b84523e469f7de3551a997ff1a436a6a460d6c7b3b654058217932b9b4e725b61005069a94b0023b61ffa96663ecdf9beb68cbd35d7220f33536b1ffa44c6249741c19fb3b87fc119879864c8fd9e2289f682666006227ca0c846b8af077e9fddcb04be43575ac9567d837f2f5d2333716fd4d", 0x8e, 0x12140, 0x1, {0x0, r10}}, 0x80000000) syz_io_uring_submit(r1, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x4, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000140)=@phonet={0x23, 0x5, 0x7, 0x9}, 0x0, 0x0, 0x6dce0fd07fd60e04, {0x0, r10}}, 0x0) 08:57:44 executing program 0: io_uring_enter(0xffffffffffffffff, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001c00210c80000000000000000200000005000002000000000800010000000000"], 0x24}}, 0x0) syz_io_uring_setup(0x23ec, &(0x7f0000000100)={0x0, 0xcb78, 0x4, 0x3, 0x1ba, 0x0, r2}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000180)) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) dup3(r0, r3, 0x0) 08:57:44 executing program 4: r0 = perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) setsockopt$inet6_udp_int(r2, 0x11, 0x1, &(0x7f0000000000)=0x75c1, 0x4) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r3, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r4 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0) dup2(r3, r4) 08:57:44 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 60) 08:57:44 executing program 5: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) ioctl$PERF_EVENT_IOC_ID(r1, 0x80082407, &(0x7f0000000040)) 08:57:44 executing program 5: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) dup3(0xffffffffffffffff, r0, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000000)=""/232, &(0x7f0000000100)=0xe8) [ 2479.282741] FAULT_INJECTION: forcing a failure. [ 2479.282741] name failslab, interval 1, probability 0, space 0, times 0 [ 2479.285826] CPU: 0 PID: 12294 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2479.287588] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2479.289705] Call Trace: [ 2479.290377] dump_stack+0x107/0x167 [ 2479.291308] should_fail.cold+0x5/0xa [ 2479.292276] ? xas_alloc+0x336/0x440 [ 2479.293247] should_failslab+0x5/0x20 [ 2479.294216] kmem_cache_alloc+0x5b/0x310 [ 2479.295260] xas_alloc+0x336/0x440 [ 2479.296172] xas_create+0x34a/0x10d0 [ 2479.297142] ? kernel_text_address+0xf2/0x120 [ 2479.298289] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2479.299629] xas_store+0x8c/0x1c40 [ 2479.300553] __xa_store+0x164/0x2d0 [ 2479.301492] ? xa_delete_node+0x280/0x280 [ 2479.302565] ? trace_hardirqs_on+0x5b/0x180 [ 2479.303676] xa_store+0x31/0x50 [ 2479.304521] __io_uring_add_tctx_node+0x1cf/0x520 [ 2479.305760] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2479.307095] ? alloc_fd+0x2e7/0x670 [ 2479.308037] io_uring_setup+0x1fbb/0x2980 [ 2479.309118] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2479.310416] ? wait_for_completion_io+0x270/0x270 [ 2479.311676] do_syscall_64+0x33/0x40 [ 2479.312621] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2479.313849] RIP: 0033:0x7f1ba3a34b19 [ 2479.314690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2479.318834] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2479.320553] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2479.322170] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2479.323779] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2479.325391] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2479.326981] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2479.327662] FAULT_INJECTION: forcing a failure. [ 2479.327662] name failslab, interval 1, probability 0, space 0, times 0 [ 2479.329939] CPU: 1 PID: 12302 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2479.330727] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2479.331681] Call Trace: [ 2479.331983] dump_stack+0x107/0x167 [ 2479.332400] should_fail.cold+0x5/0xa [ 2479.332845] ? create_object.isra.0+0x3a/0xa20 [ 2479.333376] should_failslab+0x5/0x20 [ 2479.333808] kmem_cache_alloc+0x5b/0x310 [ 2479.334273] ? mark_held_locks+0x9e/0xe0 [ 2479.334735] create_object.isra.0+0x3a/0xa20 [ 2479.335234] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2479.335813] kmem_cache_alloc+0x159/0x310 [ 2479.336293] xas_alloc+0x336/0x440 [ 2479.336699] xas_create+0x34a/0x10d0 [ 2479.337139] ? kernel_text_address+0xf2/0x120 [ 2479.337659] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2479.338259] xas_store+0x8c/0x1c40 [ 2479.338669] __xa_store+0x164/0x2d0 [ 2479.339081] ? xa_delete_node+0x280/0x280 [ 2479.339560] ? trace_hardirqs_on+0x5b/0x180 [ 2479.340056] xa_store+0x31/0x50 [ 2479.340444] __io_uring_add_tctx_node+0x1cf/0x520 [ 2479.341010] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2479.341603] ? alloc_fd+0x2e7/0x670 [ 2479.342025] io_uring_setup+0x1fbb/0x2980 [ 2479.342499] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2479.343076] ? wait_for_completion_io+0x270/0x270 [ 2479.343646] do_syscall_64+0x33/0x40 [ 2479.344066] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2479.344655] RIP: 0033:0x7f0e6488ab19 [ 2479.345085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2479.347201] RSP: 002b:00007f0e61dbe108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2479.348074] RAX: ffffffffffffffda RBX: 00007f0e6499e0e0 RCX: 00007f0e6488ab19 [ 2479.348895] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005408 [ 2479.349721] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2479.350534] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2479.351351] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2479.369897] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 08:57:45 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7783, &(0x7f0000000300)={0x0, 0x0, 0x20}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:57:45 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x9, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}, 0x0, 0x2513317d, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:57:45 executing program 4: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_print_times', 0x400000, 0x190) sendmmsg(r1, &(0x7f0000008300)=[{{&(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e23, @rand_addr=0x64010101}, 0x2, 0x4, 0x3, 0x3}}, 0x80, &(0x7f0000001280)=[{&(0x7f0000000180)="1ddfe216b23baa3c6c27c538afdfdef0582b09d6cfa8288bffee32e9eaa1f35aaaded85f27940e3998f96b76f2260f055ab881e68fe7b393c85ed6805d58908a622bf2c80ec885ec72d7b32e4f1714a75bb1e504f031c4437c5e722a8e82566a048ad9dabfe3075a03d085e4770aa24b348bbb28e6ffdba0d4bcce1f965ce88d4f0c95093b301680cee833ddd75fc084c8688fd2511ff04e67f835b48a32a03e607b3c87c732e7d48311ffc02b5fe06aa8377aa49776b85ddda0595e0373f4ebcc75627a9e21d6e9f367146e19", 0xcd}, {&(0x7f0000000280)="5406a6240da3d39bbf591de5c694e1ea86d877271f9b173ba2e3c2f366cbbc4827ed6445dc7b3c461fb4e7887bcd9abfa6b2bd1f208487587dd6d73d9f17628e74a484d11e82ecf399bc0bcc5c0c230923c9f857abb6ed92b24ee0d9994792b51c1095478c0779d015e1a7693d5b718a4a71c08b176fcaa659ea12bb2cf81a026ab2b8457852dade1eb1f92f6fa9fc1cf7adbdbdb3e774b43f625d5fe1948f03d9389f445b8e1edb0de3f73a872575cc28e567b6c82bbced30bb9316e2b4c917947e1b490c4ac5a94455b5305129a5ef859c57a7317c9caf965cddf071cacbb240aefbdde05ca50a68caffcd8a1991095525f8859da147e8c4626b54d8b6e41dd7f7dbf690ab8acb9769376aa88a77d8d7f94c1cd86d50b147e72d5bbe46e3348261f91ef4c32ec6c39a2e4e065733bd27690aa680c1884b50f1ab79be13af2c605d21b57a19b71ab72b86d5a2c7fe269e88d0b591a4c272fa4a3332184f1bb08e5bd5a45f768d52d10191ccd680f7f0a93d316c28625feba6456977eec9fb55319d75da3068b8a169b9c7cbd86ec538e14cc96b81238e4706e3eaa90f4d9a554701848d65dc7273a2714b4701d4ee3ae2b297c7d86ac7b6d4785ae960972bcf85a9cbf79e7cbf844c063cf16e733f2b428747291192363880f884054865d101a16ba048d8f6bf180e09866b73c834cf3c1a88bbc1e7b6a8daedaf76d82d64c594104ede8478411ba4928101b1c04333296c001727a62b58b4ca470ec9680f404166cc9e3cc9bbb7a97d9cb78d5f8544b0bee8c151dc98b2d7c25b5aade7c2dcf4a10da21c381f66ebaa4fafecb2fe7ca2c2d8bfd75102ab81cc9aa0a21252522d45acdd59654081cb172ff9c7f939a2890683f53f76b12f3594f5f89892c81fde0e820de764a87e9f8dcde4448888a107eebd955eb7c1367840f767e23bfc3add661ee8ed6e16280412b046b53257be1e40582f43536e24c1824ae48e93890b4a78f924ce523bdd977be29845d12175414534e3676822186f5ec268e98976a9ddfbcdc07cec7055ea7928f3af4482c8ae5f28542f4daafe7a6b6867ff02cc0e08db5ee449dfc2c38cd228369c4dfa8dabfcc7160a406672d738a864b67ad8d8b245b60c62ec4f70ae6afb98386f5894dc990dfd1ad8795213876d0e815911c5f2ab9cc81df6e7007dd690e6743ff01701ec26ab436321e3c857fe2765d1cfd6737eb9686b611c9a15b836422b1aeb294c7a62854aa9168769f873ee40aa2ebc03822578b86e3c75ca64e2fc50cb50ef88e9b402ce70b0f9704b068bf7f3b5e8ff28a438ae16d17961ff169a2fe1619bc2ad1cb08cafe011723745c896d1e2e519f4e4b8a6d1a64026534f2165868432487be422872e3de12201f2d06140265313b620644c1f0a8cd137299ad7aec157f6a6664ee30b347738d4223741499acac932ed8e30a2c04c70c5b3693bee3daec0a0a2374f1096963be6bc88cdc71d7f3677f46592c9c5b279132917d8f6a61b60f96fc79e9925cf68326f43fd0970faff7de2e6f4d9f0875c9af2e0d6b5294edf7b665db0d39fc2ee2c4d6913d905852850cbaa24847fc5754a59b0e8a904f9437495e00f97bad1655cc700ab3a5a2d9018189e4f0660c00405b0014ec5efde7bec4376555020143726be90e312a74491968bd03bedd79ba4bffaf23df66f58abd8e87c89b0c15345fb9fb8ac81348fe16f8b7515cc31ac29a2310cc1d0736bec9de9232f5701dcd51b4be7b32ea66241ca89cc872faddd6eefe53659eae22e41d04c7f1b0d5582ccc89e0cd5d3e99ebe148f53bcfa33388ae81bd86a9808b90a226230e29fc682cfbbaa41fdc5f98826b9c571898aed2e121e7e0159ef3c5fc56b5b5bceb5e134113b7c13a14e9f84162db9ecb40fee0f4990251e8880d11f5a28d112339ed86bf2c401f1e3a2c3312a3d5fb03d72962b941663e9b70e66b182ef66d6ea8af657fe1eae102ac081b73ef981f7cd5e07683b60f4ff6f04cf36c79d163377c85974477213315a5f8be18a18b5616d3c519eebc80c32d0d42aa931b742ce345cd1a0f3a3e65fc30dcce3d6654054dda64ad60c7c3ecad298ab810944f5d61f2b539ba59c9071b6ef8c77ee1215a2926ccdcb40b8189bb3041e2e4cf5cd583d37291d28747bdd2a0ed3e256e609fa96ed86b781e262cdee376fab4cdac41b039d0ba66fcfb0b1a94d7e21adeeda080288e0edd51edc10c881f842030bdc4c9fc76b0f2f04eee04280424f15e6d0a77ad841b36b3bd653c263a6962b7c7c9df7e88726e36cc86768224a9b5147b602b4f4ea4831a52e3de0205184d2cc75afc0d409d212519e30b1d48e9c287655f99faf3d6f6b28358606d1dbe1b0aec12090f22e709aaaa3f208e0ffceb4aa840a0d684fb50e3953eae784ae6a5df17565340cfe3fca3831200cd55a52f9fd616653b32246ea4c53cf08c80610586b4650eb9878af33d37cea052dc53b9922e244dd7feb58a0559dde37a6ce076332886af3b38004f2ff48fcae5a48afc5d7c6094615d3cddc2367b9d39a677fba3f6293ab5740ccb3219b0f4f23c7501bd84fd9e7354a3449a1db72811cb96abe961209600364b5082005903e6ee4390d8dd8637c4ca5daff143b47ca25ae84206265ecb5d05b0e7b0948ac27ab0264aabad039972b21120fff4433ff70db54bdb47898a27b76b904dce72b02d9a8773d973efe39ae021bf09153f820ed34540884d124af81e44fabe73bd6d5a555f10f6a9a76307e027801c0c92b72daff59f785bcb8a8e5d3427a0f2b378dabb6d8a8bda1b3d8cb3893562e22e82e7287dc4260d34cf0490a2064995c7d8f8a7f4409da6313aef200b31027d2eceed4638dd9b055590c37f333cab487f83ec288591f1993f6a644516bcdfe3219d0d8047a6607a6fa6517b5c671c3822bc6a07e3de4fb934039f62e4c48f1eb6ea7faa4d09510af6e053ad0efd1d91292620e94a77cd438a5752dcfa46e21bcb8945c9d302edae5159aa569cd4f7bf266569e07056a295cfbd93c87dcf0ded737e497564e3e6fd5d3d6a3d291e1c0b0ee807d91884397bd7b2082684bd8e0ecb0adfa1cac831ae3ddc6a5bd3120df719679623d4a3ad82c4bfdf0344f8a813bfd397b3b806e8b07925eb8a5e6e4c927314ebc7551a1ad8871ad932e05e8a84d0c57de2f88a51d6c6287e29d4ae4f45ed3bdbc0faf52975a73fc2eb976499a1f624f6b6c30f2cbfaf406dd629b5eb319dbcdeea217375eba62c25cec016d1e9f6f7cec2de54b957fc802a5841ca4fe1f3eef2a2afe78c86df9ae885da013c4928bf4ccb0d6a92b4b7ed8b2a56120c4dcf09b6d363df377558ceef09371456fb84a383116f7da053e2c58f632c1a4b71d6a13dd0b6208f5e32b2b6e7346f1b734c600bd1dc144cdbc07531a083bfd8ced265aabe772278e49bc0820d71b32bd33320b3ae8501f55a11e7e8538716cdd702a1e9233293a5b7d60296b80bd465c263cbb28e75eaca0c4e11c58feb058d32e63a93bdfe63a3ec49fbd80cab5e529fd27a12a1132061a462aed234d32e1d0d350e600566d20e31ca6108afe8edc38ed7fc1f111173424bc09f4e07d645d8470f408a45c7b9b8d412b730955635c27df8cb5cd489a9df4166348959f671199552c1a32c4d6a2ec4958933b39da4ac6e74eb076076c5f4b155e43b9a8c2396f4222167411bab00d3efa70d865b689f3b1cac4fefa0fed48d162c3e2235d25cd67f60cc08a36116dfbe571aa61ffc0d6d0ee4218577169aeef4943e035e50a73e2fa667efb02bdd80df6fd8267502de9fa9521fe7c7d82d6fc4ef7d810a9f5455095409fe1652558fa174b4e2aa69328960486bbc362041f7118069339cf3839c37ddac32e5188089c9e1ea335ef8f300a12fa008a1d5610119b429011ac7696177ea433b254cac39567ad566f2513cd80814b02add98703c0e34bcebc1f6d4dce66e1fe3b4bf06070b9fa293008e69982aa6f4425ca06a21fa0e318ef3a2d84592e492a1eea472565c3f7779b870f5fa5ad0a4abb69f40e4fd13a31861dcfa99aa50abf265a04babf128dfd2ff15c59d2918d82a50485ab0145d7d374c36aa3ce7eb96716326da8ab93beb0e4917cc43ce4e339a6d5cc9036fe8bf5c605fedf14bf196d17d03ad7a89ed1a18048a99cffd7c61755a52d0856e5a8a3e4871509da9502573c6ff4d862eb3f8a495618ad8f88c65697bc6b6384530d7e0fce5db093a9e1921ecb57e84b9c867ada2a866cffc33bf784721e4510efb827df327c7c5664bde272b1ab9fcd1abb1aab4469a9c823b88d84d1aa6ce114ece5c8dc0383f89e137f2be7340463ea4ecb8c027b948a898fc85de8ebb5418c11f9d989db15fc2be64f2a5f08cb42dd20aeced5632babfa585a5d25048e5053e744aa7c57e3af8bad60b7db4d11b45f5b39c06256bd285b971cd65a7ec0c3b3f20a618d76cd4eda35eafd4091c7d6744e2d37d0eb492f844b0101b326840cf4295e17f52ad1f05717a81048c215e8c939c4d011cce62dc53620da761c4f35eb587a63b9b8ebbf154bd7d205b26b02c7be0e5a6d7bc6d49f94fd672ab7c63a26cd63e86f2380a49b49518ca8296649f5fd6f7ed0a52e9ed5c23903877947318e7dbc5fe49e6966654237f9424b2c3b0e721f770c1c76127762395ff587a8eec4f2ccc3a189b93e08c29af2a92aa4832d62168c5b0599877f5ad6e13007a61d6a7e889ac43b3e11654cbd1ae5f08853603046e968b9e627f62b706c81701a66856d325a446b7ba9502e0baf27e89af5fda9576abd4ad765fb8d5b393fdf0ef4002e17582daf24240a5ad367c7baee79bedd22134827f977be1f5ab504e3b067ba8d3e676554447878af6aeb49d98b48036bc4e52755cf7efba1d212045712e723fbbfe2a0ba678c38845c7ade30db61c2e8886cc0138a7d4c97f1dc58b1b4b1da9b32d2c41049448d06ab2fd5d2635af9d7b1f464345f6587d5ef2759385f65d4ebc4757db0baedb842d9093d5f22e6032ffd0408819d402d7d97dc274aa111e4b256a78d15f60c15cf9ea954cdea932d4f3c22dc4e1842055f5a565d0daef891ab72e5ea0c9843691178a139185342a4e458b321313a024d5dd130392a01770c870f7965e50f4ae5d89e2217203d34219f1976c4ed339e61ddb2dd5994caafe1e371336d404376787ab9436e4443f843ccba1ad4c23aaeb3d2b8bb537cfc7a8bb8b6acef5d23255e0d4ababecf258e88695b13ca90ff3fd0d30c8fefd72ade2f4816413d0b055a2c5b59ad5f150c72435cbb21385de2c224555bb7f89ff48f54cd4a15e38d6165b33695316d1f8728ff07d203bd0e40ce8f8e085f5559de578457efa71e3525b77c2fe538ea6f21299e98bcd54263de7f24d81c4f258d940d3e7d93b7bdf440b28c054f9d8f924d69d0f30cc32254e995a11236c9601a0711609038ac455df3b48c57ec0380c456a4f5002a438a18ab6e05a315001b8149e1bf60433c518a97a0458457137b65660fe92cff1b95dcf787ad1f3893aabf0e0227ee63baff7e2c3c61fbd05b07fe17f711f86fcd3807c8c2d04f5ce94b1461ad77cb667e5613d49ffb70ed9dacdbcf5caad1a11f65d5851a51ce79cb2bd835aafbbac4a07f4639506ddc8234778acc278886b2d38c157000e88795998d6d090da05bb4e9d15d81ec1df7bc2372e718b36c77e1933cdc051f850dec9a141e8742b63e6e37570286b87df9795138e1a1e2c3493d16fceeb420584f42ea90fc5644245e7a5c8fa9f017048153fb80", 0x1000}], 0x2}}, {{&(0x7f00000012c0)=@x25, 0x80, &(0x7f0000001440)=[{&(0x7f0000001340)="4a7de1a74e4444270503c5d0d46c98769c4c420b9bc47500e811859de0a5c27b8a7c7e453bdf292a8fb975a7f3440663b0dfac535f3d674d11bd644bbdefcbc51ddd617e5e1d774bc240d38c308ce90d564cc88c6194533c526410400918c1329cbb512e68b5f6a8a384de59d9d04a32d449f195019e570691d07e88b0911521fccda027c8ad53dbe4ba4a07", 0x8c}, {&(0x7f0000001400)="6bf3eff091eb680d574a1430898eb2e49a2d20b9dcc84239ae0bfab92014cf8b", 0x20}], 0x2, &(0x7f0000001e00)=[{0x20, 0x0, 0x800, "0b34bfd5b3109f6e61a46b"}, {0x1010, 0x116, 0x170, "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"}, {0x38, 0x108, 0x51f, "5f60155d446770cab5dded5bd0dee909c49e4544f08abde31fb7d2bad4835ea27d"}, {0x110, 0x117, 0x8, "956f1dfb99f83eab902afba298bd6cf0b5e3a0b710b6b4d02f2e081b70e34db7bb03e27ed4302f13ae3d1b5c22d4e144c761170378ef8ffca909530b0c287763e7f50df0585b18f8b789fe5b0a802b431c1f755944bff6a64c690d9ab96bd8ff8ffadc05d48ac082946f6fd8668aea5b3d2d3bea5e23b55a43447397534ac4e3f47fb632e58d330de962704ec3db9ede25fe7341be2d48566b9cb26ffddd09a101369b14e835d8c4a79bae87d687911adeb9387bef3498cef6b698f29b43d941a40ed435556fc317030d3ace44fc8dd914bf59b4c367c890773c6c5ea87d0c6e1979e15cc6bf4f5c870607f08d745d95428f5c8b66aff28d87"}, {0x1010, 0x10f, 0x5, "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"}, {0x100, 0x119, 0xf5, "1f7bf65cda7a2569e2ad560a004470bb23a71bd5b491f78bf176f2822245e0f98f679b8f32ccfb71439d64064810b5eb1ea4f19db9ea6fca0d044460c93cc16464c0dd958522b4b698462fb313f4fd4894d411491fa8ee242c1c6f190240f61a27fb3d513d9513404fbc58322b10cb63c41cf613306c298cd7ab7fb6cff317370a99891e62b055ebab78671c97d5dc8b5ec6d971395a37a1428ef84be030a410b562ad56ca03aac6c4be6196442835738912bb4eed52c1eaea074a6584a3cfffef1cc686986feb023b2136f33e0451cc897d79a53bce9b16b4a7a3868bb1c8005f7ddbbb56359891c3f659b2aed072"}, {0x90, 0x109, 