40)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x6, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 08:57:35 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 4) 08:57:35 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(0xffffffffffffffff) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 08:57:35 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000180)='B@&$:#\x00') ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r1, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0x4) r2 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) 08:57:35 executing program 2: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000180)='B@&$:#\x00') ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r1, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0x4) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:57:35 executing program 2: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000180)='B@&$:#\x00') ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r1, 0x8008f513, &(0x7f0000000000)) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:57:35 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000180)='B@&$:#\x00') ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r1, 0x8008f513, &(0x7f0000000000)) r2 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) 08:57:35 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:57:35 executing program 7: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x1) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2386.811682] FAULT_INJECTION: forcing a failure. [ 2386.811682] name failslab, interval 1, probability 0, space 0, times 0 [ 2386.814073] CPU: 0 PID: 10920 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2386.815509] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2386.817234] Call Trace: [ 2386.817790] dump_stack+0x107/0x167 [ 2386.818548] should_fail.cold+0x5/0xa [ 2386.819343] ? io_uring_setup+0x33c/0x2980 [ 2386.820230] should_failslab+0x5/0x20 [ 2386.821020] __kmalloc+0x72/0x390 [ 2386.821749] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2386.822805] io_uring_setup+0x33c/0x2980 [ 2386.823650] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2386.824654] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2386.825711] ? wait_for_completion_io+0x270/0x270 [ 2386.826736] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2386.827828] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2386.828903] do_syscall_64+0x33/0x40 [ 2386.829682] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2386.831704] RIP: 0033:0x7f28100dfb19 [ 2386.832479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2386.836294] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2386.837884] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2386.839363] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2386.840847] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2386.842329] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2386.843812] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:57:53 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 5) 08:57:53 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:57:53 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000180)='B@&$:#\x00') r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) 08:57:53 executing program 2: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000180)='B@&$:#\x00') syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:57:53 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x7, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 08:57:53 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x1) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:57:53 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:57:53 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(0xffffffffffffffff) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2405.183162] FAULT_INJECTION: forcing a failure. [ 2405.183162] name failslab, interval 1, probability 0, space 0, times 0 [ 2405.185693] CPU: 0 PID: 10952 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2405.187165] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2405.188907] Call Trace: [ 2405.189469] dump_stack+0x107/0x167 [ 2405.190243] should_fail.cold+0x5/0xa [ 2405.191046] ? create_object.isra.0+0x3a/0xa20 [ 2405.192006] should_failslab+0x5/0x20 [ 2405.192810] kmem_cache_alloc+0x5b/0x310 [ 2405.193661] create_object.isra.0+0x3a/0xa20 [ 2405.194591] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2405.195666] __kmalloc+0x16e/0x390 [ 2405.196421] io_uring_setup+0x33c/0x2980 [ 2405.197280] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2405.198312] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2405.199383] ? wait_for_completion_io+0x270/0x270 [ 2405.200423] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2405.201527] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2405.202626] do_syscall_64+0x33/0x40 [ 2405.203411] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2405.204495] RIP: 0033:0x7f28100dfb19 [ 2405.205283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2405.209177] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2405.210798] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2405.212304] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2405.213802] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2405.215315] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2405.216803] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:57:54 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000100)) 08:57:54 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3823, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:57:54 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(0xffffffffffffffff) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 08:57:54 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x8, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 08:57:54 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:57:54 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000180)='B@&$:#\x00') r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) 08:57:54 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000100)) 08:57:54 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:57:54 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 6) 08:57:54 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3825, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:57:54 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:57:54 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x1) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2405.542528] FAULT_INJECTION: forcing a failure. [ 2405.542528] name failslab, interval 1, probability 0, space 0, times 0 [ 2405.544581] CPU: 1 PID: 10980 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2405.545802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2405.547265] Call Trace: [ 2405.547737] dump_stack+0x107/0x167 [ 2405.548380] should_fail.cold+0x5/0xa [ 2405.549062] ? create_object.isra.0+0x3a/0xa20 [ 2405.549884] should_failslab+0x5/0x20 [ 2405.550561] kmem_cache_alloc+0x5b/0x310 [ 2405.551285] create_object.isra.0+0x3a/0xa20 [ 2405.552064] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2405.552950] __kmalloc+0x16e/0x390 [ 2405.553583] io_uring_setup+0x33c/0x2980 [ 2405.554329] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2405.555184] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2405.556093] ? wait_for_completion_io+0x270/0x270 [ 2405.556968] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2405.557912] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2405.558816] do_syscall_64+0x33/0x40 [ 2405.559490] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2405.560385] RIP: 0033:0x7f28100dfb19 [ 2405.561042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2405.564249] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2405.565573] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2405.566774] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2405.567970] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2405.569203] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2405.570401] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:57:54 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e00000000000000000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000000000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a84000000000000fcffffffffffffff08000000000000000000000000000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee5868cbd58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721234a84652ebf4218b6e0ce32fe10c1fa4d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d6339832bd4c6806617b12ee49a7c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, 0x0, 0x0) 08:57:54 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x9, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 08:57:54 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x382a, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:09 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000100)) 08:58:09 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0xa, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 08:58:09 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 7) 08:58:09 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x1) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:09 executing program 2: syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:58:09 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:58:09 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x382b, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:09 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, 0x0, 0x0) 08:58:09 executing program 5: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:58:09 executing program 2: syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:58:09 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:09 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), 0x0) 08:58:09 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0xb, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2420.407852] FAULT_INJECTION: forcing a failure. [ 2420.407852] name failslab, interval 1, probability 0, space 0, times 0 [ 2420.410271] CPU: 1 PID: 11014 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2420.411753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2420.413519] Call Trace: [ 2420.414075] dump_stack+0x107/0x167 [ 2420.414852] should_fail.cold+0x5/0xa [ 2420.415662] ? io_uring_setup+0x40b/0x2980 [ 2420.416555] should_failslab+0x5/0x20 [ 2420.417363] kmem_cache_alloc_trace+0x55/0x320 [ 2420.418317] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2420.419396] io_uring_setup+0x40b/0x2980 [ 2420.420243] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2420.421246] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2420.422304] ? wait_for_completion_io+0x270/0x270 [ 2420.423386] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2420.424497] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2420.425591] do_syscall_64+0x33/0x40 [ 2420.426363] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2420.427470] RIP: 0033:0x7f28100dfb19 [ 2420.428806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2420.432656] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2420.434224] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2420.435716] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2420.437198] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2420.438704] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2420.440213] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:58:09 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x0, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:09 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x382d, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:24 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e00000000000000000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000000000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a84000000000000fcffffffffffffff08000000000000000000000000000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee5868cbd58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721234a84652ebf4218b6e0ce32fe10c1fa4d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d6339832bd4c6806617b12ee49a7c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, 0x0, 0x0) 08:58:24 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x382e, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:24 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), 0x0) 08:58:24 executing program 2: syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:58:24 executing program 5: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:58:24 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x0, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:24 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 8) 08:58:24 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x10, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2435.216883] FAULT_INJECTION: forcing a failure. [ 2435.216883] name failslab, interval 1, probability 0, space 0, times 0 [ 2435.219476] CPU: 0 PID: 11049 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2435.221035] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2435.222739] Call Trace: [ 2435.223298] dump_stack+0x107/0x167 [ 2435.224049] should_fail.cold+0x5/0xa [ 2435.224839] ? create_object.isra.0+0x3a/0xa20 [ 2435.225789] should_failslab+0x5/0x20 [ 2435.226573] kmem_cache_alloc+0x5b/0x310 [ 2435.227422] create_object.isra.0+0x3a/0xa20 [ 2435.228354] kmemleak_alloc_percpu+0xa0/0x100 [ 2435.229295] pcpu_alloc+0x4e2/0x1240 [ 2435.230083] ? io_tctx_exit_cb+0xf0/0xf0 [ 2435.230945] percpu_ref_init+0x31/0x3d0 [ 2435.231765] io_uring_setup+0x47a/0x2980 [ 2435.232619] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2435.233635] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2435.234676] ? wait_for_completion_io+0x270/0x270 [ 2435.235715] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2435.236805] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2435.237872] do_syscall_64+0x33/0x40 [ 2435.238635] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2435.239699] RIP: 0033:0x7f28100dfb19 [ 2435.240465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2435.244269] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2435.245859] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2435.247340] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2435.248814] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2435.250284] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2435.251767] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:58:24 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x0, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:24 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:58:24 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3830, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:24 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x2e, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 08:58:24 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), 0x0) 08:58:24 executing program 5: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:58:40 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:58:40 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:40 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3858, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:40 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) (fail_nth: 1) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 08:58:40 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:58:40 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 1) [ 2451.111788] FAULT_INJECTION: forcing a failure. 08:58:40 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 9) 08:58:40 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x48, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 08:58:40 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) [ 2451.111788] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2451.115226] CPU: 1 PID: 11073 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2451.117111] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2451.119307] Call Trace: [ 2451.120027] dump_stack+0x107/0x167 [ 2451.121006] should_fail.cold+0x5/0xa [ 2451.122037] _copy_from_user+0x2e/0x1b0 [ 2451.123101] io_uring_setup+0x9b/0x2980 [ 2451.124178] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2451.125469] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2451.126820] ? wait_for_completion_io+0x270/0x270 [ 2451.128104] ? rcu_read_lock_any_held+0x75/0xa0 [ 2451.129363] ? vfs_write+0x354/0xb10 [ 2451.130378] ? fput_many+0x2f/0x1a0 [ 2451.131325] ? ksys_write+0x1a9/0x260 [ 2451.132327] ? __ia32_sys_read+0xb0/0xb0 [ 2451.133411] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2451.134757] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2451.136091] do_syscall_64+0x33/0x40 [ 2451.137037] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2451.138352] RIP: 0033:0x7f6839abdb19 [ 2451.139312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2451.144092] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2451.146009] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2451.147807] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2451.149569] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2451.151364] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2451.152967] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2451.208687] FAULT_INJECTION: forcing a failure. [ 2451.208687] name failslab, interval 1, probability 0, space 0, times 0 [ 2451.210308] CPU: 0 PID: 11086 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2451.211246] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2451.212374] Call Trace: [ 2451.212715] dump_stack+0x107/0x167 [ 2451.213225] should_fail.cold+0x5/0xa [ 2451.213741] ? create_object.isra.0+0x3a/0xa20 [ 2451.214360] should_failslab+0x5/0x20 [ 2451.214882] kmem_cache_alloc+0x5b/0x310 [ 2451.215465] create_object.isra.0+0x3a/0xa20 [ 2451.216056] kmemleak_alloc_percpu+0xa0/0x100 [ 2451.216632] pcpu_alloc+0x4e2/0x1240 [ 2451.217145] ? io_tctx_exit_cb+0xf0/0xf0 [ 2451.217642] percpu_ref_init+0x31/0x3d0 [ 2451.218139] io_uring_setup+0x47a/0x2980 [ 2451.218659] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2451.219272] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2451.219948] ? wait_for_completion_io+0x270/0x270 [ 2451.220606] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2451.221287] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2451.221926] do_syscall_64+0x33/0x40 [ 2451.222432] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2451.223134] RIP: 0033:0x7f28100dfb19 [ 2451.223661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2451.226071] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2451.227101] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2451.227979] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2451.228836] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2451.229700] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2451.230559] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:58:40 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:58:40 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:58:40 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 10) 08:58:40 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:40 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 2) [ 2451.349654] FAULT_INJECTION: forcing a failure. [ 2451.349654] name failslab, interval 1, probability 0, space 0, times 0 [ 2451.350986] CPU: 0 PID: 11093 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2451.351796] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2451.352951] Call Trace: [ 2451.353309] dump_stack+0x107/0x167 [ 2451.353821] should_fail.cold+0x5/0xa [ 2451.354304] ? percpu_ref_init+0xd8/0x3d0 [ 2451.354794] should_failslab+0x5/0x20 [ 2451.355226] kmem_cache_alloc_trace+0x55/0x320 [ 2451.355788] ? io_tctx_exit_cb+0xf0/0xf0 [ 2451.356342] percpu_ref_init+0xd8/0x3d0 [ 2451.356885] io_uring_setup+0x47a/0x2980 [ 2451.357457] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2451.358124] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2451.358822] ? wait_for_completion_io+0x270/0x270 [ 2451.359514] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2451.360240] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2451.360963] do_syscall_64+0x33/0x40 [ 2451.361484] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2451.362189] RIP: 0033:0x7f28100dfb19 [ 2451.362703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2451.365250] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2451.366310] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2451.367299] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2451.368277] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2451.369254] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2451.370239] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:58:40 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3863, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:40 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2451.468116] FAULT_INJECTION: forcing a failure. [ 2451.468116] name failslab, interval 1, probability 0, space 0, times 0 [ 2451.470735] CPU: 1 PID: 11103 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2451.472329] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2451.474231] Call Trace: [ 2451.474842] dump_stack+0x107/0x167 [ 2451.475692] should_fail.cold+0x5/0xa [ 2451.476569] ? io_uring_setup+0x258/0x2980 [ 2451.477548] should_failslab+0x5/0x20 [ 2451.478426] kmem_cache_alloc_trace+0x55/0x320 [ 2451.479475] io_uring_setup+0x258/0x2980 [ 2451.480388] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2451.481494] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2451.482652] ? wait_for_completion_io+0x270/0x270 [ 2451.483794] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2451.484998] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2451.486182] do_syscall_64+0x33/0x40 [ 2451.487048] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2451.488235] RIP: 0033:0x7f6839abdb19 [ 2451.489086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2451.493234] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2451.494983] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2451.496590] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2451.498185] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2451.499779] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2451.501392] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:58:55 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 3) 08:58:55 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:58:55 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3864, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:55 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 11) 08:58:55 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x4c, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 08:58:55 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:58:55 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:55 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) readv(r0, &(0x7f0000000700), 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r3) r4 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x10, 0x3, 0x2c5, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000180)) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) ioctl$BTRFS_IOC_DEFRAG_RANGE(r3, 0x40309410, &(0x7f00000001c0)={0x3, 0x2, 0x1, 0x7f, 0x2, [0x3, 0x7fffffff, 0x0, 0x1f0000]}) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r5, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r4, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r5) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2466.696566] FAULT_INJECTION: forcing a failure. [ 2466.696566] name failslab, interval 1, probability 0, space 0, times 0 [ 2466.699665] CPU: 0 PID: 11121 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2466.701513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2466.703640] Call Trace: [ 2466.704331] dump_stack+0x107/0x167 [ 2466.705270] should_fail.cold+0x5/0xa [ 2466.706242] ? create_object.isra.0+0x3a/0xa20 [ 2466.707408] should_failslab+0x5/0x20 [ 2466.708407] kmem_cache_alloc+0x5b/0x310 [ 2466.709457] create_object.isra.0+0x3a/0xa20 [ 2466.710570] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2466.711874] kmem_cache_alloc_trace+0x151/0x320 [ 2466.713063] io_uring_setup+0x258/0x2980 [ 2466.714078] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2466.715298] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2466.716562] ? wait_for_completion_io+0x270/0x270 [ 2466.717802] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2466.719115] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2466.720434] do_syscall_64+0x33/0x40 [ 2466.721398] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2466.722812] RIP: 0033:0x7f6839abdb19 [ 2466.723804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2466.728624] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2466.730527] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2466.732311] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2466.734123] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2466.735943] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2466.737540] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:58:55 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000100)) 08:58:55 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:58:55 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) [ 2466.792809] FAULT_INJECTION: forcing a failure. [ 2466.792809] name failslab, interval 1, probability 0, space 0, times 0 [ 2466.796080] CPU: 1 PID: 11127 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2466.798151] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2466.800338] Call Trace: [ 2466.801020] dump_stack+0x107/0x167 [ 2466.803415] should_fail.cold+0x5/0xa [ 2466.804485] ? create_object.isra.0+0x3a/0xa20 [ 2466.805882] should_failslab+0x5/0x20 [ 2466.806833] kmem_cache_alloc+0x5b/0x310 [ 2466.807871] create_object.isra.0+0x3a/0xa20 [ 2466.809313] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2466.810772] kmem_cache_alloc_trace+0x151/0x320 [ 2466.812086] ? io_tctx_exit_cb+0xf0/0xf0 [ 2466.813115] percpu_ref_init+0xd8/0x3d0 [ 2466.814163] io_uring_setup+0x47a/0x2980 [ 2466.815461] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2466.816691] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2466.818139] ? wait_for_completion_io+0x270/0x270 [ 2466.819610] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2466.821090] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2466.822381] do_syscall_64+0x33/0x40 [ 2466.823421] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2466.824714] RIP: 0033:0x7f28100dfb19 [ 2466.825797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2466.830782] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2466.832670] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2466.834450] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2466.836257] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2466.838027] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2466.839812] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:58:55 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 12) 08:58:55 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000100)) [ 2466.965490] FAULT_INJECTION: forcing a failure. [ 2466.965490] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 2466.968131] CPU: 0 PID: 11135 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2466.969621] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2466.971360] Call Trace: [ 2466.971954] dump_stack+0x107/0x167 [ 2466.972734] should_fail.cold+0x5/0xa [ 2466.973556] __alloc_pages_nodemask+0x182/0x600 [ 2466.974554] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2466.975841] ? cap_capable+0x1cd/0x230 [ 2466.976680] alloc_pages_current+0x187/0x280 [ 2466.977619] __get_free_pages+0xc/0xa0 [ 2466.978448] io_uring_setup+0xe27/0x2980 [ 2466.979329] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2466.980437] ? wait_for_completion_io+0x270/0x270 [ 2466.981498] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2466.982630] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2466.983750] do_syscall_64+0x33/0x40 [ 2466.984571] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2466.985671] RIP: 0033:0x7f28100dfb19 [ 2466.986466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2466.990425] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2466.992040] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2466.993569] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2466.995055] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2466.996595] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2466.998119] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:58:55 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x68, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 08:58:55 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3869, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:58:55 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:58:55 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 4) 08:58:56 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"/737]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000180), 0x9e04, 0x60000) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x7}) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2467.155105] FAULT_INJECTION: forcing a failure. [ 2467.155105] name failslab, interval 1, probability 0, space 0, times 0 [ 2467.157850] CPU: 1 PID: 11148 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2467.159430] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2467.161341] Call Trace: [ 2467.161956] dump_stack+0x107/0x167 [ 2467.162790] should_fail.cold+0x5/0xa [ 2467.163669] ? io_uring_setup+0x33c/0x2980 [ 2467.164659] should_failslab+0x5/0x20 [ 2467.165531] __kmalloc+0x72/0x390 [ 2467.166324] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2467.167490] io_uring_setup+0x33c/0x2980 [ 2467.168438] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2467.169543] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2467.170732] ? wait_for_completion_io+0x270/0x270 [ 2467.171858] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2467.173062] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2467.174253] do_syscall_64+0x33/0x40 [ 2467.175107] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2467.176288] RIP: 0033:0x7f6839abdb19 [ 2467.177128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2467.181352] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2467.183067] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2467.184684] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2467.186298] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2467.187918] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2467.189542] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:59:12 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 5) 08:59:12 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000000, 0x810, r0, 0x10000000) syz_io_uring_submit(0x0, r2, &(0x7f0000000180)=@IORING_OP_NOP={0x0, 0x2}, 0x200) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40086607, &(0x7f0000000080)) r4 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r5, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r4, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r5) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 08:59:12 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000100)) 08:59:12 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:59:12 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:59:12 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 13) 08:59:12 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x386c, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:59:12 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x6c, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2483.214298] FAULT_INJECTION: forcing a failure. [ 2483.214298] name failslab, interval 1, probability 0, space 0, times 0 [ 2483.217458] CPU: 0 PID: 11166 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2483.219394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2483.221710] Call Trace: [ 2483.222445] dump_stack+0x107/0x167 [ 2483.223459] should_fail.cold+0x5/0xa [ 2483.224531] ? create_object.isra.0+0x3a/0xa20 [ 2483.225812] should_failslab+0x5/0x20 [ 2483.226897] kmem_cache_alloc+0x5b/0x310 [ 2483.228033] create_object.isra.0+0x3a/0xa20 [ 2483.229258] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2483.230669] __kmalloc+0x16e/0x390 [ 2483.231669] io_uring_setup+0x33c/0x2980 [ 2483.232868] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2483.234209] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2483.235606] ? wait_for_completion_io+0x270/0x270 [ 2483.237020] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2483.238507] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2483.239976] do_syscall_64+0x33/0x40 [ 2483.241048] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2483.242499] RIP: 0033:0x7f6839abdb19 [ 2483.243557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2483.248776] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2483.250937] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2483.252969] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2483.254987] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2483.257026] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2483.259041] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:59:12 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x74, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2483.297226] FAULT_INJECTION: forcing a failure. [ 2483.297226] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2483.299955] CPU: 1 PID: 11173 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2483.301584] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2483.303533] Call Trace: [ 2483.304169] dump_stack+0x107/0x167 [ 2483.305053] should_fail.cold+0x5/0xa [ 2483.305949] __alloc_pages_nodemask+0x182/0x600 [ 2483.307038] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2483.308453] ? cap_capable+0x1cd/0x230 [ 2483.309406] alloc_pages_current+0x187/0x280 [ 2483.310448] __get_free_pages+0xc/0xa0 [ 2483.311359] io_uring_setup+0xf9a/0x2980 [ 2483.312322] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2483.313524] ? wait_for_completion_io+0x270/0x270 [ 2483.314681] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2483.315905] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2483.317123] do_syscall_64+0x33/0x40 [ 2483.317989] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2483.319181] RIP: 0033:0x7f28100dfb19 [ 2483.320043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2483.324301] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2483.326067] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2483.327720] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2483.329382] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2483.331026] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2483.332681] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:59:12 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:59:12 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x386f, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:59:12 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), 0x0) 08:59:12 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 6) 08:59:12 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:59:12 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:59:12 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 14) 08:59:12 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2483.530451] FAULT_INJECTION: forcing a failure. [ 2483.530451] name failslab, interval 1, probability 0, space 0, times 0 [ 2483.532324] CPU: 1 PID: 11192 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2483.533489] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2483.534831] Call Trace: [ 2483.535269] dump_stack+0x107/0x167 [ 2483.535876] should_fail.cold+0x5/0xa [ 2483.536522] ? create_object.isra.0+0x3a/0xa20 [ 2483.537273] should_failslab+0x5/0x20 [ 2483.537898] kmem_cache_alloc+0x5b/0x310 [ 2483.538569] create_object.isra.0+0x3a/0xa20 [ 2483.539280] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2483.540118] __kmalloc+0x16e/0x390 [ 2483.540708] io_uring_setup+0x33c/0x2980 [ 2483.541364] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2483.542155] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2483.542979] ? wait_for_completion_io+0x270/0x270 [ 2483.543777] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2483.544635] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2483.545470] do_syscall_64+0x33/0x40 [ 2483.546075] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2483.546911] RIP: 0033:0x7f6839abdb19 [ 2483.547503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2483.550532] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2483.551743] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2483.552894] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2483.554030] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2483.555172] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2483.556287] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:59:12 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) [ 2483.595016] FAULT_INJECTION: forcing a failure. [ 2483.595016] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2483.597548] CPU: 0 PID: 11197 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2483.598997] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2483.600743] Call Trace: [ 2483.601302] dump_stack+0x107/0x167 [ 2483.602068] should_fail.cold+0x5/0xa [ 2483.602871] __alloc_pages_nodemask+0x182/0x600 [ 2483.603853] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2483.605132] ? cap_capable+0x1cd/0x230 [ 2483.605965] alloc_pages_current+0x187/0x280 [ 2483.606891] __get_free_pages+0xc/0xa0 [ 2483.607708] io_uring_setup+0xf9a/0x2980 [ 2483.608575] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2483.609636] ? wait_for_completion_io+0x270/0x270 [ 2483.610672] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2483.611767] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2483.612856] do_syscall_64+0x33/0x40 [ 2483.613631] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2483.614709] RIP: 0033:0x7f28100dfb19 [ 2483.615481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2483.619365] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2483.620955] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2483.622441] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2483.623928] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2483.625422] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2483.626900] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2483.714175] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted 08:59:30 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x38, 0x0, 0x800, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffff8, 0x76}}}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x1e0}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x14}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x37}]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x400) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000180)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f00000001c0)) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 08:59:30 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x7a, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 08:59:30 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 15) 08:59:30 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:59:30 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:59:30 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), 0x0) 08:59:30 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3870, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:59:30 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 7) 08:59:30 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2501.328541] FAULT_INJECTION: forcing a failure. [ 2501.328541] name failslab, interval 1, probability 0, space 0, times 0 [ 2501.330812] CPU: 1 PID: 11221 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2501.332164] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2501.333832] Call Trace: [ 2501.334349] dump_stack+0x107/0x167 [ 2501.335061] should_fail.cold+0x5/0xa [ 2501.335804] ? create_object.isra.0+0x3a/0xa20 [ 2501.336694] should_failslab+0x5/0x20 [ 2501.337470] kmem_cache_alloc+0x5b/0x310 [ 2501.338263] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2501.339463] create_object.isra.0+0x3a/0xa20 [ 2501.340313] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2501.341346] kmem_cache_alloc_trace+0x151/0x320 [ 2501.342261] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2501.343341] io_uring_setup+0x14f6/0x2980 [ 2501.344164] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2501.345188] ? wait_for_completion_io+0x270/0x270 [ 2501.346148] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2501.347195] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2501.348201] do_syscall_64+0x33/0x40 [ 2501.348947] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2501.349961] RIP: 0033:0x7f28100dfb19 [ 2501.350705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2501.353550] FAULT_INJECTION: forcing a failure. [ 2501.353550] name failslab, interval 1, probability 0, space 0, times 0 [ 2501.354329] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2501.354349] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2501.354359] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2501.354378] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2501.362844] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2501.364264] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2501.365731] CPU: 0 PID: 11223 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2501.367197] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2501.368927] Call Trace: [ 2501.369558] dump_stack+0x107/0x167 [ 2501.370364] should_fail.cold+0x5/0xa [ 2501.371165] ? create_object.isra.0+0x3a/0xa20 [ 2501.372124] should_failslab+0x5/0x20 [ 2501.372920] kmem_cache_alloc+0x5b/0x310 08:59:30 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) [ 2501.373936] create_object.isra.0+0x3a/0xa20 [ 2501.375021] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2501.376115] kmem_cache_alloc_trace+0x151/0x320 [ 2501.377140] io_uring_setup+0x40b/0x2980 [ 2501.378018] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2501.379055] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2501.380146] ? wait_for_completion_io+0x270/0x270 [ 2501.381222] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2501.382342] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2501.383452] do_syscall_64+0x33/0x40 [ 2501.384255] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2501.385395] RIP: 0033:0x7f6839abdb19 [ 2501.386196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2501.390171] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2501.391800] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2501.393343] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2501.394866] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2501.396462] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2501.398007] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:59:30 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x120, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 08:59:30 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 16) [ 2501.533456] FAULT_INJECTION: forcing a failure. [ 2501.533456] name failslab, interval 1, probability 0, space 0, times 0 [ 2501.535805] CPU: 1 PID: 11237 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2501.537220] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2501.538909] Call Trace: [ 2501.539450] dump_stack+0x107/0x167 [ 2501.540193] should_fail.cold+0x5/0xa [ 2501.540976] ? create_object.isra.0+0x3a/0xa20 [ 2501.541916] should_failslab+0x5/0x20 [ 2501.542694] kmem_cache_alloc+0x5b/0x310 [ 2501.543527] create_object.isra.0+0x3a/0xa20 [ 2501.544432] kmemleak_alloc_percpu+0xa0/0x100 [ 2501.545380] pcpu_alloc+0x4e2/0x1240 [ 2501.546153] ? io_async_queue_proc+0x80/0x80 [ 2501.547065] percpu_ref_init+0x31/0x3d0 [ 2501.547883] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2501.548994] io_uring_setup+0x14f6/0x2980 [ 2501.549854] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2501.550888] ? wait_for_completion_io+0x270/0x270 [ 2501.551901] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2501.552983] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2501.554041] do_syscall_64+0x33/0x40 [ 2501.554801] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2501.555842] RIP: 0033:0x7f28100dfb19 [ 2501.556598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2501.560376] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2501.561936] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2501.563384] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2501.564835] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2501.566296] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2501.567743] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:59:47 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 17) 08:59:47 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), 0x0) 08:59:47 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) flock(r3, 0x4) 08:59:47 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:59:47 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:59:47 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 08:59:47 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x128, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 08:59:47 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 8) [ 2518.552621] FAULT_INJECTION: forcing a failure. [ 2518.552621] name failslab, interval 1, probability 0, space 0, times 0 [ 2518.554164] CPU: 1 PID: 11245 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2518.555070] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2518.556152] Call Trace: [ 2518.556507] dump_stack+0x107/0x167 [ 2518.556990] should_fail.cold+0x5/0xa [ 2518.557498] ? create_object.isra.0+0x3a/0xa20 [ 2518.558117] should_failslab+0x5/0x20 [ 2518.558630] kmem_cache_alloc+0x5b/0x310 [ 2518.559163] create_object.isra.0+0x3a/0xa20 [ 2518.559752] kmemleak_alloc_percpu+0xa0/0x100 [ 2518.560348] pcpu_alloc+0x4e2/0x1240 [ 2518.560858] ? io_async_queue_proc+0x80/0x80 [ 2518.561450] percpu_ref_init+0x31/0x3d0 [ 2518.561996] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2518.562720] io_uring_setup+0x14f6/0x2980 [ 2518.563269] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2518.563946] ? wait_for_completion_io+0x270/0x270 [ 2518.564620] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2518.565311] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2518.566003] do_syscall_64+0x33/0x40 [ 2518.566488] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2518.567163] RIP: 0033:0x7f28100dfb19 [ 2518.567661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2518.570091] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2518.571091] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2518.572021] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2518.572950] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2518.573922] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2518.574857] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:59:47 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x1a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2518.603435] FAULT_INJECTION: forcing a failure. [ 2518.603435] name failslab, interval 1, probability 0, space 0, times 0 [ 2518.605983] CPU: 0 PID: 11259 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2518.607411] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2518.609181] Call Trace: [ 2518.609747] dump_stack+0x107/0x167 [ 2518.610498] should_fail.cold+0x5/0xa [ 2518.611299] ? create_object.isra.0+0x3a/0xa20 [ 2518.612244] should_failslab+0x5/0x20 [ 2518.613034] kmem_cache_alloc+0x5b/0x310 [ 2518.613886] create_object.isra.0+0x3a/0xa20 [ 2518.614810] kmemleak_alloc_percpu+0xa0/0x100 [ 2518.615741] pcpu_alloc+0x4e2/0x1240 [ 2518.616529] ? io_tctx_exit_cb+0xf0/0xf0 [ 2518.617365] percpu_ref_init+0x31/0x3d0 [ 2518.618202] io_uring_setup+0x47a/0x2980 [ 2518.619045] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2518.620045] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2518.621098] ? wait_for_completion_io+0x270/0x270 [ 2518.622122] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2518.623212] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2518.624288] do_syscall_64+0x33/0x40 [ 2518.625070] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2518.626151] RIP: 0033:0x7f6839abdb19 [ 2518.626917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2518.630755] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2518.632331] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2518.633812] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2518.635302] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2518.636789] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2518.638272] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:59:47 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 08:59:47 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 1) 08:59:47 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3878, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:59:47 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2518.699386] FAULT_INJECTION: forcing a failure. [ 2518.699386] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2518.701965] CPU: 0 PID: 11265 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2518.703403] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2518.705125] Call Trace: [ 2518.705693] dump_stack+0x107/0x167 [ 2518.706453] should_fail.cold+0x5/0xa [ 2518.707249] _copy_from_user+0x2e/0x1b0 [ 2518.708072] io_uring_setup+0x9b/0x2980 [ 2518.708904] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2518.709916] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2518.710960] ? wait_for_completion_io+0x270/0x270 [ 2518.711960] ? rcu_read_lock_any_held+0x75/0xa0 [ 2518.712921] ? vfs_write+0x354/0xb10 [ 2518.713691] ? fput_many+0x2f/0x1a0 [ 2518.714437] ? ksys_write+0x1a9/0x260 [ 2518.715229] ? __ia32_sys_read+0xb0/0xb0 08:59:47 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 9) [ 2518.716071] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2518.717267] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2518.718349] do_syscall_64+0x33/0x40 [ 2518.719109] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2518.720155] RIP: 0033:0x7f900b55eb19 [ 2518.720910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2518.724699] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2518.726269] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 08:59:47 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x1f8, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2518.727789] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2518.729228] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2518.730702] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2518.732165] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 08:59:47 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2518.775965] FAULT_INJECTION: forcing a failure. [ 2518.775965] name failslab, interval 1, probability 0, space 0, times 0 [ 2518.777329] CPU: 1 PID: 11275 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2518.778133] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2518.779090] Call Trace: [ 2518.779414] dump_stack+0x107/0x167 [ 2518.779842] should_fail.cold+0x5/0xa [ 2518.780284] ? create_object.isra.0+0x3a/0xa20 [ 2518.780815] should_failslab+0x5/0x20 [ 2518.781254] kmem_cache_alloc+0x5b/0x310 [ 2518.781731] create_object.isra.0+0x3a/0xa20 [ 2518.782246] kmemleak_alloc_percpu+0xa0/0x100 [ 2518.782764] pcpu_alloc+0x4e2/0x1240 [ 2518.783220] ? io_tctx_exit_cb+0xf0/0xf0 [ 2518.783691] percpu_ref_init+0x31/0x3d0 [ 2518.784170] io_uring_setup+0x47a/0x2980 [ 2518.784639] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2518.785193] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2518.785779] ? wait_for_completion_io+0x270/0x270 [ 2518.786352] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2518.786957] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2518.787549] do_syscall_64+0x33/0x40 [ 2518.787997] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2518.788587] RIP: 0033:0x7f6839abdb19 [ 2518.789035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2518.791158] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2518.792045] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2518.792901] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2518.793764] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2518.794612] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2518.795462] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2534.303678] FAULT_INJECTION: forcing a failure. [ 2534.303678] name failslab, interval 1, probability 0, space 0, times 0 [ 2534.306128] CPU: 1 PID: 11289 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2534.307520] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2534.309238] Call Trace: [ 2534.309871] dump_stack+0x107/0x167 [ 2534.310755] should_fail.cold+0x5/0xa [ 2534.311629] ? io_uring_setup+0x258/0x2980 [ 2534.312611] should_failslab+0x5/0x20 [ 2534.313471] kmem_cache_alloc_trace+0x55/0x320 [ 2534.314453] io_uring_setup+0x258/0x2980 [ 2534.315307] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2534.316273] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2534.317291] ? wait_for_completion_io+0x270/0x270 [ 2534.318542] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2534.319320] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2534.320072] do_syscall_64+0x33/0x40 [ 2534.320609] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2534.321358] RIP: 0033:0x7f900b55eb19 [ 2534.321897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2534.324621] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2534.325735] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2534.326773] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2534.327795] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2534.328817] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2534.329840] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:03 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:00:03 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:00:03 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x2a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:00:03 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 2) 09:00:03 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 18) 09:00:03 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 09:00:03 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e0000000c000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000000000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a84000000000000fcffffffffffffff08000000000000000000000034000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee5868cbd58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721235a84652ebf4218b6e0ce32fe10c1fa4d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d6339832bd4c6806617b12ee49a7c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23000000"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:00:03 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 10) [ 2534.378420] FAULT_INJECTION: forcing a failure. [ 2534.378420] name failslab, interval 1, probability 0, space 0, times 0 [ 2534.381008] CPU: 1 PID: 11299 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2534.382566] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2534.384408] Call Trace: [ 2534.384990] dump_stack+0x107/0x167 [ 2534.385814] should_fail.cold+0x5/0xa [ 2534.386667] ? percpu_ref_init+0xd8/0x3d0 [ 2534.387586] should_failslab+0x5/0x20 [ 2534.388425] kmem_cache_alloc_trace+0x55/0x320 [ 2534.389438] ? io_async_queue_proc+0x80/0x80 [ 2534.390414] percpu_ref_init+0xd8/0x3d0 [ 2534.391293] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2534.392484] io_uring_setup+0x14f6/0x2980 [ 2534.393410] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2534.394541] ? wait_for_completion_io+0x270/0x270 [ 2534.395656] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2534.396815] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2534.397967] do_syscall_64+0x33/0x40 [ 2534.398789] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2534.399912] RIP: 0033:0x7f28100dfb19 [ 2534.400729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2534.404776] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2534.406464] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2534.408031] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2534.409587] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2534.411173] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2534.412731] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2534.422469] FAULT_INJECTION: forcing a failure. [ 2534.422469] name failslab, interval 1, probability 0, space 0, times 0 [ 2534.424887] CPU: 1 PID: 11300 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2534.426343] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2534.428042] Call Trace: [ 2534.428593] dump_stack+0x107/0x167 [ 2534.429348] should_fail.cold+0x5/0xa [ 2534.430141] ? percpu_ref_init+0xd8/0x3d0 [ 2534.431006] should_failslab+0x5/0x20 [ 2534.431793] kmem_cache_alloc_trace+0x55/0x320 [ 2534.432747] ? io_tctx_exit_cb+0xf0/0xf0 [ 2534.433584] percpu_ref_init+0xd8/0x3d0 [ 2534.434406] io_uring_setup+0x47a/0x2980 09:00:03 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) [ 2534.435246] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2534.436492] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2534.437543] ? wait_for_completion_io+0x270/0x270 [ 2534.438594] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 09:00:03 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000100)) [ 2534.439676] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2534.440898] do_syscall_64+0x33/0x40 [ 2534.441657] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2534.442738] RIP: 0033:0x7f6839abdb19 [ 2534.443512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2534.447367] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2534.448947] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2534.450429] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2534.451907] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2534.453393] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2534.454885] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:03 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x300, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:00:03 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 11) 09:00:03 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 3) 09:00:03 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 19) [ 2534.639665] FAULT_INJECTION: forcing a failure. [ 2534.639665] name failslab, interval 1, probability 0, space 0, times 0 09:00:03 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2534.642098] CPU: 1 PID: 11313 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2534.643694] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2534.645440] Call Trace: [ 2534.645988] dump_stack+0x107/0x167 [ 2534.646752] should_fail.cold+0x5/0xa [ 2534.647540] ? create_object.isra.0+0x3a/0xa20 [ 2534.648488] should_failslab+0x5/0x20 [ 2534.649279] kmem_cache_alloc+0x5b/0x310 [ 2534.650125] create_object.isra.0+0x3a/0xa20 [ 2534.651034] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2534.652090] kmem_cache_alloc_trace+0x151/0x320 [ 2534.653055] io_uring_setup+0x258/0x2980 [ 2534.653904] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2534.654907] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2534.655945] ? wait_for_completion_io+0x270/0x270 [ 2534.656971] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2534.658061] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2534.659251] do_syscall_64+0x33/0x40 [ 2534.660149] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2534.661327] RIP: 0033:0x7f900b55eb19 [ 2534.662221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2534.666606] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2534.668224] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2534.669714] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 09:00:03 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) [ 2534.671427] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2534.673276] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2534.674833] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2534.680187] FAULT_INJECTION: forcing a failure. [ 2534.680187] name failslab, interval 1, probability 0, space 0, times 0 [ 2534.682757] CPU: 1 PID: 11314 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2534.684427] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2534.686298] Call Trace: [ 2534.686861] dump_stack+0x107/0x167 [ 2534.687624] should_fail.cold+0x5/0xa [ 2534.688421] ? create_object.isra.0+0x3a/0xa20 [ 2534.689374] should_failslab+0x5/0x20 [ 2534.690167] kmem_cache_alloc+0x5b/0x310 [ 2534.691044] create_object.isra.0+0x3a/0xa20 [ 2534.691952] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2534.693030] kmem_cache_alloc_trace+0x151/0x320 [ 2534.694010] ? io_tctx_exit_cb+0xf0/0xf0 [ 2534.694872] percpu_ref_init+0xd8/0x3d0 [ 2534.695709] io_uring_setup+0x47a/0x2980 [ 2534.696555] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2534.697568] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2534.698663] ? wait_for_completion_io+0x270/0x270 [ 2534.699905] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2534.700997] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2534.702340] do_syscall_64+0x33/0x40 [ 2534.703300] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2534.704607] RIP: 0033:0x7f6839abdb19 [ 2534.705567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2534.710216] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2534.711780] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2534.713255] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2534.714742] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2534.716203] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2534.717660] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:03 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000100)) 09:00:03 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0xfffffffffffffffe, 0xffffffffffffffff, 0x2) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001d00210c00000000000000000400020010001180808b15fd56c545edab1cde44b490a8029801a7b0c7dba09475f251"], 0x24}}, 0x0) ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000180)={0x401, 0x4, 0x1, 0x8, 0x0, [0xfffffff8, 0xfffffff7, 0x1000]}) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2534.739948] FAULT_INJECTION: forcing a failure. [ 2534.739948] name failslab, interval 1, probability 0, space 0, times 0 [ 2534.742781] CPU: 0 PID: 11316 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2534.744451] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2534.746479] Call Trace: [ 2534.747124] dump_stack+0x107/0x167 [ 2534.748035] should_fail.cold+0x5/0xa [ 2534.748974] ? percpu_ref_init+0xd8/0x3d0 [ 2534.749984] should_failslab+0x5/0x20 [ 2534.750923] kmem_cache_alloc_trace+0x55/0x320 [ 2534.752048] ? io_async_queue_proc+0x80/0x80 [ 2534.753127] percpu_ref_init+0xd8/0x3d0 [ 2534.754111] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2534.755456] io_uring_setup+0x14f6/0x2980 [ 2534.756511] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2534.757809] ? wait_for_completion_io+0x270/0x270 [ 2534.759035] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2534.760323] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2534.761588] do_syscall_64+0x33/0x40 [ 2534.762538] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2534.763803] RIP: 0033:0x7f28100dfb19 [ 2534.764938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2534.769739] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2534.771480] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2534.773046] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2534.774606] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2534.776197] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2534.777825] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:19 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"/737]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:00:19 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 20) [ 2550.521335] FAULT_INJECTION: forcing a failure. [ 2550.521335] name failslab, interval 1, probability 0, space 0, times 0 [ 2550.523786] CPU: 1 PID: 11340 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2550.525254] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2550.527029] Call Trace: [ 2550.527588] dump_stack+0x107/0x167 [ 2550.528347] should_fail.cold+0x5/0xa [ 2550.529145] ? io_uring_setup+0x33c/0x2980 [ 2550.530036] should_failslab+0x5/0x20 [ 2550.530883] __kmalloc+0x72/0x390 [ 2550.531611] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2550.532674] io_uring_setup+0x33c/0x2980 [ 2550.533548] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2550.534555] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2550.535645] ? wait_for_completion_io+0x270/0x270 [ 2550.536676] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2550.537760] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2550.538870] do_syscall_64+0x33/0x40 [ 2550.539647] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2550.540704] RIP: 0033:0x7f900b55eb19 [ 2550.541472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2550.545323] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2550.546944] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2550.548448] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2550.549932] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2550.551454] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2550.552938] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:19 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x3a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:00:19 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 4) 09:00:19 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x3}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:00:19 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000100)) 09:00:19 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 09:00:19 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 12) 09:00:19 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 5) [ 2550.636013] FAULT_INJECTION: forcing a failure. [ 2550.636013] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2550.638566] CPU: 1 PID: 11348 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2550.640005] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2550.641699] Call Trace: [ 2550.642243] dump_stack+0x107/0x167 [ 2550.643023] should_fail.cold+0x5/0xa [ 2550.643814] __alloc_pages_nodemask+0x182/0x600 [ 2550.644778] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2550.646031] ? cap_capable+0x1cd/0x230 [ 2550.646868] alloc_pages_current+0x187/0x280 [ 2550.647772] __get_free_pages+0xc/0xa0 [ 2550.648571] io_uring_setup+0xe27/0x2980 [ 2550.649414] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2550.650453] ? wait_for_completion_io+0x270/0x270 [ 2550.651493] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2550.652556] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2550.653602] do_syscall_64+0x33/0x40 [ 2550.654362] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2550.655457] RIP: 0033:0x7f6839abdb19 [ 2550.656217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2550.660008] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2550.661558] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2550.663046] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2550.664495] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2550.665950] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2550.667433] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2550.696844] FAULT_INJECTION: forcing a failure. [ 2550.696844] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2550.701856] CPU: 0 PID: 11352 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2550.703512] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2550.705467] Call Trace: [ 2550.706063] dump_stack+0x107/0x167 [ 2550.706850] should_fail.cold+0x5/0xa [ 2550.707724] _copy_to_user+0x2e/0x180 [ 2550.708602] io_uring_setup+0x11b5/0x2980 [ 2550.709500] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2550.710645] ? wait_for_completion_io+0x270/0x270 [ 2550.711788] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2550.712993] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2550.714191] do_syscall_64+0x33/0x40 [ 2550.715063] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2550.716247] RIP: 0033:0x7f28100dfb19 [ 2550.717107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2550.721393] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2550.723136] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2550.724729] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2550.726381] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 09:00:19 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0) 09:00:19 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x3a4, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:00:19 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) [ 2550.727943] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2550.729929] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:19 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2550.784132] FAULT_INJECTION: forcing a failure. [ 2550.784132] name failslab, interval 1, probability 0, space 0, times 0 [ 2550.786881] CPU: 1 PID: 11356 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2550.788397] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2550.790005] Call Trace: [ 2550.790521] dump_stack+0x107/0x167 [ 2550.791262] should_fail.cold+0x5/0xa [ 2550.792004] ? create_object.isra.0+0x3a/0xa20 [ 2550.792883] should_failslab+0x5/0x20 [ 2550.793619] kmem_cache_alloc+0x5b/0x310 [ 2550.794405] create_object.isra.0+0x3a/0xa20 [ 2550.795276] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2550.796259] __kmalloc+0x16e/0x390 [ 2550.796960] io_uring_setup+0x33c/0x2980 [ 2550.797744] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2550.798685] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2550.799680] ? wait_for_completion_io+0x270/0x270 [ 2550.800629] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2550.801622] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2550.802602] do_syscall_64+0x33/0x40 [ 2550.803338] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2550.804314] RIP: 0033:0x7f900b55eb19 [ 2550.805018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2550.808543] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2550.809971] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2550.811351] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2550.812794] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2550.814215] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2550.815583] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:19 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 21) [ 2550.827865] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted 09:00:19 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 13) 09:00:19 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0) 09:00:19 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000001e00)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280), 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)={0x0, 0x5, 0x3, 0x10000, 0x3e59, 0x81}) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000b80)=[{&(0x7f0000000500)=""/212, 0xd4}, {&(0x7f0000000280)=""/16, 0x10}, {&(0x7f0000000380)=""/150, 0x96}, {&(0x7f0000000440)=""/98, 0x62}, {&(0x7f0000000980)=""/70, 0x46}], 0x5) r4 = syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x5, 0x7, &(0x7f00000008c0)=[{&(0x7f0000000600)="2af87ba1fb47a5e37ab595ad3ee5f2f70509de3faa32846005b1fdb645875e9130e2d9213cc5a6063eb945421ce1bfd2f59c9fc646dc285de822fc6c0e6b3913d1f30ae75ee6b7db55d4bad61c64de66959ea61ddb1940bfdf5499a4e82564089500402043eb3b68f0dd26632671a28f0bba73dc381e064b866be2e18877f3202a680741068fb3", 0x87}, {&(0x7f00000002c0)="d5881c24032ad426358bfe5934a54fe8692700ca709c1289c7600b639bca49df6b5d7900bce5e50f14c5dcd8", 0x2c, 0x8}, {&(0x7f00000006c0)="5f68cf87f7f662d32dace8351fe5db28bda69fd37b2e25a3845f4632faaf0d43e438236ade86b6e46bdba9db45391317970a8c1f42035eb0e705328e5a7035167491e1fda74aecb9b35d26ba61aa5793a70a0cb92e2378ca8359f55e73151ce3c723fce16eaf52fef3d46f3b9417aca4575af0aa0889bf8b0a4c", 0x7a, 0x1}, {&(0x7f0000000d80)="8cbfc41cdcb3a593911bf89c50c529cf4ad02c4c92d3ba99894b7e1e60738b9bd516c37c847c1871977c6a0f11c9a4c8be3b05b7434b10b3b3d03f6cbd65bd16bb7a5cdbd93fbc72f2db565d435280838d4a838aa6367b363e103762c7982c644e8f8419d88118ab9eb79001f5216db36be219a0254a4487ccc617bccc88bb78b2774e8a626879277372ae26fc4a8a45e8bea3096f06f49e25e293d31dd122cc660e720232a51a8e3bb938e6815e68b3926ea578357ea5e1bbaab654e61a72edb1267944824cfdaba5363ef90f35e9656cdaa6777574a25f356e44da39efdd9b2051883194f21af8a2f2976b518f09174e32edb75f38dace6e0a797bd752f282b31ad91aa32c973299c39e367398af74e74684818eb7220a81d8e9bf247bbea4704517d12f0d894f47c7307115657d6adb804847dd892e1628dc04c9a041ab7ee9fa01abbe820556f6cfb1fe3eb3015ddc02578538c261b8df0046907114468b6aec313b66fc0b360c5a7415c85d36d2812aa9c5d9b8d6b14f86ddf50a8b21add4aece550816286bebf237ba4cd8432e55ea9654d5e9d35b09fceaa24626b39286ee4d57c54d3a5cf8e40e685b3af5260d3a35a78d30fe3f338ba1a20ea329d950a5f86cd940e140ac058921b1601a2ed396358d095e242ae93fd911a78a955235f3d19cd949a24f486a8e2ab662ac833af3cdb6573777793fd4ec47799474423bb910736d43a4b6784a50b38eefe9fc0ed25ddd7953149d64271e0f6b8a0d4055e5eecf6d476b80303c399416b722c8b12a743a4afa90e345a53b468ef82da166bceef79adb7c028564711b754599066e94038b6a4a8c51277c244df45b278e1da11e3338de56f2d4d89d97559ae3915b9738c40f209694828a79d48954f80ce944a62d42f12a6d2eb996eebeae53dfe9d96612a119cadb3b2a5ef51f0aeefea9b2c57093925cc637605a2df4c7a940dc0a79f48d4183796d2f46d601889e44b691540e29a5dc9df6c48c97c37b5795bb6a451db71ec8ad07c4c155aa6dd9cca6212198f58286989d9866d55c31cf7e10d8fd40a3cee8c732db3eabfbd82e1392acf6005c71c6b23377bb6ea6e14806b0e03245f213255f602e9e37cd00dd9a238816e02976ffb9d3a2202d4554ef791afb5c644410a7a1ef74167383f352431a395c082d65f333d6dd118cd697107bd353734d3074a9eb0dfedf486d67c74c2048afa6b7027c2514c6b297e5a4cf0fd4a122aceb5be8d8cbbe97c113143f54d6736968d19870dd5cb2fc8e3a07bfd48c318c84b77007524a32833730692c3ddaea852594a66fc0abec289da92067cb000037fe32f54b3bc67ef0cb423b52142d0e45e0f198788fd4e1440f33375b1f6e5f572dc6ff572b24d3ba9622e5292b438abf4e33e089b3a03f7f0e2ded9b2eb73d75f781c9de9094883aacfc0fc3566d5e2fc38edd2ae0ac414499e6f1ff3b4dc85483315ab1fa3dd519c912d0ba99aca84d0b86d353d164ea505098e72fb0315816203f4ea1e9f9adb4c7b8daa7246dec9836ade65fef0b7d9ecdd630768d37e7f0b440a4df3207c2248a214bda4b35e4c7e190d42a22355db16d385764d61e7e2528facc9fe14d33d51d22f3e425f4c37190f356db19140452ad7936ddf07f4baeb363627cb58398f98a8767a826907a29266034728db7bb4ef97cc9709bd2dd75ef6f21f7973ccf3a1df8d0ae846c1f336fdd88e71f136315466526ccaeac65d25500872dfa1a4db6cd642c434464158d991ef06d86e5bac2784576c51205aa9c6067fdbcc5defe349e181cec45e07dad0989dd8f15f0eeb62f74a64fa061e653bc051156980ff21746218435b5cda1d67e290df7a7bfca6cdd4469657603f1c605294e815a962640fabd71b4d6d152f00ca3c5e63f815f8311f98858b7fd6a2d3b0595ae91cb49299aa50443093a2de84c26075712aac331ca6c6a528b2c6729b9f4b5348b50d4957e6e15f1875e355e4f9ff98573846d611a72116dff215127b5a09af7ca8e2b78d5a0cb79f72adb53db19569552929525d02198e37c7904c8599b0a1f7f8c9604bc61441690e381842df1eb470c5eef6720c1c7df83268fcb1ecac661b3ddaa25285aa57aa32115cea3ed71658aad16dcf1d52300d075f199450a2643b7b968f2f2e271b3a0fd8acf3106d7be68b2069cdebf80e7ec45177be0fed5195693e1b9f86ac6ba7cafa7c644557da12b7953014a7d7ca4a31524ce9d7e81381c7b79618fc26d94a900c23ffae5b301219a15346ee7599f6c13474a72d581567bc7bb0c7f20bddec5152c2ebb1830755ad210e30f8ba44090d18eb119a7d70195e7c38c439a2703fe337972af8d48879975a1252d669dc523e074569d9e40e27f21393519f51936daebb988d49c008903482df84e051759b1df1b8f9380f8889d15b71f471bfce4186041e5592ec62c55dd3e033c13c51a340e09a97ef991cc943f340d8913a6edd446981fbf75a6df75b72f589e5f3796f9eecfc931056a26e822a6a063587d49914a9e18fa797cb4fa7307616fbc520d857d737a3e53fe6efb37ec2494ae6e05530b78875969e6f42cbaa9271f1e367467e281fcc7cc8277bc7830216577c1c009b8a3bded8eeb071dd73df2a60687809a539d23a7f8a278df20ceb44d8ad39e7fe9c151d450659647697dea8025705d40ac68e933cd6fc8854cea560594c15a0d32a80cda279f7ec15f54a0d1acff9e06effa7f9cfe0fa31dc0b59be29e1b739776d180f963847f63dfa44a2ea14ed1334519f58d6a4a91554d71c79e53492193dec768b69ad70b326047818cb16d87107f8afbda0f63517d2a73bd7152054c786a6d5848777f055002a04f809b80a50e266d4ebf596d716ea13005f969d82fc0d541aae2879bbcb97d4876c2fc3bfac39513f8b30499fc409178c3c2b3d2e3f00701a16c299a0acdea9f0ce65b8ef22ce3d797521fca99d2d7dfd282c599da957cb025ea39310c25d35522f689779136fa52e8c714d2a3c086c930d418b9277e2523cf2a7eb60a2ae6bcad74ce71c0e49765a24fa969bc2a2823755447e0ec0ce773ad3eb06f9a42d84e35d48138656f3101458b5b5fbbfa3bc1e4633f41a89fc92ff4644f00303d33f424833c3e8787dfc043567ab900471eeb236aec8014e76073d50dbde0a464653080534293daf2228fe10f8d9c6cf3f6ed8a1cb3b56bbb8af13a892396fcc71e50a0240f17282dedc10af6895aff268937ba4499d15b91c7af42eabfe370b99b997f0b10c3890edc65d52bdb1038d2709d8f92bfe0545a057b6c277a30efda7e94b4d788ce07f2f9b0809bfdf62f4a01f8281f8c496338c402960cf8ff4051012f7d31ba5b93c86546e12b54601a2fcb74b97a74d208dcd5124c6244c8cc16c8e838ed27253fa5f19f612228edb242160b505be2d3c5cc5d1ebe0c369e9676d35043948bbb47cf8ee43b79c1282b1373fab4ac9542411d12efeed376637d92372d67eaeabfdcfc3cecd6ec07c7e0510ce742ae57dbbd7049309593bc110169c4096c49da49c0c14f49a7a37d8665f14ebb3614159da00c9a2f6a08af0c5ecc4797be371c52bc5bb5098e3898c6b4bc7dba323f3f82af9ffe6dba6d7b09bedecad3665b936b05a0abbd3dad345138be2a6337d254325668d6441b7002e6439819f22a41ff46f0d3e501567c8acbad1a4d3c0606dcd547725f52f9f71a024631ea5078c4a032578aa613c2ef79696de1820729e709ea1c680a102969c6111a97774237b5b66e969eefcdc650fc41095e8e8caaecbf0a1646a7920b8bbc32ba9ce122f2acead5ffa8a3f471ddd6d0706d55a5d2082e6551c47fb3cf74aace4eff6895f13d2427793c70fab703a51924035c680280a4123e011f0b1754a311f2c60eb95c101f18bf55d5eb803efc783b298d3a5db32ac756a834fd88581218c83e3f848fb84d7a0cd20de0bac5686b06998d2cfafe79c4f1858ba96edd38c904e8b1a13d6f7dc70a8e6042c435277b50dccaee3e52dba852651480cbfb8ed9b69defaab67a652e2479f7b754a80c6fda3a86a40fdef66b017bc5208a79138792cc6aee60151e05023433694982521a28cf68a4951295fbc31f39e9fd82d3ea23087a01123aaa93f8f8cedf3b0479fee38b3507d4f6950ac99b1a5cf44081eb1c88f2436333bbc7fc10f7272e0981ec7cbb950a427ef54e0dc4ab3a0169dc1721719dd2d68d63c12db70a61de23d5c5fe1a73210f65102d044e4fbc5dfccb7230ecec955529a6e4b82fa1812d3f42555308d25f153ee4e5e41c7494f7b6dc93ef0f79d0cfe96f7296e58d707649803e2b3b38f33025fb8f971ec1fcb33029e5fd3dc7f516e5be56c12d72619675a4191b10d0f44f954a3b3853bff5d5804728e515e63738189c9c69a2aebc234881f3ca055925bfcb17063abfa861c003b56a3b21d145dc2b30b2c6b6845359233fc84410869d2d9f98cea500a2eed7c58c10f9f3a3ce00287d9b9c6edc769732d40ca84d6bb2d3666c01fbcf3de94f3debbd97fd7d6048d43c86ddae9c70d87f0c2f0669c4f94a400802395c62f01f480bc81d670b0dcee2b14dd8b4d76d2a7bd349f8a479c6b9e0777f2a38c733caa535ef5c765caad6c6d3a6cbf41c160d593ed4d0be7897821434bd2b5fc2ac0dea72fcf2352bc40c0013e38e8811e571ce874c0044b44cd9fd4ec13616995ce52118cf3d94d02a31544d74cb071979ff594a4de95aa5c976baf8fc57e13989b6398696df29c92c056fad0a900e3f4034d2f98351724f44eb62e0f3459e9f3614356149320989e8dd0c4623d8489f6227286ebb04c94dcc4355f021385160f33092ec43b0f6b1c40caa67a35d05426623fe40ddedc4e1e121dcd0cf00b1efa772250c8aa997f8222d3994907af38791925cacc5f71da18c3e3f3f3d02a3cf27e9eb069ffb7058240f68460a366dc5ab7371633497860ca11f64de746c129ed5effd65f65273a58b0064747078f817023844a3187a927d31a16cd09d42e55010578e455a5cc302dcca3ddc30cd2287f0b58ed6eeb7873f6d43024e21a839c2124f4ee5a9be9e178bda3dbe7c7841777880bae616e9b0b5e08f418151c21bc47675cbcc7a39d5effaf31d9fb02cf96267c9f88fda9fb289de6be955922605a236f61065e892cb431f2d5ad476d8d30e168095748c846bfdba0ed89bdd429a455293500d6cf9cbbf64b101abb14fabb3f768d5ab085480ea005957e59ff61cfb18e76b2626f2d3fb1afabd793a71af6d12f0f319d69003bcb7ee453fcf4f2255479547c7e8e7c8627db86ef205f487f6284a28b34aaf810e85c4a737eb0bd85b9d70ff815c273b540cca9cff7be349893608c3090d44bd2579f16c65703fb5e2674024013b16f8f2c605ddf3ae4cde55298f64bd4bc420bd4c1cd23f158d2f13a639c156f456c3940e50f44f27d680a6ec8d2397dd4d3765d16c52bde9b44075421db5a9438c455b8ca663e84d45df31d1cfb3a09c39b26c720f27daca0feea56f523bf4810fca7795df7fcde31b38ea14047e5d662d47181c1c7c1c0b8c712ff3389864b12054952e0e5b4c67e55b1345acdd9ef7c79f95351fa9fd039289356a30ef6c8b311dadef70076176ae355c2febe0ee78994217e67cdab0bed811e68148513c4ce01aeb9ac334681817ee857c6f0403cbb23594a6d3a8902a57547a26ba376c644060461a2f2b4a94f14e3f7e9bb1dd6e20091d76e99b6cff2dd3f0fb5b144eb3a53ce053b285fde063c74775c3edeaf859b7843105441bf5511b", 