0xffff, "85e405e05e6949bb1cab9f6f56d8f533c9995edbe757863fef6456f1f921d0248ab98e7ab769ea15755e2b1e84d43101d5135d84b220dd139f889a710e79ee035a71d195a7b2e3f7bbd9f747b46e021203a73fbcb1c03124cae324cb7a117cce81fc5941cca15356838747edea1cf71db072f39758b4a46b6188beffd4695d"}], 0x2318}}, {{&(0x7f0000001480)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f0000001500)="d55492d6511fb22db73f17981815c7d9ffcb8c59f4f5da865a8f18cfd37476dfd2833783f3c7863c64617599293834b958d16f6910e5f700d78d1ef57466e3f378f4721fa3f9a4c39ec23fe85c65e18641fbfb3d57a80f0fc7b8592ebfd076b9258f449010c8bda85c214227257999508450b7447a416ada9c2830f578556f350b65e51a2ec6d6dfaa447c2ece594d253abfa3389fb99befe104dc5b5c894ef641bd24f9b96e0d182f58027800a1b3f13c76df9271c10c42925011bd9adf", 0xbe}], 0x1}}, {{0x0, 0x0, &(0x7f0000001b40)=[{&(0x7f0000001600)="594e289411b63f0748522dc86cfd36ee800af87e082fdc2cb68efe45098eae276787cec66c156573bc280b157ed2df610f7940f553ec26bf4f339d2e84304271ce6325a980d69aa387f1b9a944", 0x4d}, {&(0x7f0000001680)="96807c6978a47c59f6ab4cfcb381259f24a9ee7b58d8aca4e4bd9687c1a8649f62e1887c5a7b9d946689714e6b11be2668172311a3f1e2126b7a1360a28149ca22af73b6b5fa4981e684443796e7a7b5bec4a6e5a343b8f59841af145c31871e08149ed80132f889d3d063542f177b03dbd8ae02d19bba0734a45d87cc50d022792b5b8279446c4a94dfe69525c2df59d5acdaf332d065d8d52f89c4dcd3d8a15cf499c9f75862f6db5c0a27d508a289cb74ba1305c48966bd28ebd4b37cc230cddf322e756f1f89c265fecd38c2d62c2249a4565af087626ca6f2", 0xdb}, {&(0x7f0000001780)="af7e4c", 0x3}, {&(0x7f00000017c0)="41247e4f883287363403a61162e48d9d7a060d03d2eebc379f93a9317428d5f63f28897e9a42cab1f1f88ca2ed9a27bc262964ad7dc08f71c82e92a16ea5a548bc2479fffb6845dd75abc55bbd13537c13b32f4100c7122f4d3f7b1c02", 0x5d}, {&(0x7f0000001840)="8da2873612294f67f379d3697d4f", 0xe}, {&(0x7f0000001880)="4e125f48bf830fc3efdc9c90441e36fd73162c6c7714334cdf244ea44478ff4e9a5b30be8c2935c3982761fadbaf3b20c70f20eb271d51faecf4c9c63cc91ec162a0d22c1b20e29063198769e573924d618f364f8f5419086de3a05e0451ba0b1f7edc8f2ce05ade1a82e4f3a510e244fa3ddfd5f23350b9ceaa8807ac8977aba43e78d7e89fbd7070628fc7112ba833b64d11b062e8b07930bc1d8c6421985fb9241f037a6efd15c774681da577deaf38a0ec578ec5f2ffa8e002809dbde6ad7f2fd1d1c70a36ae27e70cade618", 0xce}, {&(0x7f0000001980)="561b3c", 0x3}, {&(0x7f00000019c0)="007655f9283c6c125d21983627067ec3b0540dd4d5fd09a6683a737e759df6965f90b1498027ab63e427450e27ccd3948593546ae9f9b9e0564aa8080a95bb3690e88f00467fbf760faa17fbea02ffd5dcb07f86302dc1d37beb2fc1ba30db944682be90781eec532d03da7a9bfe87bfd344b7167939f37f180be386567053b7ca3819d74b0fca17d605562878ffa4b14b8f8becb5fddc52", 0x98}, {&(0x7f0000001a80)="51acf28010725a1d5ebca1a8e27dfe027183337a00a189f023b4632e03bc18efd358be7ec57f4fca373ba1055d79998e23413a27c58351d21812252e18f1c2af007c0da14405b8503fdcd7b87ca2389e5e144262786ec2d8aee1b3cc3355cc08f236cf9442f984530956523c73207365c3c12fd13c9caff5a2eb6999ad36dc712168af3cb3c657656fb9629b83ad763d466d31d5962908c22672551eeb8c6ea6df50f27dc48d1236", 0xa8}], 0x9, &(0x7f0000004140)=[{0x98, 0x111, 0x1, "65238afea6ebc77b9b88a912642fe07481a10b3c9983a9d587aa2c2f89cc6029d4c29fc1925c2c79f5b439eda4eb667a38a6ad3466e1ecc1ce2b6a2c45d97f16a7a7d4a91c6a46c88bed32c29f8c32f0916fde30302dfc2aed483467ded62744a899bb183a6cddc8a98d1fed98a08474ed9553b6607d81f0655cea1bef79a00e2899d6"}, {0x1010, 0x114, 0x0, "95542f3267f2311d63e039376f9e3f2d5c68805e889d43e4edbafc77df17745048931c47194ae05a6b2a78d79345dfdbd68d05b35b131a1a81fa70296d851626aadf4a6d59cd81060c01f9675bfb749bd7ac527a3bc0831431404abc4d6295d43224d43e0a0b42c42f3bcc6abb3f77a75b282cec741ee4281d40a1e360d634a2cf3207faba1cb33a13fd259d33bfd119e2f391c98e76e13aa22a120ffa29a2cd7f63bfb9860b1fe93ec011a13ac261b9777fec0e8d11972e20c1420b773474c1011010ff37a71b28dbe15572a2e81dc59f620ea110f60e5ef10178161c0aee97b96a6ec6662a343627c00bcc8408baec206058b8a4accdf053fd9afb49e3418c42306b4741712243e7c70a58163148dd57479fbfbd53a72ef9b5cd3de0c04b32ad6cdadb7ce659e58dcf38fa79509ba7cb4935a6383dfe43886fe690c7669d9d599b0d547e934fbc1fdf7409b891c6514d6f629c4072dfa63425f3bb175b77813d1cb20bca7b9d5bccade3835aab77d837ab939617b8edf59062919872ae76473b9e22b03f7e75366591611548239864740ccfb7ef5d081cd4c033010e5428805595bae82ffd2f43d526d7884c4097d3a2158dc87bac7d75082a4c7f481a1353363c0cfe45cf15a8e300cbfd039dfe0ec98575338a354e06f0577cde1bb54d4da614e3b0ad4d909208c78822424c94baf7e23f316528bd9062a1b5bf0571aca5529a99ff66d913aedc15cbc66675291b0c59d8121beb8d8c8aaf52f88bd9d1d51048d80e9eed83d52b24a21671479e215af21574969420c6c25579c61967e93b2c3f36cbf9ef9d7cc579d5437ae355173e67c3a62bb1affff0729e7dd997445ca57da1ca8e718f43876e5c625a5688d4eabd7a3aa80e608b15c924c39bcefcc06c54f3ace1f7125920083a24de52894cd441517dc45a98f631d5bacf9a5f4a4243bf7a28857064151ece288efd82f0002da810f5a9b211618420e225ebe215c9f7775497d4be70adb0d49408bfbfc26e7b6328811d29f832e985e32cd43840cd41d07f30503d70610415f4b09eedce2f4037dd71268e8733bd1ad6834ce419141eb79cc53c8511fb507343f082662a24253fa92610fd07336f1e2042fada372a2b1c590fba3614696ddf21f5e1a89f70371fe9e905ad4b75d6a33abf205fdf588cc8b87c9ecbca4886cd22fdced453099c84f7db77c7dff1795f741f26bb6f9847a9ae05184ef597c6fbcbb5ae21749ca3443d5e1d369f89f954ab3c23a5893641c498f72102f4ed5a4ec49e133676c70aa2fa2be9e03b9bc80799018b7cf0e2e8e196cf101317b8d5a5de736060b197b1a65cba9a6517993a118a3fea74042d1cdfb3db70460ede0e68a33dd163bb4d758a0d6b50c1b4010f416c07b63506fd0c9e1368ff92605dc34a9a2c506c9cb5d910886f8e595a442238160304c66e24c5fa200d6f56d25c5995a323c4e3b8bb2aab801871bafa19259df38b0b95ba6160323eeef625a6eb333b1c24e0f8e900b0a150e345083d04c1eabe3daa2ef545841acf96369540533c5fc57d0bb51ad73acbfa1ea45b5c2de93c8d276e7a7aa6a435845eb48a75bb064525da944fd67bf120bbcaf1a5da804618f3568e7ff684e47c53db4ca00bcaad9b6b1d84c1c7e32857392f8b42c8b743d414de05fd72a207406df41b865d00149e4b14e4e1932f4aab88c181c012082b7422b80aa5bc56145370ea2b29a89f079673e4967349eeeb971a5cead1d124a8332b3f0bcd2427a16837ef63631ad40a4a664b5a3f82db3f5d1bd7c2988991337e1a348b9aaee07454380de0f26e78134ac61385f4c69cccd6f0c9c081b7567d3cba8e05daadb0327e4354d6e268abedbaa5b24bcd0336c489b45b18ee588f701667f15c20c62ad130d2a121b56a411ab69a5c2b795e367c628cf524bec8fd6e13e3126225c9398ed79136a4b557ada02c2c0f8e999f9fe54d5c945bbbbee5da268720b5cc7a02984a2f7501050f4860680dd4ff2def2ea4cd6658899816e26de85b8c7d631953ace1d3d7fb558a4f8565d2e3b359060f27fe1be5bbfa77d66089bd71d05479dbd8f9b1a00f7757d903f629d0d97f41609b51b18d21cbb2a1f3b3d3968a1faa8bb3848e3b5edebe2c726dd13f7682952ec99c9420d09effe3dca34cf2c74a226bbcd52d2bebd9505f3711f27a943c316087d00ed372f88ba88a9d8ab1888922e37b80b16110ce60c6bf21798cf2c028223b40e993158ae377ed5ac15be851cb10d4d8f1b3ee784c1cda0a42b75df9d5a03a5a9f60fa7bfa8c7930b99f23999d24319d6ffb4cf61b21921236a7f51ae0f3e40eef03f19ecf7d4a94b737a548faffd2233c52ba01a6f120f74b67199ecd2aa4e82e747e3f0ad0331ea5b802f573734873649dedc9ec534133656741983a541fa60078335783738b128c415d2dffab45ac5dd07030b67e1c866452c1a7cf6bfb94c4a346eaf79ef1f74db850d00426dcef2dfe2e2d95603d5fd058585202d2e2ecb4197d27950101874bd73ce9259c6e3690afa72d9f148127b731d35a796c164596afecfee17bd35acafd20519346b3f7bb3afd1b97923ffe822024d2780d7a96dc9b32e1f208faea60855a16e8ca8a72304df7305fedc254a51b9b6b2c0a6defb0b34c780a7f9af43fce510cda4af473677f5369f40dd740443f94ea356afa21662f7c034d985d4da03c82a3cb13712763c6e6594abc38ef460204a87ebf89867f54411391170888e8a788dfc99f5a77894f2ae8812486cd7bd131612bf0d5d469895bb5c65b662546c88c0ad1c92cb1dda42e8b04249fb7221bdafdcde5f9a140b88c2e1691a4a3a6191f3ca967b62a0ac5a955335706ffcb4ce640fea8f44347b697450f034998eb4dbb72a6aeb4b6c4af6f08761a66d36afe3043f84d9b8a1b4baa1f04ff9d3f9987854d355265c8e5a62643d7e572fd2ba37c61b12f986585dd06b0bc8b4613940c3fcf5d2b9208d23a79f10e6575cb2ad607ef44b1661f9300ebf6133c910e466c66bdd6e9df9b1b9b8d9cd742918d6fd40b836c611b0346da77de117fab61f2cdc9b6cdb1ebab8376fddcca0cb9d7da93fdaac506535bbb7951c9d13816f94a2e54cfb953977a3a6ecd8d2f6b224b4045a15e7f04f9fad884cb2475fa55406d9e6bcf855c8d45d0b57f76d7596d9dcc3ce36cfeb5d81bb4ce42fd094eb857efc764d5fd9f0935f4fbba331f3788ef0bbfb8ec674e50e49f8905b3256676acb8ce415ab3471b58e0358084995137afff2ce5f6c7c554b42ef806f27b022df314c82b2fee3df9f85b8b7c619d208502925b2e55b830e7296b2b901ee2c9dcbfb67b7481878e1ec564b40a9b10faea166bed5f42a24018462250620ff20fecc1a366bf2d8cb3e8f6ce3a2d8b0a9563484019c6e029ec2e764a079a6f18aa9c5b8a8f259fc91f59d73e43f50e71517d2d82179f41c44748c747b558efe5c4f71a5c34a9e574507884a9b2a9b1b7948dbb15e69981d92642482d86e6d80cca60611991527ba9747761792bedc0324d3b9a7f0188a13a7f7df4744db9cd0f35a70ed94edfae8070dd3be29a288db9413efe59f370e3958625898a350e4c4a28bf7197949e828bc1c6da34c97186d8ac34f17dea306c4a891c85e13ceb46dfff767d778b37b7c0f37731585c830a161bba4f0fefc5f915e7de3ab1e7ba93f242c42b1cb197d8bc6f5bf2ef1480c375e9c9a80c9cbb73297bd1667cfbfa199f5a93d564276005f056f6dcf59258d82959e257bfd3aab77a283e0442795a328aa8d5fdcfc567fc338fb5131c714b71558ba8c7ff07f1d7ce6184deb444f4b29ab764113ac1e6fd6d57501a02c0a766545b9021f06424ee97db6f0b8494a8bded48a3d3287ca36f6bb8c25ee3bb22be1a9e57cf352515bedcc477be3cf109ff3fddae2d6848b85552252b006b712a83dac80d81a1d6f9a4b4d4cb98b43364fac6cf3b892caec329362c0060f757c33eb86c7300b739f21e8685bc9e5e00ede7812eeda190e9b9b5c9d7cfec3a61b3c3a04d9d43b95af8356c980f2c009b598d59ce72a91773c4c3981e1dd3356c1adaca7a32d0ebd49efe270d53fb7bf4c8a62aec9581774ef66fbb45d4b29bfc80936bd60992024a1e27cb450a25d5fc84d3db564df71feb0398f573209990bfdaf7530faa6758fd1b202d1ab8213fad8f2d3b314b5e4273887865ec27e993bee005ac84ced0ff9903883e859d736a64cf9976411c3388b091b0a17fd23d46b21fb3535190e3edee5ccc5c992f0d657e2b3b69b6f9e25f5ac4dede369bb50231007b50bc0a3145078a7d9d9bed72b6c3610f47d2e269b54bbc6df42d58744b5ee51c8e538b506fc52f9c5079752ee6de2fd00818cd8d9209b59c92fee636c94cc01f34bdc96ca3188af43447cc433af32ec2f9485b7692980878a54ad4f1c7292913ce97cccc9d88575949bea7a70944b864028aecca648a572ac0ede788c4ec7aa1535edd136ba7bb41f9d7cab5ee87436093e154801e3a01de1a4277638159079bef95a65de6e5e41880d4aed2814a52cc3a173bc619efd6d88f890ca735bf71051604da57fbfee7b2f43752a4e48dd87f5f3f5a32f75f9ef4de35629305c33df9f35998dc0632680bd8e08414b7a0e5aa5b284e60a954eb8f5b11ad4b7eb1f080c6117df8e95031934063144ff9f6e49a32b5ce45f22b05f7d4eeb5ef325d2ab56bd8f3d3ceda3a53496438dc09f41bd2653126b3cd12359a5513d759e9099c4a6e60e803b2a7c7926009bc2227d34bfffde3eb31b55b6edd195f4837b56477098b06c9fd4d8b3dbc4d71e289252b23efe30a20f97a60b28d86491e9fffcc8370d1758aa30357a8ddaf7c8b4688b2d4fccf40ff6dfc255c8418c8c40517a14ae4ad30250ddb17706e77296e77fedbe66069613fbdd1aba87d379da7e43e9b241d476ce7279bb8eefde5e284879cfe669bf1ac8651a5f26da2f8c8e9eea06420435668d25c7d15866a39e95a378f8a97184f4150b8c80acb5d7ff97a15d4919838ba0690a65ec47419aa1433edf80dde2bb11170c06c72c9977f674ca80ddafb911f0085cddef6b3447d7162205402f7a0f7870b7c835f8adbd31ba27f8f29a76e23f51514a229df913484203cd7154405006743485d7786a5c8fcbfbe54284e9cbc071430393fd80b7806d1fefb1673bfdb6e6f7f4909f932e9a5e62de80a48b2426e5b90bfaafd0306fc77057d2e9c8c899f021dacb9f33adb95b2559248d208b998ada286861a91cbe40bfef94663432c09a7b7a5e39015b84b1b35a128eeb5f8362ddc462805f13cde45b028f60027a733374cb1f2e2afeacc6b4974179fb9f9cfc0f1f96033677ac27ed776e4c4b425aae9f1977ef3a1acb04ddc90962586aef69e379dac224b312ecbfb5f275dd24ff6ccaa96349c03a2b7bc68ad6a13f5308c696bbe5324beced20c3035e6595ad179337d2d7deb9279df0467e391fbebfa8f6412aeec6b63bc572f591f74d303977256be688eb93ba3e2d09eedc7950b177e602d988f0ac608dc4bb9b539c380528a4c075b3e37adfa2df6045c26ccdf97cf413d59835d42962282f02104ddade3692228a3f4455316dd55610e1a780bed71a2b5c4744b534498b8da28dd48cfeba4ca62fef46434f1131cc163704fef4af606f442e2a0dd879bd54061c417d1bf192fa83cf8b58c3b5a7e447dac66d19c32d63ba35ad0912b7513f3fb48136ffaf93dbd1756e54b2f3fc89579c1c872e44ab8c40907ec6bcb1b284cb776f68fe7edb46fe3462a59e9d9"}], 0x10a8}}, {{0x0, 0x0, &(0x7f0000001cc0)=[{&(0x7f0000001c00)="3f371d6862853281e6273e5866130505a2b6dd0f5d2cf61c87b8c0ac955629b0c3a4d5b092b3e7247cd31794f27aaa4b2d4a472c1c7a49eb5c366d04eab8ac8e092719b482dda76350d6cfc9acccf2471d873fcc9f62278a2e54855993b0cae281d7582bfe0f82b41e5c4e4a0754c6c367a34bc59de45f305d38a1111ac97301a3f87dc452828679d7361a2c775320797230b9002d4a19134f04570c03777904d7ffd403", 0xa4}, {&(0x7f0000005200)="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", 0x1000}], 0x2, &(0x7f0000006200)=[{0x1010, 0x6, 0x2, "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"}, {0xb0, 0x113, 0xa606, "63903f069dcc379ac030ae202bff95297acfc61225d25c1ea78dc1f864df187178a1f2a5bfd878b4698c2a4a4d79c0e608a2a1d52ef808d63644f17e3752991c6113e6cf4ad9baaec4f8161b2c855cd9acba053196de635cd85592a8ba4fa5df584d681df992213e97b57870756d7b6305d9853335429309808b3467448ce3d83c3f2f18037214e7ebbdb1d44a210c7daa16de0967d9a49985"}], 0x10c0}}, {{&(0x7f0000001d00)=@nl=@kern={0x10, 0x0, 0x0, 0x20000000}, 0x80, &(0x7f00000082c0)=[{&(0x7f00000072c0)="6113396590c0804b67cc09321c81cf6809287a7a31787ea0259ae0f1fe661932d4c203e3d0967b3208ecebe0371c7e955bf89c000d861a1d1cf4e3dbef9da097ca814d77c61cf76e5c0c853cb668f00aa2509585ff69012f1ce7042cba889b7993da947434a89de70ffbf9dd5fb815bec49b9ae2669ad06b87ebb2158fc1466adc2281f930326ee719653760496e3de1acd4a7f65253fb6c05655267501e0ac69495465eaa2f89f49aacb14b99b82ec9d98fff32468fe81b5578fed0ff4b6a2f3b0713482644a8916c7162bc33132659ee71a9f8b92016085d62659bcbbb5c7cf78c693c5145d82a4ee5a3361a84e6c1520f966405428f504a494f3c422f57e37ac67526360c02f979165fd8b96f4ea5779f5643d569267dfb279af117c4a62a269bcd423b62c37df9786a539c42c5dd48f8ae200fc9e78e4141664d0a5ac23a86cf2555376c460f6a2b7c3b888141bf4f0b6d5dd832ba73572fad7f6f90e5689e1d2b8ccdc567a7076bcb6c03bfa852f092c440095be221fa4375e508095577ba133d4d33f2026778d060b8a0a4cb01e1290ebd2f76625b94a54a33242a15a576af25d9ea86b56331af4aa964cf4913bec555791709b0a08efd3cf0513684666399c0ae53718e7d45d047c5e2251ec64ee395d5418a23c103e5135462f3ec9f0d57fdd3430699d7ef66040771f9b365522ed15aba89987246aff98a06645da16f1608ad8031c7ec2af604556dd90dbb40531b07cff05ba8d8d163c8f5b20270e40f55ceb34ad6a1e101001f254c073934a72602a980efa65535b7996ca0b5d9c433b660f459ebf40cec574457713366d30ba1f69585a1c20053ec7da123f6a3d38871fe1e597d213f6061ca003ff9ef9018985d044b658d42e75ccad21df17c15f37595d7858dea0ee524ac02869fb17057144ad34d101e5b5bac4f56413b95832fa0d5d926e4be6719e1019b1534b7f50c342543ecb5d24b35db0531ff49dded53398a22b5f0bf9b87db9ba867f54801fd7c264923dd1668f8e5d7872990fae9cfdcc508af723c263a465dc3a0d49973b54e50273f739e3c42ce55257cc048fa998c7c8a437d331ff7fb9243352d37306f494e3d684d1d6528c603a0d70949c3549b414c7882c81a3a8e96dc1c0cf0e18d080eeec9533403469dccda82c9ffc59de3784882aa3d8cf96bd21e536108e85b98bba284aa353e5b289a73ae55ad2c4832d702987e1ad8602ca5edefc96d432acb476744d67949da52798fa769208a5e5bd4bfc8c95f05ac3bf90d98fa3a74c313855fbf14cf2b74332e06c4c0268095ad4cb71a5d7b4ad89734d198008ba1f08d7907939a3bee14995191817dd3d5209801ebaa93bc3d17a2dfc5d952396fb29443e504d7ea03106de3a5fedeb05c3f4aaf184b8b55e7c8b1867c522a7123f88d0b3c6a0a07e1706e6a87d8454b48998e38d6dca3a44e87eb32256e907f0d5013a3853ae30c315be74dc9c79b91d1f01d9dc0cce593edadeea929be9e572c5829dccc6f3985ae2e8ff08ac9bb1948df604b1588a0429b084e0fc58ee71c2d97f89d01e1f5f0ed868472367bf4d01ff00918ed6a71d42c42b1957380699600485001c85e4056eb3c292158f060ad7c99f87f913ee5b77b49f977c696e19ec7b1600554af6f1e94bd46a799c271bf6e2b2408df4bb320bb83b88aa03a2b9431228b42d158dc5ecf36553857c73bd41413eeabd285b5d99c50df9a918b710deb6d7e9d4d5138d6a499e175fcb755672ce5486bc973eee5d028bd706a45af4e07718a1efd2969e7b1931807c7b7e8ada1c4cd673220297120c3720a7fbc903a577cbed2258bafeeda2a8c1d326e4b7ed247da365875fa7f930cf790b4be109c8e4d1766c19de24e8bd28475d2b9b88727091e328c3eac5fc0f48b53905e622fcf962f888b8827dd84695e738b85d6e2b6ba1382e17f1415e7e818c7a764b2243f693f46803a87d6fdf345516c7dc92cea9c899c7a4a275a917ad2053e64e0423a84a8e749e472e9fe1916d4f98f95a73caa29a888feedfb18008f64fbfacb5a1b06e6c68d8a81f17ce31e2c39f5e757dc63f98eda4f72b5befbdc422820347ffee05a56f0a9fffeb4eec96e42fbabfb6b47423e6516b03d82e092ee0df7f1ca2b406aa72add421a590456c3342b6b30e4b4bd41385ba4b4bf49c7e99fc843899e2e3dd5facc5b1786ba15038cfc8f655bf07ea97db948ec057c0951f684a7bb31678bc03a3060fe8f01f09c8e926e6ddcd9fc30b14cf3ca173c5800c7fc2bdb80b4145a9d96458ed02f5f122bd5aaabc85ecf05652e2d7564709c83e21c05e433c95e98bcc48b4671cf35e28f42f583155d07ff1265ce7583eb9c6f0f0bd4f6851479560cb4d0d688216a5ccffa7e29219bd0be70e9270df24d28db62e1acc33e34482b8a7defda829c72c6dfefcbeb4a241ed331ff5ead332d7991ada38be89f2d65c2ed1ba65ef1e71d343289cdb018f75feb94d6617b48ad669005239972adcb4c97edd43545fbc8872cb17eb65ff54f494af3ddfdfe9e128ef6fd60bf9d526ff78f9915b973ea15811fb0da9c579d8cda105ab0a6f7676555a68ffd0a7bd3d98dcbfab58fed86e7f106084cecd4a079d25434291531264c715ae23ee176de66f8f9591b34a55d2f4320b8b0aacc9f4e1b467ac60866524239dfcfbb1001288630f591141d079ff08dcff22e9ad82c0effb70db7431f536860eaa09fdf84d12cc3c89df5b4594808616f28c893fcffa3460595b91391ca1374fbbb32294dc051235b4697c7ab7751c0b46139c4627d51b629ab9e93d6c39a641a2b92140b54896a9f0eb8d55ca0797ee50e76d0768529cae00d147538d8c4ed5b9913cb0835c1dfa8d007bf60945f825f209acad51dd774d495dad04d458b2d83277cd8d166dc16d7d474cf7ae1bc3fc8ece5b79c014cfed1df0bcb786ec757aa3fe55a9a38f7e3caba59af5ae631d497a13af975c31517f3e1aaf311cd19d5fefefa1717150b21fd3277446f357d10a6864e6ec62b9ca73054fdcff3ee2518e2e8fc3948fadd231613d6de8f216746c5dc5f216bf1a62fadaeda012383a94284539ae9cb3fb7ce3ae76eb6d3204305ee7d0f0dbb5ecd5c741591bfcb95a008296c53a313b013fee39cdb47e4c02a26a0d065ddf1ab8f57898a740c2b1c14d4a3d0661ef72cdce973ee36e504a6f97df35c211629685b897d04dc2e59483de88ef0e36d558aff7fd794ddeafe594321bc56183deda3057f4f92f714b2adbd3ae541cc5e080a6602fe5284b452eab8520c72f36723f684af47d6332102a75a4eec6b78ce57ca670eebec866abc5f8cfb8a330d95739298e377a01bd4f8074cc1d9ba3bada6410fac05c816efefda5545877db4590d675e5514da3075e282c4740e0646ebc036222b41460d70ba087045c9bd8453d6d5d4ee7ec7b9ce45f5760ed5c3e6dbf4457f712a633dc8870a75b04bd0406e8945110c0364fca0dc20929ee72c5f85eb2256c7b69049361dfad8c1c1d9161f4361cc5a78aaa4419927f90af55ce0670677dc85e99ea87bac1ca9e3c7d16b3e4a052b93f72b3256386c06e31d933ba5e7562c242772b9357661a9ac105683df6cf9d1041590a86fb512cd3eddee7f65fd3fc761c6e659a38c036e719c1e062fdc5ac090ad9de55b78ed4fd27d9f87febcad6123be00ac8fc27c25405d623bee548194481c0062be42814de7959eff15cb347140b37e607b69578aace1748411cb7db5e342df9964357a07d86c045586c0e97d352a88aaaa579fc18c60f3bee2ed0d34f40b4d1186df81601a84ae171f8cceb89fa8d87713b477c90eb010bc5c9e0a5c7253d4574f96a1e073ae45e8578494660e3e7aa96bd55a313824359b25b188ca871bb35f3d254213bba9bd135f1a2185e36d4f883363016dbfe7557d4c59ada78a33c49fcbff565f2e3761bb377d01d4667a66e105777b71f5602da0f703b5b3a03ab83284cb166ad31864fa979080f8b4a1f0d88d2fe0396d0e42cc70118d9650eb3af385bfa0d81142033cfd5bb843347fe482e902726b422f9eb6b0671837de289b2e05d8ff64b43140d0917853016cdcfaeb611785a20a3daddbecb9d1b3c1d3aa93132926926fedaed28d1b3280b436c794ec4eeecc144b606b797d4599c50c5da9ac51b2edadf8d8c215ac541c1fe191b7cee66b7deb4d92448bb124b1303fc3ad701b0038a2c8ecbd639dadb7613b69c4462aece668f1639ff5bee2ea7ae96fef8bed9ace3f3e6a215c5bd3b40bcd29241a469587dd782e11ea34ef0f03ab271dce29da104382ce307291d81fd1ed718c27d67506aaff77d0447c8f0ed7ca7706be2609195922bfb38c195a7c693183ef4f7ea4d82bac2e843ef95ddb705f463272b429eb2fcaefaad3e8ee1280ef94b6a0a26983a0e3ae418702864b3b5fb13aba56085589d66a449e07933c5e51e1d0a46781ab750ab5203c8b4a5716fc8569a073e4c37ff9bd13d82b803279a72d4d201697982e8df3ddaee7dcc22d521b220cda9dc14ab4d25f2826de6857c5b8ed6b2877f34a1034c71696419c3820444ffa4f3353128a4da80fbf236564afa03f16c7a5ac1a174dfd89e05391fa41d4cefac031c5536c47ea5fde3c1814029319472bae272f33fc4d0e698fc7bf59dfaf039ba6b00c8b904d9db8ed8eb8db223ad145f2e8c0533f2ace7ded4b72a645c022c8b7e9b5efe7ce54d9e29e4c5173e2dc1857413e8fbde56414e4e1981d91c01491925f81e8bf8d9e5f7e4149c0e77a957421e9d284473b03808f7845448e5fb6f60197ba019ee5bf88d7edc5a240b7b236c8feb6b677624753ba34771783669cbbd154c3d9044db1bd83fff906d5129981ad52d2c2c62d2565c2d11eb49bb30dc1efa9db31caf138672b104212d505247e45e0f0e86a83c6405dbd91f2f4bdc56a8d2b258be0c6406997ad79320ba5667ff23d91c0653961e073e4390f43b3683d59149ac8e9da18bb6108c8c1d5c01ce98d4610b3d7c067a477022471ac406bf9185c2008f512fa6386afa95010ad956f1892fe9fd01bffc2691dce7c889256d27e95b1ac11a2c87c344f86dc6b8bea0eaf1fda188fdd8d37c35c87bb41ffd076e79680a9b01a4037c8efaec141ab06aa196fd8affaaac28d6f82ec70ddb5a36f84646ca0b5baccdc9f6166b6d0b6362bfdab9632d2e3614f96aeb73da8fedebb5021207669037ca2cf2465fa06d2e54093fd01f25d42460f98f45e3f3847c6c26cdc1cc16d9916137842c0b26a3b5576448f8c897351f4bfb2676ff34d905b2dd4ceb75b2c088a5a7dbc0e73c3982447160236daac1c518ac1aeaaff9cac194b4372374ed43e65e213ed8c665c63ca00d588a28ea598c2f57e8e5ae4e4e29bbaaad7fae31200e7450dcfc8dc5f1769e3ec636c54cf0ca83b00bed0eda00bfdc9c22b1c4b47e0db2327cecc6ebc9e5afb7f99acfeaa9a831b0e2e905baa654c1cd4028b2102eebcca4fd75f1bd5882a7f9e16c97cf7bf84d0ff87498e714546ad5a26fb68fd9762af1c285d0faaaffa955845b8abca8337ba271207ab77f37eed14b29b7e0027bd44ede3002b1f851735fd8fb0de5bce1860836741f6bb1b6477a014e6c17ffca2c550e1b445b9cdbbe8ac3e6064fd7019a68bbd864f122131560eff912b6e33dacbac7809afabffc6232b8b852ebd745b458ff4d392da5f54f69cd9dc3b285ddad589bab47f11352dc69e1635fd7cf9a428b431a1281a6924b9a9b0ba6d7fde00ed05c0a02fe90961e09b9bc06466d94144", 0x1000}], 0x1}}], 0x6, 0x40) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001d80)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index=0x6, 0x3, 0x0, 0x10000, 0x3, 0x0, {0x0, r4}}, 0xffff) shutdown(r0, 0x0) dup3(0xffffffffffffffff, r0, 0x0) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/9p', 0x10c00, 0x5) syz_io_uring_setup(0x237b, &(0x7f0000000040)={0x0, 0x100fb2a, 0x4, 0x0, 0x82f6, 0x0, r5}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000008480), &(0x7f00000084c0)) 08:57:45 executing program 3: r0 = pkey_alloc(0x0, 0x3) pkey_mprotect(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x6, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, r0) 08:57:45 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x100000001}, 0x0, 0x8000, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:57:45 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 58) 08:57:45 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) flock(r4, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2479.449112] FAULT_INJECTION: forcing a failure. [ 2479.449112] name failslab, interval 1, probability 0, space 0, times 0 [ 2479.451630] CPU: 0 PID: 12323 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2479.453183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2479.455079] Call Trace: [ 2479.455672] dump_stack+0x107/0x167 [ 2479.456510] should_fail.cold+0x5/0xa [ 2479.457398] ? create_object.isra.0+0x3a/0xa20 [ 2479.458451] should_failslab+0x5/0x20 [ 2479.459323] kmem_cache_alloc+0x5b/0x310 [ 2479.460263] ? mark_held_locks+0x9e/0xe0 [ 2479.461210] create_object.isra.0+0x3a/0xa20 [ 2479.462216] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2479.463387] kmem_cache_alloc+0x159/0x310 [ 2479.464348] xas_alloc+0x336/0x440 [ 2479.465177] xas_create+0x34a/0x10d0 [ 2479.466042] ? kernel_text_address+0xf2/0x120 [ 2479.467071] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2479.468276] xas_store+0x8c/0x1c40 [ 2479.469111] __xa_store+0x164/0x2d0 [ 2479.469955] ? xa_delete_node+0x280/0x280 [ 2479.470918] ? trace_hardirqs_on+0x5b/0x180 [ 2479.471920] xa_store+0x31/0x50 [ 2479.472682] __io_uring_add_tctx_node+0x1cf/0x520 [ 2479.473796] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2479.474996] ? alloc_fd+0x2e7/0x670 [ 2479.475841] io_uring_setup+0x1fbb/0x2980 [ 2479.476802] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2479.477980] ? wait_for_completion_io+0x270/0x270 [ 2479.479122] do_syscall_64+0x33/0x40 [ 2479.479978] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2479.481167] RIP: 0033:0x7f1ba3a34b19 [ 2479.482021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2479.486258] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2479.488006] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2479.489662] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2479.491304] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2479.492945] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2479.494594] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2479.497861] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 08:57:59 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 61) 08:57:59 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x1395, &(0x7f0000000040)={0x0, 0xcbbc, 0x0, 0x1, 0x63}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/partitions\x00', 0x0, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r1, 0x4004f50d, &(0x7f00000001c0)) r2 = syz_io_uring_setup(0x540a, &(0x7f0000000300)={0x0, 0x5fc5, 0x4, 0x0, 0xad, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) 08:57:59 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 59) 08:57:59 executing program 3: pkey_mprotect(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x1000006, 0xffffffffffffffff) r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x202, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) ptrace$cont(0x20, r0, 0x100000001, 0x8) move_pages(r0, 0x3, &(0x7f0000000080)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ff1000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil], &(0x7f0000000100)=[0x8, 0x401, 0x10000000, 0x9e0a, 0x101, 0x7fff], &(0x7f00000001c0)=[0x0, 0x0], 0x2) r1 = perf_event_open(&(0x7f0000000480)={0x4, 0x80, 0x68, 0x1, 0x0, 0x0, 0x0, 0x0, 0xb0e50, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf9f, 0x73}, 0x51802, 0x0, 0x0, 0x4, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x7) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}, 0x3) perf_event_open(&(0x7f0000000240)={0x4, 0x80, 0xc2, 0x4, 0x2, 0x7f, 0x0, 0x9, 0x10, 0x8, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0xc2c9, 0x2, @perf_bp={&(0x7f0000000200), 0x3}, 0x0, 0xa5, 0x7, 0x5, 0x2c, 0xfff, 0x400, 0x0, 0x1, 0x0, 0x2}, r0, 0x7, r1, 0x8) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r2, 0x9, r3, 0xa) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000002c0)=0x0) get_robust_list(r4, &(0x7f0000000400)=&(0x7f00000003c0)={&(0x7f0000000300), 0x0, &(0x7f0000000380)={&(0x7f0000000340)}}, &(0x7f0000000440)=0x18) prlimit64(r2, 0xa, &(0x7f0000000000)={0x1, 0x800}, &(0x7f00000000c0)) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0) r5 = syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) sendfile(0xffffffffffffffff, r5, 0x0, 0x200) pkey_mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x5, 0xffffffffffffffff) 08:57:59 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:57:59 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x9, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x8}, 0x0, 0x8000000000000006, 0x2, 0xf4310917d105f0cd, 0x0, 0x81, 0x50a7, 0x0, 0x8008000, 0x0, 0xffffffffffffffff}, 0x0, 0x8000000000004, 0xffffffffffffffff, 0x9) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:57:59 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) perf_event_open$cgroup(&(0x7f0000000040)={0x4, 0x80, 0x6, 0xc8, 0x3f, 0x7f, 0x0, 0x3, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0xcb, 0x1, @perf_bp={&(0x7f0000000000), 0xa}, 0x200, 0x993, 0x100, 0x4, 0x1ff, 0x1, 0x9eb0, 0x0, 0x3f, 0x0, 0x7e}, r2, 0x1, 0xffffffffffffffff, 0xe) 08:57:59 executing program 2: sendmsg$NL80211_CMD_TESTMODE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0xbc, 0x0, 0x800, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x13}}}}, [@NL80211_ATTR_TESTDATA={0x48, 0x45, "86d105a1bad6eae5ad828d2775a0793210706cdaaa751312e19b63e3edc2ee93ccf3bba02c25d9bca736a7ed6456ec1309ea24a3ca6763d2796b7189492f8ccd56486cb8"}, @NL80211_ATTR_TESTDATA={0x49, 0x45, "f9dc1bc2caf29ef71c554f16c7bdca7609f48f8d9ef628dc9ed3d723b2195e105dd1107f07405272c84fefbaf1bcca8c23c7d443f075888d5993f460d1e688d2c7f84cb217"}]}, 0xbc}, 0x1, 0x0, 0x0, 0x4044000}, 0x8040) r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) r1 = accept4$bt_l2cap(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x80000) r2 = pidfd_open(0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000080)={r2, 0x0, 0x6, 0x6ec1}) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) [ 2493.893639] FAULT_INJECTION: forcing a failure. [ 2493.893639] name failslab, interval 1, probability 0, space 0, times 0 [ 2493.894178] FAULT_INJECTION: forcing a failure. [ 2493.894178] name failslab, interval 1, probability 0, space 0, times 0 [ 2493.895001] CPU: 0 PID: 12334 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2493.895019] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2493.899311] Call Trace: [ 2493.899620] dump_stack+0x107/0x167 [ 2493.900053] should_fail.cold+0x5/0xa [ 2493.900509] ? vm_area_dup+0x78/0x290 [ 2493.900957] should_failslab+0x5/0x20 [ 2493.901396] kmem_cache_alloc+0x5b/0x310 [ 2493.901880] vm_area_dup+0x78/0x290 [ 2493.902304] ? lock_release+0x680/0x680 [ 2493.902767] ? mark_lock+0xf5/0x2df0 [ 2493.903214] ? lock_chain_count+0x20/0x20 [ 2493.903694] ? mark_lock+0xf5/0x2df0 [ 2493.904132] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2493.904739] ? lock_chain_count+0x20/0x20 [ 2493.905219] ? mark_lock+0xf5/0x2df0 [ 2493.905668] ? vm_area_alloc+0x110/0x110 [ 2493.906124] ? __lock_acquire+0x1657/0x5b00 [ 2493.906633] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2493.907250] ? vmacache_find+0x55/0x2a0 [ 2493.907711] __split_vma+0xa8/0x4e0 [ 2493.908138] __do_munmap+0x365/0x1260 [ 2493.908586] ? arch_get_unmapped_area+0x450/0x450 [ 2493.909146] ? lock_release+0x680/0x680 [ 2493.909613] mmap_region+0x7c8/0x1500 [ 2493.910066] do_mmap+0xcdb/0x11e0 [ 2493.910478] vm_mmap_pgoff+0x198/0x1f0 [ 2493.910942] ? randomize_page+0xb0/0xb0 [ 2493.911426] ksys_mmap_pgoff+0x41c/0x560 [ 2493.911894] ? find_mergeable_anon_vma+0x250/0x250 [ 2493.912486] do_syscall_64+0x33/0x40 [ 2493.912929] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2493.913530] RIP: 0033:0x7f0e6488ab62 [ 2493.913982] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2493.916103] RSP: 002b:00007f0e61e000f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2493.916982] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0e6488ab62 [ 2493.917833] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2493.918617] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2493.919437] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2493.920225] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2493.921094] CPU: 1 PID: 12337 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2493.922997] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2493.925234] Call Trace: [ 2493.925975] dump_stack+0x107/0x167 [ 2493.926910] should_fail.cold+0x5/0xa [ 2493.927763] ? xas_alloc+0x336/0x440 [ 2493.928582] should_failslab+0x5/0x20 [ 2493.929428] kmem_cache_alloc+0x5b/0x310 [ 2493.930351] xas_alloc+0x336/0x440 [ 2493.931152] xas_create+0x34a/0x10d0 [ 2493.931989] ? kernel_text_address+0xf2/0x120 [ 2493.932982] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2493.934152] xas_store+0x8c/0x1c40 [ 2493.934965] __xa_store+0x164/0x2d0 [ 2493.935774] ? xa_delete_node+0x280/0x280 [ 2493.936694] ? trace_hardirqs_on+0x5b/0x180 [ 2493.937659] xa_store+0x31/0x50 [ 2493.938381] __io_uring_add_tctx_node+0x1cf/0x520 [ 2493.939423] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2493.940569] ? alloc_fd+0x2e7/0x670 [ 2493.941383] io_uring_setup+0x1fbb/0x2980 [ 2493.942317] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2493.943436] ? wait_for_completion_io+0x270/0x270 [ 2493.944540] do_syscall_64+0x33/0x40 [ 2493.945407] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2493.946699] RIP: 0033:0x7f1ba3a34b19 [ 2493.947518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2493.952054] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2493.953987] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2493.955774] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2493.957561] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2493.959357] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2493.961146] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:57:59 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000400)={{0x1, 0x1, 0x18, r0, @in_args={0x2}}, './file1\x00'}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3, @in_args={0x4}}, './file0\x00'}) r5 = syz_io_uring_setup(0x1ce5, &(0x7f00000001c0)={0x0, 0x779, 0x0, 0x0, 0x248}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000280)) syz_io_uring_setup(0x7d2, &(0x7f0000000080)={0x0, 0x1d9b, 0x1, 0x1, 0x16e, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000140), &(0x7f0000000180)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000000, 0x40010, r5, 0x0) r6 = fcntl$getown(r1, 0x9) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) sendmsg$nl_generic(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) perf_event_open(&(0x7f0000000380)={0x5, 0x80, 0x81, 0x0, 0x8d, 0x81, 0x0, 0x2, 0x400, 0xa, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_config_ext={0x1, 0x9}, 0x20, 0x9, 0x1, 0x3, 0x6, 0xffffffc1, 0xb3, 0x0, 0xffffffe0, 0x0, 0xb1}, r6, 0xffffffffffffffff, r8, 0x6) 08:57:59 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 62) 08:57:59 executing program 0: sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="380000000104030a00000000000000000c00000408000540000001ff0a0002000000800801000000080004400000464ef0f73817dcfe00005cd293f5784b7c766907d0c3b1a8f4a06cfb10435ec35fec04acccf411ebb5fc94eded626fa3799f0f020050c41a68e82a72f9975a4fe2369529d9a2589b83b43e1894c6b7b4cbf3d0cb106102a1d931ee91afe3d0538789bba3114c97f28b2b921c38ae15fb7a597ac5fc681d8ecaeb14be85ef1a70fb75fb4528e6c13739082642b30af0f8e78d1e54b859dfd78f15ce332a2b58377e5248d16f9d8a0af748fe146e6460d9492552181c509a0c18af1d3cf003f38f3adb0bbf834a274070896b8f3912bbea63520efee31428129650f44d78b950d1618db9be"], 0x38}, 0x1, 0x0, 0x0, 0x44000}, 0xc000018) r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r0, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r1, 0x8040942d, &(0x7f0000000040)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r4, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_CHANNEL(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000580)={0x1c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}}, 0x1c}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x58, r2, 0x200, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x8, 0x10}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x3}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1}, @NL80211_ATTR_NOACK_MAP={0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xf8db}, @NL80211_ATTR_NOACK_MAP={0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x24044801}, 0x0) r7 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r8, 0x0) dup3(r7, r8, 0x0) 08:57:59 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffff}}, 0x0, 0x3, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r2, 0x9, r3, 0xa) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x9, 0x1f, 0x6, 0x80, 0x0, 0xffffffffffffffe0, 0xc0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3ff, 0x1, @perf_config_ext={0x4, 0x3f}, 0xc40, 0x6, 0x7, 0x5, 0x10001, 0x10000, 0x3, 0x0, 0x1, 0x0, 0xbf}, r2, 0xa, 0xffffffffffffffff, 0x2) shutdown(r1, 0x0) sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, 0x0, 0x800, 0x70bd28, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xc75f}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x24}, 0x4) dup3(r0, r1, 0x0) [ 2494.153636] FAULT_INJECTION: forcing a failure. 