0x1000, 0xffffffff}, {&(0x7f0000000740)="ccb563dd768253da86189df6ee7a6364b4722f69bc3a755596eaf21aea50f2c36635e0c235e2cc42ad86c1ce23d60977fcf877002a3296f08960140efc603c8e37afec58a7", 0x45}, {&(0x7f0000000300)="ac084f38ba972da0751cde4a3a62ea271c0545d2f359dbf9944d04e9b0ae1fae4d62d634256f90ad0f82", 0x2a, 0x7}, {&(0x7f00000007c0)="cdb79a8852be592afcf5f0fe63c0c90b3dbafc18d9c59a887b506c533f51c98044dc61454151518991e6276616bcddc1b7ddd4f9725f12abb25c4118cd7d71fc97719946a77f59dfd60b4ce3fc653fc0e42b619f7214cb41b0ec6626e9c2d7d0411c24173362d5deaf9ae5e0ee75eadeb662f3ce98f2554d02b90eddbd8ad6d1c1bc353c9ff74a0f7c48435067c9e0b33bcaa10974ec4fe84fdef04b8699f91d2acf6f2f5071ab4d05c3ab5d5af4005ea8766bb4d29b5002ebc43383d288fce41bc9cf7cdaeb264c0988c080ed1e5fd21d1d88ab09ef02e5", 0xd8, 0xfc3}], 0x4804, &(0x7f0000002e40)=ANY=[@ANYBLOB='cruft,nojoliet,session=0x000000000000000d,unhide,gid=', @ANYRESHEX, @ANYBLOB=',map=normal,map=normal,smackfsdef=-]*e,dont_hash,mask=^MAY_WRITE,dont_hash,smackfshat=cgroup2\x00,smackfstransmute=mountinfo\x00,permiirectio,pcr=00000000000000000013,\x00\x00\x00\x00']) fcntl$setstatus(r4, 0x4, 0xc4800) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r5, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r5) getdents(r1, &(0x7f0000000a80)=""/247, 0xf7) 09:00:19 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x5}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2550.946394] FAULT_INJECTION: forcing a failure. [ 2550.946394] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2550.948663] CPU: 1 PID: 11369 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2550.949905] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2550.951413] Call Trace: [ 2550.951891] dump_stack+0x107/0x167 [ 2550.952538] should_fail.cold+0x5/0xa [ 2550.953232] _copy_to_user+0x2e/0x180 [ 2550.953914] io_uring_setup+0x11b5/0x2980 [ 2550.954659] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2550.955588] ? wait_for_completion_io+0x270/0x270 [ 2550.956467] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2550.957396] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2550.958319] do_syscall_64+0x33/0x40 [ 2550.958998] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2550.959903] RIP: 0033:0x7f28100dfb19 [ 2550.960557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2550.963845] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2550.965181] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2550.966432] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2550.967703] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2550.968953] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2550.970204] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2550.979142] FAULT_INJECTION: forcing a failure. [ 2550.979142] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2550.982083] CPU: 0 PID: 11373 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2550.983755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2550.985774] Call Trace: [ 2550.986412] dump_stack+0x107/0x167 [ 2550.987329] should_fail.cold+0x5/0xa [ 2550.988263] __alloc_pages_nodemask+0x182/0x600 [ 2550.989401] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2550.990927] ? cap_capable+0x1cd/0x230 [ 2550.991872] alloc_pages_current+0x187/0x280 [ 2550.992985] __get_free_pages+0xc/0xa0 [ 2550.993983] io_uring_setup+0xe27/0x2980 [ 2550.995040] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2550.996291] ? wait_for_completion_io+0x270/0x270 [ 2550.997492] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2550.998638] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2550.999793] do_syscall_64+0x33/0x40 [ 2551.000686] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2551.001916] RIP: 0033:0x7f6839abdb19 [ 2551.002801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2551.007019] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2551.008968] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2551.010807] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2551.012629] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2551.014370] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2551.016079] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:41 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 09:00:41 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 6) [ 2572.684978] FAULT_INJECTION: forcing a failure. [ 2572.684978] name failslab, interval 1, probability 0, space 0, times 0 [ 2572.687634] CPU: 1 PID: 11392 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2572.689146] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2572.690973] Call Trace: [ 2572.691571] dump_stack+0x107/0x167 [ 2572.692421] should_fail.cold+0x5/0xa [ 2572.693260] ? io_uring_setup+0x40b/0x2980 [ 2572.694187] should_failslab+0x5/0x20 [ 2572.695026] kmem_cache_alloc_trace+0x55/0x320 [ 2572.696041] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2572.697175] io_uring_setup+0x40b/0x2980 [ 2572.698064] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2572.699133] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2572.700242] ? wait_for_completion_io+0x270/0x270 [ 2572.701333] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2572.702471] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2572.703626] do_syscall_64+0x33/0x40 [ 2572.704439] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2572.705593] RIP: 0033:0x7f900b55eb19 [ 2572.706400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2572.710495] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2572.712160] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2572.713728] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2572.715280] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2572.716864] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2572.718355] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:41 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x20000, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000600)=ANY=[@ANYRES64]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40086607, &(0x7f0000000080)) r2 = syz_io_uring_setup(0xc, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240)=0x0, &(0x7f0000000000)=0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r2, 0x6, 0x0, 0x4}, 0x9) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r5, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r2, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r5) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:00:41 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 14) 09:00:41 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x3d2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:00:41 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 22) 09:00:41 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x6}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:00:41 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0) [ 2572.783187] FAULT_INJECTION: forcing a failure. [ 2572.783187] name failslab, interval 1, probability 0, space 0, times 0 [ 2572.785827] CPU: 1 PID: 11393 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2572.787472] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2572.789599] Call Trace: [ 2572.790280] dump_stack+0x107/0x167 [ 2572.791226] should_fail.cold+0x5/0xa [ 2572.792212] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2572.793655] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2572.795082] should_failslab+0x5/0x20 [ 2572.796081] kmem_cache_alloc_trace+0x55/0x320 [ 2572.797266] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2572.798662] io_uring_setup+0x14f6/0x2980 [ 2572.800848] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2572.802154] ? wait_for_completion_io+0x270/0x270 [ 2572.803421] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2572.804768] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2572.806088] do_syscall_64+0x33/0x40 [ 2572.807040] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2572.808350] RIP: 0033:0x7f6839abdb19 [ 2572.809296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2572.813979] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2572.815910] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2572.817788] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2572.819674] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2572.821552] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2572.823429] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2572.825978] FAULT_INJECTION: forcing a failure. [ 2572.825978] name failslab, interval 1, probability 0, space 0, times 0 [ 2572.827832] CPU: 0 PID: 11394 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2572.828893] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2572.830347] Call Trace: [ 2572.830767] dump_stack+0x107/0x167 [ 2572.831962] should_fail.cold+0x5/0xa [ 2572.832549] ? create_object.isra.0+0x3a/0xa20 [ 2572.833281] should_failslab+0x5/0x20 [ 2572.833886] kmem_cache_alloc+0x5b/0x310 [ 2572.834506] create_object.isra.0+0x3a/0xa20 [ 2572.835186] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2572.835987] kmem_cache_alloc+0x159/0x310 [ 2572.836657] __d_alloc+0x2a/0x990 [ 2572.837199] ? find_held_lock+0x2c/0x110 [ 2572.837841] d_alloc_pseudo+0x19/0x70 [ 2572.838428] alloc_file_pseudo+0xce/0x250 [ 2572.839070] ? trace_hardirqs_on+0x5b/0x180 [ 2572.839743] ? alloc_file+0x5a0/0x5a0 [ 2572.840354] anon_inode_getfile+0xc8/0x1f0 [ 2572.841014] io_uring_setup+0x138b/0x2980 [ 2572.841678] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2572.842476] ? wait_for_completion_io+0x270/0x270 [ 2572.843179] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2572.844021] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2572.844815] do_syscall_64+0x33/0x40 [ 2572.845383] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2572.846146] RIP: 0033:0x7f28100dfb19 [ 2572.846717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2572.849484] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2572.850603] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2572.851906] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2572.852947] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2572.853937] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2572.854917] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:41 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x4a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:00:41 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 09:00:57 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x7}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:00:57 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x500, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:00:57 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x8000000) 09:00:57 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e00000000000000000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000000000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a84000000000000fcffffffffffffff08000000000000000000000000000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee5868cbd58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721234a84652ebf4218b6e0ce32fe10c1fa4d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d6339832bd4c6806617b12ee49a7c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x10) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x7f}) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) tkill(0x0, 0x7) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000600)="549dfc819472a8f80b172eac1f065586353048beb0a92f1cbc84774891b91941b98363a0fc3d5b417fcc8b3e30339f82369821e34537d36ccaf659273559f0dd4dbedafd41bb3aa3f892f6a7d818a002e66e9477c4508c93427cb6be7bff95b6066ed71e995b8fe4241a947f042ceb349e59739e9648130ea4aa4846d5e6102d9ecf3ee97e5f028663c2da467fe696e290b3d3aaed084bf799cbf8dd7f209d201d6f33ce0cb1d5", 0xa7}, {&(0x7f00000006c0)="205fa40ca653572ab823eec878169af2020f2a7fb214301f92c27709081a3dcd4d53ddd9c7e9d81d50635a48148d1c283e2ef7ecd771d80538a1c2d5cbf39c632b28e4d907b3beb352056c8d35df2e5fcaf6848550bce278fe745d430aea7c649855e34ae759641d7f9f4d594f08e2572975350a70bcc81c8a57c00e0e34835187c5e8715cb4456653b72d0a24df516e026b405244b706", 0x97}, {&(0x7f0000000780)="b1eae888b94150e94fbe956956c130d5082855c3874a496aeea0c92cb06c000f5a7f3b775366cca7c3f848c1a0b8675014c59f7130fb16d49f936adcbb31c4f147391d5b4d47972b2bbcda174b773b10e4b335f630c781c4a4e116a1d19fcf2fffa44ce28b89ac5ebb1dba8abe1b2ac0a8c93a45afb4c26a3c3878b9720b684c787e2f52e13f145676d03884f4f289e1fc248fd71568684c52182cffc926381b4eabccecbf9d16e55fe049f206a6dcfde9bcb7e563d48d57dce27f58ac7a2d0c8b736acdf9ef4dc024804e314ef49d", 0xcf}, {&(0x7f0000000880)="9ccac6c43971c3345d2956a31a03da18f1419ee0999718ada289fd536a8ca53039829c41e9f7ce6a494f796a8acbeb49b4e110099b1c8d95211e3c80dc09e143ed807aaf8df03d7665ea075243c548b12060dbb5f668704426fe5cf82bb0b9899cf7fbcbae5d61dc3902450359648d70061f3dbb3a46073e16a175dc140a281ba5e851a66fcc851b9927d625747dcc1e57", 0x91}, {&(0x7f00000001c0)="6f5adc45e3fd0f661693808c388e5e4248285d51d3c1f89639c41c38ae5f604434c697276d16", 0x26}, {&(0x7f0000000940)="ff958c8dd3fd2985e93c86fed75332db0841feaaf29af0aee732e8fbbcb39cd026249aa266b7b77b9606fc0067623974e8aebe58177c843431648336d782659e1cd5038904bffbfe773fd7947e50e1b6153939abda971318174a8a1d3647a706744beea60d6add0f9083ef1e7b8f35f42c617124d5e5c869ced1d61d0702cb70f6582028e341db0020a2dd5203963bf43a4deb2d6ae41205713b25cfc90786f2911f98b903b7042a2c72", 0xaa}, {&(0x7f0000000d80)="1be650ebbec7be1f48839097cebe917f6998ba866eb250588d40267a994cf61dd16cabc6f411a45f2aa18fbe8b1a85f0e807fb7da522e1de78d2915dfaa571946a0f757113bb038bf42bea0b21a612737a60e64e89bba9df5b7618d35a01042847d7d6f238b2e8da1b9455b0a6179e494e8f43c0bc77f5daba1cb453c84989cc5c82ccd0cb707c2ef0641537b3c187bf828cf91db2e90407cc3fee706adc3da8e2ebb2179b04566a43d3527448785c8870dac2b339c811c143005f6a2f768ae65c80c3552018da65ab80c36e70cce224216b32dee9185787aa731f46b0512fca812fd8fb6ac2ed22d28e9b24a0f00f", 0xef}, {&(0x7f00000002c0)="6a25cbeab6f42f1e84c8a5994e266d228acca910d957e3519b43d9146aff438573f61bf8495a60327b5f01180d0ae9f364a5cf23", 0x34}], 0x8, &(0x7f0000000300)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xee00}}}], 0x20, 0x8001}, 0x80) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:00:57 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 15) 09:00:57 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 23) 09:00:57 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 7) 09:00:57 executing program 2: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) flock(r3, 0x4) [ 2588.160429] FAULT_INJECTION: forcing a failure. [ 2588.160429] name failslab, interval 1, probability 0, space 0, times 0 [ 2588.162950] CPU: 1 PID: 11420 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2588.164519] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2588.166359] Call Trace: [ 2588.166963] dump_stack+0x107/0x167 [ 2588.167786] should_fail.cold+0x5/0xa [ 2588.168665] ? create_object.isra.0+0x3a/0xa20 [ 2588.169696] should_failslab+0x5/0x20 [ 2588.170555] kmem_cache_alloc+0x5b/0x310 [ 2588.171475] create_object.isra.0+0x3a/0xa20 [ 2588.172478] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2588.173623] kmem_cache_alloc_trace+0x151/0x320 [ 2588.174680] io_uring_setup+0x40b/0x2980 [ 2588.175597] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2588.176914] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2588.178255] ? wait_for_completion_io+0x270/0x270 [ 2588.179567] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2588.180847] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2588.181967] do_syscall_64+0x33/0x40 [ 2588.182780] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2588.183895] RIP: 0033:0x7f900b55eb19 09:00:57 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x5a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2588.184712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2588.188872] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2588.190380] FAULT_INJECTION: forcing a failure. [ 2588.190380] name failslab, interval 1, probability 0, space 0, times 0 [ 2588.190534] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2588.190545] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2588.190555] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2588.190566] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2588.190576] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2588.200181] CPU: 0 PID: 11423 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2588.201427] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2588.202917] Call Trace: [ 2588.203399] dump_stack+0x107/0x167 [ 2588.204088] should_fail.cold+0x5/0xa [ 2588.204782] ? create_object.isra.0+0x3a/0xa20 [ 2588.205620] should_failslab+0x5/0x20 [ 2588.206309] kmem_cache_alloc+0x5b/0x310 [ 2588.207044] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2588.208160] create_object.isra.0+0x3a/0xa20 [ 2588.208954] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2588.209879] kmem_cache_alloc_trace+0x151/0x320 [ 2588.210740] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2588.211712] io_uring_setup+0x14f6/0x2980 [ 2588.212489] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2588.213412] ? wait_for_completion_io+0x270/0x270 [ 2588.214309] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2588.215255] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2588.216209] do_syscall_64+0x33/0x40 [ 2588.216887] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2588.217815] RIP: 0033:0x7f6839abdb19 [ 2588.218482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2588.221889] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2588.223339] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2588.224709] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2588.226074] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2588.227438] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2588.228810] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2588.255990] FAULT_INJECTION: forcing a failure. [ 2588.255990] name failslab, interval 1, probability 0, space 0, times 0 [ 2588.257969] CPU: 0 PID: 11428 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2588.259201] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2588.260685] Call Trace: [ 2588.261162] dump_stack+0x107/0x167 [ 2588.261814] should_fail.cold+0x5/0xa [ 2588.262484] ? __alloc_file+0x21/0x320 [ 2588.263177] should_failslab+0x5/0x20 [ 2588.263857] kmem_cache_alloc+0x5b/0x310 [ 2588.264598] __alloc_file+0x21/0x320 [ 2588.265259] alloc_empty_file+0x6d/0x170 [ 2588.265995] alloc_file+0x5e/0x5a0 [ 2588.266627] alloc_file_pseudo+0x16a/0x250 [ 2588.267379] ? alloc_file+0x5a0/0x5a0 [ 2588.268059] anon_inode_getfile+0xc8/0x1f0 [ 2588.268940] io_uring_setup+0x138b/0x2980 [ 2588.269672] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2588.270555] ? wait_for_completion_io+0x270/0x270 [ 2588.271434] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2588.272353] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2588.273286] do_syscall_64+0x33/0x40 [ 2588.273930] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2588.274826] RIP: 0033:0x7f28100dfb19 [ 2588.275484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2588.278767] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2588.280075] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2588.281328] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2588.282571] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2588.283827] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2588.285077] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:57 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 16) 09:00:57 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x8000000) 09:00:57 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 24) 09:00:57 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0xfffffffffffffff9, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) statfs(&(0x7f0000000180)='.\x00', &(0x7f0000000a80)=""/200) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) write(r4, &(0x7f00000002c0)="a4c1105aaac0b4cd72b951ec28d10951d5f8ff890b40c06d87f8e97ced6196cf0b50b7ef3aa31d15cd6d7fe5f1211f8d5c6d1c5b558d61b68ca531b087ccb476e16aa13165a85b98949dab2cd2b16837ee00f716114d7ea5c930", 0x5a) 09:00:57 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x8}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2588.447188] FAULT_INJECTION: forcing a failure. [ 2588.447188] name failslab, interval 1, probability 0, space 0, times 0 [ 2588.449074] CPU: 0 PID: 11438 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2588.450139] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2588.451430] Call Trace: [ 2588.451859] dump_stack+0x107/0x167 [ 2588.452431] should_fail.cold+0x5/0xa [ 2588.453016] ? create_object.isra.0+0x3a/0xa20 [ 2588.453716] should_failslab+0x5/0x20 [ 2588.454309] kmem_cache_alloc+0x5b/0x310 [ 2588.454963] create_object.isra.0+0x3a/0xa20 [ 2588.455652] kmemleak_alloc_percpu+0xa0/0x100 [ 2588.456361] pcpu_alloc+0x4e2/0x1240 [ 2588.456949] ? io_async_queue_proc+0x80/0x80 [ 2588.457622] percpu_ref_init+0x31/0x3d0 [ 2588.458224] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2588.459069] io_uring_setup+0x14f6/0x2980 [ 2588.459713] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2588.460524] ? wait_for_completion_io+0x270/0x270 [ 2588.461289] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2588.462095] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2588.462898] do_syscall_64+0x33/0x40 [ 2588.463469] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2588.464271] RIP: 0033:0x7f6839abdb19 [ 2588.464828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2588.467616] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2588.468787] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2588.469867] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2588.470936] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2588.472005] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2588.473082] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:57 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 8) [ 2588.476695] FAULT_INJECTION: forcing a failure. [ 2588.476695] name failslab, interval 1, probability 0, space 0, times 0 [ 2588.478497] CPU: 0 PID: 11441 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2588.479476] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2588.480654] Call Trace: [ 2588.481025] dump_stack+0x107/0x167 [ 2588.481545] should_fail.cold+0x5/0xa [ 2588.482081] ? create_object.isra.0+0x3a/0xa20 [ 2588.482730] should_failslab+0x5/0x20 [ 2588.483271] kmem_cache_alloc+0x5b/0x310 [ 2588.483842] create_object.isra.0+0x3a/0xa20 [ 2588.484475] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2588.485186] kmem_cache_alloc+0x159/0x310 [ 2588.485771] __alloc_file+0x21/0x320 [ 2588.486306] alloc_empty_file+0x6d/0x170 [ 2588.486882] alloc_file+0x5e/0x5a0 [ 2588.487391] alloc_file_pseudo+0x16a/0x250 [ 2588.487992] ? alloc_file+0x5a0/0x5a0 [ 2588.488548] anon_inode_getfile+0xc8/0x1f0 [ 2588.489146] io_uring_setup+0x138b/0x2980 [ 2588.489731] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2588.490439] ? wait_for_completion_io+0x270/0x270 [ 2588.491127] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2588.491865] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2588.492599] do_syscall_64+0x33/0x40 [ 2588.493117] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2588.493831] RIP: 0033:0x7f28100dfb19 [ 2588.494348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2588.497079] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2588.498133] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2588.499136] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2588.500157] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2588.501195] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2588.502183] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:57 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) (fail_nth: 1) 09:00:57 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x8000000) 09:00:57 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x600, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2588.543537] FAULT_INJECTION: forcing a failure. [ 2588.543537] name failslab, interval 1, probability 0, space 0, times 0 [ 2588.545199] CPU: 0 PID: 11445 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2588.546221] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2588.547448] Call Trace: [ 2588.547816] dump_stack+0x107/0x167 [ 2588.548344] should_fail.cold+0x5/0xa [ 2588.548877] ? create_object.isra.0+0x3a/0xa20 [ 2588.549534] should_failslab+0x5/0x20 [ 2588.550074] kmem_cache_alloc+0x5b/0x310 [ 2588.550662] create_object.isra.0+0x3a/0xa20 [ 2588.551304] kmemleak_alloc_percpu+0xa0/0x100 [ 2588.551952] pcpu_alloc+0x4e2/0x1240 [ 2588.552521] ? io_tctx_exit_cb+0xf0/0xf0 [ 2588.553111] percpu_ref_init+0x31/0x3d0 [ 2588.553708] io_uring_setup+0x47a/0x2980 [ 2588.554313] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2588.555022] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2588.555776] ? wait_for_completion_io+0x270/0x270 [ 2588.556507] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2588.557280] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2588.558042] do_syscall_64+0x33/0x40 [ 2588.558588] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2588.559350] RIP: 0033:0x7f900b55eb19 [ 2588.559894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2588.562603] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2588.563722] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2588.564773] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2588.565827] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2588.566874] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2588.567921] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:00:57 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 17) 09:00:57 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0xc}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:00:57 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2588.732500] FAULT_INJECTION: forcing a failure. [ 2588.732500] name failslab, interval 1, probability 0, space 0, times 0 [ 2588.734084] CPU: 0 PID: 11463 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2588.734976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2588.736061] Call Trace: [ 2588.736414] dump_stack+0x107/0x167 [ 2588.736890] should_fail.cold+0x5/0xa [ 2588.737387] ? create_object.isra.0+0x3a/0xa20 [ 2588.737982] should_failslab+0x5/0x20 [ 2588.738485] kmem_cache_alloc+0x5b/0x310 [ 2588.739013] create_object.isra.0+0x3a/0xa20 [ 2588.739593] kmemleak_alloc_percpu+0xa0/0x100 [ 2588.740183] pcpu_alloc+0x4e2/0x1240 [ 2588.740671] ? io_async_queue_proc+0x80/0x80 [ 2588.741237] percpu_ref_init+0x31/0x3d0 [ 2588.741764] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2588.742462] io_uring_setup+0x14f6/0x2980 [ 2588.742997] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2588.743649] ? wait_for_completion_io+0x270/0x270 [ 2588.744295] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2588.744966] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2588.745633] do_syscall_64+0x33/0x40 [ 2588.746115] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2588.746775] RIP: 0033:0x7f6839abdb19 [ 2588.747250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2588.749614] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2588.750590] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2588.751500] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2588.752384] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2588.753245] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2588.754156] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:01:14 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 18) 09:01:14 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file1\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:01:14 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x6a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:01:14 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 9) 09:01:14 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:01:14 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r0, 0x8000000) 09:01:14 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 25) [ 2605.283470] FAULT_INJECTION: forcing a failure. [ 2605.283470] name failslab, interval 1, probability 0, space 0, times 0 [ 2605.286241] CPU: 0 PID: 11471 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2605.287942] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2605.289811] Call Trace: [ 2605.290473] dump_stack+0x107/0x167 [ 2605.291298] should_fail.cold+0x5/0xa [ 2605.292299] ? percpu_ref_init+0xd8/0x3d0 [ 2605.293507] should_failslab+0x5/0x20 [ 2605.294392] kmem_cache_alloc_trace+0x55/0x320 [ 2605.295459] ? io_async_queue_proc+0x80/0x80 [ 2605.296462] percpu_ref_init+0xd8/0x3d0 [ 2605.297458] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2605.298832] io_uring_setup+0x14f6/0x2980 [ 2605.299814] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2605.300962] ? wait_for_completion_io+0x270/0x270 [ 2605.302098] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2605.303392] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2605.304619] do_syscall_64+0x33/0x40 [ 2605.305454] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2605.306586] RIP: 0033:0x7f6839abdb19 [ 2605.307412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2605.311678] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2605.313788] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2605.315411] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2605.317063] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2605.318653] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2605.320237] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:01:14 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x10}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2605.328323] FAULT_INJECTION: forcing a failure. [ 2605.328323] name failslab, interval 1, probability 0, space 0, times 0 [ 2605.331538] CPU: 0 PID: 11480 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2605.333239] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2605.335217] Call Trace: [ 2605.335817] dump_stack+0x107/0x167 [ 2605.336663] should_fail.cold+0x5/0xa [ 2605.337524] ? security_file_alloc+0x34/0x170 [ 2605.338528] should_failslab+0x5/0x20 [ 2605.339380] kmem_cache_alloc+0x5b/0x310 [ 2605.340374] security_file_alloc+0x34/0x170 [ 2605.341361] __alloc_file+0xb7/0x320 [ 2605.342186] alloc_empty_file+0x6d/0x170 [ 2605.343071] alloc_file+0x5e/0x5a0 [ 2605.343856] alloc_file_pseudo+0x16a/0x250 [ 2605.344810] ? alloc_file+0x5a0/0x5a0 [ 2605.345685] anon_inode_getfile+0xc8/0x1f0 [ 2605.346643] io_uring_setup+0x138b/0x2980 [ 2605.347653] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2605.348792] ? wait_for_completion_io+0x270/0x270 [ 2605.350000] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2605.351217] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2605.352372] do_syscall_64+0x33/0x40 [ 2605.353238] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2605.354563] RIP: 0033:0x7f28100dfb19 [ 2605.355439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2605.359623] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2605.361323] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2605.362893] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2605.364466] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2605.366050] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2605.367642] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:01:14 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r0, 0x8000000) 09:01:14 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x700, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:01:14 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2605.397641] FAULT_INJECTION: forcing a failure. [ 2605.397641] name failslab, interval 1, probability 0, space 0, times 0 [ 2605.400569] CPU: 0 PID: 11472 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2605.402281] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2605.404344] Call Trace: [ 2605.405043] dump_stack+0x107/0x167 [ 2605.405959] should_fail.cold+0x5/0xa [ 2605.406914] ? create_object.isra.0+0x3a/0xa20 [ 2605.408032] should_failslab+0x5/0x20 [ 2605.408954] kmem_cache_alloc+0x5b/0x310 [ 2605.409935] create_object.isra.0+0x3a/0xa20 [ 2605.411005] kmemleak_alloc_percpu+0xa0/0x100 [ 2605.412075] pcpu_alloc+0x4e2/0x1240 [ 2605.413010] ? io_tctx_exit_cb+0xf0/0xf0 [ 2605.413947] percpu_ref_init+0x31/0x3d0 [ 2605.414974] io_uring_setup+0x47a/0x2980 [ 2605.416062] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2605.417411] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2605.418773] ? wait_for_completion_io+0x270/0x270 [ 2605.420131] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2605.421593] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2605.423027] do_syscall_64+0x33/0x40 [ 2605.424053] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2605.425480] RIP: 0033:0x7f900b55eb19 [ 2605.426511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2605.431625] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2605.433727] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2605.435849] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2605.437986] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2605.439903] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2605.441824] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2605.523719] FAULT_INJECTION: forcing a failure. [ 2605.523719] name failslab, interval 1, probability 0, space 0, times 0 [ 2605.525661] CPU: 1 PID: 11493 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2605.526730] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2605.528073] Call Trace: [ 2605.528508] dump_stack+0x107/0x167 [ 2605.529105] should_fail.cold+0x5/0xa [ 2605.529724] ? create_object.isra.0+0x3a/0xa20 [ 2605.530456] should_failslab+0x5/0x20 [ 2605.531072] kmem_cache_alloc+0x5b/0x310 [ 2605.531727] create_object.isra.0+0x3a/0xa20 [ 2605.532401] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2605.533199] kmem_cache_alloc_trace+0x151/0x320 [ 2605.533918] ? io_async_queue_proc+0x80/0x80 [ 2605.534599] percpu_ref_init+0xd8/0x3d0 [ 2605.535225] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2605.536074] io_uring_setup+0x14f6/0x2980 [ 2605.536738] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2605.537524] ? wait_for_completion_io+0x270/0x270 [ 2605.538286] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2605.539086] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2605.539878] do_syscall_64+0x33/0x40 [ 2605.540445] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2605.541242] RIP: 0033:0x7f6839abdb19 [ 2605.541815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2605.544625] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2605.545781] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2605.546909] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 09:01:14 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 19) 09:01:14 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) signalfd4(r2, &(0x7f0000000180)={[0x8]}, 0x8, 0x80800) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40086607, &(0x7f0000000080)) r4 