08:57:59 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 60) [ 2494.153636] name failslab, interval 1, probability 0, space 0, times 0 [ 2494.156574] CPU: 1 PID: 12363 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2494.158271] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 08:57:59 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0x0, 0x4, 0x6, 0x1, 0x0, 0x800, 0x14086, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x73e, 0x4, @perf_bp={&(0x7f0000000000), 0x4}, 0x2000, 0x6, 0x2, 0x4, 0x80000000000, 0x5, 0x0, 0x0, 0x6ca7, 0x0, 0x9}, 0xffffffffffffffff, 0xe, r0, 0xa) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r1, 0x9, r2, 0xa) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x1, 0xc, 0x1f, 0x1, 0x0, 0x7fff, 0x200, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x7}, 0x4080, 0x9, 0x5, 0x7, 0xd94, 0xf55e, 0x0, 0x0, 0x8000, 0x0, 0x7}, r1, 0xf, r0, 0x2) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) dup3(r0, r3, 0x0) [ 2494.160287] Call Trace: [ 2494.161035] dump_stack+0x107/0x167 [ 2494.161934] should_fail.cold+0x5/0xa [ 2494.162871] ? create_object.isra.0+0x3a/0xa20 [ 2494.163987] should_failslab+0x5/0x20 [ 2494.164916] kmem_cache_alloc+0x5b/0x310 [ 2494.165920] create_object.isra.0+0x3a/0xa20 [ 2494.166927] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2494.168159] kmem_cache_alloc+0x159/0x310 [ 2494.169170] vm_area_dup+0x78/0x290 [ 2494.170209] ? lock_release+0x680/0x680 [ 2494.171171] ? mark_lock+0xf5/0x2df0 08:57:59 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x0, 0x0}, 0x0) r2 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xb6c, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25, 0x10000000000000}, {0x0, 0x0, 0x4000}], 0x11a000, &(0x7f0000001500)=ANY=[]) r3 = openat(r2, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x10000000c) syz_io_uring_setup(0x77d5, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r6, 0x0, &(0x7f0000000440)="037ec052eb7052ecc311eb97be349b472124662ef4dede168d2cc6b84523e469f7de3551a997ff1a436a6a460d6c7b3b654058217932b9b4e725b61005069a94b0023b61ffa96663ecdf9beb68cbd35d7220f33536b1ffa44c6249741c19fb3b87fc119879864c8fd9e2289f682666006227ca0c846b8af077e9fddcb04be43575ac9567d837f2f5d2333716fd4d", 0x8e, 0x12140, 0x1, {0x0, r7}}, 0x80000000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001600)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r7}}, 0x9) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r10 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r10, 0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x0, 0x0}, 0x0) setxattr$trusted_overlay_origin(&(0x7f0000001540)='./file0\x00', &(0x7f0000001580), &(0x7f00000015c0), 0x2, 0x6) pwritev2(r10, &(0x7f00000014c0)=[{&(0x7f0000000080)="8a3d99996483f5e06d7e822088ac8fed993bb693b6a2d687fb720d17e714dadec7ca529a7dd0b22b2d55dd94c8ecf697e5a53f5b44f7015591cf9a32f0d4e50a11fe92090ce9d7b62877ff853dc43e7f387383b6c00f3e92a0dc1cf0760bc9fcdf9923c55b07f0fa586154a73e089c1c576b0dc58621dc4fac545ac445e5aa6c3b134e5341490c33e54b6183c113be1e1f58eb974327a070b24834d88c0f0315ed235fff3a0d486f85", 0xa9}, {&(0x7f0000000140)="0ece756f0147e8c2bb093ad4dcd1248143b191e158afb1e70ae34c959d54eed9c839cf21a2ab1f755ca5271ebe4dfbc4acb0e0bf359e97b6b9bfe0d0292db3ecb6db8af30193fc62392bfe0621c4f4acd79c2f68bcabfb438e635095da4e506454c51136d7b94e5486523d5a4b8a379e5fb4227d4a3ba0ae4584a08e7b75a9c66ab3658aab7e866da74c5bac472849821490124c86237f978fd7738528d3c221ea7416ab2d53b49db4942f75f2099419deec7e915a617de1e1b0ae71c90e9d0a255142841ec7539a9b89", 0xca}, {&(0x7f0000000240)="254694cb4032c6f310c22f4930619cd2a2d754deef1b0ccb9262e381b61974ed9707552ccd553e224f8f30f25c5f049b641b5949fe543d2afdbe6f2950058cb07e464165a6fb223ea55a10a4e966bde64c2e3282e5c5494feebfae6d345e024b9c6cad9225222973dfc81fa34cf9fb0c098ac74b8ed6f923c47e5d80bd50bba2cf4ca3f7fc0238ca480c3cce4f2afb020f9f650407726b94a39d19dd3ae387a0d7c19e3d1dce78aead4883d6d5cfc101a8356e5634d351954295287c4ef8", 0xbe}, {&(0x7f0000000000)="808c8267c6ba053f9cb406e7b7", 0xd}, {&(0x7f0000000300)="e1c789d309a9f587865a776fe5caf2690172935a1ea1e9c7ec1820aa749df475291dc56eda18cd11f53384b737a9e4d626851eff2f094e7162d16a4db437839bb90e80c1d8176b336c06264b86f36b6cd5c828c3fa2c0b5d9b6ecd596c41eced1d45196a4c8eb2a5054f3f31ee00e0b854926513fa34d74ec21976194b5eee0426854901c3538d4c6ae13280381312411074182d51005d9e4201f87967434dad1f2dc0504442825e770b4644bcac4341e216d74ea3c41c82c3b96ac82cd5c7ec9a5b716c6b047fb20ac745082306cc2790e31695e9ca1b468ba8fd29d080dc8eb18ad70d3f7124cd23a428fdf48e0ffd6ce21e36f409ef2cf9", 0xf9}, {&(0x7f0000000400)="1f214af3f936680d5bc74e01a1d5df04edd87ccea6b964b93bc555f1ca14bec805bf1843ce5637a491f65a381b736b5d04c0282b1389d1e8eb25536ebf3ab82545b21f8d9c9038848adb87d4de091dc6fafc5fcd1dce9f930d5e3bebcb", 0x5d}, {&(0x7f0000000480)="d1aec62e8dbf3c3f6f2780c0fb5003fcce5f4b8106fb3298fca6ef3087e700eea2b80f7dc27ae3a79719fc2ae85da37f4709843599f1c57bc7b7644f7bb411941d0bb5e995ee6433391d92bf82c4b711ee55da55024cfa158e6791118e6968a64858105f9a2c142b8ccec1dbf1ec097055dd540e2eff026d8ea9a9dac3afb1abc60a52fb5913c8dcdf39b9daf4f8dc5b2b1b1d483c43aff937b250ececc7f022f8009899c4b770f52f17cd6e8a790c3918c1f09696f0336a45250f5a3d6f250900f0e71b34aac1d625d069f20ba84fa150a697dae10c73051d3fa4a3bbf1493b1f05685d9969bda5398068e9963c89b04185bf9f1a1ff8fe3e8f1a2488e4f1d47ed4f54194a7a1a93c03e6c245436bc464c418c7a0211a5ae058ef6dd91bfa789ac2d4759ecc690db0cab7e4630b9e3798868e3503e07a12b1e58a5efc53ab57b6caa53e441ab29e9332ead056a2ff988788788ab2beb25e60457a2e2e4f1d2453db42f79a1cb747a3410c9661ce9b57a7281065f1003f0f60631d83f5680555ce44e17a937700c5c01cf614bbf530e9bed84b627071401adc3dd7fbdcec72449f79c93d76fd93f43cb911c8f8330badce3c417aaf9c0614b94c9a9127f442390edfae8af2075c9f6fc5d81a2282784810cd1778ff4b40aaa14116f49b08d21f222c354864b91ab376410cc847e4ef3dc92f02d540b8a0b1ae28ad61387f99a8d18c78b9d6822c53c68d91bcf968e9dfadfaa39bfbf861dd6f92f4b0d6030b71837c07e71dd7c6ab513b900ae14479ff38c2ede8fe70b455320438771f1c31e4eab7142bc63b6404ed39ba68671a1aa5541698c20ce4adc0fdce1eb6cc353cd1464db7064aeefd2186e005757f314cec849f5c49f3ccb5b4ee9371947e61bc3d0fb7a6d3e0d5a8d6285c8e06e198e74c5f537a7b6c59f3c77c256c72c8cd894df574c2e151d4a57a376ffc5ac094fe609979cecb8a7112225bcdcaa03260da5406df9cdca6c4c792e27a288c7d3165981663eddc8af475eb49189f9ccad32e3e5262c8708bc82720e35b1c0bed7763fd3a4075718c14b35165c72ef98f3806e73e61c8c78cb0adcfc97b9737da44b8b169c2220faa09ed7179d5e8ce2c1e72e9cf9516d746bccf86add885ff5926a55b171b56e9f391dde3eaf5df4cfc2a809904a11f8752bc15eed69aedcfb3a8cc736aaa572e4abe3aa394085d434d59ee997a49582d69ae8deac4e39063f937f9a1955f1557276549de7a754dde9179a9e6ae5914fb155dd9667ea578d5a01c9854c49eeca9b35ae759bcb2ba8a5a8df09e170491bf951ff787fa67f5c315c86511d66dff749f033205bfb29e2ba9ddb8513bdb7168e841b8b66368642b6ecdb8827d17448ddde5d328f600fe1df4838634dcf8de81548aba36083f2d5a91fabdec169ec538e2cbe3045dbb57f8f85fbc0377037deb6e2008ef0a778f262d9be5d52480dc786393c5671c640cbe2c1d7dc790174d151707a95c3651f00a51a46783b6e60d1623876770c8c4cd20082b45c8874c64bba30d455325f7bd2631eb684ac80776603ff26ec31783fb264e4c519effe2632db17711003125c456ac36389c931de55326cb8cfc7cb994676704a97d1e9d46332eed109a1a0b802e230b78e2a89c42136bcab20b6ab71d98f1d101820cd9c9b2e5185fd593771b22a4743244b4afc79ea342dff555181ec2f85199ac5e8d7349639c24b9e5c4281d5cf6ca3df1982565359df5a64ad5fde28c2b0bc73923ea246285bcfb848406e0b5dccfe68756734ada4851365b75b1f5281b48b260d980160d88461a735a15178cf6c0557d45cf075c814264bdd517c18707efebb4c05d823d2b26a8e244f08aef92b5942a7ef4d70a8cf3f275d6edbadd7fe2bae57f5798de4aa74bcce4cfba986c298008fcbef0cf565eab1b53f04c5e38d3a7ab90cf0311edc2373faebbd66a06fdba6022f20d379ee88bd619f4f0751f1f0731aaf52c10f55239d401b9ed8d0c60c098748739c50cd0fb90f9577d59a3a47d83c82394cf81b888a65886d040bd446b2c630813711fbcf4def0ba687b930ead8e0ddd314d302ca4d8e67c17f9f1f32f0b74e49aafac7b9f2f33a3b99706dc799605933bc20e03744cc2aa9dff257fcf6525cd9e7f4adf79ae3e0f606da67ae7ea19150869d2cf4c9e5138c6be8d2c1e205f4d1f1a3f8d05cd1285bff54548fc31eeadb7491538a6cc2200868f3f896d02f84e3a6810531ca8e162e40d76c6918c08004961c4c2fb31a2317fb59a6bf958abb83a64c14e040623dcc719546fa08486e82d10d7466922ab791ee8440df72788093296d654df9b4c6ce8f3e8cd8ed2ae370914e0fb1fddc7234594dca2d6ee3fc018b378661afda222c118d2d4e70dfc302a470a60f5f24d1f8968c1ed6c85fa2863873d45d00ca17ed41c925c444e9090b98a831fed19a247669eb430a1ca736103fcd92ca95d6d4de31ca36e11cc51a71388bf4795aab061c6c40fe98515d819ff05751a6e2b695a9b6f01a88ba92ed8b2b6df2072f0ca61b4d5a0ea2f97b1b7b94b49c72564bc133118583a8bab94a9b0bc3ef973caf52fe1b5bf8239945653e2553ebc837cc9048db19a06c390ed1db1c0240cd7a1aec118c0dd5c4ee8ff52db91b3fb1e71e398599bfd4dccd2d8c1c5c2aadcc25e1c3a69bdd9a9ece5538d45af533b033e3a6d0025d72fc1b7850a465dbd7e36248cd75c7ba87cf80dc786419608d270f6cb8100c57796875545d79e625ac332fecd5cba2d4153dde4ccedff81a5b57b49e39a7ec13c6899fd54fd39504a75847ec878e9db194cbc66409ec858730ef6060e93bc86bebb614cbfa071f84e1201ab165adbf07c640786538b6c1f59bbd88e022dbb69698d6c4e396de980befec0c7b1399b59b36cd5efb1424ad172d3fe62aa32dc48e34d793c74e204e978eda00be1d40d220b8746ff902e585d37de28a66eafc6e89238193f289116f158b30945266704b231696ce95e8b9dfb9f9dbb16b10f2ebe3bc44767fe08bcad6100996fa9a957e7c81b6e2c1ff8dc054fb0a9d4e3db2fae06d6dbda930bd65ae7fa08253ec0fc40af4432b906c07257b1d926178670e4d2413908010d10e80559030413274a379b3170ef330d7f3c60b15fca55db94760e9ce2d763ccfafdd6c70fd727c20182c2ce3390210686940fa42911d1ebb06bd2a9a81f6b9d4ab3a95393ebbd295327992894a9a00cd753e95f6810a3cdd873aec4647104b67ed2777f4fad25ae8b967c57d51267769cf427c58e0a624686562db5f8ba65806bcdcdf160eda1aa11d191788518ed9d77dfdd15214b0d58c4f0b0911d5497a6a3b718a5cd88d8083474d6d1184ef25828978b0cc7de73a0c2d6055abd139bc110417c1c118e857766e5cea96b5cf91eb753057586655682dac2af2153c702d6d0b51bfec27a9f04c591ef313f6a312e766015176b76d22acc71964772d51fd7b7809764887bd5d99e31c22e90220854e8a29b017775e7ac80e634e9fd42c8f5d241e63c73bde690455250b889c72bf112a95112cb4d1194c3275af28feb152b4de4518edb4d9da8472b134ea1b5e7f1dfe0bb7cc489b73f2a199f30afe9ef78ab3aadad9267dd008706b501a2483ef1b5ff782cfb9891c02d4dd2e5f0d36664b0ec3f9c4a0dd2db2f61707a725efb0448c341dce766fb346797904cdad1d78d0f702df017cd616834b46c1498a3a82313c310d37d5c8b06c39edd633e66875f42a95689cd8f90ac3c1c8a722facc4de0ce2b4501b7439b854aec81b22a7d0dc23a0ccf21691462a8ffdce37675357312e2eedf92769e84fcbad24274a7e93c34567b9c820b19c392f7ea300b35b33ab74b31f341f9f2de4075d6d8676f720101096039c9ae61e910367ae50572a62c0d1d79196e648a1c1bff3582693645b36c86d914b1bf18bd29103d79f2449f1d59ea5952bb4f3d40e8d196d4d57a2c3f7d9e539bf80d8b00276c64a0f1fe2f76fb40beb0c77e843727796a397d8061538ee8cc68704235b9242ef1b067511daedf8c09168ae1cf88346020a189adefc45b7f117d5c8a5904f5c00bf25f67adeafe0f9d09501bb9a3adbe279d1869c5a26f68a435f81a20b179c3ff5b375a5dd2354696ee5942fd516036ad2822c952c2fabd9d3153dbd1e4a89e5274e330f4547bb00b6ee3d24ea0a1a3f8feb8cfffafbe847d3ba8200711dc3a17e3c753dd7bb5bd17381a793515f1035d960134e1d44ecf0cf31c2a51693c9d506d8e26f16d864150c8a01f168f953b389021759003376ecd55311854d6653ae259791c593d197dd84fcc1ee1c5744274b4a744420a85635091ea68acc733f4f48fd7060f6ac9a75e6b034688431e8aaaf4852e8d8c9b09b485fca5d7888c4c84e2c5f03f727e23f9f92d416b71fba9ce1aaf18b3d27d1494e6cb64bc53faf5a51abcd81cfdb25726ddb5e7fe4ba68fb306f0ee6f389ea8ea662fcdfbb224091e31b19c48d10256eb73ff8126338646e25e687dc098e0f9306b9f2670a057773e544e0289974f3edb5bb7b38f185e21a3201200b9d55b8e8f1cdbb9f8c1fbf8753278f34230ebff91b50170d0634bca105bca3fc9d1964b15b411037408e7b9aa7080cd82c2926a140eba5fb5d6b4292f12980b34b39793008231c471bf7f721ebf1566f8a2f6163e5fdbcfad5181377d670162589d83950a6a4ad5e284bd6e728fea5a8ef945c766929bdd46ed3d0add6bef5907007439e11819653f9889997fb0772b5a9a9a141322ea86b1f387c1defe190ba3abf94748abb8360e84822913c06f4e361dbcd6775035f8a5952591da7a94e9179a9c05e32eeb30f815a80b20a50520655a794d69b1e4a405133b8e328bc212ffd7c9cecf6bc6253a5a5277f749af861c9024ea0fcb4d6ebeb5107828b8023dd6d50660ac27d600c874d86a23f297cfebb7e4e887ef28856da68013858dac4e95b199903589cf32224a274b2557b618120f283d396ef70e54d43f94e1cd49e3907d803f9b67ea8c446e7516ae12539c6fa073a2f1f464706523637860c77f1506b7376341d67fd2e1798ba91b44badeee0e4a9add24d38ffbe3880af483b4dc3eddc852ba72ccfd46838a9d785b92e0b68d51c50281272ff4c4c3b229a136072e81f95769544b4f5d172e7a1b481a7238bd19d19704ca99fb82d706edbb14b148cb710d6861c8d2cfe99a2a21b1709453d141ea60f66563840690530fa5d392acf0643dd35667bc3c816fb061087c01957e0bc3c7fcbd31a725f42092a662535899b4c9d0db3ff9b2a9bab582e5901f3b893c3d4e521fc44c6f049b7124e0f6f87a50cf5ea7bd144781bf9e554729e52fa8188504251af565a89119998dc576b0f3086898d89567bebc5b7de93fdfc37aefac5b9b532b69a4a2901836c0131d61bb3ef2bfddae6d42612be8bae9cab145e2b6c918535750362d33ac04e58484b07459604eee284788e39d227b855147aed137ec6174d282c40abcb9b00056d7a45e1062573445a8df7436e2614f082eba149827a74523e890ee5eabd12cba630fcc42244be1eaad1eb8f14986c815a3ba9e82d7a0044f0fc00ce46796110a87a4c80b23027a6b950c0d90100376c12e2d47047760bded19bfc4433ebe8a042fad8ec5447f7022bbb6295f17e101e4a86115603c1a16d3e59ee84b853017cea7b9c79f2f5c399307e9f47a25408655464171c7ba81435bb237831fe22a176a29ccf966d7e0da5a454fc82088534903e206e5ed1823d637442cdf347425eb6da6a", 0x1000}, {&(0x7f0000001480)="8836153e", 0x4}], 0x8, 0x4, 0x3, 0x7) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) [ 2494.172081] ? lock_chain_count+0x20/0x20 [ 2494.173313] ? mark_lock+0xf5/0x2df0 [ 2494.174229] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2494.175493] ? lock_chain_count+0x20/0x20 [ 2494.176507] ? mark_lock+0xf5/0x2df0 [ 2494.177403] ? vm_area_alloc+0x110/0x110 [ 2494.178391] ? __lock_acquire+0x1657/0x5b00 [ 2494.179442] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2494.180697] ? vmacache_find+0x55/0x2a0 [ 2494.181661] __split_vma+0xa8/0x4e0 [ 2494.182536] __do_munmap+0x365/0x1260 [ 2494.183455] ? arch_get_unmapped_area+0x450/0x450 [ 2494.184620] ? lock_release+0x680/0x680 08:57:59 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffffffffffff}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x3) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x10009]}, 0x8) readv(r2, &(0x7f0000001080)=[{&(0x7f0000000000)=""/4096, 0x1000}, {&(0x7f0000001000)=""/107, 0x6b}], 0x2) connect$bt_l2cap(r1, &(0x7f00000010c0)={0x1f, 0x8b, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0xffc0, 0x5dbd146ed130b421}, 0xe) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r3, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) sendfile(r3, r0, &(0x7f0000001100), 0x2dc) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2494.185585] mmap_region+0x7c8/0x1500 [ 2494.186640] do_mmap+0xcdb/0x11e0 [ 2494.187477] vm_mmap_pgoff+0x198/0x1f0 [ 2494.188413] ? randomize_page+0xb0/0xb0 [ 2494.189376] ksys_mmap_pgoff+0x41c/0x560 [ 2494.190356] ? find_mergeable_anon_vma+0x250/0x250 [ 2494.191539] do_syscall_64+0x33/0x40 [ 2494.192422] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2494.193657] RIP: 0033:0x7f0e6488ab62 [ 2494.194545] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 08:57:59 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000005, 0x4010, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r5, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0) syz_io_uring_submit(r2, r4, &(0x7f0000000000)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd=r1, 0x2, 0x0, 0x3, 0x1}, 0x6) dup3(r0, r1, 0x0) [ 2494.198917] RSP: 