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r5, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r4, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r5) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2605.548038] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2605.549539] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2605.550667] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:01:14 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 10) 09:01:14 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 26) [ 2605.631299] FAULT_INJECTION: forcing a failure. [ 2605.631299] name failslab, interval 1, probability 0, space 0, times 0 [ 2605.633915] CPU: 0 PID: 11500 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2605.635494] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2605.637403] Call Trace: [ 2605.638018] dump_stack+0x107/0x167 [ 2605.638855] should_fail.cold+0x5/0xa [ 2605.639736] ? create_object.isra.0+0x3a/0xa20 [ 2605.640793] should_failslab+0x5/0x20 [ 2605.641667] kmem_cache_alloc+0x5b/0x310 [ 2605.642605] create_object.isra.0+0x3a/0xa20 [ 2605.643611] kmemleak_alloc_percpu+0xa0/0x100 [ 2605.644636] pcpu_alloc+0x4e2/0x1240 [ 2605.645487] ? io_tctx_exit_cb+0xf0/0xf0 [ 2605.646419] percpu_ref_init+0x31/0x3d0 [ 2605.647336] io_uring_setup+0x47a/0x2980 [ 2605.648257] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2605.649346] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2605.650468] ? wait_for_completion_io+0x270/0x270 [ 2605.651578] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2605.652764] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2605.653914] do_syscall_64+0x33/0x40 [ 2605.654743] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2605.655889] RIP: 0033:0x7f900b55eb19 [ 2605.656723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2605.660942] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2605.662679] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2605.664294] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2605.665934] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2605.667563] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2605.669188] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:01:14 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 20) 09:01:14 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e00000000000000000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000000000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a84000000000000fcffffffffffffff08000000000000000000000000000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee5868cbd58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721234a84652ebf4218b6e0ce32fe10c1fa4d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d6339832bd4c6806617b12ee49a7c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000180)={0x4e, 0x5, 0x4254}) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:01:14 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r0, 0x8000000) [ 2605.695079] FAULT_INJECTION: forcing a failure. [ 2605.695079] name failslab, interval 1, probability 0, space 0, times 0 [ 2605.696854] CPU: 1 PID: 11502 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2605.697846] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2605.699039] Call Trace: [ 2605.699422] dump_stack+0x107/0x167 [ 2605.699946] should_fail.cold+0x5/0xa [ 2605.700492] ? create_object.isra.0+0x3a/0xa20 [ 2605.701148] should_failslab+0x5/0x20 [ 2605.701691] kmem_cache_alloc+0x5b/0x310 [ 2605.702274] create_object.isra.0+0x3a/0xa20 [ 2605.702899] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2605.703613] kmem_cache_alloc_trace+0x151/0x320 [ 2605.704285] ? io_async_queue_proc+0x80/0x80 [ 2605.704923] percpu_ref_init+0xd8/0x3d0 [ 2605.705473] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2605.706241] io_uring_setup+0x14f6/0x2980 [ 2605.706847] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2605.707585] ? wait_for_completion_io+0x270/0x270 [ 2605.708276] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2605.709052] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2605.709786] do_syscall_64+0x33/0x40 [ 2605.710309] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2605.711012] RIP: 0033:0x7f6839abdb19 [ 2605.711534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2605.714145] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2605.715186] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2605.716187] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2605.717167] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2605.718147] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2605.719126] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2605.743460] FAULT_INJECTION: forcing a failure. [ 2605.743460] name failslab, interval 1, probability 0, space 0, times 0 [ 2605.745839] CPU: 0 PID: 11507 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2605.747267] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2605.748953] Call Trace: [ 2605.749486] dump_stack+0x107/0x167 [ 2605.750217] should_fail.cold+0x5/0xa [ 2605.750984] ? security_file_alloc+0x34/0x170 [ 2605.751889] should_failslab+0x5/0x20 [ 2605.752670] kmem_cache_alloc+0x5b/0x310 [ 2605.753487] security_file_alloc+0x34/0x170 [ 2605.754355] __alloc_file+0xb7/0x320 [ 2605.755107] alloc_empty_file+0x6d/0x170 [ 2605.755924] alloc_file+0x5e/0x5a0 [ 2605.756654] alloc_file_pseudo+0x16a/0x250 [ 2605.757500] ? alloc_file+0x5a0/0x5a0 [ 2605.758280] anon_inode_getfile+0xc8/0x1f0 [ 2605.759127] io_uring_setup+0x138b/0x2980 [ 2605.759928] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2605.760906] ? wait_for_completion_io+0x270/0x270 [ 2605.761883] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2605.762878] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2605.763874] do_syscall_64+0x33/0x40 [ 2605.764747] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2605.765996] RIP: 0033:0x7f28100dfb19 [ 2605.766873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2605.771335] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2605.773212] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2605.774955] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2605.776648] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2605.778648] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2605.780433] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2620.353784] FAULT_INJECTION: forcing a failure. [ 2620.353784] name failslab, interval 1, probability 0, space 0, times 0 [ 2620.356792] CPU: 0 PID: 11522 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2620.358603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2620.360806] Call Trace: [ 2620.361502] dump_stack+0x107/0x167 [ 2620.362453] should_fail.cold+0x5/0xa [ 2620.363467] ? create_object.isra.0+0x3a/0xa20 [ 2620.364679] should_failslab+0x5/0x20 [ 2620.365532] FAULT_INJECTION: forcing a failure. [ 2620.365532] name failslab, interval 1, probability 0, space 0, times 0 [ 2620.365680] kmem_cache_alloc+0x5b/0x310 [ 2620.365716] create_object.isra.0+0x3a/0xa20 [ 2620.370282] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2620.371609] kmem_cache_alloc_trace+0x151/0x320 [ 2620.372824] ? io_tctx_exit_cb+0xf0/0xf0 [ 2620.373978] percpu_ref_init+0xd8/0x3d0 [ 2620.375001] io_uring_setup+0x47a/0x2980 [ 2620.376065] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2620.377310] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2620.378649] ? wait_for_completion_io+0x270/0x270 [ 2620.379909] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2620.381257] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2620.382625] do_syscall_64+0x33/0x40 [ 2620.383575] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2620.384884] RIP: 0033:0x7f900b55eb19 [ 2620.385886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2620.390650] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2620.392593] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2620.394484] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2620.396302] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2620.398174] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2620.400037] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2620.401923] CPU: 1 PID: 11523 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2620.403400] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2620.405170] Call Trace: [ 2620.405736] dump_stack+0x107/0x167 [ 2620.406709] should_fail.cold+0x5/0xa 09:01:29 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x12}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:01:29 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 27) 09:01:29 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 11) 09:01:29 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 21) 09:01:29 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x3}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:01:29 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x7a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:01:29 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) r5 = syz_open_dev$hidraw(&(0x7f0000000180), 0x6c458, 0x18002) [ 2620.407745] ? create_object.isra.0+0x3a/0xa20 [ 2620.408865] should_failslab+0x5/0x20 [ 2620.409676] kmem_cache_alloc+0x5b/0x310 [ 2620.410529] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 2620.411679] create_object.isra.0+0x3a/0xa20 [ 2620.412590] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2620.413659] kmem_cache_alloc+0x159/0x310 [ 2620.414531] security_file_alloc+0x34/0x170 [ 2620.415442] __alloc_file+0xb7/0x320 [ 2620.416224] alloc_empty_file+0x6d/0x170 [ 2620.417044] alloc_file+0x5e/0x5a0 [ 2620.417798] alloc_file_pseudo+0x16a/0x250 [ 2620.418642] ? alloc_file+0x5a0/0x5a0 [ 2620.419461] anon_inode_getfile+0xc8/0x1f0 [ 2620.420332] io_uring_setup+0x138b/0x2980 [ 2620.421182] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2620.422242] ? wait_for_completion_io+0x270/0x270 [ 2620.423241] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2620.424344] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2620.425414] do_syscall_64+0x33/0x40 [ 2620.426197] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2620.427222] RIP: 0033:0x7f28100dfb19 [ 2620.428001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 ioctl$BTRFS_IOC_SNAP_DESTROY(0xffffffffffffffff, 0x5000940f, &(0x7f0000000d80)={{r5}, "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"}) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2620.431672] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2620.433324] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2620.434753] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2620.436205] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2620.437688] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2620.439174] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2620.448332] FAULT_INJECTION: forcing a failure. 09:01:29 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) [ 2620.448332] name failslab, interval 1, probability 0, space 0, times 0 [ 2620.451054] CPU: 1 PID: 11526 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2620.452450] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2620.454112] Call Trace: [ 2620.454633] dump_stack+0x107/0x167 [ 2620.455367] should_fail.cold+0x5/0xa [ 2620.456124] ? __d_alloc+0x2a/0x990 [ 2620.456856] should_failslab+0x5/0x20 [ 2620.457638] kmem_cache_alloc+0x5b/0x310 [ 2620.458473] __d_alloc+0x2a/0x990 [ 2620.459191] ? find_held_lock+0x2c/0x110 [ 2620.460024] d_alloc_pseudo+0x19/0x70 [ 2620.460828] alloc_file_pseudo+0xce/0x250 [ 2620.461681] ? trace_hardirqs_on+0x5b/0x180 [ 2620.462570] ? alloc_file+0x5a0/0x5a0 [ 2620.463357] anon_inode_getfile+0xc8/0x1f0 [ 2620.464222] io_uring_setup+0x138b/0x2980 [ 2620.465092] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2620.466143] ? wait_for_completion_io+0x270/0x270 [ 2620.467189] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2620.468270] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2620.469353] do_syscall_64+0x33/0x40 [ 2620.470121] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2620.471163] RIP: 0033:0x7f6839abdb19 [ 2620.471935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2620.475721] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2620.477314] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2620.478772] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2620.480242] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2620.481765] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2620.483231] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:01:43 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 28) 09:01:43 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x8a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:01:43 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 12) 09:01:43 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x10, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251"]}]}, 0x24}}, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:01:43 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) 09:01:43 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 22) 09:01:43 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x18}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:01:43 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:01:43 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) [ 2634.412852] FAULT_INJECTION: forcing a failure. [ 2634.412852] name failslab, interval 1, probability 0, space 0, times 0 [ 2634.415778] CPU: 1 PID: 11551 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2634.417573] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2634.419653] Call Trace: [ 2634.420287] dump_stack+0x107/0x167 [ 2634.421228] should_fail.cold+0x5/0xa [ 2634.422238] ? create_object.isra.0+0x3a/0xa20 [ 2634.423318] should_failslab+0x5/0x20 [ 2634.424323] kmem_cache_alloc+0x5b/0x310 [ 2634.425332] create_object.isra.0+0x3a/0xa20 [ 2634.426515] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2634.427679] kmem_cache_alloc+0x159/0x310 [ 2634.428693] __d_alloc+0x2a/0x990 [ 2634.429639] ? find_held_lock+0x2c/0x110 [ 2634.430654] d_alloc_pseudo+0x19/0x70 [ 2634.431611] alloc_file_pseudo+0xce/0x250 [ 2634.432557] ? trace_hardirqs_on+0x5b/0x180 [ 2634.433683] ? alloc_file+0x5a0/0x5a0 [ 2634.434667] anon_inode_getfile+0xc8/0x1f0 [ 2634.435768] io_uring_setup+0x138b/0x2980 [ 2634.437007] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2634.438537] ? wait_for_completion_io+0x270/0x270 [ 2634.439771] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2634.441137] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2634.442436] do_syscall_64+0x33/0x40 [ 2634.443378] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2634.444658] RIP: 0033:0x7f6839abdb19 [ 2634.445681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2634.449973] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2634.450463] FAULT_INJECTION: forcing a failure. [ 2634.450463] name failslab, interval 1, probability 0, space 0, times 0 [ 2634.451716] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2634.451729] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2634.451740] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2634.451751] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2634.451774] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2634.464213] CPU: 0 PID: 11553 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2634.465776] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2634.467604] Call Trace: [ 2634.468194] dump_stack+0x107/0x167 [ 2634.468994] should_fail.cold+0x5/0xa [ 2634.469885] ? create_object.isra.0+0x3a/0xa20 [ 2634.470895] should_failslab+0x5/0x20 [ 2634.471739] kmem_cache_alloc+0x5b/0x310 [ 2634.472641] create_object.isra.0+0x3a/0xa20 [ 2634.473640] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2634.474854] kmem_cache_alloc_trace+0x151/0x320 [ 2634.475888] io_uring_alloc_task_context+0x99/0x6a0 [ 2634.476983] ? io_import_iovec+0x1120/0x1120 [ 2634.477956] ? lock_downgrade+0x6d0/0x6d0 [ 2634.478862] ? do_raw_spin_lock+0x121/0x260 [ 2634.479809] ? rwlock_bug.part.0+0x90/0x90 [ 2634.480750] __io_uring_add_tctx_node+0x2c6/0x520 [ 2634.481800] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2634.482931] ? alloc_fd+0x2e7/0x670 [ 2634.483733] io_uring_setup+0x1fbb/0x2980 [ 2634.484638] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2634.485747] ? wait_for_completion_io+0x270/0x270 [ 2634.486821] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2634.487954] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2634.489084] do_syscall_64+0x33/0x40 [ 2634.489903] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2634.491016] RIP: 0033:0x7f28100dfb19 [ 2634.491830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2634.495824] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2634.497495] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2634.499063] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2634.500625] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2634.502193] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2634.503751] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2634.508376] FAULT_INJECTION: forcing a failure. [ 2634.508376] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2634.510998] CPU: 0 PID: 11550 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2634.512522] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2634.514360] Call Trace: [ 2634.514944] dump_stack+0x107/0x167 [ 2634.515743] should_fail.cold+0x5/0xa [ 2634.516586] __alloc_pages_nodemask+0x182/0x600 [ 2634.517623] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2634.518937] ? cap_capable+0x1cd/0x230 [ 2634.519793] alloc_pages_current+0x187/0x280 [ 2634.520755] __get_free_pages+0xc/0xa0 [ 2634.521616] io_uring_setup+0xe27/0x2980 [ 2634.522507] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2634.523622] ? wait_for_completion_io+0x270/0x270 [ 2634.524708] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2634.525862] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2634.526999] do_syscall_64+0x33/0x40 [ 2634.527817] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2634.528943] RIP: 0033:0x7f900b55eb19 [ 2634.529781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2634.533861] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2634.535547] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2634.537168] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2634.538760] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2634.540334] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2634.541915] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2634.552284] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted 09:01:43 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x1e}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:01:43 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 13) 09:01:43 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x5}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:01:43 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x900, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:01:43 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e00000000000000000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000000000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a84000000000000fcffffffffffffff08000000000000000000000000000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee5868cbd58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721234a84652ebf4218b6e0ce32fe10c1fa4d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d6339832bd4c6806617b12ee49a7c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000010000001800000077e58f3b71dcbadb97025c9ec2efce000000000000", @ANYRES32, @ANYBLOB="e0ffffff080000002e2f66696c653000"]) statx(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x400, 0x80, &(0x7f0000000600)) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:01:43 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 29) [ 2634.714059] FAULT_INJECTION: forcing a failure. [ 2634.714059] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2634.716604] CPU: 1 PID: 11568 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2634.718060] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2634.719797] Call Trace: [ 2634.720348] dump_stack+0x107/0x167 [ 2634.721123] should_fail.cold+0x5/0xa [ 2634.721946] __alloc_pages_nodemask+0x182/0x600 [ 2634.722927] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2634.724196] ? cap_capable+0x1cd/0x230 [ 2634.725025] alloc_pages_current+0x187/0x280 [ 2634.725951] __get_free_pages+0xc/0xa0 [ 2634.726762] io_uring_setup+0xf9a/0x2980 [ 2634.727616] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2634.728671] ? wait_for_completion_io+0x270/0x270 [ 2634.729706] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2634.730779] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2634.731836] do_syscall_64+0x33/0x40 [ 2634.732592] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2634.733665] RIP: 0033:0x7f900b55eb19 [ 2634.734434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2634.738911] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2634.741313] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2634.743118] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2634.745087] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2634.747112] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2634.749156] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:01:43 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) (fail_nth: 1) 09:01:43 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x9a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2634.848898] FAULT_INJECTION: forcing a failure. [ 2634.848898] name failslab, interval 1, probability 0, space 0, times 0 [ 2634.851117] CPU: 0 PID: 11575 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2634.852470] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2634.854082] Call Trace: [ 2634.854591] dump_stack+0x107/0x167 [ 2634.855303] should_fail.cold+0x5/0xa [ 2634.856050] ? create_object.isra.0+0x3a/0xa20 [ 2634.856943] should_failslab+0x5/0x20 [ 2634.857736] kmem_cache_alloc+0x5b/0x310 [ 2634.858553] create_object.isra.0+0x3a/0xa20 [ 2634.859438] kmemleak_alloc_percpu+0xa0/0x100 [ 2634.860331] pcpu_alloc+0x4e2/0x1240 [ 2634.861082] __percpu_counter_init+0x10d/0x2d0 [ 2634.861994] io_uring_alloc_task_context+0xcc/0x6a0 [ 2634.862958] ? io_import_iovec+0x1120/0x1120 [ 2634.863814] ? lock_downgrade+0x6d0/0x6d0 [ 2634.864635] ? do_raw_spin_lock+0x121/0x260 [ 2634.865485] ? rwlock_bug.part.0+0x90/0x90 [ 2634.866349] __io_uring_add_tctx_node+0x2c6/0x520 [ 2634.867302] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2634.868336] ? alloc_fd+0x2e7/0x670 [ 2634.869064] io_uring_setup+0x1fbb/0x2980 [ 2634.869905] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2634.870925] ? wait_for_completion_io+0x270/0x270 [ 2634.871906] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2634.872967] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2634.874020] do_syscall_64+0x33/0x40 [ 2634.874759] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2634.875784] RIP: 0033:0x7f28100dfb19 [ 2634.876525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2634.880099] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2634.881606] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2634.882933] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2634.884366] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2634.885818] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2634.887275] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:01:43 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x6}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:01:43 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 09:01:43 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x24}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:01:57 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffe0, 0x8}}, './file0\x00'}) fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:01:57 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x2a}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:01:57 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2002, 0xf, 0x13, r0, 0x8000000) 09:01:57 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 30) 09:01:57 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 14) 09:01:57 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 23) [ 2648.284870] FAULT_INJECTION: forcing a failure. [ 2648.284870] name failslab, interval 1, probability 0, space 0, times 0 [ 2648.286785] CPU: 1 PID: 11597 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2648.287807] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2648.289026] Call Trace: [ 2648.289428] dump_stack+0x107/0x167 [ 2648.289964] should_fail.cold+0x5/0xa [ 2648.290542] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2648.291365] should_failslab+0x5/0x20 [ 2648.291924] kmem_cache_alloc_trace+0x55/0x320 [ 2648.292596] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2648.293386] io_uring_setup+0x14f6/0x2980 [ 2648.294018] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2648.294754] ? wait_for_completion_io+0x270/0x270 [ 2648.295478] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2648.296065] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2648.296824] do_syscall_64+0x33/0x40 [ 2648.297377] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2648.298128] RIP: 0033:0x7f900b55eb19 [ 2648.298666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2648.301345] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2648.302459] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2648.303508] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2648.304542] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2648.305582] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2648.306620] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:01:57 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0xa00, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:01:57 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x7}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2648.333723] FAULT_INJECTION: forcing a failure. [ 2648.333723] name failslab, interval 1, probability 0, space 0, times 0 [ 2648.335226] CPU: 1 PID: 11601 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2648.336218] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2648.337405] Call Trace: [ 2648.337789] dump_stack+0x107/0x167 [ 2648.338321] should_fail.cold+0x5/0xa [ 2648.338865] ? create_object.isra.0+0x3a/0xa20 [ 2648.339518] should_failslab+0x5/0x20 [ 2648.340054] kmem_cache_alloc+0x5b/0x310 [ 2648.340629] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2648.341492] create_object.isra.0+0x3a/0xa20 [ 2648.342012] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2648.342742] kmem_cache_alloc_trace+0x151/0x320 [ 2648.343408] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2648.344181] io_uring_setup+0x14f6/0x2980 [ 2648.344777] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2648.345511] ? wait_for_completion_io+0x270/0x270 [ 2648.346223] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2648.346969] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2648.347712] do_syscall_64+0x33/0x40 [ 2648.348246] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2648.348804] RIP: 0033:0x7f900b55eb19 [ 2648.349336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2648.351958] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2648.353035] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2648.354057] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2648.355066] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2648.356076] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2648.357073] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2648.359186] FAULT_INJECTION: forcing a failure. [ 2648.359186] name failslab, interval 1, probability 0, space 0, times 0 [ 2648.360769] CPU: 1 PID: 11602 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2648.361746] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2648.362940] Call Trace: [ 2648.363316] dump_stack+0x107/0x167 [ 2648.363805] should_fail.cold+0x5/0xa [ 2648.364277] ? create_object.isra.0+0x3a/0xa20 [ 2648.364833] should_failslab+0x5/0x20 [ 2648.365282] kmem_cache_alloc+0x5b/0x310 [ 2648.365788] create_object.isra.0+0x3a/0xa20 [ 2648.366390] kmemleak_alloc_percpu+0xa0/0x100 [ 2648.366989] pcpu_alloc+0x4e2/0x1240 [ 2648.367440] __percpu_counter_init+0x10d/0x2d0 [ 2648.367963] io_uring_alloc_task_context+0xcc/0x6a0 [ 2648.368601] ? io_import_iovec+0x1120/0x1120 [ 2648.369201] ? lock_downgrade+0x6d0/0x6d0 [ 2648.370950] ? do_raw_spin_lock+0x121/0x260 [ 2648.372010] ? rwlock_bug.part.0+0x90/0x90 09:01:57 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 15) [ 2648.373068] __io_uring_add_tctx_node+0x2c6/0x520 [ 2648.374455] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2648.375867] ? alloc_fd+0x2e7/0x670 [ 2648.376867] io_uring_setup+0x1fbb/0x2980 [ 2648.378026] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2648.379272] ? wait_for_completion_io+0x270/0x270 [ 2648.380534] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2648.381982] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2648.383427] do_syscall_64+0x33/0x40 [ 2648.384458] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2648.385877] RIP: 0033:0x7f28100dfb19 [ 2648.386930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2648.391522] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2648.393303] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2648.394995] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2648.396607] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2648.398234] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2648.399839] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2648.420245] FAULT_INJECTION: forcing a failure. [ 2648.420245] name failslab, interval 1, probability 0, space 0, times 0 [ 2648.422945] CPU: 1 PID: 11610 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2648.424528] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2648.426435] Call Trace: [ 2648.427038] dump_stack+0x107/0x167 [ 2648.427892] should_fail.cold+0x5/0xa [ 2648.428760] ? __alloc_file+0x21/0x320 [ 2648.429656] should_failslab+0x5/0x20 [ 2648.430542] kmem_cache_alloc+0x5b/0x310 [ 2648.431490] __alloc_file+0x21/0x320 [ 2648.432339] alloc_empty_file+0x6d/0x170 [ 2648.433273] alloc_file+0x5e/0x5a0 [ 2648.434094] alloc_file_pseudo+0x16a/0x250 [ 2648.435061] ? alloc_file+0x5a0/0x5a0 [ 2648.435941] anon_inode_getfile+0xc8/0x1f0 [ 2648.436906] io_uring_setup+0x138b/0x2980 [ 2648.437872] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2648.439038] ? wait_for_completion_io+0x270/0x270 [ 2648.440164] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2648.441348] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2648.442537] do_syscall_64+0x33/0x40 [ 2648.443379] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2648.444532] RIP: 0033:0x7f6839abdb19 [ 2648.445521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2648.450238] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2648.451993] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2648.453683] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2648.455456] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2648.457204] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2648.459082] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:01:57 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x8}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:01:57 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2003, 0xf, 0x13, r0, 0x8000000) 09:01:57 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x30}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2648.556943] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted 09:01:57 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 16) 09:01:57 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 24) 09:01:57 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 31) 09:01:57 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0xaa2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:01:57 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) write$binfmt_script(r1, &(0x7f0000000600)={'#! ', './file0', [{0x20, '\x00'}, {0x20, '\x00'}], 0xa, "572fb1e16b2a7cb4ec449f9669bd33b248db11e9bdb06e931eac68104c9234a6d024928c3e721618ace0634b347e2a174d724cea2d7653dd7db7c4290fee65a7862a5fbe959a434bd3e5bd632b9fc07bc3a1039a24bbae6f231e3fffb88ebd547599443b88dc661fd65d93a4f30c03a7a6341a1d5886594ecbdadb379df8713e9f823ab9d085804b11713f0d8495cac6e36e94c22b495303d7cd57da84c244e2db4ddf3532fb23834741d392b78c6e29851738998559fdc1d025e5723be992677365ceb56cd943abd6a18e87bf10e4d97143ea917e7e638f9d59a13eefefcfa1075dc475f15de8c609c22e13c0e1837f52c0"}, 0x101) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:01:57 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2004, 0xf, 0x13, r0, 0x8000000) [ 2648.756398] FAULT_INJECTION: forcing a failure. [ 2648.756398] name failslab, interval 1, probability 0, space 0, times 0 [ 2648.758512] CPU: 0 PID: 11631 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2648.759782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2648.760294] FAULT_INJECTION: forcing a failure. [ 2648.760294] name failslab, interval 1, probability 0, space 0, times 0 [ 2648.761281] Call Trace: [ 2648.761304] dump_stack+0x107/0x167 [ 2648.761321] should_fail.cold+0x5/0xa [ 2648.761345] ? create_object.isra.0+0x3a/0xa20 [ 2648.766127] should_failslab+0x5/0x20 [ 2648.766818] kmem_cache_alloc+0x5b/0x310 [ 2648.767558] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2648.768646] create_object.isra.0+0x3a/0xa20 [ 2648.769431] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2648.770354] kmem_cache_alloc_trace+0x151/0x320 [ 2648.771196] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2648.772162] io_uring_setup+0x14f6/0x2980 [ 2648.772914] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2648.773829] ? wait_for_completion_io+0x270/0x270 [ 2648.774719] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2648.775648] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2648.776589] do_syscall_64+0x33/0x40 [ 2648.777246] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2648.778172] RIP: 0033:0x7f900b55eb19 [ 2648.778830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2648.782159] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2648.783515] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2648.784778] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2648.786056] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2648.787339] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2648.788613] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2648.789919] CPU: 1 PID: 11633 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2648.791544] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2648.793181] Call Trace: [ 2648.793802] dump_stack+0x107/0x167 [ 2648.794570] should_fail.cold+0x5/0xa [ 2648.795418] ? create_object.isra.0+0x3a/0xa20 [ 2648.796488] should_failslab+0x5/0x20 [ 2648.797213] kmem_cache_alloc+0x5b/0x310 [ 2648.797977] create_object.isra.0+0x3a/0xa20 [ 2648.798822] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2648.799802] kmem_cache_alloc+0x159/0x310 [ 2648.800589] __alloc_file+0x21/0x320 [ 2648.801302] alloc_empty_file+0x6d/0x170 [ 2648.802090] alloc_file+0x5e/0x5a0 [ 2648.802936] alloc_file_pseudo+0x16a/0x250 [ 2648.803877] ? alloc_file+0x5a0/0x5a0 [ 2648.804848] anon_inode_getfile+0xc8/0x1f0 [ 2648.805801] io_uring_setup+0x138b/0x2980 [ 2648.806614] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2648.807791] ? wait_for_completion_io+0x270/0x270 [ 2648.808884] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2648.810048] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2648.811186] do_syscall_64+0x33/0x40 [ 2648.811941] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2648.812940] RIP: 0033:0x7f6839abdb19 [ 2648.813643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2648.817101] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2648.818722] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2648.820378] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2648.821933] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2648.823319] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2648.824884] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2648.852690] FAULT_INJECTION: forcing a failure. [ 2648.852690] name failslab, interval 1, probability 0, space 0, times 0 [ 2648.854901] CPU: 0 PID: 11632 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2648.856126] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2648.857562] Call Trace: [ 2648.858014] dump_stack+0x107/0x167 [ 2648.858642] should_fail.cold+0x5/0xa [ 2648.859292] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 2648.860184] should_failslab+0x5/0x20 [ 2648.860834] kmem_cache_alloc_trace+0x55/0x320 [ 2648.861629] io_uring_alloc_task_context+0x4a3/0x6a0 [ 2648.862523] ? io_import_iovec+0x1120/0x1120 [ 2648.863271] ? lock_downgrade+0x6d0/0x6d0 [ 2648.863961] ? do_raw_spin_lock+0x121/0x260 [ 2648.864683] ? rwlock_bug.part.0+0x90/0x90 [ 2648.865409] __io_uring_add_tctx_node+0x2c6/0x520 [ 2648.866235] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2648.867113] ? alloc_fd+0x2e7/0x670 [ 2648.867724] io_uring_setup+0x1fbb/0x2980 [ 2648.868418] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2648.869247] ? wait_for_completion_io+0x270/0x270 [ 2648.870071] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2648.870942] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2648.871826] do_syscall_64+0x33/0x40 [ 2648.872459] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2648.873317] RIP: 0033:0x7f28100dfb19 [ 2648.873945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2648.876992] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2648.878268] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2648.879429] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2648.880615] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2648.881803] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2648.882970] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:02:12 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0xc}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:02:12 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 25) 09:02:12 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0xb00, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:02:12 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 17) 09:02:12 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x36}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:02:12 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2005, 0xf, 0x13, r0, 0x8000000) 09:02:12 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 32) 09:02:12 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2663.794382] FAULT_INJECTION: forcing a failure. [ 2663.794382] name failslab, interval 1, probability 0, space 0, times 0 [ 2663.797095] FAULT_INJECTION: forcing a failure. [ 2663.797095] name failslab, interval 