002b:00007f0e61e000f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2494.200885] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0e6488ab62 [ 2494.202584] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2494.204273] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2494.205967] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2494.207664] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2494.234924] FAULT_INJECTION: forcing a failure. [ 2494.234924] name failslab, interval 1, probability 0, space 0, times 0 [ 2494.236229] CPU: 0 PID: 12377 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2494.236955] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2494.237962] Call Trace: [ 2494.238353] dump_stack+0x107/0x167 [ 2494.238881] should_fail.cold+0x5/0xa [ 2494.239431] ? create_object.isra.0+0x3a/0xa20 [ 2494.240091] should_failslab+0x5/0x20 [ 2494.240639] kmem_cache_alloc+0x5b/0x310 [ 2494.241227] ? mark_held_locks+0x9e/0xe0 [ 2494.241852] create_object.isra.0+0x3a/0xa20 [ 2494.242469] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2494.243191] kmem_cache_alloc+0x159/0x310 [ 2494.243784] xas_alloc+0x336/0x440 [ 2494.244285] xas_create+0x34a/0x10d0 [ 2494.244819] ? kernel_text_address+0xf2/0x120 [ 2494.245458] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2494.246205] xas_store+0x8c/0x1c40 [ 2494.246715] __xa_store+0x164/0x2d0 [ 2494.247233] ? xa_delete_node+0x280/0x280 [ 2494.247824] ? trace_hardirqs_on+0x5b/0x180 [ 2494.248441] xa_store+0x31/0x50 [ 2494.248909] __io_uring_add_tctx_node+0x1cf/0x520 [ 2494.249595] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2494.250332] ? alloc_fd+0x2e7/0x670 [ 2494.250844] io_uring_setup+0x1fbb/0x2980 [ 2494.251442] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2494.252154] ? wait_for_completion_io+0x270/0x270 [ 2494.252847] do_syscall_64+0x33/0x40 [ 2494.253364] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2494.254093] RIP: 0033:0x7f1ba3a34b19 [ 2494.254629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2494.257203] RSP: 002b:00007f1ba0faa108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2494.258272] RAX: ffffffffffffffda RBX: 00007f1ba3b47f60 RCX: 00007f1ba3a34b19 [ 2494.259276] RDX: 0000000020ffe000 RSI: 0000000020000300 RDI: 0000000000005407 [ 2494.260280] RBP: 0000000020000300 R08: 0000000020000100 R09: 0000000020000100 [ 2494.261286] R10: 0000000020000000 R11: 0000000000000202 R12: 0000000020000100 [ 2494.262299] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:57:59 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x44000, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000080)='{!\x00') mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:58:00 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = dup(r0) perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x85, 0x7, 0x7, 0x13, 0x0, 0x7, 0xa0000, 0xe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_bp, 0xe4767cb6271a503a, 0x1, 0x50a, 0x1, 0x7fffffff, 0x1, 0x1, 0x0, 0x200, 0x0, 0x1}, 0x0, 0x5, r1, 0x1) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r3, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) setsockopt$bt_l2cap_L2CAP_OPTIONS(r3, 0x6, 0x1, &(0x7f00000000c0)={0xfa, 0x100, 0xffe0, 0x3, 0xff, 0x1, 0x3}, 0xc) shutdown(r2, 0x0) dup3(r0, r2, 0x0) 08:58:00 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x4b4e, &(0x7f0000000040), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100)) r1 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r1, 0x0, r1) ioctl$BTRFS_IOC_BALANCE_CTL(r1, 0x40049421, 0x1) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000500)={{0x7f, 0x45, 0x4c, 0x46, 0xd3, 0x86, 0x0, 0x40, 0x10001, 0x2, 0x3, 0x6, 0x48, 0x40, 0x8, 0x5, 0x8, 0x38, 0x1, 0x1ff, 0x2, 0x2}, [{0x5, 0x7, 0x9, 0x2, 0x8001, 0xffffffffffffff2a, 0x40, 0x2}, {0x4, 0x23, 0xffffffff80000001, 0xffffffff, 0x5, 0x5, 0x6, 0x6}], "66fed951552c97f0e9f7e3924f9446245c2cd190b2a3c818045a514cef71a442254ad6ff975a4d09f373ffb95ef9394ef3008ad2b59d970d"}, 0xe8) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:58:00 executing program 3: r0 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f00000001c0), 0x800) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="01000000", @ANYRES16=0x0, @ANYBLOB="00012bbd7000fcdbdf254400000008000300", @ANYRES32=0x0, @ANYBLOB="08006b00ffff00000c00240050816c040004488044002380050007000100000008000b000000000006001900ea82000008001a000300000006000300d300000005001d000100000005000e000400000006000c00090000001a00240085368616001b9209961b12360c04b6481be086368cb00000040008010700240003ec00000400bf0008002201e603000008009f00050000000400cc00"], 0xb4}, 0x1, 0x0, 0x0, 0x40}, 0x44000) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r1) sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)={0xc8, r4, 0x1, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4fa0, 0x74}}}}, [@NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x40}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x5}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x4}, @NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x6}, @NL80211_ATTR_SCAN_SUPP_RATES={0x68, 0x7d, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x64, 0x2, "f8477b38b9284843d15922f08a6901410e2dc545ea787c6037a0a7fa0efd47724048f164699e48bc2d60b495ff2645ec758a33a2744606280423f946cc373d13052bb03452464380df69e968f18c4cf939ff4fd3948fadf66b6a61fdde464420"}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x24000000}, 0x800) munlock(&(0x7f0000ffa000/0x3000)=nil, 0x3000) madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x13) 08:58:00 executing program 4: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) 08:58:00 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x3, @any, 0x80, 0x1}, 0xe) shutdown(r1, 0x0) dup3(r0, r1, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000000), 0xfffffffffffffff9, 0x840) ioctl$int_in(r2, 0x5421, &(0x7f0000000040)=0x5d) 08:58:00 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) r1 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r1, 0x0, r1) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r1, 0x4008941a, &(0x7f0000000000)=0x2) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) 08:58:00 executing program 5: mount$9p_rdma(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x800004, &(0x7f0000000200)={'trans=rdma,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@timeout={'timeout', 0x3d, 0x4}}, {@sq={'sq', 0x3d, 0x8}}, {@sq={'sq', 0x3d, 0x9}}, {@sq={'sq', 0x3d, 0x9}}, {@sq={'sq', 0x3d, 0x3ff}}], [{@dont_appraise}, {@seclabel}, {@hash}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x65, 0x32, 0x36, 0x32, 0x39, 0x34, 0x31], 0x2d, [0x61, 0x66, 0x30, 0x62], 0x2d, [0x66, 0x5f, 0x35, 0x66], 0x2d, [0x33, 0x35, 0x36, 0x64], 0x2d, [0x35, 0x38, 0x39, 0x64, 0x31, 0x36, 0x34, 0x64]}}}, {@audit}, {@appraise}, {@smackfsroot={'smackfsroot', 0x3d, ')]!!-]'}}, {@hash}]}}) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000002}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x5) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2400007439ffb76c1b3cea547ec5299678010000000000000000000000000200000005000000000000000800010000000000"], 0x24}}, 0x0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r2, 0xc0c89425, 0xfffffffffffffffc) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) dup2(r3, r2) dup3(r0, r3, 0x0) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r4, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) write$P9_RXATTRCREATE(r4, &(0x7f00000003c0)={0x7, 0x21, 0x2}, 0x7) syz_80211_join_ibss(&(0x7f0000000340)='wlan1\x00', &(0x7f0000000380)=@default_ibss_ssid, 0x6, 0x2) r5 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'wlan1\x00'}) r6 = fcntl$dupfd(r5, 0x0, r5) sendmsg$nl_generic(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) bind$bt_l2cap(r6, &(0x7f0000000080)={0x1f, 0x6, @any, 0x8d3, 0x5}, 0xe) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'wlan1\x00'}) [ 2494.425136] netlink: 'syz-executor.3': attribute type 6 has an invalid length. [ 2494.426121] netlink: 'syz-executor.3': attribute type 6 has an invalid length. [ 2494.443549] netlink: 'syz-executor.3': attribute type 6 has an invalid length. [ 2494.445387] netlink: 'syz-executor.3': attribute type 6 has an invalid length. 08:58:15 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 63) 08:58:15 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20080, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x100, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_setup(0x7cbf, &(0x7f0000000080)={0x0, 0x9c11, 0x8, 0x2, 0x67}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000140), &(0x7f0000000180)=0x0) r3 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) r4 = openat(r3, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x10000000c) syz_io_uring_setup(0x77d5, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r6, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r7, 0x0, &(0x7f0000000440)="037ec052eb7052ecc311eb97be349b472124662ef4dede168d2cc6b84523e469f7de3551a997ff1a436a6a460d6c7b3b654058217932b9b4e725b61005069a94b0023b61ffa96663ecdf9beb68cbd35d7220f33536b1ffa44c6249741c19fb3b87fc119879864c8fd9e2289f682666006227ca0c846b8af077e9fddcb04be43575ac9567d837f2f5d2333716fd4d", 0x8e, 0x12140, 0x1, {0x0, r8}}, 0x80000000) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10041, 0x1, {0x3, r8}}, 0x1) 08:58:15 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, @perf_bp={&(0x7f0000000080), 0x9}, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000040), 0x1, 0x16140) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10, 0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) dup2(r1, r4) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r5, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x80202, 0x0) faccessat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x61, 0x0) dup3(r0, r5, 0x0) 08:58:15 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 61) 08:58:15 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080), 0x10) 08:58:15 executing program 5: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r0, 0x0) getsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000000140)=0xa9, &(0x7f0000000180)=0x2) r1 = socket(0x27, 0x80000, 0x7fff) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) shutdown(r4, 0x1) r5 = syz_io_uring_setup(0x2625, &(0x7f0000000240)={0x0, 0xfffffffe, 0x20, 0x3, 0x17a}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000001c0)=0x0) r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r9 = syz_io_uring_complete(r2) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2000002, 0x8010, r9, 0x0) shutdown(r8, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x0, 0x0}, 0x0) getsockopt$inet6_mreq(r1, 0x29, 0x1c, &(0x7f0000000380)={@remote}, &(0x7f00000003c0)=0x14) io_uring_enter(r5, 0x2825, 0x71bc, 0x2, &(0x7f0000000340)={[0x10001]}, 0x8) syz_io_uring_submit(0x0, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r1, &(0x7f0000000040)=0x80, &(0x7f0000000080)=@ethernet={0x0, @random}}, 0x0) syz_genetlink_get_family_id$batadv(&(0x7f0000000000), r1) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000002c0), &(0x7f0000000300)=0xc) 08:58:15 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) r3 = openat$cgroup_ro(r0, &(0x7f0000000100)='blkio.bfq.io_service_time_recursive\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, r3, {0x101, 0x8}}, './file0\x00'}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000080)=0xc) ioctl$SIOCGSTAMPNS(0xffffffffffffffff, 0x8907, &(0x7f00000000c0)) 08:58:15 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1, 0xffffffffffffffff) [ 2509.821152] FAULT_INJECTION: forcing a failure. [ 2509.821152] name failslab, interval 1, probability 0, space 0, times 0 [ 2509.823113] CPU: 0 PID: 12436 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2509.824304] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2509.825727] Call Trace: [ 2509.826195] dump_stack+0x107/0x167 [ 2509.826820] should_fail.cold+0x5/0xa [ 2509.827477] ? vm_area_dup+0x78/0x290 [ 2509.828133] should_failslab+0x5/0x20 [ 2509.828791] kmem_cache_alloc+0x5b/0x310 [ 2509.829490] vm_area_dup+0x78/0x290 [ 2509.830123] ? lock_release+0x680/0x680 [ 2509.830809] ? mark_lock+0xf5/0x2df0 [ 2509.831458] ? lock_chain_count+0x20/0x20 [ 2509.832170] ? mark_lock+0xf5/0x2df0 [ 2509.832813] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2509.833711] ? lock_chain_count+0x20/0x20 [ 2509.834427] ? mark_lock+0xf5/0x2df0 [ 2509.835069] ? vm_area_alloc+0x110/0x110 [ 2509.835775] ? __lock_acquire+0x1657/0x5b00 [ 2509.836531] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2509.837432] ? vmacache_find+0x55/0x2a0 [ 2509.838120] __split_vma+0xa8/0x4e0 [ 2509.838744] __do_munmap+0x365/0x1260 [ 2509.839403] ? arch_get_unmapped_area+0x450/0x450 [ 2509.840234] ? lock_release+0x680/0x680 [ 2509.840912] mmap_region+0x7c8/0x1500 [ 2509.841572] do_mmap+0xcdb/0x11e0 [ 2509.842182] vm_mmap_pgoff+0x198/0x1f0 [ 2509.842852] ? randomize_page+0xb0/0xb0 [ 2509.843546] ksys_mmap_pgoff+0x41c/0x560 [ 2509.844243] ? find_mergeable_anon_vma+0x250/0x250 [ 2509.845092] do_syscall_64+0x33/0x40 [ 2509.845731] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2509.846618] RIP: 0033:0x7f1ba3a34b62 [ 2509.847254] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2509.850462] RSP: 002b:00007f1ba0faa0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2509.851759] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f1ba3a34b62 [ 2509.852977] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2509.854214] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 2509.855438] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2509.856660] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2509.876118] FAULT_INJECTION: forcing a failure. [ 2509.876118] name failslab, interval 1, probability 0, space 0, times 0 [ 2509.878700] CPU: 1 PID: 12426 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2509.880214] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2509.880820] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 2509.882085] Call Trace: [ 2509.882115] dump_stack+0x107/0x167 [ 2509.882137] should_fail.cold+0x5/0xa [ 2509.885534] ? anon_vma_clone+0xdc/0x590 [ 2509.886442] should_failslab+0x5/0x20 [ 2509.887295] kmem_cache_alloc+0x5b/0x310 [ 2509.888197] anon_vma_clone+0xdc/0x590 [ 2509.889100] __split_vma+0x17c/0x4e0 [ 2509.889924] __do_munmap+0x365/0x1260 [ 2509.890776] ? arch_get_unmapped_area+0x450/0x450 [ 2509.891872] ? lock_release+0x680/0x680 [ 2509.892745] mmap_region+0x7c8/0x1500 [ 2509.893666] do_mmap+0xcdb/0x11e0 [ 2509.894457] vm_mmap_pgoff+0x198/0x1f0 [ 2509.895348] ? randomize_page+0xb0/0xb0 [ 2509.896235] ksys_mmap_pgoff+0x41c/0x560 [ 2509.897196] ? find_mergeable_anon_vma+0x250/0x250 [ 2509.898297] do_syscall_64+0x33/0x40 [ 2509.899145] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2509.900263] RIP: 0033:0x7f0e6488ab62 [ 2509.901152] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2509.905229] RSP: 002b:00007f0e61e000f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2509.906968] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0e6488ab62 [ 2509.908530] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2509.910176] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2509.911748] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2509.913314] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2510.029191] capability: warning: `syz-executor.3' uses deprecated v2 capabilities in a way that may be insecure 08:58:15 executing program 3: r0 = getpgrp(0x0) capset(&(0x7f0000000000)={0x20071026, r0}, &(0x7f0000000040)={0x401, 0x7, 0x7, 0x6, 0xfe000000, 0x1}) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x77359400}}, 0x0) 08:58:15 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 62) 08:58:15 executing program 2: r0 = memfd_create(&(0x7f0000000080)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xa4\x89`\xe4\xc6O\xca\x04V&\xe1E\xa38\a\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n\x91\xa5\xad \xaa\x81o\xcc\x8d\f\xff\x0e]\x1f\x83\xf5\xf9\xa8\x05\xc2\xcd\xe1\xf9\xa6\xec\xc5\x90T6o\tm\xda\x1e\x061Z\x02\xf0x\x046\xbeo\xe8c\xf4\x81\x92\x92\t&\xac\xd2H\x91\xa8\xb1\xc3c\xe4)\v\x11\bR\xfaI\xed\x9b\xa4\bn', 0x6) dup2(0xffffffffffffffff, r0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r1, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x1000002, 0x12, r1, 0xda99d000) 08:58:15 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x8, 0xffffffffffffffff) [ 2510.106491] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 2510.112599] FAULT_INJECTION: forcing a failure. [ 2510.112599] name failslab, interval 1, probability 0, space 0, times 0 [ 2510.115473] CPU: 1 PID: 12466 