1, probability 0, space 0, times 0 [ 2663.797616] CPU: 0 PID: 11652 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2663.801254] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2663.803624] Call Trace: [ 2663.804329] dump_stack+0x107/0x167 [ 2663.805285] should_fail.cold+0x5/0xa [ 2663.806312] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 2663.807730] should_failslab+0x5/0x20 [ 2663.808731] kmem_cache_alloc_trace+0x55/0x320 [ 2663.810040] io_uring_alloc_task_context+0x4a3/0x6a0 [ 2663.811379] ? io_import_iovec+0x1120/0x1120 [ 2663.812529] ? lock_downgrade+0x6d0/0x6d0 [ 2663.813590] ? do_raw_spin_lock+0x121/0x260 [ 2663.814702] ? rwlock_bug.part.0+0x90/0x90 [ 2663.815794] __io_uring_add_tctx_node+0x2c6/0x520 [ 2663.816924] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2663.818181] ? alloc_fd+0x2e7/0x670 [ 2663.819118] io_uring_setup+0x1fbb/0x2980 [ 2663.820162] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2663.821366] ? wait_for_completion_io+0x270/0x270 [ 2663.822580] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2663.823813] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2663.825208] do_syscall_64+0x33/0x40 [ 2663.826216] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2663.827602] RIP: 0033:0x7f28100dfb19 [ 2663.828630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2663.833602] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2663.835669] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2663.837593] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2663.839528] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2663.841448] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2663.843387] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2663.845361] CPU: 1 PID: 11654 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2663.846603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2663.848017] Call Trace: [ 2663.848465] dump_stack+0x107/0x167 [ 2663.849084] should_fail.cold+0x5/0xa [ 2663.849727] ? create_object.isra.0+0x3a/0xa20 [ 2663.850499] should_failslab+0x5/0x20 [ 2663.851152] kmem_cache_alloc+0x5b/0x310 [ 2663.851840] create_object.isra.0+0x3a/0xa20 [ 2663.852579] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2663.853437] kmem_cache_alloc+0x159/0x310 [ 2663.854137] __alloc_file+0x21/0x320 [ 2663.854783] alloc_empty_file+0x6d/0x170 [ 2663.855468] alloc_file+0x5e/0x5a0 [ 2663.856077] alloc_file_pseudo+0x16a/0x250 [ 2663.856789] ? alloc_file+0x5a0/0x5a0 [ 2663.857436] anon_inode_getfile+0xc8/0x1f0 [ 2663.858154] io_uring_setup+0x138b/0x2980 [ 2663.858873] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2663.859729] ? wait_for_completion_io+0x270/0x270 [ 2663.860571] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2663.861448] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2663.862306] do_syscall_64+0x33/0x40 [ 2663.862936] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2663.863790] RIP: 0033:0x7f6839abdb19 [ 2663.864410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2663.867581] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2663.868859] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2663.870068] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2663.871359] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2663.872561] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2663.873754] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:02:12 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2006, 0xf, 0x13, r0, 0x8000000) 09:02:12 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x10}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2663.927901] FAULT_INJECTION: forcing a failure. [ 2663.927901] name failslab, interval 1, probability 0, space 0, times 0 [ 2663.930008] CPU: 1 PID: 11643 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2663.931298] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2663.932826] Call Trace: [ 2663.933361] dump_stack+0x107/0x167 [ 2663.933996] should_fail.cold+0x5/0xa [ 2663.934664] ? create_object.isra.0+0x3a/0xa20 [ 2663.935450] should_failslab+0x5/0x20 [ 2663.936106] kmem_cache_alloc+0x5b/0x310 [ 2663.936823] create_object.isra.0+0x3a/0xa20 [ 2663.937586] kmemleak_alloc_percpu+0xa0/0x100 [ 2663.938370] pcpu_alloc+0x4e2/0x1240 [ 2663.939059] ? io_async_queue_proc+0x80/0x80 [ 2663.939818] percpu_ref_init+0x31/0x3d0 [ 2663.940509] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2663.941443] io_uring_setup+0x14f6/0x2980 [ 2663.942177] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2663.943061] ? wait_for_completion_io+0x270/0x270 [ 2663.943942] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2663.944850] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2663.945748] do_syscall_64+0x33/0x40 [ 2663.946389] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2663.947297] RIP: 0033:0x7f900b55eb19 [ 2663.947951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2663.951525] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2663.952875] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2663.954055] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2663.955129] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2663.956277] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2663.957327] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:02:12 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x3c}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2663.995976] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted 09:02:12 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 26) 09:02:12 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0xba2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:02:12 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 33) [ 2664.101760] FAULT_INJECTION: forcing a failure. [ 2664.101760] name failslab, interval 1, probability 0, space 0, times 0 [ 2664.103215] CPU: 0 PID: 11672 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2664.104026] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2664.105005] Call Trace: [ 2664.105324] dump_stack+0x107/0x167 [ 2664.105752] should_fail.cold+0x5/0xa [ 2664.106204] ? create_object.isra.0+0x3a/0xa20 [ 2664.106753] should_failslab+0x5/0x20 [ 2664.107199] kmem_cache_alloc+0x5b/0x310 [ 2664.107674] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 2664.108316] create_object.isra.0+0x3a/0xa20 [ 2664.108830] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2664.109429] kmem_cache_alloc+0x159/0x310 [ 2664.109920] security_file_alloc+0x34/0x170 [ 2664.110426] __alloc_file+0xb7/0x320 [ 2664.110879] alloc_empty_file+0x6d/0x170 [ 2664.111357] alloc_file+0x5e/0x5a0 [ 2664.111768] alloc_file_pseudo+0x16a/0x250 [ 2664.112263] ? alloc_file+0x5a0/0x5a0 [ 2664.112717] anon_inode_getfile+0xc8/0x1f0 [ 2664.113214] io_uring_setup+0x138b/0x2980 [ 2664.113703] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2664.114294] ? wait_for_completion_io+0x270/0x270 [ 2664.114888] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2664.115501] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2664.116106] do_syscall_64+0x33/0x40 [ 2664.116549] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2664.117148] RIP: 0033:0x7f6839abdb19 [ 2664.117583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2664.119753] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2664.120645] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2664.121483] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2664.122321] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2664.123168] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2664.124005] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2664.129792] FAULT_INJECTION: forcing a failure. [ 2664.129792] name failslab, interval 1, probability 0, space 0, times 0 [ 2664.131569] CPU: 1 PID: 11675 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2664.132660] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2664.133866] Call Trace: [ 2664.134252] dump_stack+0x107/0x167 [ 2664.134786] should_fail.cold+0x5/0xa [ 2664.135340] ? create_object.isra.0+0x3a/0xa20 [ 2664.135997] should_failslab+0x5/0x20 [ 2664.136558] kmem_cache_alloc+0x5b/0x310 [ 2664.137210] create_object.isra.0+0x3a/0xa20 [ 2664.137873] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2664.138621] kmem_cache_alloc_trace+0x151/0x320 [ 2664.139295] io_uring_alloc_task_context+0x4a3/0x6a0 [ 2664.140022] ? io_import_iovec+0x1120/0x1120 [ 2664.140653] ? lock_downgrade+0x6d0/0x6d0 [ 2664.141282] ? do_raw_spin_lock+0x121/0x260 [ 2664.141963] ? rwlock_bug.part.0+0x90/0x90 [ 2664.142578] __io_uring_add_tctx_node+0x2c6/0x520 [ 2664.143268] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2664.144015] ? alloc_fd+0x2e7/0x670 [ 2664.144546] io_uring_setup+0x1fbb/0x2980 [ 2664.145145] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2664.145897] ? wait_for_completion_io+0x270/0x270 [ 2664.146688] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2664.147429] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2664.148154] do_syscall_64+0x33/0x40 [ 2664.148679] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2664.149408] RIP: 0033:0x7f28100dfb19 [ 2664.149957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2664.152626] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2664.153704] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2664.154722] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2664.155727] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2664.156731] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2664.157731] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:02:26 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 34) 09:02:26 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0xca2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:02:26 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x42}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:02:26 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 18) 09:02:26 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x12}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:02:26 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2007, 0xf, 0x13, r0, 0x8000000) 09:02:26 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 27) 09:02:27 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2678.129509] FAULT_INJECTION: forcing a failure. [ 2678.129509] name failslab, interval 1, probability 0, space 0, times 0 [ 2678.132392] CPU: 0 PID: 11688 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2678.134038] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2678.136041] Call Trace: [ 2678.136686] dump_stack+0x107/0x167 [ 2678.137598] should_fail.cold+0x5/0xa [ 2678.138527] ? io_uring_alloc_task_context+0x99/0x6a0 [ 2678.139786] should_failslab+0x5/0x20 [ 2678.140630] kmem_cache_alloc_trace+0x55/0x320 [ 2678.141759] io_uring_alloc_task_context+0x99/0x6a0 [ 2678.142876] ? io_import_iovec+0x1120/0x1120 [ 2678.143926] ? lock_downgrade+0x6d0/0x6d0 [ 2678.144908] ? do_raw_spin_lock+0x121/0x260 [ 2678.145982] ? rwlock_bug.part.0+0x90/0x90 [ 2678.146982] __io_uring_add_tctx_node+0x2c6/0x520 [ 2678.148065] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2678.149235] ? alloc_fd+0x2e7/0x670 [ 2678.150093] io_uring_setup+0x1fbb/0x2980 [ 2678.151047] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2678.152217] ? wait_for_completion_io+0x270/0x270 [ 2678.153331] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2678.154601] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2678.155839] do_syscall_64+0x33/0x40 [ 2678.156701] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2678.157853] RIP: 0033:0x7f6839abdb19 [ 2678.158696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2678.162913] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2678.164684] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2678.166294] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2678.167933] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2678.169535] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2678.171159] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2678.211425] FAULT_INJECTION: forcing a failure. [ 2678.211425] name failslab, interval 1, probability 0, space 0, times 0 [ 2678.212756] CPU: 1 PID: 11690 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2678.213517] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2678.214411] Call Trace: [ 2678.214696] dump_stack+0x107/0x167 [ 2678.215104] should_fail.cold+0x5/0xa [ 2678.215514] ? percpu_ref_init+0xd8/0x3d0 [ 2678.215965] should_failslab+0x5/0x20 [ 2678.216378] kmem_cache_alloc_trace+0x55/0x320 [ 2678.216893] ? io_async_queue_proc+0x80/0x80 [ 2678.217397] percpu_ref_init+0xd8/0x3d0 [ 2678.217823] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2678.218430] io_uring_setup+0x14f6/0x2980 [ 2678.218874] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2678.219466] ? wait_for_completion_io+0x270/0x270 [ 2678.220000] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2678.220596] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2678.221160] do_syscall_64+0x33/0x40 [ 2678.221573] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2678.222130] RIP: 0033:0x7f900b55eb19 [ 2678.222563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2678.224676] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2678.225536] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2678.226307] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2678.227082] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2678.227843] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2678.228604] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:02:27 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0xda2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2678.245028] FAULT_INJECTION: forcing a failure. [ 2678.245028] name failslab, interval 1, probability 0, space 0, times 0 [ 2678.247973] CPU: 0 PID: 11699 Comm: syz-executor.4 Not tainted 5.10.234 #1 09:02:27 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x18}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2678.249518] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2678.251693] Call Trace: [ 2678.252296] dump_stack+0x107/0x167 [ 2678.253114] should_fail.cold+0x5/0xa [ 2678.253965] ? create_object.isra.0+0x3a/0xa20 [ 2678.255016] should_failslab+0x5/0x20 [ 2678.256038] kmem_cache_alloc+0x5b/0x310 09:02:27 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2f00, 0xf, 0x13, r0, 0x8000000) [ 2678.257118] create_object.isra.0+0x3a/0xa20 [ 2678.258325] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2678.259662] __kmalloc+0x16e/0x390 [ 2678.260613] io_wq_create+0xeb/0xc00 [ 2678.261592] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2678.262897] ? io_import_iovec+0x1120/0x1120 [ 2678.264071] ? io_apoll_task_func+0x2d0/0x2d0 [ 2678.265220] ? __io_req_find_next+0x300/0x300 [ 2678.266367] ? do_raw_spin_lock+0x121/0x260 [ 2678.267419] ? rwlock_bug.part.0+0x90/0x90 [ 2678.268370] __io_uring_add_tctx_node+0x2c6/0x520 [ 2678.269441] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2678.270609] ? alloc_fd+0x2e7/0x670 [ 2678.271460] io_uring_setup+0x1fbb/0x2980 [ 2678.272397] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2678.273525] ? wait_for_completion_io+0x270/0x270 [ 2678.274624] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2678.275806] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2678.276984] do_syscall_64+0x33/0x40 [ 2678.277813] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2678.278967] RIP: 0033:0x7f28100dfb19 [ 2678.279807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2678.283680] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2678.285303] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2678.286759] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2678.288261] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2678.289717] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2678.291207] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:02:27 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 35) 09:02:27 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 28) 09:02:27 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 19) 09:02:27 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x60}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:02:27 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0xea2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2678.478894] FAULT_INJECTION: forcing a failure. [ 2678.478894] name failslab, interval 1, probability 0, space 0, times 0 [ 2678.481276] CPU: 0 PID: 11712 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2678.482707] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2678.484446] Call Trace: [ 2678.485004] dump_stack+0x107/0x167 [ 2678.485744] should_fail.cold+0x5/0xa [ 2678.486538] ? create_object.isra.0+0x3a/0xa20 [ 2678.487541] should_failslab+0x5/0x20 [ 2678.488345] kmem_cache_alloc+0x5b/0x310 [ 2678.489197] create_object.isra.0+0x3a/0xa20 [ 2678.490095] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2678.491173] __kmalloc+0x16e/0x390 [ 2678.491905] io_wq_create+0xeb/0xc00 [ 2678.492690] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2678.493773] ? io_import_iovec+0x1120/0x1120 [ 2678.494750] ? io_apoll_task_func+0x2d0/0x2d0 [ 2678.495895] ? __io_req_find_next+0x300/0x300 [ 2678.496844] ? do_raw_spin_lock+0x121/0x260 [ 2678.497936] ? rwlock_bug.part.0+0x90/0x90 [ 2678.498914] __io_uring_add_tctx_node+0x2c6/0x520 [ 2678.500172] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2678.501282] ? alloc_fd+0x2e7/0x670 [ 2678.502071] io_uring_setup+0x1fbb/0x2980 [ 2678.502933] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2678.504000] ? wait_for_completion_io+0x270/0x270 [ 2678.505026] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2678.506109] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2678.507184] do_syscall_64+0x33/0x40 [ 2678.507951] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2678.509011] RIP: 0033:0x7f28100dfb19 [ 2678.509780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2678.513565] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2678.515168] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2678.516634] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2678.518100] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2678.519629] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2678.521098] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2678.549122] FAULT_INJECTION: forcing a failure. [ 2678.549122] name failslab, interval 1, probability 0, space 0, times 0 [ 2678.551689] CPU: 1 PID: 11718 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2678.553147] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2678.554912] Call Trace: [ 2678.555579] dump_stack+0x107/0x167 [ 2678.556490] should_fail.cold+0x5/0xa [ 2678.557436] ? create_object.isra.0+0x3a/0xa20 [ 2678.558577] should_failslab+0x5/0x20 [ 2678.559538] kmem_cache_alloc+0x5b/0x310 [ 2678.560550] create_object.isra.0+0x3a/0xa20 [ 2678.561639] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2678.562897] kmem_cache_alloc_trace+0x151/0x320 [ 2678.564070] io_uring_alloc_task_context+0x99/0x6a0 [ 2678.565306] ? io_import_iovec+0x1120/0x1120 [ 2678.566398] ? lock_downgrade+0x6d0/0x6d0 [ 2678.567436] ? do_raw_spin_lock+0x121/0x260 [ 2678.568502] ? rwlock_bug.part.0+0x90/0x90 [ 2678.569553] __io_uring_add_tctx_node+0x2c6/0x520 [ 2678.570228] FAULT_INJECTION: forcing a failure. [ 2678.570228] name failslab, interval 1, probability 0, space 0, times 0 [ 2678.570756] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2678.570776] ? alloc_fd+0x2e7/0x670 [ 2678.570813] io_uring_setup+0x1fbb/0x2980 [ 2678.576850] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2678.578111] ? wait_for_completion_io+0x270/0x270 [ 2678.579350] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2678.580651] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2678.581950] do_syscall_64+0x33/0x40 [ 2678.582879] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2678.584176] RIP: 0033:0x7f6839abdb19 [ 2678.585105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2678.589702] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2678.591613] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2678.593389] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2678.595169] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2678.596948] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2678.598717] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2678.600852] CPU: 0 PID: 11721 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2678.602824] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2678.604968] Call Trace: [ 2678.605607] dump_stack+0x107/0x167 [ 2678.606488] should_fail.cold+0x5/0xa [ 2678.607415] ? percpu_ref_init+0xd8/0x3d0 [ 2678.608425] should_failslab+0x5/0x20 [ 2678.609344] kmem_cache_alloc_trace+0x55/0x320 [ 2678.610446] ? io_async_queue_proc+0x80/0x80 [ 2678.611518] percpu_ref_init+0xd8/0x3d0 [ 2678.612486] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2678.613790] io_uring_setup+0x14f6/0x2980 [ 2678.614798] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2678.616026] ? wait_for_completion_io+0x270/0x270 [ 2678.617215] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2678.618478] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2678.619731] do_syscall_64+0x33/0x40 [ 2678.620625] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2678.621946] RIP: 0033:0x7f900b55eb19 [ 2678.622903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2678.627681] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2678.629631] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2678.631471] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2678.633301] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2678.635130] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2678.636948] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:02:46 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 29) [ 2698.017496] FAULT_INJECTION: forcing a failure. [ 2698.017496] name failslab, interval 1, probability 0, space 0, times 0 [ 2698.020373] CPU: 1 PID: 11728 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2698.021876] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2698.023839] Call Trace: [ 2698.024433] dump_stack+0x107/0x167 [ 2698.025237] should_fail.cold+0x5/0xa [ 2698.026082] ? create_object.isra.0+0x3a/0xa20 [ 2698.027089] should_failslab+0x5/0x20 [ 2698.027945] kmem_cache_alloc+0x5b/0x310 [ 2698.028862] create_object.isra.0+0x3a/0xa20 [ 2698.029831] kmemleak_alloc_percpu+0xa0/0x100 [ 2698.030822] pcpu_alloc+0x4e2/0x1240 [ 2698.031679] __percpu_counter_init+0x10d/0x2d0 [ 2698.032686] io_uring_alloc_task_context+0xcc/0x6a0 [ 2698.033794] ? io_import_iovec+0x1120/0x1120 [ 2698.034766] ? lock_downgrade+0x6d0/0x6d0 [ 2698.035692] ? do_raw_spin_lock+0x121/0x260 [ 2698.036931] ? rwlock_bug.part.0+0x90/0x90 [ 2698.037904] __io_uring_add_tctx_node+0x2c6/0x520 09:02:46 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x1e}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:02:46 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 20) 09:02:46 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0xfa2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:02:46 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0xa840, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) ioctl$sock_bt_hci(r2, 0x800448d3, &(0x7f0000000600)="4106ab6227375e3cac8609356d2495c060e26244e83c8aa1c93a38250d2d853407297936d6e9e547302c39a17d8f0d3b721f1a98565d4ffbc87de313eba0f820e5a8e6eb628d98b9ad6ffbe1f7fa674b2f1237adb1ed347f3c380141d58eae54879ba4ef2a6f1411b350a27ce655ebd703a808045dcf9adf137b85ea559902e0b061c71010") syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:02:46 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x100000, 0xf, 0x13, r0, 0x8000000) 09:02:46 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x91}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2698.038969] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2698.040285] ? alloc_fd+0x2e7/0x670 [ 2698.041196] io_uring_setup+0x1fbb/0x2980 [ 2698.042138] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2698.043280] ? wait_for_completion_io+0x270/0x270 [ 2698.044445] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2698.045643] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2698.046803] do_syscall_64+0x33/0x40 [ 2698.047644] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2698.048834] RIP: 0033:0x7f6839abdb19 [ 2698.049686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2698.053795] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2698.055542] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2698.057175] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2698.058777] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2698.060413] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2698.062227] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2698.107133] FAULT_INJECTION: forcing a failure. [ 2698.107133] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2698.110294] CPU: 1 PID: 11732 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2698.112140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2698.114347] Call Trace: [ 2698.115098] dump_stack+0x107/0x167 [ 2698.116119] should_fail.cold+0x5/0xa [ 2698.117142] _copy_to_user+0x2e/0x180 [ 2698.118166] io_uring_setup+0x11b5/0x2980 [ 2698.119391] ? __do_sys_io_uring_enter+0x1890/0x1890 09:02:47 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 36) [ 2698.120896] ? wait_for_completion_io+0x270/0x270 [ 2698.122625] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2698.124172] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2698.125658] do_syscall_64+0x33/0x40 [ 2698.126732] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2698.128250] RIP: 0033:0x7f900b55eb19 [ 2698.129238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2698.134156] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2698.136208] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2698.138109] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2698.139977] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2698.141831] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2698.143695] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2698.174693] FAULT_INJECTION: forcing a failure. [ 2698.174693] name failslab, interval 1, probability 0, space 0, times 0 [ 2698.177399] CPU: 1 PID: 11742 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2698.179057] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2698.181427] Call Trace: [ 2698.182032] dump_stack+0x107/0x167 [ 2698.183039] should_fail.cold+0x5/0xa [ 2698.183927] ? create_object.isra.0+0x3a/0xa20 [ 2698.184959] should_failslab+0x5/0x20 [ 2698.185816] kmem_cache_alloc+0x5b/0x310 [ 2698.186724] ? io_wq_create+0x114/0xc00 [ 2698.187644] create_object.isra.0+0x3a/0xa20 [ 2698.188717] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2698.189922] kmem_cache_alloc_node_trace+0x16d/0x340 [ 2698.191347] io_wq_create+0x6ef/0xc00 [ 2698.192273] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2698.193468] ? io_import_iovec+0x1120/0x1120 [ 2698.194714] ? io_apoll_task_func+0x2d0/0x2d0 [ 2698.195747] ? __io_req_find_next+0x300/0x300 [ 2698.197011] ? do_raw_spin_lock+0x121/0x260 [ 2698.198114] ? rwlock_bug.part.0+0x90/0x90 [ 2698.199209] __io_uring_add_tctx_node+0x2c6/0x520 [ 2698.200541] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2698.201811] ? alloc_fd+0x2e7/0x670 [ 2698.202853] io_uring_setup+0x1fbb/0x2980 [ 2698.203819] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2698.205050] ? wait_for_completion_io+0x270/0x270 [ 2698.206215] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2698.207445] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2698.208887] do_syscall_64+0x33/0x40 [ 2698.209749] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2698.211172] RIP: 0033:0x7f28100dfb19 [ 2698.212104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2698.216560] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2698.218566] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2698.220208] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2698.221875] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2698.223513] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2698.225441] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:02:47 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x24}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:02:47 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 30) 09:02:47 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x7fffdf001000, 0xf, 0x13, r0, 0x8000000) 09:02:47 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x1020, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2698.362909] FAULT_INJECTION: forcing a failure. [ 2698.362909] name failslab, interval 1, probability 0, space 0, times 0 [ 2698.365787] CPU: 1 PID: 11750 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2698.367390] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2698.369316] Call Trace: [ 2698.369916] dump_stack+0x107/0x167 [ 2698.370758] should_fail.cold+0x5/0xa [ 2698.371633] ? create_object.isra.0+0x3a/0xa20 [ 2698.372700] should_failslab+0x5/0x20 [ 2698.373578] kmem_cache_alloc+0x5b/0x310 [ 2698.374516] create_object.isra.0+0x3a/0xa20 [ 2698.375537] kmemleak_alloc_percpu+0xa0/0x100 [ 2698.376583] pcpu_alloc+0x4e2/0x1240 [ 2698.377459] __percpu_counter_init+0x10d/0x2d0 [ 2698.378515] io_uring_alloc_task_context+0xcc/0x6a0 [ 2698.379662] ? io_import_iovec+0x1120/0x1120 [ 2698.380672] ? lock_downgrade+0x6d0/0x6d0 [ 2698.381624] ? do_raw_spin_lock+0x121/0x260 [ 2698.382587] ? rwlock_bug.part.0+0x90/0x90 [ 2698.383570] __io_uring_add_tctx_node+0x2c6/0x520 [ 2698.384665] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2698.385870] ? alloc_fd+0x2e7/0x670 [ 2698.386703] io_uring_setup+0x1fbb/0x2980 [ 2698.387665] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2698.388818] ? wait_for_completion_io+0x270/0x270 09:02:47 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x7ffffffff000, 0xf, 0x13, r0, 0x8000000) [ 2698.389958] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2698.391384] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2698.392590] do_syscall_64+0x33/0x40 [ 2698.393447] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2698.394628] RIP: 0033:0x7f6839abdb19 [ 2698.395474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2698.399718] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2698.401464] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2698.403105] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2698.404755] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2698.406397] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2698.408028] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:02:47 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4, 0x13, r0, 0x8000000) 09:02:47 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 21) 09:02:47 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 37) 09:02:47 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x2f2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:02:47 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x2a}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2698.527906] FAULT_INJECTION: forcing a failure. [ 2698.527906] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2698.529608] CPU: 0 PID: 11765 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2698.530612] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2698.531822] Call Trace: [ 2698.532215] dump_stack+0x107/0x167 [ 2698.532730] should_fail.cold+0x5/0xa [ 2698.533287] _copy_to_user+0x2e/0x180 [ 2698.533828] io_uring_setup+0x11b5/0x2980 [ 2698.534424] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2698.535139] ? wait_for_completion_io+0x270/0x270 [ 2698.535862] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 09:02:47 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x30}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2698.536616] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2698.537460] do_syscall_64+0x33/0x40 [ 2698.537998] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2698.538719] RIP: 0033:0x7f900b55eb19 [ 2698.539255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2698.541911] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2698.542995] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2698.544020] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2698.545020] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2698.546039] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2698.547045] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2698.554056] FAULT_INJECTION: forcing a failure. [ 2698.554056] name failslab, interval 1, probability 0, space 0, times 0 [ 2698.555659] CPU: 0 PID: 11769 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2698.556662] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2698.557814] Call Trace: [ 2698.558180] dump_stack+0x107/0x167 [ 2698.558690] should_fail.cold+0x5/0xa [ 2698.559229] ? create_object.isra.0+0x3a/0xa20 [ 2698.559888] should_failslab+0x5/0x20 [ 2698.560412] kmem_cache_alloc+0x5b/0x310 [ 2698.560991] ? io_wq_create+0x114/0xc00 [ 2698.561552] create_object.isra.0+0x3a/0xa20 [ 2698.562155] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2698.562878] kmem_cache_alloc_node_trace+0x16d/0x340 [ 2698.563594] io_wq_create+0x6ef/0xc00 [ 2698.564147] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2698.564850] ? io_import_iovec+0x1120/0x1120 [ 2698.565481] ? io_apoll_task_func+0x2d0/0x2d0 [ 2698.566099] ? __io_req_find_next+0x300/0x300 [ 2698.566732] ? do_raw_spin_lock+0x121/0x260 [ 2698.567343] ? rwlock_bug.part.0+0x90/0x90 [ 2698.567957] __io_uring_add_tctx_node+0x2c6/0x520 [ 2698.568758] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2698.569518] ? alloc_fd+0x2e7/0x670 [ 2698.570070] io_uring_setup+0x1fbb/0x2980 [ 2698.570684] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2698.571446] ? wait_for_completion_io+0x270/0x270 [ 2698.572192] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2698.572975] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2698.573733] do_syscall_64+0x33/0x40 [ 2698.574253] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2698.574991] RIP: 0033:0x7f28100dfb19 [ 2698.575542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2698.578265] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2698.579407] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2698.580483] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2698.581555] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2698.582614] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2698.583671] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:02:47 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x10a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:03:04 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x2000000) 09:03:04 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 31) [ 2715.173205] FAULT_INJECTION: forcing a failure. [ 2715.173205] name failslab, interval 1, probability 0, space 0, times 0 [ 2715.175685] CPU: 1 PID: 11782 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2715.177146] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2715.178884] Call Trace: [ 2715.179436] dump_stack+0x107/0x167 [ 2715.180208] should_fail.cold+0x5/0xa [ 2715.181022] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 2715.182112] should_failslab+0x5/0x20 [ 2715.182905] kmem_cache_alloc_trace+0x55/0x320 [ 2715.183865] io_uring_alloc_task_context+0x4a3/0x6a0 [ 2715.184939] ? io_import_iovec+0x1120/0x1120 [ 2715.185856] ? lock_downgrade+0x6d0/0x6d0 [ 2715.186722] ? do_raw_spin_lock+0x121/0x260 [ 2715.187624] ? rwlock_bug.part.0+0x90/0x90 [ 2715.188527] __io_uring_add_tctx_node+0x2c6/0x520 [ 2715.189530] ? io_uring_alloc_task_context+0x6a0/0x6a0 09:03:04 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x300}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:03:04 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 22) 09:03:04 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 38) 09:03:04 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x36}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:03:04 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) open(&(0x7f0000000180)='./file0\x00', 0x10000, 0x40) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2715.190624] ? alloc_fd+0x2e7/0x670 [ 2715.191613] io_uring_setup+0x1fbb/0x2980 [ 2715.192506] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2715.193566] ? wait_for_completion_io+0x270/0x270 [ 2715.194604] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2715.195935] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2715.197118] do_syscall_64+0x33/0x40 [ 2715.198044] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2715.199246] RIP: 0033:0x7f6839abdb19 [ 2715.200071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2715.204349] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2715.206110] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2715.207753] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2715.209386] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2715.211093] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2715.212785] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:03:04 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x11a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2715.235829] FAULT_INJECTION: forcing a failure. [ 2715.235829] name failslab, interval 1, probability 0, space 0, times 0 [ 2715.237316] CPU: 0 PID: 11791 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2715.238281] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2715.239291] Call Trace: [ 2715.239624] dump_stack+0x107/0x167 [ 2715.240080] should_fail.cold+0x5/0xa [ 2715.240591] ? __io_uring_add_tctx_node+0x15c/0x520 [ 2715.241206] should_failslab+0x5/0x20 [ 2715.241686] kmem_cache_alloc_trace+0x55/0x320 [ 2715.242237] __io_uring_add_tctx_node+0x15c/0x520 [ 2715.242833] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2715.243479] ? alloc_fd+0x2e7/0x670 [ 2715.243923] io_uring_setup+0x1fbb/0x2980 [ 2715.244468] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2715.245103] ? wait_for_completion_io+0x270/0x270 [ 2715.245714] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2715.246366] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2715.247001] do_syscall_64+0x33/0x40 [ 2715.247457] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2715.248122] RIP: 0033:0x7f28100dfb19 [ 2715.248602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2715.250836] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2715.251767] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2715.252653] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2715.253536] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2715.254407] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2715.255287] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2715.310760] FAULT_INJECTION: forcing a failure. [ 2715.310760] name failslab, interval 1, probability 0, space 0, times 0 [ 2715.313265] CPU: 1 PID: 11792 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2715.314698] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2715.316396] Call Trace: [ 2715.316942] dump_stack+0x107/0x167 [ 2715.317705] should_fail.cold+0x5/0xa [ 2715.318500] ? create_object.isra.0+0x3a/0xa20 [ 2715.319441] should_failslab+0x5/0x20 [ 2715.320215] kmem_cache_alloc+0x5b/0x310 [ 2715.321079] create_object.isra.0+0x3a/0xa20 [ 2715.321965] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2715.322999] kmem_cache_alloc+0x159/0x310 [ 2715.323855] __d_alloc+0x2a/0x990 [ 2715.324564] ? find_held_lock+0x2c/0x110 [ 2715.325398] d_alloc_pseudo+0x19/0x70 [ 2715.326180] alloc_file_pseudo+0xce/0x250 [ 2715.327013] ? trace_hardirqs_on+0x5b/0x180 [ 2715.327892] ? alloc_file+0x5a0/0x5a0 [ 2715.328701] anon_inode_getfile+0xc8/0x1f0 [ 2715.329579] io_uring_setup+0x138b/0x2980 [ 2715.330436] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2715.331463] ? wait_for_completion_io+0x270/0x270 09:03:04 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000002) [ 2715.332470] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2715.333706] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2715.334753] do_syscall_64+0x33/0x40 [ 2715.335513] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2715.336577] RIP: 0033:0x7f900b55eb19 [ 2715.337332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2715.341802] RSP: 002b:00007f9008ab3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2715.343790] RAX: ffffffffffffffda RBX: 00007f900b672020 RCX: 00007f900b55eb19 [ 2715.345434] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2715.346919] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2715.348413] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2715.349894] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:03:23 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 23) 09:03:23 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000003) 09:03:23 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x12a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:03:23 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 32) 09:03:23 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4414, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e00000000000000000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000000000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a84000000000000fcffffffffffffff08000000000000000000000000000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee5868cbd58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721234a84652ebf4218b6e0ce32fe10c1fa4d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d6339832bd4c6806617b12ee49a7c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000180)='./file1\x00', &(0x7f0000000080)='./file2\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40086607, &(0x7f0000000080)) r2 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r3, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r2, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r3) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:03:23 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x500}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:03:23 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x3c}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:03:23 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 39) [ 2734.898180] FAULT_INJECTION: forcing a failure. [ 2734.898180] name failslab, interval 1, probability 0, space 0, times 0 [ 2734.901055] CPU: 0 PID: 11823 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2734.902760] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2734.904851] Call Trace: [ 2734.905525] dump_stack+0x107/0x167 [ 2734.906441] should_fail.cold+0x5/0xa [ 2734.907395] ? __alloc_file+0x21/0x320 [ 2734.908371] should_failslab+0x5/0x20 [ 2734.909343] kmem_cache_alloc+0x5b/0x310 [ 2734.910368] __alloc_file+0x21/0x320 [ 2734.911446] alloc_empty_file+0x6d/0x170 [ 2734.912466] alloc_file+0x5e/0x5a0 [ 2734.913464] alloc_file_pseudo+0x16a/0x250 [ 2734.914557] ? alloc_file+0x5a0/0x5a0 [ 2734.915596] anon_inode_getfile+0xc8/0x1f0 [ 2734.916733] io_uring_setup+0x138b/0x2980 [ 2734.917875] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2734.919229] ? wait_for_completion_io+0x270/0x270 [ 2734.920548] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2734.921896] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2734.923188] do_syscall_64+0x33/0x40 [ 2734.924142] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2734.925466] RIP: 0033:0x7f900b55eb19 [ 2734.926412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2734.931032] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2734.932945] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2734.934724] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 09:03:23 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x2080c0, 0xa) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2734.936506] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2734.938518] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2734.940279] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:03:23 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000004) [ 2734.959341] FAULT_INJECTION: forcing a failure. [ 2734.959341] name failslab, interval 1, probability 0, space 0, times 0 [ 2734.961798] CPU: 0 PID: 11827 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2734.963375] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2734.965110] Call Trace: [ 2734.965665] dump_stack+0x107/0x167 [ 2734.966426] should_fail.cold+0x5/0xa [ 2734.967222] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 2734.968340] should_failslab+0x5/0x20 [ 2734.969157] kmem_cache_alloc_trace+0x55/0x320 [ 2734.970136] io_uring_alloc_task_context+0x4a3/0x6a0 [ 2734.971223] ? io_import_iovec+0x1120/0x1120 [ 2734.972283] ? lock_downgrade+0x6d0/0x6d0 [ 2734.973248] ? do_raw_spin_lock+0x121/0x260 [ 2734.974249] ? rwlock_bug.part.0+0x90/0x90 [ 2734.975268] __io_uring_add_tctx_node+0x2c6/0x520 [ 2734.976411] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2734.977642] ? alloc_fd+0x2e7/0x670 [ 2734.978515] io_uring_setup+0x1fbb/0x2980 [ 2734.979560] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2734.980827] ? wait_for_completion_io+0x270/0x270 [ 2734.982059] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2734.983270] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2734.984684] do_syscall_64+0x33/0x40 [ 2734.985585] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2734.986803] RIP: 0033:0x7f6839abdb19 [ 2734.987698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2734.991871] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2734.993695] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2734.995401] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2734.997115] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2734.998920] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2735.000754] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:03:23 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x42}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:03:23 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x13a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2735.066012] FAULT_INJECTION: forcing a failure. [ 2735.066012] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2735.068505] CPU: 0 PID: 11836 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2735.069962] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2735.071701] Call Trace: [ 2735.072274] dump_stack+0x107/0x167 [ 2735.073232] should_fail.cold+0x5/0xa [ 2735.074338] __alloc_pages_nodemask+0x182/0x600 [ 2735.075558] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2735.077200] ? kmem_cache_alloc+0x301/0x310 [ 2735.078345] alloc_pages_current+0x187/0x280 [ 2735.079362] allocate_slab+0x26f/0x380 [ 2735.080215] ___slab_alloc+0x470/0x700 [ 2735.081069] ? create_object.isra.0+0x3a/0xa20 [ 2735.082063] ? fs_reclaim_acquire+0xa5/0x100 [ 2735.083019] ? create_object.isra.0+0x3a/0xa20 [ 2735.084001] ? kmem_cache_alloc+0x301/0x310 [ 2735.084934] kmem_cache_alloc+0x301/0x310 [ 2735.085841] create_object.isra.0+0x3a/0xa20 [ 2735.086806] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2735.087900] kmem_cache_alloc_trace+0x151/0x320 [ 2735.088927] __io_uring_add_tctx_node+0x15c/0x520 [ 2735.089971] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2735.091087] ? alloc_fd+0x2e7/0x670 [ 2735.091882] io_uring_setup+0x1fbb/0x2980 [ 2735.092780] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2735.093890] ? wait_for_completion_io+0x270/0x270 [ 2735.095028] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2735.096155] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2735.097270] do_syscall_64+0x33/0x40 [ 2735.098068] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2735.099160] RIP: 0033:0x7f28100dfb19 [ 2735.099969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2735.103906] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2735.105547] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2735.107037] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2735.108549] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2735.110199] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2735.111866] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:03:24 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000005) 09:03:24 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 33) 09:03:24 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x600}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:03:24 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x60}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:03:24 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 24) 09:03:24 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 40) [ 2735.315922] FAULT_INJECTION: forcing a failure. [ 2735.315922] name failslab, interval 1, probability 0, space 0, times 0 [ 2735.318328] CPU: 1 PID: 11850 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2735.319772] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2735.321588] Call Trace: [ 2735.322179] dump_stack+0x107/0x167 [ 2735.322949] should_fail.cold+0x5/0xa [ 2735.323756] ? io_wq_create+0xeb/0xc00 [ 2735.324753] should_failslab+0x5/0x20 [ 2735.325740] __kmalloc+0x72/0x390 [ 2735.326643] io_wq_create+0xeb/0xc00 [ 2735.327615] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2735.328848] ? io_import_iovec+0x1120/0x1120 [ 2735.329779] ? io_apoll_task_func+0x2d0/0x2d0 [ 2735.330714] ? __io_req_find_next+0x300/0x300 [ 2735.331650] ? do_raw_spin_lock+0x121/0x260 [ 2735.332548] ? rwlock_bug.part.0+0x90/0x90 09:03:24 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x8}, 0x0, 0xfffffffffffffffc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x47}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x10b3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2735.333668] __io_uring_add_tctx_node+0x2c6/0x520 [ 2735.334789] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2735.335870] ? alloc_fd+0x2e7/0x670 [ 2735.336640] io_uring_setup+0x1fbb/0x2980 [ 2735.337517] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2735.338572] ? wait_for_completion_io+0x270/0x270 [ 2735.339644] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2735.340732] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2735.341843] do_syscall_64+0x33/0x40 [ 2735.342631] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2735.343721] RIP: 0033:0x7f6839abdb19 [ 2735.344505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2735.348366] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2735.349968] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2735.351468] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2735.352971] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2735.354450] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2735.355936] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2735.379660] FAULT_INJECTION: forcing a failure. [ 2735.379660] name failslab, interval 1, probability 0, space 0, times 0 [ 2735.380311] FAULT_INJECTION: forcing a failure. [ 2735.380311] name failslab, interval 1, probability 0, space 0, times 0 [ 2735.382014] CPU: 1 PID: 11856 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2735.382027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2735.382033] Call Trace: [ 2735.382055] dump_stack+0x107/0x167 [ 2735.382077] should_fail.cold+0x5/0xa [ 2735.382097] ? create_object.isra.0+0x3a/0xa20 [ 2735.391861] should_failslab+0x5/0x20 [ 2735.392700] kmem_cache_alloc+0x5b/0x310 [ 2735.393617] create_object.isra.0+0x3a/0xa20 [ 2735.394542] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2735.395621] kmem_cache_alloc+0x159/0x310 [ 2735.396523] __alloc_file+0x21/0x320 [ 2735.397349] alloc_empty_file+0x6d/0x170 [ 2735.398259] alloc_file+0x5e/0x5a0 [ 2735.399048] alloc_file_pseudo+0x16a/0x250 [ 2735.399947] ? alloc_file+0x5a0/0x5a0 [ 2735.400774] anon_inode_getfile+0xc8/0x1f0 [ 2735.401688] io_uring_setup+0x138b/0x2980 [ 2735.402572] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2735.403632] ? wait_for_completion_io+0x270/0x270 [ 2735.404702] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2735.405819] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2735.406909] do_syscall_64+0x33/0x40 [ 2735.407724] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2735.408810] RIP: 0033:0x7f900b55eb19 [ 2735.409596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2735.413534] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2735.415127] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2735.416684] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2735.418201] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2735.419700] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2735.421266] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2735.422851] CPU: 0 PID: 11855 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2735.424327] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2735.426078] Call Trace: [ 2735.426633] dump_stack+0x107/0x167 [ 2735.427400] should_fail.cold+0x5/0xa [ 2735.428395] ? xas_alloc+0x336/0x440 [ 2735.429323] should_failslab+0x5/0x20 [ 2735.430250] kmem_cache_alloc+0x5b/0x310 [ 2735.431148] ? stack_trace_consume_entry+0x160/0x160 [ 2735.432246] xas_alloc+0x336/0x440 [ 2735.433041] xas_create+0x34a/0x10d0 [ 2735.433877] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2735.435006] xas_store+0x8c/0x1c40 [ 2735.435796] __xa_store+0x164/0x2d0 [ 2735.436586] ? xa_delete_node+0x280/0x280 [ 2735.437515] ? trace_hardirqs_on+0x5b/0x180 [ 2735.438459] xa_store+0x31/0x50 [ 2735.439188] __io_uring_add_tctx_node+0x1cf/0x520 [ 2735.440206] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2735.441326] ? alloc_fd+0x2e7/0x670 [ 2735.442130] io_uring_setup+0x1fbb/0x2980 [ 2735.443016] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2735.444080] ? wait_for_completion_io+0x270/0x270 [ 2735.445212] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2735.446352] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2735.447439] do_syscall_64+0x33/0x40 [ 2735.448223] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2735.449318] RIP: 0033:0x7f28100dfb19 [ 2735.450101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2735.453991] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2735.455615] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2735.457125] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2735.458626] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2735.460140] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2735.461663] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:03:24 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x700}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:03:40 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0xc00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:03:40 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 41) 09:03:40 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 34) 09:03:40 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x14a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:03:40 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x90}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:03:40 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 25) 09:03:40 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40086607, &(0x7f0000000080)) r2 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = fork() write$cgroup_pid(r0, &(0x7f0000000180)=r3, 0x12) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r2, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:03:40 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000006) 09:03:40 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x91}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2751.331709] FAULT_INJECTION: forcing a failure. [ 2751.331709] name failslab, interval 1, probability 0, space 0, times 0 [ 2751.334493] CPU: 1 PID: 11879 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2751.335152] FAULT_INJECTION: forcing a failure. [ 2751.335152] name failslab, interval 1, probability 0, space 0, times 0 [ 2751.336121] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2751.336130] Call Trace: [ 2751.336156] dump_stack+0x107/0x167 [ 2751.336184] should_fail.cold+0x5/0xa [ 2751.342896] ? create_object.isra.0+0x3a/0xa20 [ 2751.343850] should_failslab+0x5/0x20 [ 2751.344659] kmem_cache_alloc+0x5b/0x310 [ 2751.345516] create_object.isra.0+0x3a/0xa20 [ 2751.346441] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2751.347518] __kmalloc+0x16e/0x390 [ 2751.348279] io_wq_create+0xeb/0xc00 [ 2751.349081] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2751.350164] ? io_import_iovec+0x1120/0x1120 [ 2751.351170] ? io_apoll_task_func+0x2d0/0x2d0 [ 2751.352108] ? __io_req_find_next+0x300/0x300 [ 2751.353054] ? do_raw_spin_lock+0x121/0x260 [ 2751.353981] ? rwlock_bug.part.0+0x90/0x90 [ 2751.354885] __io_uring_add_tctx_node+0x2c6/0x520 [ 2751.355904] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2751.357006] ? alloc_fd+0x2e7/0x670 [ 2751.357783] io_uring_setup+0x1fbb/0x2980 [ 2751.358680] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2751.359772] ? wait_for_completion_io+0x270/0x270 [ 2751.360832] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2751.361990] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2751.363086] do_syscall_64+0x33/0x40 [ 2751.363880] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2751.364967] RIP: 0033:0x7f6839abdb19 [ 2751.365770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2751.369709] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2751.371334] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2751.372849] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2751.375190] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2751.377093] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2751.378912] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2751.380803] CPU: 0 PID: 11882 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2751.382336] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2751.384109] Call Trace: [ 2751.384685] dump_stack+0x107/0x167 [ 2751.385490] should_fail.cold+0x5/0xa [ 2751.386325] ? security_file_alloc+0x34/0x170 [ 2751.387297] should_failslab+0x5/0x20 [ 2751.388119] kmem_cache_alloc+0x5b/0x310 [ 2751.389027] security_file_alloc+0x34/0x170 [ 2751.389970] __alloc_file+0xb7/0x320 [ 2751.390784] alloc_empty_file+0x6d/0x170 [ 2751.391668] alloc_file+0x5e/0x5a0 [ 2751.392440] alloc_file_pseudo+0x16a/0x250 [ 2751.393351] ? alloc_file+0x5a0/0x5a0 [ 2751.394205] anon_inode_getfile+0xc8/0x1f0 [ 2751.395131] io_uring_setup+0x138b/0x2980 [ 2751.396038] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2751.397144] ? wait_for_completion_io+0x270/0x270 [ 2751.398212] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2751.399475] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2751.400817] do_syscall_64+0x33/0x40 [ 2751.401876] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2751.403218] RIP: 0033:0x7f900b55eb19 [ 2751.404235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2751.409238] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2751.411215] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2751.413052] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2751.414904] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2751.416755] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2751.418621] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:03:40 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x1200}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2751.476401] FAULT_INJECTION: forcing a failure. [ 2751.476401] name failslab, interval 1, probability 0, space 0, times 0 [ 2751.478692] CPU: 1 PID: 11870 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2751.480095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2751.481758] Call Trace: [ 2751.482294] dump_stack+0x107/0x167 [ 2751.483026] should_fail.cold+0x5/0xa [ 2751.483794] ? xas_alloc+0x336/0x440 [ 2751.484552] should_failslab+0x5/0x20 [ 2751.485321] kmem_cache_alloc+0x5b/0x310 [ 2751.486292] xas_alloc+0x336/0x440 [ 2751.487028] xas_create+0x34a/0x10d0 [ 2751.487988] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2751.489062] xas_store+0x8c/0x1c40 [ 2751.489980] __xa_store+0x164/0x2d0 [ 2751.490881] ? xa_delete_node+0x280/0x280 [ 2751.491915] ? trace_hardirqs_on+0x5b/0x180 [ 2751.492991] xa_store+0x31/0x50 [ 2751.493832] __io_uring_add_tctx_node+0x1cf/0x520 [ 2751.495029] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2751.496331] ? alloc_fd+0x2e7/0x670 [ 2751.497260] io_uring_setup+0x1fbb/0x2980 [ 2751.498302] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2751.499563] ? wait_for_completion_io+0x270/0x270 [ 2751.500798] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2751.502098] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2751.503381] do_syscall_64+0x33/0x40 [ 2751.504298] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2751.505591] RIP: 0033:0x7f28100dfb19 [ 2751.506511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2751.511199] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2751.513078] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2751.514860] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2751.516591] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2751.518324] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2751.520048] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:03:40 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000007) 09:03:56 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x300}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:03:56 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 26) 09:03:56 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 42) 09:03:56 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000060) 09:03:56 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x15a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:03:56 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 35) 09:03:56 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x1800}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:03:56 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40086607, &(0x7f0000000080)) r4 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x10, 0x3, 0x2c5, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r5, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r4, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x7) syncfs(r5) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:03:56 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000180) [ 2767.315766] FAULT_INJECTION: forcing a failure. [ 2767.315766] name failslab, interval 1, probability 0, space 0, times 0 [ 2767.317090] CPU: 1 PID: 11916 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2767.317864] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2767.318828] Call Trace: [ 2767.319123] dump_stack+0x107/0x167 [ 2767.319536] should_fail.cold+0x5/0xa [ 2767.319970] ? io_wq_create+0x6ef/0xc00 [ 2767.320427] should_failslab+0x5/0x20 [ 2767.320851] kmem_cache_alloc_node_trace+0x59/0x340 [ 2767.321485] io_wq_create+0x6ef/0xc00 [ 2767.321982] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2767.322604] ? io_import_iovec+0x1120/0x1120 [ 2767.323155] ? io_apoll_task_func+0x2d0/0x2d0 [ 2767.323736] ? __io_req_find_next+0x300/0x300 [ 2767.324287] ? do_raw_spin_lock+0x121/0x260 [ 2767.324858] ? rwlock_bug.part.0+0x90/0x90 [ 2767.325426] __io_uring_add_tctx_node+0x2c6/0x520 [ 2767.326063] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2767.326668] ? alloc_fd+0x2e7/0x670 [ 2767.327085] io_uring_setup+0x1fbb/0x2980 [ 2767.327552] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2767.328115] ? wait_for_completion_io+0x270/0x270 [ 2767.328659] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2767.329251] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2767.329833] do_syscall_64+0x33/0x40 [ 2767.330270] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2767.330842] RIP: 0033:0x7f6839abdb19 [ 2767.331266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2767.333639] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2767.334503] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2767.335309] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2767.336108] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2767.336895] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2767.337741] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2767.341241] FAULT_INJECTION: forcing a failure. [ 2767.341241] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2767.342611] CPU: 1 PID: 11921 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2767.343501] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2767.344490] Call Trace: [ 2767.344868] dump_stack+0x107/0x167 [ 2767.345423] should_fail.cold+0x5/0xa [ 2767.346100] __alloc_pages_nodemask+0x182/0x600 [ 2767.346661] ? stack_trace_save+0x8c/0xc0 [ 2767.347116] ? stack_trace_consume_entry+0x160/0x160 [ 2767.347673] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2767.348359] ? kmem_cache_alloc+0x301/0x310 [ 2767.348835] alloc_pages_current+0x187/0x280 [ 2767.349307] allocate_slab+0x26f/0x380 [ 2767.349737] ___slab_alloc+0x470/0x700 [ 2767.350178] ? create_object.isra.0+0x3a/0xa20 [ 2767.350669] ? mark_lock+0xf5/0x2df0 [ 2767.351079] ? __is_insn_slot_addr+0x14c/0x290 [ 2767.351600] ? create_object.isra.0+0x3a/0xa20 [ 2767.352121] ? kmem_cache_alloc+0x301/0x310 [ 2767.352587] ? create_object.isra.0+0x3a/0xa20 [ 2767.353107] kmem_cache_alloc+0x301/0x310 [ 2767.353580] create_object.isra.0+0x3a/0xa20 [ 2767.354074] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2767.354649] kmem_cache_alloc+0x159/0x310 [ 2767.355125] xas_alloc+0x336/0x440 [ 2767.355595] xas_create+0x34a/0x10d0 [ 2767.356134] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2767.356873] xas_store+0x8c/0x1c40 [ 2767.357307] __xa_store+0x164/0x2d0 [ 2767.357766] ? xa_delete_node+0x280/0x280 [ 2767.358244] ? trace_hardirqs_on+0x5b/0x180 [ 2767.358739] xa_store+0x31/0x50 [ 2767.359121] __io_uring_add_tctx_node+0x1cf/0x520 [ 2767.359685] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2767.360283] ? alloc_fd+0x2e7/0x670 [ 2767.360740] io_uring_setup+0x1fbb/0x2980 [ 2767.361222] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2767.361799] ? wait_for_completion_io+0x270/0x270 [ 2767.362367] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2767.362950] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2767.363541] do_syscall_64+0x33/0x40 [ 2767.363963] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2767.364537] RIP: 0033:0x7f28100dfb19 [ 2767.364936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2767.366932] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2767.367924] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2767.368851] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2767.369897] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2767.370715] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2767.371611] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2767.379619] FAULT_INJECTION: forcing a failure. [ 2767.379619] name failslab, interval 1, probability 0, space 0, times 0 [ 2767.380976] CPU: 1 PID: 11922 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2767.381757] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2767.382912] Call Trace: [ 2767.383280] dump_stack+0x107/0x167 [ 2767.383792] should_fail.cold+0x5/0xa [ 2767.384318] ? create_object.isra.0+0x3a/0xa20 [ 2767.384957] should_failslab+0x5/0x20 [ 2767.385493] kmem_cache_alloc+0x5b/0x310 [ 2767.385974] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 2767.386750] create_object.isra.0+0x3a/0xa20 [ 2767.387280] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2767.387849] kmem_cache_alloc+0x159/0x310 [ 2767.388307] security_file_alloc+0x34/0x170 [ 2767.388780] __alloc_file+0xb7/0x320 [ 2767.389196] alloc_empty_file+0x6d/0x170 [ 2767.389671] alloc_file+0x5e/0x5a0 [ 2767.390083] alloc_file_pseudo+0x16a/0x250 [ 2767.390556] ? alloc_file+0x5a0/0x5a0 [ 2767.390999] anon_inode_getfile+0xc8/0x1f0 [ 2767.391468] io_uring_setup+0x138b/0x2980 [ 2767.391940] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2767.392522] ? wait_for_completion_io+0x270/0x270 [ 2767.393079] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 09:03:56 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000300) [ 2767.393671] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2767.394406] do_syscall_64+0x33/0x40 [ 2767.394822] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2767.395397] RIP: 0033:0x7f900b55eb19 [ 2767.395802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2767.397804] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2767.398665] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2767.399463] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2767.400266] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2767.401067] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2767.401861] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:03:56 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 27) [ 2767.451266] FAULT_INJECTION: forcing a failure. [ 2767.451266] name failslab, interval 1, probability 0, space 0, times 0 [ 2767.452603] CPU: 1 PID: 11925 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2767.453397] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2767.454351] Call Trace: [ 2767.454654] dump_stack+0x107/0x167 [ 2767.455083] should_fail.cold+0x5/0xa [ 2767.455520] ? create_object.isra.0+0x3a/0xa20 [ 2767.456047] should_failslab+0x5/0x20 [ 2767.456498] kmem_cache_alloc+0x5b/0x310 [ 2767.456961] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 2767.457593] create_object.isra.0+0x3a/0xa20 [ 2767.458107] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 09:03:56 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x500}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2767.458700] kmem_cache_alloc+0x159/0x310 [ 2767.459317] security_file_alloc+0x34/0x170 [ 2767.459851] __alloc_file+0xb7/0x320 [ 2767.460294] alloc_empty_file+0x6d/0x170 [ 2767.460785] alloc_file+0x5e/0x5a0 [ 2767.461210] alloc_file_pseudo+0x16a/0x250 [ 2767.461709] ? alloc_file+0x5a0/0x5a0 [ 2767.462262] anon_inode_getfile+0xc8/0x1f0 [ 2767.462798] io_uring_setup+0x138b/0x2980 [ 2767.463386] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2767.464090] ? wait_for_completion_io+0x270/0x270 [ 2767.464730] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2767.465350] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2767.466042] do_syscall_64+0x33/0x40 [ 2767.466469] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2767.467159] RIP: 0033:0x7f900b55eb19 [ 2767.467635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2767.469973] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2767.470925] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2767.471913] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2767.472912] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2767.473801] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2767.474630] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:03:56 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x16a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:03:56 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 28) [ 2767.530289] FAULT_INJECTION: forcing a failure. [ 2767.530289] name failslab, interval 1, probability 0, space 0, times 0 [ 2767.531898] CPU: 1 PID: 11932 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2767.532742] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2767.533711] Call Trace: [ 2767.534089] dump_stack+0x107/0x167 [ 2767.534603] should_fail.cold+0x5/0xa [ 2767.535143] ? create_object.isra.0+0x3a/0xa20 [ 2767.535780] should_failslab+0x5/0x20 [ 2767.536306] kmem_cache_alloc+0x5b/0x310 [ 2767.536839] create_object.isra.0+0x3a/0xa20 [ 2767.537420] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2767.538047] kmem_cache_alloc_trace+0x151/0x320 [ 2767.538577] io_uring_alloc_task_context+0x99/0x6a0 [ 2767.539138] ? io_import_iovec+0x1120/0x1120 [ 2767.539653] ? lock_downgrade+0x6d0/0x6d0 [ 2767.540231] ? do_raw_spin_lock+0x121/0x260 [ 2767.540739] ? rwlock_bug.part.0+0x90/0x90 [ 2767.541326] __io_uring_add_tctx_node+0x2c6/0x520 09:03:56 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x1e00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2767.541997] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2767.542868] ? alloc_fd+0x2e7/0x670 [ 2767.543346] io_uring_setup+0x1fbb/0x2980 [ 2767.543909] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2767.544619] ? wait_for_completion_io+0x270/0x270 [ 2767.545304] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2767.546040] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2767.546763] do_syscall_64+0x33/0x40 [ 2767.547279] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2767.547994] RIP: 0033:0x7f900b55eb19 [ 2767.548461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2767.551006] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2767.551920] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2767.552738] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 09:03:56 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 36) [ 2767.553568] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2767.554639] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2767.555673] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:03:56 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 43) 09:03:56 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e00000000000000000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000000000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a84000000000000fcffffffffffffff08000000000000000000000000000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee5868cbd58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721234a84652ebf4218b6e0ce32fe10c1fa4d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d6339832bd4c6806617b12ee49a7c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = socket$inet(0x2, 0x1, 0x0) read(r4, &(0x7f0000000600)=""/158, 0x9e) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r5, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x2aeb, 0x7e44, 0x2, &(0x7f0000000140)={[0xffffffffffffffff]}, 0x8) syncfs(r5) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2767.623730] FAULT_INJECTION: forcing a failure. [ 2767.623730] name failslab, interval 1, probability 0, space 0, times 0 [ 2767.625162] CPU: 1 PID: 11943 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2767.625971] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2767.627148] Call Trace: [ 2767.627503] dump_stack+0x107/0x167 [ 2767.628013] should_fail.cold+0x5/0xa [ 2767.628554] ? io_wq_create+0x6ef/0xc00 [ 2767.629129] should_failslab+0x5/0x20 [ 2767.629661] kmem_cache_alloc_node_trace+0x59/0x340 [ 2767.630325] io_wq_create+0x6ef/0xc00 [ 2767.630802] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2767.631504] ? io_import_iovec+0x1120/0x1120 [ 2767.632030] ? io_apoll_task_func+0x2d0/0x2d0 [ 2767.632536] ? __io_req_find_next+0x300/0x300 [ 2767.633046] ? do_raw_spin_lock+0x121/0x260 [ 2767.633529] ? rwlock_bug.part.0+0x90/0x90 [ 2767.634027] __io_uring_add_tctx_node+0x2c6/0x520 [ 2767.634105] FAULT_INJECTION: forcing a failure. [ 2767.634105] name failslab, interval 1, probability 0, space 0, times 0 [ 2767.634574] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2767.634584] ? alloc_fd+0x2e7/0x670 [ 2767.634609] io_uring_setup+0x1fbb/0x2980 [ 2767.638415] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2767.638996] ? wait_for_completion_io+0x270/0x270 [ 2767.639553] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2767.640138] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2767.640728] do_syscall_64+0x33/0x40 [ 2767.641236] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2767.641963] RIP: 0033:0x7f6839abdb19 [ 2767.642430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2767.644889] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2767.645857] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2767.646804] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2767.647644] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2767.648633] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2767.649614] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2767.650625] CPU: 0 PID: 11944 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2767.652119] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2767.653900] Call Trace: [ 2767.654482] dump_stack+0x107/0x167 [ 2767.655276] should_fail.cold+0x5/0xa [ 2767.656095] ? xas_alloc+0x336/0x440 [ 2767.656892] should_failslab+0x5/0x20 09:03:56 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x600}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2767.657716] kmem_cache_alloc+0x5b/0x310 [ 2767.658743] xas_alloc+0x336/0x440 [ 2767.659508] xas_create+0x34a/0x10d0 [ 2767.660322] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2767.661443] xas_store+0x8c/0x1c40 [ 2767.662268] __xa_store+0x164/0x2d0 [ 2767.663106] ? xa_delete_node+0x280/0x280 [ 2767.664008] ? trace_hardirqs_on+0x5b/0x180 [ 2767.664943] xa_store+0x31/0x50 09:03:56 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000500) [ 2767.665655] __io_uring_add_tctx_node+0x1cf/0x520 [ 2767.666738] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2767.667838] ? alloc_fd+0x2e7/0x670 [ 2767.668614] io_uring_setup+0x1fbb/0x2980 [ 2767.669487] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2767.670560] ? wait_for_completion_io+0x270/0x270 [ 2767.671632] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2767.672756] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2767.673826] do_syscall_64+0x33/0x40 [ 2767.674611] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2767.675680] RIP: 0033:0x7f28100dfb19 [ 2767.676454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2767.680337] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2767.681995] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2767.683503] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2767.685017] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2767.686526] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2767.688048] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:04:13 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 29) 09:04:13 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x17a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:04:13 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 44) 09:04:13 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000600) 09:04:13 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 37) 09:04:13 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) pread64(r3, &(0x7f0000000180)=""/66, 0x42, 0x6) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:04:13 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x700}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:04:13 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x2000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2784.227711] FAULT_INJECTION: forcing a failure. [ 2784.227711] name failslab, interval 1, probability 0, space 0, times 0 [ 2784.229657] CPU: 1 PID: 11966 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2784.230769] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2784.232085] Call Trace: [ 2784.232511] dump_stack+0x107/0x167 [ 2784.233086] should_fail.cold+0x5/0xa [ 2784.233167] FAULT_INJECTION: forcing a failure. [ 2784.233167] name failslab, interval 1, probability 0, space 0, times 0 [ 2784.233693] ? create_object.isra.0+0x3a/0xa20 [ 2784.233712] should_failslab+0x5/0x20 [ 2784.233737] kmem_cache_alloc+0x5b/0x310 [ 2784.238018] create_object.isra.0+0x3a/0xa20 [ 2784.238760] kmemleak_alloc_percpu+0xa0/0x100 [ 2784.239476] pcpu_alloc+0x4e2/0x1240 [ 2784.240080] __percpu_counter_init+0x10d/0x2d0 [ 2784.240818] io_uring_alloc_task_context+0xcc/0x6a0 [ 2784.241631] ? io_import_iovec+0x1120/0x1120 [ 2784.242351] ? lock_downgrade+0x6d0/0x6d0 [ 2784.243015] ? do_raw_spin_lock+0x121/0x260 [ 2784.243698] ? rwlock_bug.part.0+0x90/0x90 [ 2784.244370] __io_uring_add_tctx_node+0x2c6/0x520 [ 2784.245125] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2784.245956] ? alloc_fd+0x2e7/0x670 [ 2784.246538] io_uring_setup+0x1fbb/0x2980 [ 2784.247235] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2784.248036] ? wait_for_completion_io+0x270/0x270 [ 2784.248816] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2784.249641] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2784.250486] do_syscall_64+0x33/0x40 [ 2784.251080] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2784.251890] RIP: 0033:0x7f900b55eb19 [ 2784.252474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2784.255390] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2784.256592] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2784.257715] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2784.258855] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2784.260022] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2784.261135] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2784.262276] CPU: 0 PID: 11974 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2784.263729] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2784.265447] Call Trace: [ 2784.266003] dump_stack+0x107/0x167 [ 2784.266770] should_fail.cold+0x5/0xa [ 2784.267563] ? __io_uring_add_tctx_node+0x15c/0x520 [ 2784.268607] should_failslab+0x5/0x20 [ 2784.269397] kmem_cache_alloc_trace+0x55/0x320 [ 2784.270351] __io_uring_add_tctx_node+0x15c/0x520 [ 2784.271410] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2784.272528] ? alloc_fd+0x2e7/0x670 [ 2784.273296] io_uring_setup+0x1fbb/0x2980 [ 2784.274162] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2784.275230] ? wait_for_completion_io+0x270/0x270 [ 2784.276254] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2784.277341] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2784.278404] do_syscall_64+0x33/0x40 [ 2784.279187] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2784.280248] RIP: 0033:0x7f6839abdb19 [ 2784.281013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2784.284864] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2784.286458] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2784.287946] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2784.289420] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2784.290908] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2784.292386] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2784.299501] FAULT_INJECTION: forcing a failure. [ 2784.299501] name failslab, interval 1, probability 0, space 0, times 0 [ 2784.301380] CPU: 1 PID: 11975 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2784.302456] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2784.303755] Call Trace: [ 2784.304168] dump_stack+0x107/0x167 [ 2784.304745] should_fail.cold+0x5/0xa [ 2784.305338] ? create_object.isra.0+0x3a/0xa20 [ 2784.306041] should_failslab+0x5/0x20 [ 2784.306636] kmem_cache_alloc+0x5b/0x310 [ 2784.307265] ? mark_held_locks+0x9e/0xe0 [ 2784.307893] create_object.isra.0+0x3a/0xa20 [ 2784.308572] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2784.309369] kmem_cache_alloc+0x159/0x310 [ 2784.310015] xas_alloc+0x336/0x440 [ 2784.310586] xas_create+0x34a/0x10d0 [ 2784.311177] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2784.312014] xas_store+0x8c/0x1c40 [ 2784.312602] __xa_store+0x164/0x2d0 [ 2784.313194] ? xa_delete_node+0x280/0x280 [ 2784.313866] ? trace_hardirqs_on+0x5b/0x180 [ 2784.314593] xa_store+0x31/0x50 [ 2784.315105] __io_uring_add_tctx_node+0x1cf/0x520 [ 2784.315848] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2784.316650] ? alloc_fd+0x2e7/0x670 [ 2784.317240] io_uring_setup+0x1fbb/0x2980 [ 2784.317894] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2784.318701] ? wait_for_completion_io+0x270/0x270 [ 2784.319472] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2784.320285] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2784.321089] do_syscall_64+0x33/0x40 [ 2784.321676] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2784.322471] RIP: 0033:0x7f28100dfb19 [ 2784.323046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2784.325894] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2784.327085] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2784.328179] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2784.329272] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2784.330357] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2784.331473] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:04:13 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0xc00}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:04:13 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000700) 09:04:13 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x2400}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:04:13 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x18a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:04:13 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 45) 09:04:13 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 38) 09:04:13 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 30) [ 2784.508292] FAULT_INJECTION: forcing a failure. [ 2784.508292] name failslab, interval 1, probability 0, space 0, times 0 [ 2784.510037] CPU: 1 PID: 11993 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2784.511042] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2784.512193] Call Trace: [ 2784.512576] dump_stack+0x107/0x167 [ 2784.513100] should_fail.cold+0x5/0xa [ 2784.513643] ? xas_alloc+0x336/0x440 [ 2784.514188] should_failslab+0x5/0x20 [ 2784.514750] kmem_cache_alloc+0x5b/0x310 [ 2784.515335] xas_alloc+0x336/0x440 [ 2784.515843] xas_create+0x34a/0x10d0 [ 2784.516385] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2784.517137] xas_store+0x8c/0x1c40 [ 2784.517654] __xa_store+0x164/0x2d0 [ 2784.518175] ? xa_delete_node+0x280/0x280 [ 2784.518797] ? trace_hardirqs_on+0x5b/0x180 [ 2784.519423] xa_store+0x31/0x50 [ 2784.519896] __io_uring_add_tctx_node+0x1cf/0x520 [ 2784.520577] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2784.521345] ? alloc_fd+0x2e7/0x670 [ 2784.521927] io_uring_setup+0x1fbb/0x2980 [ 2784.522616] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2784.523343] ? wait_for_completion_io+0x270/0x270 [ 2784.524046] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2784.524784] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2784.525521] do_syscall_64+0x33/0x40 [ 2784.526048] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2784.526783] RIP: 0033:0x7f28100dfb19 [ 2784.527307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2784.529905] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2784.530966] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2784.531973] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2784.532971] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2784.533963] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2784.535046] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2784.543857] FAULT_INJECTION: forcing a failure. [ 2784.543857] name failslab, interval 1, probability 0, space 0, times 0 [ 2784.545456] CPU: 1 PID: 11994 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2784.546423] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2784.547521] Call Trace: [ 2784.547880] dump_stack+0x107/0x167 [ 2784.548360] should_fail.cold+0x5/0xa [ 2784.548861] ? __io_uring_add_tctx_node+0x15c/0x520 [ 2784.549520] should_failslab+0x5/0x20 [ 2784.550020] kmem_cache_alloc_trace+0x55/0x320 [ 2784.550658] __io_uring_add_tctx_node+0x15c/0x520 [ 2784.551292] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2784.551976] ? alloc_fd+0x2e7/0x670 [ 2784.552460] io_uring_setup+0x1fbb/0x2980 [ 2784.553016] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2784.553680] ? wait_for_completion_io+0x270/0x270 [ 2784.554327] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2784.555020] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2784.555696] do_syscall_64+0x33/0x40 [ 2784.556181] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2784.556875] RIP: 0033:0x7f6839abdb19 [ 2784.557364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2784.559775] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2784.560772] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2784.561743] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2784.562685] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2784.563655] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2784.564580] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2784.573028] FAULT_INJECTION: forcing a failure. [ 2784.573028] name failslab, interval 1, probability 0, space 0, times 0 [ 2784.575577] CPU: 0 PID: 11997 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2784.577013] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2784.578733] Call Trace: [ 2784.579286] dump_stack+0x107/0x167 [ 2784.580039] should_fail.cold+0x5/0xa [ 2784.580836] ? create_object.isra.0+0x3a/0xa20 [ 2784.581784] should_failslab+0x5/0x20 [ 2784.582593] kmem_cache_alloc+0x5b/0x310 [ 2784.583446] create_object.isra.0+0x3a/0xa20 [ 2784.584386] kmemleak_alloc_percpu+0xa0/0x100 [ 2784.585312] pcpu_alloc+0x4e2/0x1240 [ 2784.586100] __percpu_counter_init+0x10d/0x2d0 [ 2784.587062] io_uring_alloc_task_context+0xcc/0x6a0 [ 2784.588102] ? io_import_iovec+0x1120/0x1120 [ 2784.589017] ? lock_downgrade+0x6d0/0x6d0 [ 2784.589874] ? do_raw_spin_lock+0x121/0x260 [ 2784.590818] ? rwlock_bug.part.0+0x90/0x90 [ 2784.591732] __io_uring_add_tctx_node+0x2c6/0x520 [ 2784.592734] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2784.593823] ? alloc_fd+0x2e7/0x670 [ 2784.594603] io_uring_setup+0x1fbb/0x2980 [ 2784.595471] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2784.596518] ? wait_for_completion_io+0x270/0x270 [ 2784.597545] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2784.598633] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2784.599706] do_syscall_64+0x33/0x40 [ 2784.600476] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2784.601555] RIP: 0033:0x7f900b55eb19 [ 2784.602326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2784.606140] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2784.607709] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2784.609180] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2784.610670] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2784.612151] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2784.613626] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:04:27 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8002000) 09:04:27 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x2a00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:04:27 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 31) 09:04:27 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x5, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xc642, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000108000018000000", @ANYRES32, @ANYBLOB="e0ffffff080000002e2f66696c653000"]) perf_event_open(&(0x7f00000002c0)={0x0, 0x80, 0x81, 0xd6, 0x40, 0x9, 0x0, 0xe0, 0x42008, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x7, 0x2, @perf_bp={&(0x7f0000000180)}, 0x9805, 0x3, 0x2, 0x3bab612917b95e7a, 0x40, 0x82, 0x200, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xb, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f00000001c0)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:04:27 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 39) 09:04:27 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 46) 09:04:27 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x19a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:04:27 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x1200}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:04:27 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8004000) [ 2798.333652] FAULT_INJECTION: forcing a failure. [ 2798.333652] name failslab, interval 1, probability 0, space 0, times 0 [ 2798.336266] CPU: 1 PID: 12012 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2798.337992] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2798.339851] Call Trace: [ 2798.340415] dump_stack+0x107/0x167 [ 2798.341188] should_fail.cold+0x5/0xa [ 2798.341997] ? create_object.isra.0+0x3a/0xa20 [ 2798.342964] should_failslab+0x5/0x20 [ 2798.343778] kmem_cache_alloc+0x5b/0x310 [ 2798.344643] ? mark_held_locks+0x9e/0xe0 [ 2798.345504] create_object.isra.0+0x3a/0xa20 [ 2798.346429] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2798.347523] kmem_cache_alloc+0x159/0x310 [ 2798.348406] xas_alloc+0x336/0x440 [ 2798.349161] xas_create+0x34a/0x10d0 [ 2798.349966] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2798.351083] xas_store+0x8c/0x1c40 [ 2798.351860] __xa_store+0x164/0x2d0 [ 2798.352632] ? xa_delete_node+0x280/0x280 [ 2798.353518] ? trace_hardirqs_on+0x5b/0x180 [ 2798.354441] xa_store+0x31/0x50 [ 2798.355149] __io_uring_add_tctx_node+0x1cf/0x520 [ 2798.356174] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2798.357283] ? alloc_fd+0x2e7/0x670 [ 2798.358065] io_uring_setup+0x1fbb/0x2980 [ 2798.358949] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2798.359634] FAULT_INJECTION: forcing a failure. [ 2798.359634] name failslab, interval 1, probability 0, space 0, times 0 [ 2798.360012] ? wait_for_completion_io+0x270/0x270 [ 2798.360064] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2798.364753] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2798.365844] do_syscall_64+0x33/0x40 [ 2798.366628] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2798.367710] RIP: 0033:0x7f28100dfb19 [ 2798.368493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2798.372340] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2798.373927] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2798.375447] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2798.376939] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2798.378446] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2798.379946] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2798.381483] CPU: 0 PID: 12016 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2798.383376] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2798.385552] Call Trace: [ 2798.386224] dump_stack+0x107/0x167 [ 2798.387188] should_fail.cold+0x5/0xa [ 2798.388144] ? xas_alloc+0x336/0x440 [ 2798.389116] should_failslab+0x5/0x20 [ 2798.390030] kmem_cache_alloc+0x5b/0x310 [ 2798.390944] ? stack_trace_consume_entry+0x160/0x160 [ 2798.392097] xas_alloc+0x336/0x440 [ 2798.392907] xas_create+0x34a/0x10d0 [ 2798.393777] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2798.394972] xas_store+0x8c/0x1c40 [ 2798.395821] __xa_store+0x164/0x2d0 [ 2798.396668] ? xa_delete_node+0x280/0x280 [ 2798.397615] ? trace_hardirqs_on+0x5b/0x180 [ 2798.398623] xa_store+0x31/0x50 [ 2798.399407] __io_uring_add_tctx_node+0x1cf/0x520 [ 2798.400515] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2798.402059] ? alloc_fd+0x2e7/0x670 [ 2798.402900] io_uring_setup+0x1fbb/0x2980 [ 2798.403859] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2798.404996] ? wait_for_completion_io+0x270/0x270 [ 2798.406165] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2798.407645] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2798.408911] do_syscall_64+0x33/0x40 [ 2798.409934] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2798.411378] RIP: 0033:0x7f6839abdb19 [ 2798.412406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2798.417511] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2798.419669] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2798.421665] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2798.423660] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2798.425648] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2798.427657] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2798.444713] FAULT_INJECTION: forcing a failure. [ 2798.444713] name failslab, interval 1, probability 0, space 0, times 0 [ 2798.447144] CPU: 1 PID: 12005 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2798.448580] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2798.450314] Call Trace: [ 2798.450871] dump_stack+0x107/0x167 [ 2798.451644] should_fail.cold+0x5/0xa [ 2798.452441] ? create_object.isra.0+0x3a/0xa20 [ 2798.453399] should_failslab+0x5/0x20 [ 2798.454193] kmem_cache_alloc+0x5b/0x310 [ 2798.455058] create_object.isra.0+0x3a/0xa20 [ 2798.455985] kmemleak_alloc_percpu+0xa0/0x100 [ 2798.456920] pcpu_alloc+0x4e2/0x1240 [ 2798.457725] __percpu_counter_init+0x10d/0x2d0 [ 2798.458677] io_uring_alloc_task_context+0xcc/0x6a0 [ 2798.459723] ? io_import_iovec+0x1120/0x1120 [ 2798.460638] ? lock_downgrade+0x6d0/0x6d0 [ 2798.461493] ? do_raw_spin_lock+0x121/0x260 [ 2798.462396] ? rwlock_bug.part.0+0x90/0x90 [ 2798.463287] __io_uring_add_tctx_node+0x2c6/0x520 [ 2798.464292] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2798.465387] ? alloc_fd+0x2e7/0x670 [ 2798.466151] io_uring_setup+0x1fbb/0x2980 [ 2798.467021] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2798.468095] ? wait_for_completion_io+0x270/0x270 [ 2798.469126] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2798.470213] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2798.471305] do_syscall_64+0x33/0x40 [ 2798.472078] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2798.473144] RIP: 0033:0x7f900b55eb19 [ 2798.473917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2798.477748] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2798.479365] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2798.480849] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2798.482332] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2798.483831] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2798.485314] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:04:27 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x3000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:04:27 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8006000) 09:04:27 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x1aa2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:04:27 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x1800}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:04:27 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 47) 09:04:27 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) readv(0xffffffffffffffff, &(0x7f0000000940)=[{&(0x7f00000002c0)=""/110, 0x6e}, {&(0x7f00000001c0)=""/6, 0x6}, {&(0x7f0000000600)=""/97, 0x61}, {&(0x7f0000000680)=""/109, 0x6d}, {&(0x7f0000000480)=""/14, 0xe}, {&(0x7f0000000700)=""/154, 0x9a}, {&(0x7f00000007c0)=""/86, 0x56}, {&(0x7f0000000d80)=""/4096, 0x1000}, {&(0x7f0000000840)=""/206, 0xce}], 0x9) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000002e40)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) ioctl$AUTOFS_IOC_CATATONIC(r3, 0x9362, 0x0) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:04:27 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 32) [ 2798.631805] FAULT_INJECTION: forcing a failure. [ 2798.631805] name failslab, interval 1, probability 0, space 0, times 0 [ 2798.634166] CPU: 1 PID: 12036 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2798.635573] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2798.637252] Call Trace: [ 2798.637796] dump_stack+0x107/0x167 [ 2798.638536] should_fail.cold+0x5/0xa [ 2798.639318] ? xas_alloc+0x336/0x440 [ 2798.640080] should_failslab+0x5/0x20 [ 2798.640844] kmem_cache_alloc+0x5b/0x310 [ 2798.641663] xas_alloc+0x336/0x440 [ 2798.642378] xas_create+0x34a/0x10d0 [ 2798.643158] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2798.644214] xas_store+0x8c/0x1c40 [ 2798.644959] __xa_store+0x164/0x2d0 [ 2798.645691] ? xa_delete_node+0x280/0x280 [ 2798.646530] ? trace_hardirqs_on+0x5b/0x180 [ 2798.647423] xa_store+0x31/0x50 [ 2798.648085] __io_uring_add_tctx_node+0x1cf/0x520 [ 2798.649048] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2798.650099] ? alloc_fd+0x2e7/0x670 [ 2798.650841] io_uring_setup+0x1fbb/0x2980 [ 2798.651703] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2798.652717] ? wait_for_completion_io+0x270/0x270 [ 2798.653716] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2798.654764] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2798.655867] do_syscall_64+0x33/0x40 [ 2798.656619] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2798.657657] RIP: 0033:0x7f28100dfb19 [ 2798.658407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2798.662087] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2798.663628] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2798.665055] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2798.666478] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2798.667902] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2798.669315] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:04:27 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x1e00}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:04:27 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x3600}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2798.729497] FAULT_INJECTION: forcing a failure. [ 2798.729497] name failslab, interval 1, probability 0, space 0, times 0 [ 2798.731677] CPU: 1 PID: 12039 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2798.733021] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2798.734626] Call Trace: [ 2798.735145] dump_stack+0x107/0x167 [ 2798.735853] should_fail.cold+0x5/0xa [ 2798.736592] ? create_object.isra.0+0x3a/0xa20 [ 2798.737483] should_failslab+0x5/0x20 [ 2798.738250] kmem_cache_alloc+0x5b/0x310 [ 2798.739043] create_object.isra.0+0x3a/0xa20 [ 2798.739894] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2798.740883] kmem_cache_alloc_trace+0x151/0x320 [ 2798.741788] io_uring_alloc_task_context+0x4a3/0x6a0 [ 2798.742770] ? io_import_iovec+0x1120/0x1120 [ 2798.743629] ? lock_downgrade+0x6d0/0x6d0 [ 2798.744433] ? do_raw_spin_lock+0x121/0x260 [ 2798.745262] ? rwlock_bug.part.0+0x90/0x90 [ 2798.746085] __io_uring_add_tctx_node+0x2c6/0x520 [ 2798.747015] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2798.748025] ? alloc_fd+0x2e7/0x670 [ 2798.748751] io_uring_setup+0x1fbb/0x2980 [ 2798.749552] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2798.750532] ? wait_for_completion_io+0x270/0x270 [ 2798.751493] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2798.752507] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2798.753509] do_syscall_64+0x33/0x40 [ 2798.754221] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2798.755205] RIP: 0033:0x7f900b55eb19 [ 2798.755913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2798.759405] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2798.760848] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2798.762199] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2798.763556] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2798.764916] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2798.766273] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:04:44 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x2000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:04:44 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x10000000) 09:04:44 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 33) 09:04:44 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x1ba2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:04:44 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 40) 09:04:44 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 48) 09:04:44 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x3c00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:04:44 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e00000000000000000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000000000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a84000000000000fcffffffffffffff08000000000000000000000000000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee5868cbd58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721234a84652ebf4218b6e0ce32fe10c1fa4d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d6339832bd4c6806617b12ee49a7c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000300)={0xa, 0x4e23, 0x2, @private2, 0x1}, 0x1c, &(0x7f0000000600)=[{&(0x7f0000000480)="e3ca040b3c1bc98670e533a375789b2be2b8483b9405890e2f", 0x19}], 0x1, &(0x7f0000000640)=[@dontfrag={{0x14, 0x29, 0x3e, 0x1f}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x80000001}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x80000000}}, @tclass={{0x14, 0x29, 0x43, 0x6}}, @flowinfo={{0x14, 0x29, 0xb, 0x5a0b}}, @dstopts={{0x20, 0x29, 0x37, {0x32, 0x0, '\x00', [@pad1]}}}, @dstopts={{0x30, 0x29, 0x37, {0x33, 0x2, '\x00', [@calipso={0x7, 0x10, {0x2, 0x2, 0x8, 0x8, [0x5]}}]}}}], 0xc8}, 0x48050) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) creat(&(0x7f0000000180)='./file1\x00', 0x100) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2815.409367] FAULT_INJECTION: forcing a failure. [ 2815.409367] name failslab, interval 1, probability 0, space 0, times 0 [ 2815.411958] CPU: 0 PID: 12065 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2815.413411] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2815.415142] Call Trace: [ 2815.415723] dump_stack+0x107/0x167 [ 2815.416464] should_fail.cold+0x5/0xa [ 2815.417266] ? xas_alloc+0x336/0x440 [ 2815.418048] should_failslab+0x5/0x20 [ 2815.418837] kmem_cache_alloc+0x5b/0x310 [ 2815.419698] ? stack_trace_consume_entry+0x160/0x160 [ 2815.420756] xas_alloc+0x336/0x440 [ 2815.421502] xas_create+0x34a/0x10d0 [ 2815.422273] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2815.423378] xas_store+0x8c/0x1c40 [ 2815.424146] __xa_store+0x164/0x2d0 [ 2815.424898] ? xa_delete_node+0x280/0x280 [ 2815.425782] ? trace_hardirqs_on+0x5b/0x180 [ 2815.426700] xa_store+0x31/0x50 [ 2815.427388] __io_uring_add_tctx_node+0x1cf/0x520 [ 2815.428393] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2815.429484] ? alloc_fd+0x2e7/0x670 [ 2815.430256] io_uring_setup+0x1fbb/0x2980 [ 2815.431123] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2815.432327] ? wait_for_completion_io+0x270/0x270 [ 2815.433622] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2815.434869] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2815.435976] do_syscall_64+0x33/0x40 [ 2815.436760] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2815.437839] RIP: 0033:0x7f6839abdb19 [ 2815.438601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2815.442473] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2815.444085] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2815.444146] FAULT_INJECTION: forcing a failure. [ 2815.444146] name failslab, interval 1, probability 0, space 0, times 0 [ 2815.445572] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2815.445583] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2815.445605] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2815.452315] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2815.453864] CPU: 1 PID: 12066 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2815.455368] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 09:04:44 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x1ca2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:04:44 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x2400}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2815.457494] Call Trace: [ 2815.458253] dump_stack+0x107/0x167 [ 2815.459150] should_fail.cold+0x5/0xa [ 2815.460027] ? xas_alloc+0x336/0x440 [ 2815.460814] should_failslab+0x5/0x20 [ 2815.461613] kmem_cache_alloc+0x5b/0x310 [ 2815.462471] xas_alloc+0x336/0x440 [ 2815.463221] xas_create+0x34a/0x10d0 [ 2815.464015] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2815.465120] xas_store+0x8c/0x1c40 [ 2815.465871] __xa_store+0x164/0x2d0 [ 2815.466620] ? xa_delete_node+0x280/0x280 [ 2815.467485] ? trace_hardirqs_on+0x5b/0x180 [ 2815.468392] xa_store+0x31/0x50 [ 2815.469078] __io_uring_add_tctx_node+0x1cf/0x520 [ 2815.470093] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2815.471181] ? alloc_fd+0x2e7/0x670 [ 2815.471965] io_uring_setup+0x1fbb/0x2980 [ 2815.472852] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2815.473912] ? wait_for_completion_io+0x270/0x270 [ 2815.474934] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2815.476041] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2815.477124] do_syscall_64+0x33/0x40 [ 2815.477886] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2815.478958] RIP: 0033:0x7f28100dfb19 [ 2815.479781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2815.483683] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2815.485284] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2815.486747] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2815.488248] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2815.489708] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2815.491183] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2815.520815] FAULT_INJECTION: forcing a failure. [ 2815.520815] name failslab, interval 1, probability 0, space 0, times 0 [ 2815.523281] CPU: 0 PID: 12067 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2815.524727] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2815.526449] Call Trace: [ 2815.527008] dump_stack+0x107/0x167 [ 2815.527786] should_fail.cold+0x5/0xa [ 2815.528598] ? io_wq_create+0xeb/0xc00 [ 2815.529430] should_failslab+0x5/0x20 [ 2815.530239] __kmalloc+0x72/0x390 [ 2815.530986] io_wq_create+0xeb/0xc00 [ 2815.531790] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2815.532854] ? io_import_iovec+0x1120/0x1120 [ 2815.533779] ? io_apoll_task_func+0x2d0/0x2d0 [ 2815.534722] ? __io_req_find_next+0x300/0x300 [ 2815.535664] ? do_raw_spin_lock+0x121/0x260 [ 2815.536555] ? rwlock_bug.part.0+0x90/0x90 [ 2815.537447] __io_uring_add_tctx_node+0x2c6/0x520 [ 2815.538441] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2815.539537] ? alloc_fd+0x2e7/0x670 [ 2815.540321] io_uring_setup+0x1fbb/0x2980 [ 2815.541194] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2815.542257] ? wait_for_completion_io+0x270/0x270 [ 2815.543268] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2815.544382] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2815.545449] do_syscall_64+0x33/0x40 [ 2815.546221] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2815.547304] RIP: 0033:0x7f900b55eb19 [ 2815.548105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2815.551979] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2815.553582] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2815.555059] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2815.556557] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2815.558028] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2815.559492] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:04:44 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x4000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:04:44 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 49) 09:04:44 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 34) [ 2815.681333] FAULT_INJECTION: forcing a failure. [ 2815.681333] name failslab, interval 1, probability 0, space 0, times 0 [ 2815.684175] CPU: 1 PID: 12080 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2815.685863] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2815.687929] Call Trace: [ 2815.688613] dump_stack+0x107/0x167 [ 2815.689540] should_fail.cold+0x5/0xa [ 2815.690503] ? xas_alloc+0x336/0x440 [ 2815.691449] should_failslab+0x5/0x20 [ 2815.692413] kmem_cache_alloc+0x5b/0x310 [ 2815.693422] xas_alloc+0x336/0x440 [ 2815.694287] xas_create+0x34a/0x10d0 [ 2815.695248] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2815.696541] xas_store+0x8c/0x1c40 [ 2815.697442] __xa_store+0x164/0x2d0 [ 2815.698335] ? xa_delete_node+0x280/0x280 [ 2815.699374] ? trace_hardirqs_on+0x5b/0x180 [ 2815.700467] xa_store+0x31/0x50 [ 2815.701271] __io_uring_add_tctx_node+0x1cf/0x520 [ 2815.702494] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2815.703813] ? alloc_fd+0x2e7/0x670 [ 2815.704755] io_uring_setup+0x1fbb/0x2980 [ 2815.705800] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2815.707088] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2815.708377] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2815.709650] do_syscall_64+0x33/0x40 [ 2815.710586] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2815.711881] RIP: 0033:0x7f28100dfb19 [ 2815.712822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2815.717383] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2815.719288] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2815.721078] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2815.722846] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2815.724621] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2815.726389] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:04:44 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x2a00}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:04:44 executing program 5: ioctl$BTRFS_IOC_SEND(0xffffffffffffffff, 0x40489426, &(0x7f0000000140)={{}, 0x7, &(0x7f0000000000)=[0x6, 0x8, 0x0, 0x10001, 0x5, 0x1f, 0x1], 0xf1ad, 0x6, [0xfe, 0x32, 0x0, 0x4000000000000]}) perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 09:04:44 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 41) 09:04:44 executing program 0: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='map_files\x00') r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e00000000000000000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000000000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a84000000000000fcffffffffffffff08000000000000000000000000000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee5868cbd58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721234a84652ebf4218b6e0ce32fe10c1fa4d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d6339832bd4c6806617b12ee49a7c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x200000, 0x61) readv(r2, &(0x7f0000000280)=[{&(0x7f0000002e40)=""/4098, 0x1002}], 0x1) openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x2, 0x12) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000009, 0x110, r0, 0xccc69000) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2815.774265] FAULT_INJECTION: forcing a failure. [ 2815.774265] name failslab, interval 1, probability 0, space 0, times 0 [ 2815.776992] CPU: 0 PID: 12085 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2815.778576] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2815.780501] Call Trace: [ 2815.781104] dump_stack+0x107/0x167 [ 2815.781934] should_fail.cold+0x5/0xa [ 2815.782862] ? create_object.isra.0+0x3a/0xa20 [ 2815.783993] should_failslab+0x5/0x20 [ 2815.784931] kmem_cache_alloc+0x5b/0x310 [ 2815.785928] create_object.isra.0+0x3a/0xa20 [ 2815.786995] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2815.788241] __kmalloc+0x16e/0x390 [ 2815.789128] io_wq_create+0xeb/0xc00 [ 2815.790047] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2815.791290] ? io_import_iovec+0x1120/0x1120 [ 2815.792435] ? io_apoll_task_func+0x2d0/0x2d0 [ 2815.793524] ? __io_req_find_next+0x300/0x300 [ 2815.794608] ? do_raw_spin_lock+0x121/0x260 [ 2815.795673] ? rwlock_bug.part.0+0x90/0x90 [ 2815.796729] __io_uring_add_tctx_node+0x2c6/0x520 [ 2815.797904] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2815.799178] ? alloc_fd+0x2e7/0x670 [ 2815.800102] io_uring_setup+0x1fbb/0x2980 [ 2815.801118] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2815.802358] ? wait_for_completion_io+0x270/0x270 [ 2815.803572] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2815.804854] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2815.806115] do_syscall_64+0x33/0x40 [ 2815.807012] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2815.808294] RIP: 0033:0x7f900b55eb19 [ 2815.809201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2815.813697] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2815.815565] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2815.817356] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2815.819130] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2815.820889] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2815.822650] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2815.844817] FAULT_INJECTION: forcing a failure. [ 2815.844817] name failslab, interval 1, probability 0, space 0, times 0 [ 2815.847754] CPU: 0 PID: 12086 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2815.849422] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2815.851463] Call