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2510.117008] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2510.118808] Call Trace: [ 2510.119397] dump_stack+0x107/0x167 [ 2510.120199] should_fail.cold+0x5/0xa [ 2510.121103] ? create_object.isra.0+0x3a/0xa20 [ 2510.122200] should_failslab+0x5/0x20 [ 2510.123101] kmem_cache_alloc+0x5b/0x310 [ 2510.123934] create_object.isra.0+0x3a/0xa20 [ 2510.124799] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2510.125934] kmem_cache_alloc+0x159/0x310 [ 2510.126933] vm_area_dup+0x78/0x290 [ 2510.127806] ? lock_release+0x680/0x680 [ 2510.128754] ? mark_lock+0xf5/0x2df0 [ 2510.129647] ? lock_chain_count+0x20/0x20 [ 2510.130640] ? mark_lock+0xf5/0x2df0 [ 2510.131530] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2510.132767] ? lock_chain_count+0x20/0x20 [ 2510.133759] ? mark_lock+0xf5/0x2df0 [ 2510.134649] ? vm_area_alloc+0x110/0x110 [ 2510.135616] ? __lock_acquire+0x1657/0x5b00 [ 2510.136661] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2510.137904] ? vmacache_find+0x55/0x2a0 [ 2510.138860] __split_vma+0xa8/0x4e0 [ 2510.139726] __do_munmap+0x365/0x1260 [ 2510.140637] ? arch_get_unmapped_area+0x450/0x450 [ 2510.141776] ? lock_release+0x680/0x680 [ 2510.142732] mmap_region+0x7c8/0x1500 [ 2510.143655] do_mmap+0xcdb/0x11e0 [ 2510.144487] vm_mmap_pgoff+0x198/0x1f0 [ 2510.145417] ? randomize_page+0xb0/0xb0 [ 2510.146459] ksys_mmap_pgoff+0x41c/0x560 [ 2510.147446] ? find_mergeable_anon_vma+0x250/0x250 [ 2510.148594] do_syscall_64+0x33/0x40 [ 2510.149474] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2510.150677] RIP: 0033:0x7f1ba3a34b62 [ 2510.151578] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2510.155887] RSP: 002b:00007f1ba0faa0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2510.157653] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f1ba3a34b62 [ 2510.159353] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2510.160999] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 2510.162663] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2510.164362] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:58:30 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 64) 08:58:30 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 63) 08:58:30 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) r2 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) r3 = openat(r2, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x10000000c) syz_io_uring_setup(0x77d5, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r6, 0x0, &(0x7f0000000440)="037ec052eb7052ecc311eb97be349b472124662ef4dede168d2cc6b84523e469f7de3551a997ff1a436a6a460d6c7b3b654058217932b9b4e725b61005069a94b0023b61ffa96663ecdf9beb68cbd35d7220f33536b1ffa44c6249741c19fb3b87fc119879864c8fd9e2289f682666006227ca0c846b8af077e9fddcb04be43575ac9567d837f2f5d2333716fd4d", 0x8e, 0x12140, 0x1, {0x0, r7}}, 0x80000000) syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x925) 08:58:30 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pread64(r0, &(0x7f0000000000)=""/69, 0x45, 0x8fbc) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r2, 0x6, 0x3, &(0x7f0000000080)=0x4, 0x4) 08:58:30 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r1, 0x0, r1) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000000, 0x4000010, r1, 0x25c9c000) 08:58:30 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x5) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0) pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, r0) 08:58:30 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0xf8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x1) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r5, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0}, 0x0) r6 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) r7 = openat(r6, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r8 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r7, r8, 0x0, 0x10000000c) syz_io_uring_setup(0x77d5, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r8, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r7}, './file0\x00'}) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r9, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r10, 0x0, &(0x7f0000000440)="037ec052eb7052ecc311eb97be349b472124662ef4dede168d2cc6b84523e469f7de3551a997ff1a436a6a460d6c7b3b654058217932b9b4e725b61005069a94b0023b61ffa96663ecdf9beb68cbd35d7220f33536b1ffa44c6249741c19fb3b87fc119879864c8fd9e2289f682666006227ca0c846b8af077e9fddcb04be43575ac9567d837f2f5d2333716fd4d", 0x8e, 0x12140, 0x1, {0x0, r11}}, 0x80000000) syz_io_uring_submit(0x0, r4, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2, r11}}, 0x100) dup3(r0, r1, 0x0) 08:58:30 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000004e40)={{0x1, 0x1, 0x18, r0, {0xc606}}, './file0\x00'}) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r4, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000980), 0x4865c1) r6 = syz_open_dev$tty20(0xc, 0x4, 0x1) openat$cgroup_procs(r2, &(0x7f0000004ec0)='tasks\x00', 0x2, 0x0) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) sendmsg$nl_generic(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001180)=ANY=[@ANYBLOB="240000001d00210c00000000000000000200000005000000000000000800010000005398481835418902b617d1ccf6fd1a3136624dc57d51cb7af44cf7f1586d7f1026efac334f41c415bbe1ca0660fe89da2f4f14c7adc7ccbd8e7c35194681cc34a3b4aecb3bab38c0f5ee2e7fda23a5"], 0x24}}, 0x0) r9 = openat$hpet(0xffffffffffffff9c, &(0x7f0000004f00), 0x2, 0x0) r10 = creat(&(0x7f0000004f40)='./file0\x00', 0x100) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r13 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r13, 0x0) syz_io_uring_submit(r11, r12, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r13, 0x0, 0x0}, 0x0) sendmmsg$unix(r2, &(0x7f0000005080)=[{{&(0x7f0000000000)=@file={0x1, '.\x00'}, 0x6e, &(0x7f00000002c0)=[{&(0x7f0000000080)="81fd2f7684e48f347778dc1d42173722aaa9c691849e9a59c2c49e6c80eeafc89b8eeaa0f03b9dbf0a611d6eb1e156f4c830d0254c0fbcebee03fbc711fe88726beec0b330e30e26fab04349005ad855e3a064d2bffb0824e5df4128ef937535114be6848210f99f361538a486531e53a13414567c5c37c9ac71ecff3b8f52668b2c", 0x82}, {&(0x7f0000000140)="9ed83ce035c7834361c040d72d205332f14280ee03b87371d16c3a1ec5cca346dd73002931b553420df6b665ef85b3c4f381be27ec26bad0e3b8410805525e10a54e4d372e5e913f9d1fe245db5cbb279e35e28bbfb544ae2fbc41b1013771f477fd29eddd1edfc85c9ee464150c5ecbb87c0401f630c142fa7d41728496bc57427c6925bde370560662c5f3e4b29d0998dbd219bbb8c3694979e799b8a5394d031742d77346a827a836432afe373c6fb50531349c81d3004ca074233c0f4d4d314cda57e084fcee2a622a4c", 0xcc}, {&(0x7f0000000240)="37018e044999a970140dcf04284a5d8ddd7e3becbf15c1bd1977406c544e64af2082bd25e69a77671b2e7f61397bf6bc6e098b31300697ad1dc020173491aa79e89840", 0x43}], 0x3, &(0x7f0000000300)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r1, r1, 0xffffffffffffffff, r0, r1]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1]}}], 0x88, 0x1}}, {{&(0x7f00000003c0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f00000004c0)=[{&(0x7f0000000440)="76f438d1554f7993f10fed51cc797b9d042da9020e8153949b94dd35826fb71c4a2464bdb08c996be9d7110a4c223253c224c05471a73d2509de858fccc49a142cd88b773faf11e70fd21bdf5075bae7ea7edf44a2bf8f45a7", 0x59}], 0x1, &(0x7f0000000500)=[@rights={{0x14, 0x1, 0x1, [r2]}}], 0x18, 0x40040c0}}, {{&(0x7f0000000540)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000000880)=[{&(0x7f00000005c0)="d4904f54301b43455ed7bdccb279b9f0fc59406f17e2430c09f17590598c1dc1020ffc96104f0e95a6748596360c7a03037d8f82415ef0477c936ab057253e5c1805e9a84fee435314786adf3c416a91b10068189b8929fae5e7040fbf183a2db4bbf09b1bf9d63e9d382087fcee8071d7b623738c640e08d25f74c45080e8d19d4de4bfd2646a12cbfd476fb26e0e455d3e1613aeb12d0885986a106618727a903407e547592f88fda196511ac900ec5965b4bf9e", 0xb5}, {&(0x7f0000000680)="63ff31c1de447cfc8366348ca1119748d4fead432c4ca20a48439641095b2674fb9587a7386c6d273c27e7b82e126b5c3f77a2b918738f70eca096f11f368c81f83f4c18050add89797ed3da2f70de7e38c21a791006a5b3c50180134ca04ab2efca6ec2b70f0bfdd9337364a86465b0e86cab16733472edbc75c7673e9c0ad596e7624efd1927cba057f1516cc23229d818418a5dba48604a1e4f0a1a0a7abfd35732ec2857f2b178b7ce118d91b66acce9e8b5c220c81833e9eb2162f6054a9c44c346830e9fa2a23fc2e4cf82e1ad98b6c00fbd2e7bc395434ba2f4ce0c5b8e83d531969eacea0ac9369f81605111cd0ed2be", 0xf4}, {&(0x7f0000000780)="ac98134bcc77bc9a74d20a4df641db5e3e25b77c31303076ea90c543fa47d32b", 0x20}, {&(0x7f00000007c0)="4aa1fc07a58afeab2e1d129db8e31513babc48d6ad3e621a583b1c4a5e43bade538652ca311d5f5a2826fe69aa41b9809bfd46ec60d151c34f4926bc5e22fd2835d138a4cdadb950d963fc4b632fa1136f823f260eec310c5f795cd650dd6d643910fb58235e4f23567ee78b5a0d91c3735c64355f0d6505ab16e43107092a24985984cb88de8e1e83121d146f1cf0", 0x8f}], 0x4, &(0x7f00000008c0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff]}}], 0x20, 0x4000815}}, {{&(0x7f0000000900)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000e00)=[{&(0x7f0000000980)}, {&(0x7f00000009c0)="550ce427ae1682f9e9daadddcc6ad3e9bf2c9f83098f2c3a31f4b489e60d595c1bcc04330049f9e67e58652fcf43f67a428bbd2eed6a2f89595d39cd68ba7c4d89185915d28d0396e4cc7a8d7d2c48230e099806fb41e89b90238a2eea3514a581136e9041b6f2e853a5dd8d3578be2d19cd218ca1962e29d90d1ea88f886281c2924f8bb953a557de46a32cbc1487f6ea729f86ec01ca5f8c7b55cd1658e1e6f71284ed79425e315af7b3a61786c1fa8f1194d825f0fc9824f2b4ad625b359fa3dd45f5aa0e6d44faee67d20f54a84a1c93", 0xd2}, {&(0x7f0000000ac0)="2d65bfc8b0d100b583291fa93e5ec183e6e355ea42db62c6cae8489287a8821f544f2d4859dbaaae31aed605082842fe81631eaddde5f260a2c4922cba04eba1432de14426432ae44070d9fb7250e4039eaeeb57e70598db2c73b2097797904071bc49f3c740b8a7c68c7261fbf21ac156df5d70139c08021a01defdf72ff3b41dc74e17ae59dc60d6170a6308b06573fa67989f0c0e188437e7274544966283a08e1d05929d1324e44df5b6fcbee7042dfcdc2f84505c9780d7cf93b9b5843543bdf37e5a46e9c9c6997a1daef6e5f28f67de620b77a9847ec1f87cf8", 0xdd}, {&(0x7f0000000bc0)="7fe692fa160accb79b13ad5cfdfeb4997a4bc62013f6cfac2f76d68c826f4d7bf45f9a52fedb9709d06cfa0dc6279d03ba0d0061a37fb0db7f8440cbcd629640e3c2512d7f412decdb3c355f050de2aca8ad16e803c5c0367fa140d7eaaa1208e4af15010b39f29c402fbd6995390d89bcaa2546a23379e70bd5cf19af44a5dffdfe2eaf68e527ffb578c1cc6b5f10451a698a5f6062a50cfa230a6e8490f30d6c9e665852249cdeb3ed57ebe11edd0a3716b028c58c254734c0d736028bb9f5a0", 0xc1}, {&(0x7f0000000cc0)="5496f525dd9403f3497897ab7d860c756bc16d561a5f9080732bac5233b6563a6851b81613ce61e7ecce871139d9a1c0f8e8c41612e9a783b5b5f226da2af702ec3961df9923420bea8961dcb4683937d8a43f4575c82c7b7e899f4bc8a325d43ebb86570fb13968dc0d28a1204c3de1f52b98ac90c6576dad4c149ece19997cb7709608bd657b5350badcd8", 0x8c}, {&(0x7f0000000d80)="48e02558b4add6cb47f4dd33d3a941d1089db0281c6b1f441d1ddf55", 0x1c}, {&(0x7f0000000dc0)="aa0368de4846448b4b510e42173aef7c72d517a2e8fd112b7e0e7871c78bc353e9718bcaabf1e8fd", 0x28}], 0x7, 0x0, 0x0, 0x4040850}}, {{&(0x7f0000000e80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001140)=[{&(0x7f0000000f00)="185ad76cef7066b80ebb4a87e68f58a38c8c8191ed722299909d7b8ad9b80868c67ad4b5236933e38cc08b728eec0331902769d67153d218", 0x38}, {&(0x7f0000000f40)="17e082a5d988f14f1ad5489b2e1c4daf341b28ec8e73ca041005bd99c6c06887a24d0d026bd16dccd5ecc824936b7e283a668ecc47a4d2a9249a52062ede45f21e61436c5e14ca9827dff45e450be40563923ea306ac7ca4", 0x58}, {&(0x7f0000000fc0)="14cab5e17473767c5cbf31103353addcf3c75b32c946a977ad1f6f61e4ff6c5c589241acc78d6b5a4a81107aa8df00e819b33f981179ac46d148efdd1655c87e688151f74c710eb1ab4d148068b2b8b7872d1d5d1056579b2712ab30b4a9fa409178fba813bdaacf7323868d577d30e0c46e60afaf4bfc577dcb5d5efc0ae6d67c3c88276b8e2cc68d57d23bf566b9ec279b5b5d09da9b1fd371f225da375b2f6356edfb451b669c59a197e9798d734f06c06fddad77f5ebb9bb8ab0b6dc401d7d5b05534f3bee10c92127ff1e9b062b9b2dc9b4b2ff39f88a897747d88e4242e38323ebf254e6b8c1839dde3bfadcb166d58fc631", 0xf5}, {&(0x7f0000001200)="7d4500d4c380ebf50648edae99ba56b919cefdae68de56408f380cc1ccfed45331c4f869e9d792f252bcf4d6b153e6f43f50444381a4903c3aa0a085c46c09ccaa88d4b60d7a96bff170d378ac78e00aac455e8d4b14ebe16b9487ebd13bcefda548064de751c16a5d608e0b6d655df96551ed8a2b4468e4", 0x78}], 0x4, &(0x7f00000019c0), 0x0, 0x8cd1f0993cd1ff65}}, {{&(0x7f0000001b00)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000001f00)=[{&(0x7f0000001b80)="7a392bb130ef9821c085300993b659e82cc629160c8bfba797cf1e04aedfdef905795edf870b7895462b0abd8b07a003d566f1d383d596483753043cd62598aed26a14590eccaef6ab4e74ede3e2c44897ab55fd4debb75b84a98c10c55e1c43f2c5fbd500905d180d9f6629af144375f4978cbe5835eda3b3f445de0aea887f87d074de8c3b577fb3d35d6015a57e4197c386cab3e163a9a1ddc2d7663af3bb45c39d8ecc65040b122102e18fb804b84bda7aba1beb5183a922e1fdcbfa647154e3bf62328aa955e1ed2aaee0b3", 0xce}, {&(0x7f0000001c80)="24d36d8f48beff8f9f3991c20c492ec2ef04", 0x12}, {&(0x7f0000001e00)="9714f70a31a6530eb4c94357efa080bff2750777c906c7c04090baba6e18be6b94ef0b3e0357c2b6dd791384f23b8af51c2b73c539d8b10baf24e34944a01ef1aeaa851631fd38ea3173059513d36d80c7796e83b7ae1d326eb3312989cb2df04ab918a6678a06042e5ed4b778c6852d40ece5ade417dca0fc0abedd047652b16fc6d440fea62b26a7a442ad86ddb5314c9ec4196a918fdd0f47c73798defda3f7ddebb33fa595e047b66eb07a05cad47d0c9eb79e532a2583d763f922ae38d3dbc49275a3fddb0f6b5aa7c9974208d7e2f6259ef136f57212701ea7de196c53", 0xe0}, {&(0x7f0000001cc0)="01a1cad422b0ae37fa93664e7ce8eb9ed8f29e35f6a6a45cb2793367b1c7cb494e051392bad14b5e7b4c5f157a95357a30e928d04911742c848fb1105c0d43f6de812e2e85f65dcb7145452886e8a6c73ea1e8f0b2c245660ed1332a2fbb77d5144bbd49f3989bbbd245e3d99a163b44993afe5d28cecec7e2d339fbcfab5a4606cc49739156cf675fe62501ffce781ed6594f164cd2a897ff68a9b61e4f017115b677cd368828d0e8f410024d580696f3", 0xb1}], 0x4, &(0x7f0000004f80)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [r3, r4, r5, r0, r6]}}, @rights={{0x10}}, @rights={{0x30, 0x1, 0x1, [r1, r2, r8, r2, r9, r10, r13, r1]}}], 0xe0, 0x8004}}], 0x6, 0x8080) [ 2525.025285] FAULT_INJECTION: forcing a failure. [ 2525.025285] name failslab, interval 1, probability 0, space 0, times 0 [ 2525.026989] CPU: 1 PID: 12489 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2525.027949] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2525.029078] Call Trace: [ 2525.029440] dump_stack+0x107/0x167 [ 2525.029943] should_fail.cold+0x5/0xa [ 2525.030466] ? anon_vma_clone+0xdc/0x590 [ 2525.031027] should_failslab+0x5/0x20 [ 2525.031547] kmem_cache_alloc+0x5b/0x310 [ 2525.032096] anon_vma_clone+0xdc/0x590 [ 2525.032636] __split_vma+0x17c/0x4e0 [ 2525.033144] __do_munmap+0x365/0x1260 [ 2525.033674] ? arch_get_unmapped_area+0x450/0x450 [ 2525.034339] ? lock_release+0x680/0x680 [ 2525.034895] mmap_region+0x7c8/0x1500 [ 2525.035431] do_mmap+0xcdb/0x11e0 [ 2525.035917] vm_mmap_pgoff+0x198/0x1f0 [ 2525.036459] ? randomize_page+0xb0/0xb0 [ 2525.037014] ksys_mmap_pgoff+0x41c/0x560 [ 2525.037583] ? find_mergeable_anon_vma+0x250/0x250 [ 2525.038269] do_syscall_64+0x33/0x40 [ 2525.038797] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2525.039504] RIP: 0033:0x7f1ba3a34b62 [ 2525.040006] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2525.042494] RSP: 002b:00007f1ba0faa0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2525.043530] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f1ba3a34b62 [ 2525.044510] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2525.045493] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 2525.046480] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2525.047478] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2525.048927] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 2525.050163] FAULT_INJECTION: forcing a failure. [ 2525.050163] name failslab, interval 1, probability 0, space 0, times 0 [ 2525.052304] CPU: 1 PID: 12486 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2525.053259] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2525.054408] Call Trace: [ 2525.054775] dump_stack+0x107/0x167 [ 2525.055291] should_fail.cold+0x5/0xa [ 2525.055830] ? create_object.isra.0+0x3a/0xa20 [ 2525.056530] should_failslab+0x5/0x20 [ 2525.057228] kmem_cache_alloc+0x5b/0x310 [ 2525.057799] create_object.isra.0+0x3a/0xa20 [ 2525.058409] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2525.059124] kmem_cache_alloc+0x159/0x310 [ 2525.059707] anon_vma_clone+0xdc/0x590 [ 2525.060250] __split_vma+0x17c/0x4e0 [ 2525.060779] __do_munmap+0x365/0x1260 [ 2525.061315] ? arch_get_unmapped_area+0x450/0x450 [ 2525.061986] ? lock_release+0x680/0x680 [ 2525.062543] mmap_region+0x7c8/0x1500 [ 2525.063099] do_mmap+0xcdb/0x11e0 [ 2525.063591] vm_mmap_pgoff+0x198/0x1f0 [ 2525.064132] ? randomize_page+0xb0/0xb0 [ 2525.064697] ksys_mmap_pgoff+0x41c/0x560 [ 2525.065268] ? find_mergeable_anon_vma+0x250/0x250 [ 2525.065953] do_syscall_64+0x33/0x40 [ 2525.066472] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2525.067191] RIP: 0033:0x7f0e6488ab62 [ 2525.067716] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2525.070266] RSP: 002b:00007f0e61e000f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2525.071331] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0e6488ab62 [ 2525.072314] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2525.073304] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2525.074292] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2525.075301] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:58:30 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) fallocate(r0, 0x0, 0x0, 0x400000008000000) dup3(r0, r1, 0x0) [ 2525.101863] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 2525.166765] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 2525.177171] FAT-fs (loop6): Invalid FSINFO signature: 0x6474e550, 0x00000000 (sector = 1) 08:58:44 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x3) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r2, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2004, @fd_index=0x5, 0x7, 0x0, 0x0, 0xe, 0x1, {0x3, r3}}, 0xffffffff) openat(r2, &(0x7f0000000000)='./file0\x00', 0x501081, 0x100) 08:58:44 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 64) 08:58:44 executing program 2: ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000140)=ANY=[@ANYBLOB="01000000010000001800000024285487f70d0000", @ANYRES32=0xffffffffffffffff, @ANYBLOB='\a\x00\x00\x00\x00\x00\x00\x00./file0\x00']) sendmsg$NL80211_CMD_SET_QOS_MAP(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x7c, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_QOS_MAP={0x1a, 0xc7, {[{0x80, 0x7}, {0x1f, 0x5}, {0x0, 0x6}, {0x1, 0x7}, {0x2, 0x1}, {0x6, 0x2}, {0x7f, 0x6}], "1c406e45c2357148"}}, @NL80211_ATTR_QOS_MAP={0x1e, 0xc7, {[{0x2, 0x6}, {0x6, 0x1}, {0x6, 0x3}, {0x0, 0x7}, {0xff, 0x1}, {0x2, 0x2}, {0xee, 0x7}, {0x1, 0x4}, {0x3f}], "751f8e94f038c56d"}}, @NL80211_ATTR_QOS_MAP={0x16, 0xc7, {[{0x1, 0x6}, {0x7, 0x6}, {0x5, 0x4}, {0xf8, 0x7}, {0x80, 0x4}], "ce3efa70740581b0"}}, @NL80211_ATTR_QOS_MAP={0xc, 0xc7, {[], "cce9d97518e0a69e"}}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x10) r1 = openat$cgroup_ro(r0, &(0x7f0000000200)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0) fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f0000000240)) r2 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r2, 0x0) [ 2538.632202] FAULT_INJECTION: forcing a failure. [ 2538.632202] name failslab, interval 1, probability 0, space 0, times 0 [ 2538.633915] CPU: 1 PID: 12532 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2538.634743] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2538.635745] Call Trace: [ 2538.636059] dump_stack+0x107/0x167 [ 2538.636488] should_fail.cold+0x5/0xa [ 2538.636943] ? create_object.isra.0+0x3a/0xa20 [ 2538.637490] should_failslab+0x5/0x20 [ 2538.637940] kmem_cache_alloc+0x5b/0x310 [ 2538.638433] create_object.isra.0+0x3a/0xa20 [ 2538.638950] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2538.639570] kmem_cache_alloc+0x159/0x310 [ 2538.640077] anon_vma_clone+0xdc/0x590 [ 2538.640555] __split_vma+0x17c/0x4e0 [ 2538.641010] __do_munmap+0x365/0x1260 [ 2538.641472] ? arch_get_unmapped_area+0x450/0x450 [ 2538.642054] ? lock_release+0x680/0x680 [ 2538.642536] mmap_region+0x7c8/0x1500 [ 2538.643000] do_mmap+0xcdb/0x11e0 [ 2538.643426] vm_mmap_pgoff+0x198/0x1f0 [ 2538.643897] ? randomize_page+0xb0/0xb0 [ 2538.644382] ksys_mmap_pgoff+0x41c/0x560 [ 2538.644872] ? find_mergeable_anon_vma+0x250/0x250 [ 2538.645474] do_syscall_64+0x33/0x40 08:58:44 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001440)={0x12f8, 0x1d, 0x200, 0x0, 0x0, {0x2}, [@generic="a28e81d85b3fbf5e569046d3644a062e7c2354a158de9abf7f039ad22b794ca5e4702c6ac7062b800b6554272aec0db6d6d081d67c9a6556d34be2d4f8b9dc5a20820d47649743756dea77eec60f0b168e616b862e3bf980f0190b03d491d07c60c1525d507a901497c4a1620e4cb9f27bf34f43e4beb03f6c7c9f8fe57208b36bfe3ca219286ace3124a99cdb7248e0956ff6287f3e7a31c3e8e8c20dab4684a6fa32a4e841d1670a53169b35f621c8259db5a50098cb285c639b47ff4379c82fe21df46e207a64555a37616fab", @nested={0x1214, 0xe, 0x0, 0x1, [@generic="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", @generic="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", @typed={0x14, 0x43, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @typed={0x8, 0x20, 0x0, 0x0, @ipv4=@private=0xa010101}, @generic="639aad7ee5ae1e3e2f466b0c3e77369ca28fd51e56b8e9cb411d7a6d1e9deff7efbdba1379b919e0e759ad0f219cc3ba2d7068689daa9dd8588dbcbfd262216e4c68b147079b2fdff8fff76babd3d6c97a35d56893f886dc7ee7cae7abe11cf11add1668978a2dc62ab37a8615fb8c2c17d318ba2175944860677368af15e5491d984b499f9ee5469fedfdc2a1198ac3527a2c55cef240e5f48dd0a89faa613dc43dfb392811e72e83eeba067b8e686b0d6f", @typed={0xc, 0x36, 0x0, 0x0, @u64}]}]}, 0x12f8}, 0x1, 0x0, 0x0, 0x20008410}, 0x0) setsockopt$inet_int(r1, 0x0, 0x22, &(0x7f0000000000)=0xf2de, 0x4) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) 08:58:44 executing program 6: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x5a743, 0x0, 0x0, 0x0, 0x0, 0xcf3, 0x200, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x8) r1 = signalfd4(r0, &(0x7f0000000040)={[0x800]}, 0x8, 0x800) close_range(r1, r0, 0x2) r2 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) 08:58:44 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r6, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x0, 0x0}, 0x0) syz_io_uring_submit(r4, 0x0, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r7, 0x0, 0x0, 0x8000) syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) r10 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r10, 0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x0, 0x0}, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000300)=ANY=[@ANYBLOB="0b3107010100000018200000d05ac9f7f549de60a39b82592cf8e8fe1fb005139f965fe67a8b0ec2c296080101d64c262f6ce88f57e0e3ffa357d65c8f61497b5e83c879325cec28f5aac02c6f5ebad7bb690507c48ddaf5f7f7f75d6cd154275a88ef5e4a7f82d21002650f0a25d276038ff2896479f0e4a2aaab9120e88ec53656bb2af4a447c085d090879b895deaadd64962e72727d054e320bfe966f4a02f1497371196853d24f61cea5a2377e1b323ea81816bfc4c4a26", @ANYRES32=r10, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r3, 0x9, r7, 0xa) perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x7f, 0xc4, 0x70, 0xbe, 0x0, 0x3, 0x14800, 0xd, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x5, 0x5, @perf_config_ext={0x6, 0x7}, 0x8, 0xffff, 0x200, 0x0, 0x6, 0xa3e, 0xcab, 0x0, 0x100, 0x0, 0x10001}, r3, 0xa, r2, 0x2) 08:58:44 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) mmap$perf(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0xc, 0x13, r0, 0x8) shutdown(r1, 0x0) syz_io_uring_setup(0xb6e, &(0x7f0000000040)={0x0, 0x13d4, 0x20, 0x3, 0x2d2}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000140)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x23456}, 0x3) r3 = dup3(r0, r1, 0x0) ioctl$SIOCGSTAMPNS(r1, 0x8907, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000180)='\x00') 08:58:44 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 65) [ 2538.646109] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2538.646882] RIP: 0033:0x7f1ba3a34b62 08:58:44 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp6\x00') r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r0, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0xe, 0x4010, r0, 0x8000000) 08:58:44 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) flistxattr(r2, &(0x7f0000000000)=""/101, 0x65) [ 2538.647343] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2538.649718] RSP: 002b:00007f1ba0faa0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2538.650642] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f1ba3a34b62 [ 2538.651514] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2538.652379] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 2538.653248] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2538.654112] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2538.667192] FAULT_INJECTION: forcing a failure. [ 2538.667192] name failslab, interval 1, probability 0, space 0, times 0 [ 2538.669793] CPU: 0 PID: 12531 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2538.671323] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2538.673135] Call Trace: [ 2538.673718] dump_stack+0x107/0x167 [ 2538.674511] should_fail.cold+0x5/0xa [ 2538.675356] ? vm_area_alloc+0x1c/0x110 [ 2538.676227] should_failslab+0x5/0x20 [ 2538.677059] kmem_cache_alloc+0x5b/0x310 [ 2538.677950] vm_area_alloc+0x1c/0x110 [ 2538.678777] mmap_region+0x97e/0x1500 [ 2538.679631] do_mmap+0xcdb/0x11e0 [ 2538.680544] vm_mmap_pgoff+0x198/0x1f0 [ 2538.680567] ? randomize_page+0xb0/0xb0 [ 2538.680598] ksys_mmap_pgoff+0x41c/0x560 [ 2538.680618] ? find_mergeable_anon_vma+0x250/0x250 [ 2538.680647] do_syscall_64+0x33/0x40 [ 2538.680665] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2538.680677] RIP: 0033:0x7f0e6488ab62 [ 2538.680694] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2538.680703] RSP: 002b:00007f0e61e000f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2538.680723] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0e6488ab62 [ 2538.680733] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2538.680743] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2538.680754] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2538.680764] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:58:44 executing program 2: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) r2 = shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_emit_ethernet(0x3e, &(0x7f0000000040)=ANY=[@ANYRES16, @ANYRESDEC=r2, @ANYBLOB="e74da0a377c8a1b284460c61909a"], 0x0) r3 = fork() ptrace$setopts(0x4206, r3, 0x10001, 0x10002d) ptrace(0x10, r3) shmat(r1, &(0x7f0000ffb000/0x4000)=nil, 0x4000) r4 = getpgrp(0x0) waitid(0x2, r4, &(0x7f00000000c0), 0x8, &(0x7f0000000140)) r5 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x40010, r5, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=0x0) capget(&(0x7f0000000080)={0x20071026, r6}, &(0x7f0000000200)={0x531e, 0x7fffffff, 0x11873d1e, 0xf3, 0x400, 0x8001}) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000000, 0x10, r5, 0xf1f30000) write$tun(0xffffffffffffffff, &(0x7f0000000500)={@void, @void, @llc={@llc={0xfe, 0xaa, "e8", "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"}}}, 0x1003) fcntl$dupfd(r5, 0x406, r0) 08:58:44 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000100)={&(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000003000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000002000/0x4000)=nil, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000000000)="61e14ab7ec397512c2a32693867407056e6c95e5eda58a0455d1d4a7a4c1e439c22680ddd8c3afe4c35c3ac3e8909c0dbb39c6f36c8f253695e5a7bc0e4c0ed6079f5fb93ccb37b648983875681ed81c065c92654d3ff7b6aac233112f891605ce41162a405596580ab72ae92df6f9f5b4f566acfb762e068f00a9a4951ae2c7f299dbf8870074b748586a513ec493ee292a5d9e3c2e1db919a9c583e0c1cd2fe2fe1cf79ed9c454fd193785dbce970810aec269ebca64772b79b8b5e24490db2bbe8bfeb921aea6c6f665d6e9114ecb27e0789fc4f7ad6ce1e27e0d6902997a86", 0xe1, r0}, 0x68) 08:58:44 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 65) 08:58:44 executing program 4: r0 = fcntl$getown(0xffffffffffffffff, 0x9) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x1c1241, 0x0) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r2, 0x40047211, &(0x7f0000000040)=0x20) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) fcntl$getown(r2, 0x9) io_uring_enter(r4, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) lseek(r4, 0x81a, 0x0) dup3(r1, r3, 0x0) r5 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) pidfd_getfd(r4, r5, 0x0) 08:58:44 executing program 0: ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'}) r0 = syz_open_dev$vcsu(&(0x7f0000000040), 0x5d3, 0xa0800) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000080), 0x103101, 0x0) preadv(r1, &(0x7f00000002c0)=[{&(0x7f00000000c0)=""/232, 0xe8}, {&(0x7f00000001c0)=""/16, 0x10}, {&(0x7f0000000200)=""/57, 0x39}, {&(0x7f0000000240)=""/118, 0x76}], 0x4, 0x7ff, 0x1) r2 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) dup3(r2, r3, 0x0) [ 2538.807992] FAULT_INJECTION: forcing a failure. [ 2538.807992] name failslab, interval 1, probability 0, space 0, times 0 [ 2538.810516] CPU: 0 PID: 12556 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2538.812060] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2538.813875] Call Trace: [ 2538.814453] dump_stack+0x107/0x167 [ 2538.815266] should_fail.cold+0x5/0xa [ 2538.816103] ? vm_area_alloc+0x1c/0x110 [ 2538.816972] should_failslab+0x5/0x20 [ 2538.817803] kmem_cache_alloc+0x5b/0x310 [ 2538.818695] vm_area_alloc+0x1c/0x110 [ 2538.819540] mmap_region+0x97e/0x1500 [ 2538.820385] do_mmap+0xcdb/0x11e0 [ 2538.821150] vm_mmap_pgoff+0x198/0x1f0 [ 2538.822010] ? randomize_page+0xb0/0xb0 [ 2538.822893] ksys_mmap_pgoff+0x41c/0x560 [ 2538.823792] ? find_mergeable_anon_vma+0x250/0x250 [ 2538.824855] do_syscall_64+0x33/0x40 [ 2538.825662] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2538.826773] RIP: 0033:0x7f1ba3a34b62 [ 2538.827584] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2538.831584] RSP: 002b:00007f1ba0faa0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2538.833237] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f1ba3a34b62 [ 2538.834792] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2538.836345] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 2538.837892] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2538.839447] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:58:57 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 66) 08:58:57 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x3000006, 0xffffffffffffffff) [ 2552.084530] FAULT_INJECTION: forcing a failure. [ 2552.084530] name failslab, interval 1, probability 0, space 0, times 0 [ 2552.088040] CPU: 1 PID: 12570 Comm: syz-executor.7 Not tainted 5.10.233 #1 08:58:57 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 66) 08:58:57 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x6}}, 0x0, 0xb, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x5}}, './file0\x00'}) connect$bt_l2cap(r2, &(0x7f0000000040)={0x1f, 0x8, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x40, 0x2}, 0xe) dup3(r0, r1, 0x0) 08:58:57 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x80, 0x8, 0x3, 0x42, 0x0, 0x8d, 0x10400, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x6, 0x1}, 0x2, 0x10000, 0x309a, 0x2, 0x20, 0x20, 0x7, 0x0, 0xbad, 0x0, 0x8}, r1, 0x9, r2, 0xa) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x2, 0x6, 0x56, 0x1, 0x0, 0x1000, 0xd0020, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3ff, 0x1, @perf_config_ext={0x3, 0x40}, 0x102, 0x8fe8, 0x10f73e6f, 0x0, 0xfffffffffffffffe, 0x7, 0x5, 0x0, 0xfffffffd, 0x0, 0x400}, r1, 0x10, 0xffffffffffffffff, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) sendmsg$nl_generic(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) dup3(r0, r5, 0x0) 08:58:57 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x1f012, r0, 0x0) r1 = syz_io_uring_setup(0x4007f02, &(0x7f0000000240)={0x0, 0xfffffffe, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000002c0)=0x0) mmap(&(0x7f0000d78000/0x2000)=nil, 0x2000, 0x1000001, 0x1010, r1, 0xa30c9000) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r5, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0xf8, 0x1, 0x3f, 0x3f, 0x0, 0x80000001, 0xba01, 0xd, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, @perf_bp={&(0x7f00000000c0), 0x4}, 0x9ec96fb75a6362e1, 0x6, 0x9, 0x8, 0x7, 0x2, 0x0, 0x0, 0x38000, 0x0, 0xce8}, 0x0, 0xd, r5, 0x2) shutdown(r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x0) fsetxattr$trusted_overlay_redirect(r4, &(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x8, 0x3) 08:58:57 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000000)='syz0\x00', 0x200002, 0x0) dup3(r0, r2, 0x0) 08:58:57 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x68, 0x23, 0x0, 0x70bd26, 0x25dfdbfe, {0x7}, [@generic="23999c8e6b751ff5812852590cc932051d5a3563a65e77c33803c22f459cf283bac387d7069f743b11f2d383e8e5fb45ab4aac4b2f49d3b5123baafe8476c159115d5644bbcd7dcf8726ef5e576ab0ed0db8d1"]}, 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) ioctl$PIO_CMAP(r1, 0x4b71, &(0x7f0000000040)={0x5, 0x10000, 0x3, 0x0, 0x9, 0x8000}) perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) r3 = inotify_init1(0x0) inotify_rm_watch(r3, 0x0) r4 = syz_open_dev$vcsa(0x0, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x34d6, 0x0, 0x0, 0x0, 0x0) r5 = epoll_create(0x7ffd) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000500)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0}) ioctl$BTRFS_IOC_WAIT_SYNC(r5, 0x40089416, &(0x7f00000001c0)=r6) ioctl$BTRFS_IOC_RM_DEV_V2(r4, 0x5000943a, &(0x7f0000000500)={{}, r6, 0x1a, @unused=[0x8000, 0x200, 0x8000, 0xb48d], @subvolid=0x1fc}) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000500)={0x0, 0x5, 0xdbc3}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000900)={{r3}, r6, 0x1c, @unused=[0xe89c, 0xfffffffffffffffa, 0x1000, 0x9], @devid=r7}) ioctl$BTRFS_IOC_WAIT_SYNC(r1, 0x40089416, &(0x7f0000000240)=r6) [ 2552.090070] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2552.092626] Call Trace: [ 2552.093335] dump_stack+0x107/0x167 [ 2552.094232] should_fail.cold+0x5/0xa [ 2552.095167] ? create_object.isra.0+0x3a/0xa20 [ 2552.096314] should_failslab+0x5/0x20 [ 2552.097253] kmem_cache_alloc+0x5b/0x310 [ 2552.098274] create_object.isra.0+0x3a/0xa20 [ 2552.099351] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2552.100648] kmem_cache_alloc+0x159/0x310 [ 2552.101675] vm_area_alloc+0x1c/0x110 [ 2552.102626] mmap_region+0x97e/0x1500 [ 2552.103600] do_mmap+0xcdb/0x11e0 [ 2552.104479] vm_mmap_pgoff+0x198/0x1f0 [ 2552.105440] ? randomize_page+0xb0/0xb0 [ 2552.106423] ? ksys_mmap_pgoff+0x308/0x560 [ 2552.107492] ksys_mmap_pgoff+0x41c/0x560 [ 2552.108582] ? find_mergeable_anon_vma+0x250/0x250 [ 2552.109875] do_syscall_64+0x33/0x40 [ 2552.110819] entry_SYSCALL_64_after_hwframe+0x67/0xd1 08:58:57 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x200000a, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x0) pkey_mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x3000003, r0) [ 2552.112163] RIP: 0033:0x7f1ba3a34b62 [ 2552.113337] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2552.118086] RSP: 002b:00007f1ba0faa0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2552.120065] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f1ba3a34b62 [ 2552.121851] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2552.123651] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 2552.125438] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2552.127236] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2552.185981] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=12582 comm=syz-executor.6 [ 2552.204258] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=12582 comm=syz-executor.6 08:58:57 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) munlock(&(0x7f0000ffe000/0x2000)=nil, 0x2000) [ 2552.257847] FAULT_INJECTION: forcing a failure. [ 2552.257847] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2552.261411] CPU: 1 PID: 12593 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 2552.262970] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2552.264844] Call Trace: [ 2552.265450] dump_stack+0x107/0x167 [ 2552.266279] should_fail.cold+0x5/0xa [ 2552.267166] __alloc_pages_nodemask+0x182/0x600 [ 2552.268234] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2552.269609] alloc_pages_current+0x187/0x280 [ 2552.270603] allocate_slab+0x26f/0x380 [ 2552.271483] ___slab_alloc+0x470/0x700 [ 2552.272375] ? vm_area_alloc+0x1c/0x110 [ 2552.273269] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2552.274456] ? trace_hardirqs_on+0x5b/0x180 [ 2552.275428] ? vm_area_alloc+0x1c/0x110 [ 2552.276515] ? kmem_cache_alloc+0x301/0x310 [ 2552.277491] kmem_cache_alloc+0x301/0x310 [ 2552.278435] vm_area_alloc+0x1c/0x110 [ 2552.279290] mmap_region+0x97e/0x1500 [ 2552.280175] do_mmap+0xcdb/0x11e0 [ 2552.280968] vm_mmap_pgoff+0x198/0x1f0 [ 2552.281854] ? randomize_page+0xb0/0xb0 [ 2552.282768] ksys_mmap_pgoff+0x41c/0x560 [ 2552.283699] ? find_mergeable_anon_vma+0x250/0x250 [ 2552.285070] do_syscall_64+0x33/0x40 [ 2552.285916] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2552.287074] RIP: 0033:0x7f0e6488ab62 [ 2552.287951] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2552.292767] RSP: 002b:00007f0e61ddf0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2552.294498] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0e6488ab62 [ 2552.296132] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2552.297840] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2552.299457] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2552.301078] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:58:58 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0) fsetxattr$security_ima(r2, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x5, 0x2, 0x5, 0x7, 0xcb, "e1debaea154c70fcd86a67ed195f8728104ab15c1465d2d7a0810c7d316068f65cea34bff0d96377d4ffeeb13feb1c8e850a8d8d892b79772538b17ab0db981e0ff4e73bc3704f21cdaa5f4578ad4fa9bf6f575bf32ec14f08a170cec02695c1f0f0759f1949e1fbe5f345d5be5d64c21e8be247105ebeba127f7a64bd6048de937446cbc6f8ae542f886c6349571203ab03a89673fcdeb49ad91ae029445cfefd637b950f6adb4a2e93bab2cf2001bf214fe778b3a15f5fed5f58f00b2bb68cf6672be3b1c493e30a7bd5"}, 0xd4, 0x3) dup3(r0, r1, 0x0) 08:58:58 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x127000, 0x0) io_uring_enter(r3, 0x5ab0, 0x1ef7, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) getsockopt$WPAN_WANTACK(r3, 0x0, 0x0, &(0x7f0000000080), &(0x7f00000000c0)=0x4) r4 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x11, r4, 0x0) ioctl$EXT4_IOC_MIGRATE(r3, 0x6609) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:58:58 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) r2 = dup3(r0, r1, 0x0) clone3(&(0x7f00000011c0)={0x10000, &(0x7f0000000000)=0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080), {0x27}, &(0x7f00000000c0)=""/166, 0xa6, &(0x7f0000000180)=""/4096, &(0x7f0000001180)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff], 0x8, {r2}}, 0x58) dup2(r2, r3) 08:58:58 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x5) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x5, r1) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0) mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000, 0x0, &(0x7f0000ffd000/0x3000)=nil) pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000007, r0) 08:58:58 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)) r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xe, 0x1010, r0, 0x10000000) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x9, 0x1}, 0x80) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:58:58 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5407, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 67) [ 2552.419317] FAULT_INJECTION: forcing a failure. [ 2552.419317] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2552.421189] CPU: 0 PID: 12609 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2552.422165] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2552.423308] Call Trace: [ 2552.423692] dump_stack+0x107/0x167 [ 2552.424200] should_fail.cold+0x5/0xa [ 2552.424738] __alloc_pages_nodemask+0x182/0x600 [ 2552.425389] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2552.426228] ? walk_mem_res+0x170/0x170 [ 2552.426789] alloc_pages_current+0x187/0x280 [ 2552.427407] pte_alloc_one+0x16/0x1a0 [ 2552.427945] __pte_alloc+0x1d/0x330 [ 2552.428461] remap_pfn_range_internal+0x9a3/0xf60 [ 2552.429140] ? lookup_memtype+0x5b/0x200 [ 2552.429717] ? apply_to_existing_page_range+0x40/0x40 [ 2552.430442] remap_pfn_range+0xcd/0x160 [ 2552.431004] ? remap_pfn_range_notrack+0x70/0x70 [ 2552.431671] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 2552.432394] io_uring_mmap+0x398/0x530 [ 2552.432932] mmap_file+0x5e/0xe0 [ 2552.433401] mmap_region+0xc49/0x1500 [ 2552.433939] do_mmap+0xcdb/0x11e0 [ 2552.434428] vm_mmap_pgoff+0x198/0x1f0 [ 2552.434972] ? randomize_page+0xb0/0xb0 [ 2552.435542] ksys_mmap_pgoff+0x41c/0x560 [ 2552.436106] ? find_mergeable_anon_vma+0x250/0x250 [ 2552.436796] do_syscall_64+0x33/0x40 [ 2552.437312] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2552.438017] RIP: 0033:0x7f1ba3a34b62 [ 2552.438530] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2552.441066] RSP: 002b:00007f1ba0faa0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2552.442111] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f1ba3a34b62 [ 2552.443089] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2552.444082] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 2552.445052] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2552.446057] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 08:58:58 executing program 0: prctl$PR_GET_UNALIGN(0x5, &(0x7f0000000000)) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prctl$PR_GET_UNALIGN(0x5, &(0x7f0000000040)) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:58:58 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x12000, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0x0, 0xffffffffffffffff, 0x8) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) getsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000), &(0x7f0000000040)=0x4) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2552.526507] ------------[ cut here ]------------ [ 2552.527683] WARNING: CPU: 1 PID: 12609 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 2552.529891] Modules linked in: [ 2552.530665] CPU: 1 PID: 12609 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2552.532280] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2552.534238] RIP: 0010:get_pat_info+0x216/0x270 [ 2552.535303] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 81 81 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 6a 81 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 f5 78 5a 00 e9 [ 2552.542491] RSP: 0018:ffff888047d17898 EFLAGS: 00010212 [ 2552.543749] RAX: 0000000000011f27 RBX: ffff888019e3e400 RCX: ffffc900033f9000 [ 2552.545367] RDX: 0000000000040000 RSI: ffffffff81123696 RDI: 0000000000000007 [ 2552.546982] RBP: ffff888047d17950 R08: 0000000000000000 R09: ffff888047d17820 [ 2552.548614] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 2552.550247] R13: 1ffff11008fa2f13 R14: 0000000000000000 R15: ffff888019e3e450 [ 2552.551922] FS: 00007f1ba0faa700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 2552.553756] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2552.555081] CR2: 0000555590100c58 CR3: 0000000047f2c000 CR4: 0000000000350ee0 [ 2552.556705] Call Trace: [ 2552.557296] ? __warn+0xe2/0x1f0 [ 2552.558080] ? get_pat_info+0x216/0x270 [ 2552.558995] ? report_bug+0x1c1/0x210 [ 2552.559886] ? handle_bug+0x41/0x90 [ 2552.560725] ? exc_invalid_op+0x14/0x50 [ 2552.561642] ? asm_exc_invalid_op+0x12/0x20 [ 2552.562652] ? get_pat_info+0x216/0x270 [ 2552.563614] ? get_pat_info+0x216/0x270 [ 2552.564544] ? get_pat_info+0x216/0x270 [ 2552.565462] ? pgprot_writethrough+0xc0/0xc0 [ 2552.566478] ? finish_task_switch+0x126/0x5d0 [ 2552.567542] untrack_pfn+0xdc/0x240 [ 2552.568391] ? track_pfn_insert+0x150/0x150 [ 2552.569395] ? lock_downgrade+0x6d0/0x6d0 [ 2552.570320] ? uprobe_munmap+0x1c/0x560 [ 2552.571256] unmap_single_vma+0x1bc/0x300 [ 2552.572235] zap_page_range_single+0x2ce/0x450 [ 2552.573296] ? unmap_single_vma+0x300/0x300 [ 2552.574294] ? remap_pfn_range_internal+0xc56/0xf60 [ 2552.575454] ? lookup_memtype+0x5b/0x200 [ 2552.576429] ? apply_to_existing_page_range+0x40/0x40 [ 2552.577635] remap_pfn_range+0x139/0x160 [ 2552.578588] ? remap_pfn_range_notrack+0x70/0x70 [ 2552.579713] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 2552.580911] io_uring_mmap+0x398/0x530 [ 2552.581822] mmap_file+0x5e/0xe0 [ 2552.582616] mmap_region+0xc49/0x1500 [ 2552.583538] do_mmap+0xcdb/0x11e0 [ 2552.584332] vm_mmap_pgoff+0x198/0x1f0 [ 2552.585248] ? randomize_page+0xb0/0xb0 [ 2552.586188] ksys_mmap_pgoff+0x41c/0x560 [ 2552.587143] ? find_mergeable_anon_vma+0x250/0x250 [ 2552.588313] do_syscall_64+0x33/0x40 [ 2552.589195] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2552.590381] RIP: 0033:0x7f1ba3a34b62 [ 2552.591216] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2552.595359] RSP: 002b:00007f1ba0faa0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2552.597112] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f1ba3a34b62 [ 2552.598733] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2552.600372] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 2552.601994] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2552.603631] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 [ 2552.605291] irq event stamp: 1303 [ 2552.606108] hardirqs last enabled at (1313): [] console_unlock+0x92d/0xb40 [ 2552.608068] hardirqs last disabled at (1322): [] console_unlock+0x839/0xb40 [ 2552.610009] softirqs last enabled at (718): [] asm_call_irq_on_stack+0x12/0x20 [ 2552.612036] softirqs last disabled at (613): [] asm_call_irq_on_stack+0x12/0x20 [ 2552.614037] ---[ end trace 6365edec3a5b57c4 ]--- 08:58:58 executing program 1: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x5408, &(0x7f0000000300), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100)) (fail_nth: 67) 08:58:58 executing program 2: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2000000, 0x4000010, r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) fcntl$dupfd(r2, 0x406, r1) ioctl$BTRFS_IOC_QGROUP_LIMIT(r1, 0x8030942b, &(0x7f0000000000)={0x2, {0x23, 0x20, 0x400, 0xfffffffffffffffa, 0x5}}) 08:58:58 executing program 3: pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000002, 0xffffffffffffffff) 08:58:58 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x4, 0x2, 0xeb, 0x7, 0x0, 0x1, 0x244c, 0x4, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8001, 0x4, @perf_bp={&(0x7f0000000000), 0x7}, 0x4088, 0x2, 0x3308, 0x4, 0x7, 0x6, 0x65fb, 0x0, 0x5, 0x0, 0x5}, r2, 0x2, r3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) 08:58:58 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r1, 0x0) dup3(r0, r1, 0x0) [ 2552.654855] FAULT_INJECTION: forcing a failure. [ 2552.654855] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2552.656295] CPU: 0 PID: 12633 Comm: syz-executor.1 Tainted: G W 5.10.233 #1 [ 2552.657260] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2552.658234] Call Trace: [ 2552.658546] dump_stack+0x107/0x167 [ 2552.658969] should_fail.cold+0x5/0xa [ 2552.659418] __alloc_pages_nodemask+0x182/0x600 [ 2552.659968] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2552.660672] ? walk_mem_res+0x170/0x170 [ 2552.661143] alloc_pages_current+0x187/0x280 [ 2552.661660] pte_alloc_one+0x16/0x1a0 [ 2552.662106] __pte_alloc+0x1d/0x330 [ 2552.662533] remap_pfn_range_internal+0x9a3/0xf60 [ 2552.663100] ? lookup_memtype+0x5b/0x200 [ 2552.663588] ? apply_to_existing_page_range+0x40/0x40 [ 2552.664201] remap_pfn_range+0xcd/0x160 [ 2552.664668] ? remap_pfn_range_notrack+0x70/0x70 [ 2552.665221] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 2552.665826] io_uring_mmap+0x398/0x530 [ 2552.666284] mmap_file+0x5e/0xe0 [ 2552.666678] mmap_region+0xc49/0x1500 [ 2552.667128] do_mmap+0xcdb/0x11e0 [ 2552.667542] vm_mmap_pgoff+0x198/0x1f0 [ 2552.667999] ? randomize_page+0xb0/0xb0 [ 2552.668470] ksys_mmap_pgoff+0x41c/0x560 [ 2552.668944] ? find_mergeable_anon_vma+0x250/0x250 [ 2552.669523] do_syscall_64+0x33/0x40 [ 2552.669960] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2552.670559] RIP: 0033:0x7f0e6488ab62 [ 2552.670993] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2552.673146] RSP: 002b:00007f0e61e000f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2552.674034] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0e6488ab62 [ 2552.674866] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2552.675704] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2552.676537] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2552.677366] R13: 0000000020ffe000 R14: 0000000020000000 R15: 0000000020ffb000 VM DIAGNOSIS: 08:58:58 Registers: info registers vcpu 0 RAX=0000000080000001 RBX=000000000000002e RCX=ffffffff8174a0f8 RDX=000000000000002e RSI=000000000000002e RDI=0000000000000001 RBP=00000001502df29e RSP=ffff888046bffaf0 R8 =0000000000000000 R9 =0000000000000000 R10=000000000000002e R11=0000000000000001 R12=000000000000002e R13=920820ab209db43a R14=ffff88804d345520 R15=ffff888046bffc50 RIP=ffffffff8140b01a RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000055557c388400 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055556f8a0c58 CR3=0000000046bf2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000000000000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff822ddc7c RDI=ffffffff879f1140 RBP=ffffffff879f1100 RSP=ffff888047d171d0 R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001 R12=0000000000000020 R13=fffffbfff0f3e275 R14=fffffbfff0f3e22a R15=dffffc0000000000 RIP=ffffffff822ddcd0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f1ba0faa700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555590100c58 CR3=0000000047f2c000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000000000000000ff000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000