Trace: [ 2815.852094] dump_stack+0x107/0x167 [ 2815.852840] should_fail.cold+0x5/0xa [ 2815.853602] ? ___slab_alloc+0x360/0x700 [ 2815.854428] ? create_object.isra.0+0x3a/0xa20 [ 2815.855360] should_failslab+0x5/0x20 [ 2815.856141] kmem_cache_alloc+0x5b/0x310 [ 2815.856972] create_object.isra.0+0x3a/0xa20 [ 2815.857852] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2815.858883] kmem_cache_alloc+0x159/0x310 [ 2815.859733] xas_alloc+0x336/0x440 [ 2815.860460] xas_create+0x34a/0x10d0 [ 2815.861228] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2815.862285] xas_store+0x8c/0x1c40 [ 2815.863027] __xa_store+0x164/0x2d0 [ 2815.863788] ? xa_delete_node+0x280/0x280 [ 2815.864636] ? trace_hardirqs_on+0x5b/0x180 [ 2815.865514] xa_store+0x31/0x50 [ 2815.866182] __io_uring_add_tctx_node+0x1cf/0x520 [ 2815.867153] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2815.868216] ? alloc_fd+0x2e7/0x670 [ 2815.868962] io_uring_setup+0x1fbb/0x2980 [ 2815.869934] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2815.871005] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2815.872107] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2815.873169] do_syscall_64+0x33/0x40 [ 2815.873935] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2815.874986] RIP: 0033:0x7f6839abdb19 [ 2815.875772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2815.879607] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2815.881176] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2815.882629] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2815.884082] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2815.885533] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2815.886989] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:05:03 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0xa, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xfffffffc}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) dup(r0) 09:05:03 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x1da2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:05:03 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x3000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:05:03 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 42) 09:05:03 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x4200}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:05:03 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 50) 09:05:03 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 35) 09:05:03 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_bp={&(0x7f0000000180)}, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000002c0)='./file1\x00', &(0x7f0000000000)='cgroup2\x00', 0x1180019, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000480)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x2) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2834.176486] FAULT_INJECTION: forcing a failure. [ 2834.176486] name failslab, interval 1, probability 0, space 0, times 0 [ 2834.178956] CPU: 1 PID: 12111 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2834.180430] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2834.182180] Call Trace: [ 2834.182743] dump_stack+0x107/0x167 [ 2834.183510] should_fail.cold+0x5/0xa [ 2834.184331] ? io_wq_create+0x6ef/0xc00 [ 2834.185179] should_failslab+0x5/0x20 [ 2834.185985] kmem_cache_alloc_node_trace+0x59/0x340 [ 2834.187046] io_wq_create+0x6ef/0xc00 [ 2834.187858] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2834.188928] ? io_import_iovec+0x1120/0x1120 [ 2834.189866] ? io_apoll_task_func+0x2d0/0x2d0 [ 2834.190811] ? __io_req_find_next+0x300/0x300 [ 2834.191756] ? do_raw_spin_lock+0x121/0x260 [ 2834.192682] ? rwlock_bug.part.0+0x90/0x90 [ 2834.193583] __io_uring_add_tctx_node+0x2c6/0x520 [ 2834.194601] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2834.195700] ? alloc_fd+0x2e7/0x670 [ 2834.196489] io_uring_setup+0x1fbb/0x2980 [ 2834.197369] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2834.198435] ? wait_for_completion_io+0x270/0x270 [ 2834.199481] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2834.200603] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2834.201700] do_syscall_64+0x33/0x40 [ 2834.202490] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2834.203578] RIP: 0033:0x7f900b55eb19 [ 2834.204380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2834.208584] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2834.210632] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2834.212268] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2834.214016] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2834.215826] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2834.217664] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2834.225065] FAULT_INJECTION: forcing a failure. [ 2834.225065] name failslab, interval 1, probability 0, space 0, times 0 [ 2834.227462] CPU: 1 PID: 12115 Comm: syz-executor.1 Not tainted 5.10.234 #1 09:05:03 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) [ 2834.228930] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2834.230844] Call Trace: [ 2834.231393] dump_stack+0x107/0x167 [ 2834.232158] should_fail.cold+0x5/0xa [ 2834.232970] ? create_object.isra.0+0x3a/0xa20 [ 2834.233931] should_failslab+0x5/0x20 [ 2834.234727] kmem_cache_alloc+0x5b/0x310 [ 2834.235572] ? mark_held_locks+0x9e/0xe0 [ 2834.236440] create_object.isra.0+0x3a/0xa20 [ 2834.237354] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2834.238423] kmem_cache_alloc+0x159/0x310 [ 2834.239301] xas_alloc+0x336/0x440 [ 2834.240047] xas_create+0x34a/0x10d0 [ 2834.240847] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2834.241946] xas_store+0x8c/0x1c40 [ 2834.242722] __xa_store+0x164/0x2d0 [ 2834.243487] ? xa_delete_node+0x280/0x280 [ 2834.244389] ? trace_hardirqs_on+0x5b/0x180 [ 2834.245303] xa_store+0x31/0x50 [ 2834.246004] __io_uring_add_tctx_node+0x1cf/0x520 [ 2834.247007] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2834.248099] ? alloc_fd+0x2e7/0x670 [ 2834.248885] io_uring_setup+0x1fbb/0x2980 [ 2834.249766] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2834.250828] ? wait_for_completion_io+0x270/0x270 [ 2834.251869] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2834.252976] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2834.254063] do_syscall_64+0x33/0x40 [ 2834.254847] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2834.255920] RIP: 0033:0x7f6839abdb19 [ 2834.256705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2834.260575] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2834.262175] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2834.263669] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2834.265173] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 09:05:03 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x3600}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2834.266666] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2834.268303] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2834.298912] FAULT_INJECTION: forcing a failure. [ 2834.298912] name failslab, interval 1, probability 0, space 0, times 0 [ 2834.301544] CPU: 0 PID: 12110 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2834.303087] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2834.304933] Call Trace: [ 2834.305517] dump_stack+0x107/0x167 [ 2834.306334] should_fail.cold+0x5/0xa [ 2834.307176] ? create_object.isra.0+0x3a/0xa20 [ 2834.308187] should_failslab+0x5/0x20 [ 2834.309045] kmem_cache_alloc+0x5b/0x310 [ 2834.309955] ? mark_held_locks+0x9e/0xe0 [ 2834.310858] create_object.isra.0+0x3a/0xa20 [ 2834.311842] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2834.312972] kmem_cache_alloc+0x159/0x310 [ 2834.313902] xas_alloc+0x336/0x440 [ 2834.314697] xas_create+0x34a/0x10d0 [ 2834.315547] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2834.316741] xas_store+0x8c/0x1c40 [ 2834.317547] __xa_store+0x164/0x2d0 [ 2834.318359] ? xa_delete_node+0x280/0x280 [ 2834.319318] ? trace_hardirqs_on+0x5b/0x180 [ 2834.320295] xa_store+0x31/0x50 [ 2834.321041] __io_uring_add_tctx_node+0x1cf/0x520 [ 2834.322106] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2834.323290] ? alloc_fd+0x2e7/0x670 [ 2834.324117] io_uring_setup+0x1fbb/0x2980 [ 2834.325047] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2834.326207] ? wait_for_completion_io+0x270/0x270 [ 2834.327317] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2834.328517] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2834.329672] do_syscall_64+0x33/0x40 [ 2834.330504] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2834.331650] RIP: 0033:0x7f28100dfb19 [ 2834.332492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2834.336567] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2834.338248] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2834.339805] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2834.341398] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2834.342971] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2834.344539] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:05:03 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x6000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:05:03 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 43) 09:05:03 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 36) [ 2834.435896] FAULT_INJECTION: forcing a failure. [ 2834.435896] name failslab, interval 1, probability 0, space 0, times 0 [ 2834.438266] CPU: 0 PID: 12131 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2834.438408] FAULT_INJECTION: forcing a failure. [ 2834.438408] name failslab, interval 1, probability 0, space 0, times 0 [ 2834.439670] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2834.439677] Call Trace: [ 2834.439702] dump_stack+0x107/0x167 [ 2834.439726] should_fail.cold+0x5/0xa [ 2834.445873] ? create_object.isra.0+0x3a/0xa20 [ 2834.446809] should_failslab+0x5/0x20 [ 2834.447580] kmem_cache_alloc+0x5b/0x310 [ 2834.448411] ? io_wq_create+0x114/0xc00 [ 2834.449223] create_object.isra.0+0x3a/0xa20 [ 2834.450111] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2834.451151] kmem_cache_alloc_node_trace+0x16d/0x340 [ 2834.452195] io_wq_create+0x6ef/0xc00 [ 2834.452988] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2834.454013] ? io_import_iovec+0x1120/0x1120 [ 2834.454903] ? io_apoll_task_func+0x2d0/0x2d0 [ 2834.455813] ? __io_req_find_next+0x300/0x300 [ 2834.456738] ? do_raw_spin_lock+0x121/0x260 [ 2834.457612] ? rwlock_bug.part.0+0x90/0x90 [ 2834.458467] __io_uring_add_tctx_node+0x2c6/0x520 [ 2834.459472] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2834.460562] ? alloc_fd+0x2e7/0x670 [ 2834.461319] io_uring_setup+0x1fbb/0x2980 [ 2834.462170] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2834.463192] ? wait_for_completion_io+0x270/0x270 [ 2834.464195] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2834.465274] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2834.466351] do_syscall_64+0x33/0x40 [ 2834.467115] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2834.468168] RIP: 0033:0x7f900b55eb19 [ 2834.468996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2834.472716] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2834.474259] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2834.475729] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2834.477176] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2834.478619] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2834.480057] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2834.481541] CPU: 1 PID: 12127 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2834.483011] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2834.484762] Call Trace: [ 2834.485322] dump_stack+0x107/0x167 [ 2834.486091] should_fail.cold+0x5/0xa [ 2834.486897] ? xas_alloc+0x336/0x440 [ 2834.487688] should_failslab+0x5/0x20 [ 2834.488498] kmem_cache_alloc+0x5b/0x310 [ 2834.489364] xas_alloc+0x336/0x440 [ 2834.490119] xas_create+0x34a/0x10d0 [ 2834.490918] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2834.492027] xas_store+0x8c/0x1c40 [ 2834.492816] __xa_store+0x164/0x2d0 [ 2834.493599] ? xa_delete_node+0x280/0x280 [ 2834.494480] ? trace_hardirqs_on+0x5b/0x180 [ 2834.495394] xa_store+0x31/0x50 [ 2834.496093] __io_uring_add_tctx_node+0x1cf/0x520 [ 2834.497119] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2834.498223] ? alloc_fd+0x2e7/0x670 [ 2834.499006] io_uring_setup+0x1fbb/0x2980 [ 2834.499894] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2834.500971] ? wait_for_completion_io+0x270/0x270 [ 2834.502010] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2834.503152] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2834.504263] do_syscall_64+0x33/0x40 [ 2834.505066] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2834.506131] RIP: 0033:0x7f6839abdb19 [ 2834.506915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2834.510759] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2834.512335] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2834.513787] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2834.515239] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2834.516721] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2834.518198] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:05:03 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 37) 09:05:03 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 51) 09:05:03 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x1ea2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:05:03 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x3c00}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:05:03 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1) ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100002018000000036377f363736298062ffdf4fa0d07", @ANYRES32, @ANYBLOB="e0ffffff080000002e2f66696c653000"]) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x7, 0x6, 0x9, 0x0, 0x10001, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0xffff, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0xa715, 0xaf, 0x3, 0x2, 0x1, 0x69f, 0x2d54, 0x0, 0x5, 0x0, 0x6}, 0x0, 0xf, r1, 0x1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) [ 2834.607860] FAULT_INJECTION: forcing a failure. [ 2834.607860] name failslab, interval 1, probability 0, space 0, times 0 [ 2834.610270] CPU: 1 PID: 12134 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2834.611721] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2834.613462] Call Trace: [ 2834.614018] dump_stack+0x107/0x167 [ 2834.614777] should_fail.cold+0x5/0xa [ 2834.615565] ? xas_alloc+0x336/0x440 [ 2834.616456] should_failslab+0x5/0x20 [ 2834.617242] kmem_cache_alloc+0x5b/0x310 [ 2834.618094] xas_alloc+0x336/0x440 [ 2834.618838] xas_create+0x34a/0x10d0 [ 2834.619644] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2834.620786] xas_store+0x8c/0x1c40 [ 2834.621538] __xa_store+0x164/0x2d0 [ 2834.622313] ? xa_delete_node+0x280/0x280 [ 2834.623189] ? trace_hardirqs_on+0x5b/0x180 [ 2834.624098] xa_store+0x31/0x50 [ 2834.624799] __io_uring_add_tctx_node+0x1cf/0x520 [ 2834.625791] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2834.626891] ? alloc_fd+0x2e7/0x670 [ 2834.627666] io_uring_setup+0x1fbb/0x2980 [ 2834.628544] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2834.629599] ? wait_for_completion_io+0x270/0x270 [ 2834.630640] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2834.631730] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2834.632803] do_syscall_64+0x33/0x40 [ 2834.633569] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2834.634629] RIP: 0033:0x7f28100dfb19 [ 2834.635391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2834.639354] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2834.640951] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2834.642425] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2834.643895] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2834.645385] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2834.646869] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2834.659976] FAULT_INJECTION: forcing a failure. [ 2834.659976] name failslab, interval 1, probability 0, space 0, times 0 [ 2834.662446] CPU: 0 PID: 12138 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2834.663863] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2834.665601] Call Trace: [ 2834.666146] dump_stack+0x107/0x167 [ 2834.666903] should_fail.cold+0x5/0xa [ 2834.667693] ? __io_uring_add_tctx_node+0x15c/0x520 [ 2834.668742] should_failslab+0x5/0x20 [ 2834.669522] kmem_cache_alloc_trace+0x55/0x320 [ 2834.670456] __io_uring_add_tctx_node+0x15c/0x520 [ 2834.671446] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2834.672519] ? alloc_fd+0x2e7/0x670 [ 2834.673291] io_uring_setup+0x1fbb/0x2980 [ 2834.674143] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2834.675185] ? wait_for_completion_io+0x270/0x270 [ 2834.676196] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2834.677272] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2834.678334] do_syscall_64+0x33/0x40 [ 2834.679094] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2834.680149] RIP: 0033:0x7f900b55eb19 [ 2834.680917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2834.684694] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2834.686240] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2834.687694] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2834.689168] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2834.690802] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2834.692720] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:05:20 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 38) 09:05:20 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 52) [ 2852.118679] FAULT_INJECTION: forcing a failure. [ 2852.118679] name failslab, interval 1, probability 0, space 0, times 0 [ 2852.120919] CPU: 1 PID: 12153 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2852.122296] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2852.123909] Call Trace: [ 2852.124434] dump_stack+0x107/0x167 [ 2852.125152] should_fail.cold+0x5/0xa [ 2852.125898] ? create_object.isra.0+0x3a/0xa20 [ 2852.126808] should_failslab+0x5/0x20 [ 2852.127553] kmem_cache_alloc+0x5b/0x310 [ 2852.128360] ? mark_held_locks+0x9e/0xe0 [ 2852.129180] create_object.isra.0+0x3a/0xa20 [ 2852.130031] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2852.131029] kmem_cache_alloc+0x159/0x310 [ 2852.131838] xas_alloc+0x336/0x440 [ 2852.132533] xas_create+0x34a/0x10d0 [ 2852.133313] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2852.134332] xas_store+0x8c/0x1c40 [ 2852.135040] __xa_store+0x164/0x2d0 [ 2852.135752] ? xa_delete_node+0x280/0x280 [ 2852.136558] ? trace_hardirqs_on+0x5b/0x180 [ 2852.137402] xa_store+0x31/0x50 [ 2852.138030] __io_uring_add_tctx_node+0x1cf/0x520 [ 2852.138985] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2852.139999] ? alloc_fd+0x2e7/0x670 [ 2852.140714] io_uring_setup+0x1fbb/0x2980 [ 2852.141538] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2852.142518] ? wait_for_completion_io+0x270/0x270 09:05:21 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:05:21 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x4000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:05:21 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 44) 09:05:21 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x9100}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:05:21 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x54, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffff01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xe, 0x110, r0, 0x8000000) 09:05:21 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x1fa2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2852.143500] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2852.145136] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2852.146148] do_syscall_64+0x33/0x40 [ 2852.146929] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2852.148089] RIP: 0033:0x7f6839abdb19 [ 2852.148893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2852.152429] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2852.153903] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2852.155277] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2852.156650] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2852.158030] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2852.159385] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2852.171552] FAULT_INJECTION: forcing a failure. [ 2852.171552] name failslab, interval 1, probability 0, space 0, times 0 [ 2852.174578] CPU: 0 PID: 12160 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2852.176399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2852.178469] Call Trace: [ 2852.179127] dump_stack+0x107/0x167 [ 2852.180027] should_fail.cold+0x5/0xa [ 2852.180985] ? create_object.isra.0+0x3a/0xa20 [ 2852.182109] should_failslab+0x5/0x20 [ 2852.183046] kmem_cache_alloc+0x5b/0x310 [ 2852.184040] ? mark_held_locks+0x9e/0xe0 [ 2852.185062] create_object.isra.0+0x3a/0xa20 [ 2852.186140] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2852.187392] kmem_cache_alloc+0x159/0x310 [ 2852.188436] xas_alloc+0x336/0x440 [ 2852.189316] xas_create+0x34a/0x10d0 [ 2852.190252] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2852.191542] xas_store+0x8c/0x1c40 [ 2852.192439] __xa_store+0x164/0x2d0 [ 2852.193351] ? xa_delete_node+0x280/0x280 [ 2852.194388] ? trace_hardirqs_on+0x5b/0x180 [ 2852.195442] xa_store+0x31/0x50 [ 2852.196252] __io_uring_add_tctx_node+0x1cf/0x520 [ 2852.197443] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2852.198737] ? alloc_fd+0x2e7/0x670 [ 2852.199643] io_uring_setup+0x1fbb/0x2980 [ 2852.200683] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2852.201933] ? wait_for_completion_io+0x270/0x270 [ 2852.203148] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2852.204450] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2852.205745] do_syscall_64+0x33/0x40 [ 2852.206667] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2852.207922] RIP: 0033:0x7f28100dfb19 [ 2852.208832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2852.212671] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2852.214248] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2852.215726] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2852.217226] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2852.218691] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2852.220159] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2852.254984] FAULT_INJECTION: forcing a failure. [ 2852.254984] name failslab, interval 1, probability 0, space 0, times 0 [ 2852.257446] CPU: 0 PID: 12165 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2852.258889] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2852.260602] Call Trace: [ 2852.261160] dump_stack+0x107/0x167 [ 2852.261904] should_fail.cold+0x5/0xa [ 2852.262688] ? create_object.isra.0+0x3a/0xa20 [ 2852.263643] should_failslab+0x5/0x20 [ 2852.264423] kmem_cache_alloc+0x5b/0x310 [ 2852.265279] create_object.isra.0+0x3a/0xa20 [ 2852.266190] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2852.267257] kmem_cache_alloc_trace+0x151/0x320 [ 2852.268219] __io_uring_add_tctx_node+0x15c/0x520 [ 2852.269222] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2852.270326] ? alloc_fd+0x2e7/0x670 [ 2852.271110] io_uring_setup+0x1fbb/0x2980 [ 2852.271968] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2852.273023] ? wait_for_completion_io+0x270/0x270 [ 2852.274054] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2852.275144] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2852.276224] do_syscall_64+0x33/0x40 [ 2852.277002] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2852.278065] RIP: 0033:0x7f900b55eb19 [ 2852.278833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2852.282702] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2852.284301] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2852.285793] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2852.287277] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2852.288740] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2852.290224] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:05:37 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 39) 09:05:37 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x4200}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:05:37 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0xf202}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:05:37 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='net/rt_acct\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) fallocate(0xffffffffffffffff, 0x8, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240)=0x0, &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r5, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r5) syz_io_uring_submit(r4, 0x0, &(0x7f0000000180)=@IORING_OP_CLOSE={0x13, 0x4, 0x0, r5}, 0x2) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:05:37 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 53) 09:05:37 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 45) 09:05:37 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x2a6f, &(0x7f0000000000)={0x0, 0x0, 0x20}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1) ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f00000002c0)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB="e0ffffff080000002e2f66696c653000"]) syz_io_uring_setup(0x6d80, &(0x7f0000000140)={0x0, 0x2309, 0x8, 0x3, 0x266, 0x0, r1}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff7000/0x9000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) 09:05:37 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x2000, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2868.655055] FAULT_INJECTION: forcing a failure. [ 2868.655055] name failslab, interval 1, probability 0, space 0, times 0 [ 2868.658016] CPU: 1 PID: 12185 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2868.659757] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2868.661863] Call Trace: [ 2868.662532] dump_stack+0x107/0x167 [ 2868.663455] should_fail.cold+0x5/0xa [ 2868.664422] ? xas_alloc+0x336/0x440 [ 2868.665366] should_failslab+0x5/0x20 09:05:37 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x80000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2868.666401] kmem_cache_alloc+0x5b/0x310 [ 2868.667440] xas_alloc+0x336/0x440 [ 2868.668340] xas_create+0x34a/0x10d0 [ 2868.669301] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2868.670666] xas_store+0x8c/0x1c40 [ 2868.671589] __xa_store+0x164/0x2d0 [ 2868.672506] ? xa_delete_node+0x280/0x280 [ 2868.673576] ? trace_hardirqs_on+0x5b/0x180 [ 2868.674670] xa_store+0x31/0x50 [ 2868.675508] __io_uring_add_tctx_node+0x1cf/0x520 [ 2868.676720] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2868.678044] ? alloc_fd+0x2e7/0x670 [ 2868.678985] io_uring_setup+0x1fbb/0x2980 [ 2868.680043] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2868.681326] ? wait_for_completion_io+0x270/0x270 [ 2868.682601] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2868.683934] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2868.685223] do_syscall_64+0x33/0x40 [ 2868.686172] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2868.687452] RIP: 0033:0x7f28100dfb19 [ 2868.688391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2868.693852] RSP: 002b:00007f280d634108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2868.696215] RAX: ffffffffffffffda RBX: 00007f28101f3020 RCX: 00007f28100dfb19 [ 2868.698290] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2868.700450] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2868.702350] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2868.704153] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:05:37 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x400000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2868.729460] FAULT_INJECTION: forcing a failure. [ 2868.729460] name failslab, interval 1, probability 0, space 0, times 0 [ 2868.730806] CPU: 0 PID: 12181 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2868.731632] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2868.732611] Call Trace: [ 2868.732930] dump_stack+0x107/0x167 [ 2868.733362] should_fail.cold+0x5/0xa [ 2868.733815] ? xas_alloc+0x336/0x440 [ 2868.734254] should_failslab+0x5/0x20 [ 2868.734696] kmem_cache_alloc+0x5b/0x310 [ 2868.735169] ? stack_trace_consume_entry+0x160/0x160 [ 2868.735757] xas_alloc+0x336/0x440 [ 2868.736173] xas_create+0x34a/0x10d0 [ 2868.736617] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2868.737228] xas_store+0x8c/0x1c40 [ 2868.737660] __xa_store+0x164/0x2d0 [ 2868.738083] ? xa_delete_node+0x280/0x280 [ 2868.738575] ? trace_hardirqs_on+0x5b/0x180 [ 2868.739088] xa_store+0x31/0x50 [ 2868.739482] __io_uring_add_tctx_node+0x1cf/0x520 [ 2868.740052] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2868.740687] ? alloc_fd+0x2e7/0x670 [ 2868.741119] io_uring_setup+0x1fbb/0x2980 [ 2868.741609] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2868.741829] FAULT_INJECTION: forcing a failure. [ 2868.741829] name failslab, interval 1, probability 0, space 0, times 0 [ 2868.742194] ? wait_for_completion_io+0x270/0x270 [ 2868.742221] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2868.745679] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2868.746275] do_syscall_64+0x33/0x40 [ 2868.746705] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2868.747292] RIP: 0033:0x7f900b55eb19 [ 2868.747725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2868.749841] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2868.750721] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2868.751542] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2868.752362] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2868.753181] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2868.754013] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2868.754867] CPU: 1 PID: 12191 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2868.756321] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2868.758085] Call Trace: [ 2868.758636] dump_stack+0x107/0x167 [ 2868.759399] should_fail.cold+0x5/0xa [ 2868.760207] ? xas_alloc+0x336/0x440 [ 2868.760997] should_failslab+0x5/0x20 [ 2868.761804] kmem_cache_alloc+0x5b/0x310 [ 2868.762660] xas_alloc+0x336/0x440 [ 2868.763409] xas_create+0x34a/0x10d0 [ 2868.764202] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2868.765304] xas_store+0x8c/0x1c40 [ 2868.766079] __xa_store+0x164/0x2d0 [ 2868.766845] ? xa_delete_node+0x280/0x280 [ 2868.767732] ? trace_hardirqs_on+0x5b/0x180 [ 2868.768642] xa_store+0x31/0x50 [ 2868.769334] __io_uring_add_tctx_node+0x1cf/0x520 [ 2868.770352] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2868.771447] ? alloc_fd+0x2e7/0x670 [ 2868.772234] io_uring_setup+0x1fbb/0x2980 [ 2868.773110] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2868.774173] ? wait_for_completion_io+0x270/0x270 [ 2868.775216] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2868.776319] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2868.777408] do_syscall_64+0x33/0x40 [ 2868.778203] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2868.779294] RIP: 0033:0x7f6839abdb19 [ 2868.780078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2868.783924] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2868.785526] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2868.787022] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2868.788513] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2868.790066] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2868.791551] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:05:37 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 54) 09:05:37 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x6000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2868.828612] FAULT_INJECTION: forcing a failure. [ 2868.828612] name failslab, interval 1, probability 0, space 0, times 0 [ 2868.831794] CPU: 1 PID: 12200 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2868.834012] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2868.836333] Call Trace: [ 2868.837030] dump_stack+0x107/0x167 [ 2868.837817] should_fail.cold+0x5/0xa [ 2868.838617] ? create_object.isra.0+0x3a/0xa20 [ 2868.839574] should_failslab+0x5/0x20 [ 2868.840366] kmem_cache_alloc+0x5b/0x310 [ 2868.841214] ? mark_held_locks+0x9e/0xe0 [ 2868.842071] create_object.isra.0+0x3a/0xa20 [ 2868.842987] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2868.844052] kmem_cache_alloc+0x159/0x310 [ 2868.844926] xas_alloc+0x336/0x440 [ 2868.845678] xas_create+0x34a/0x10d0 [ 2868.846466] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 2868.847508] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2868.848614] xas_store+0x8c/0x1c40 [ 2868.849372] __xa_store+0x164/0x2d0 [ 2868.850143] ? xa_delete_node+0x280/0x280 [ 2868.851012] ? trace_hardirqs_on+0x5b/0x180 [ 2868.851923] xa_store+0x31/0x50 [ 2868.852615] __io_uring_add_tctx_node+0x1cf/0x520 [ 2868.853639] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2868.854729] ? alloc_fd+0x2e7/0x670 [ 2868.855500] io_uring_setup+0x1fbb/0x2980 [ 2868.856375] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2868.857449] ? wait_for_completion_io+0x270/0x270 [ 2868.858484] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2868.859580] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2868.860667] do_syscall_64+0x33/0x40 [ 2868.861454] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2868.862532] RIP: 0033:0x7f28100dfb19 [ 2868.863315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2868.867175] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2868.868761] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2868.870264] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2868.871771] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2868.873256] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2868.874754] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:05:37 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x9000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:05:37 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x600000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:05:37 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 40) 09:05:37 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ftruncate(0xffffffffffffffff, 0x0) r0 = syz_open_dev$vcsu(&(0x7f0000000100), 0xfffffffffffff37d, 0x80002) r1 = syz_io_uring_setup(0x3875, &(0x7f0000000000)={0x0, 0x140e, 0x0, 0x2, 0x354, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000080)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) 09:05:37 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x9100}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2868.938784] FAULT_INJECTION: forcing a failure. [ 2868.938784] name failslab, interval 1, probability 0, space 0, times 0 [ 2868.940168] CPU: 0 PID: 12209 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2868.940948] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2868.941899] Call Trace: [ 2868.942204] dump_stack+0x107/0x167 [ 2868.942624] should_fail.cold+0x5/0xa [ 2868.943061] ? create_object.isra.0+0x3a/0xa20 [ 2868.943592] should_failslab+0x5/0x20 [ 2868.944027] kmem_cache_alloc+0x5b/0x310 [ 2868.944494] create_object.isra.0+0x3a/0xa20 [ 2868.944995] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2868.945587] kmem_cache_alloc+0x159/0x310 [ 2868.946070] xas_alloc+0x336/0x440 [ 2868.946480] xas_create+0x34a/0x10d0 [ 2868.946914] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2868.947517] xas_store+0x8c/0x1c40 [ 2868.947931] __xa_store+0x164/0x2d0 [ 2868.948349] ? xa_delete_node+0x280/0x280 [ 2868.948828] ? trace_hardirqs_on+0x5b/0x180 [ 2868.949326] xa_store+0x31/0x50 [ 2868.949713] __io_uring_add_tctx_node+0x1cf/0x520 [ 2868.950261] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2868.950854] ? alloc_fd+0x2e7/0x670 [ 2868.951277] io_uring_setup+0x1fbb/0x2980 [ 2868.951754] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2868.952332] ? wait_for_completion_io+0x270/0x270 [ 2868.952892] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2868.953502] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2868.954088] do_syscall_64+0x33/0x40 [ 2868.954516] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2868.955102] RIP: 0033:0x7f900b55eb19 [ 2868.955528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2868.957629] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2868.958498] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2868.959316] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2868.960133] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2868.960942] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2868.961759] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:05:37 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000600)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e00000000000000000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000000000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a82000000000000fcffffffffffffff08000000000000000000000000000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee586837d58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721234a84652ebf4218b6e0ce32fe10c1fa4d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d637c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23cf2d14ec555c94dfffc8ffb25605f2e4ec89fadb0395c5324c5fd8f8623590a3c32dd2d19a9f44e2b71e22e1a3ec6acafc52dc98809caad3345db81cafb5295f523b583146a7476e804ec25180e620b2db8d13bcc89d1956dd87b027866000"/831]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:05:37 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x2001, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:05:53 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 55) 09:05:53 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x80ffff}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:05:53 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:05:53 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x2010, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:05:53 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 46) 09:05:53 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 41) 09:05:53 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x200, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 09:05:53 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x100ff}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2884.712818] FAULT_INJECTION: forcing a failure. [ 2884.712818] name failslab, interval 1, probability 0, space 0, times 0 [ 2884.714992] CPU: 1 PID: 12228 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2884.716277] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2884.717816] Call Trace: [ 2884.718319] dump_stack+0x107/0x167 [ 2884.718993] should_fail.cold+0x5/0xa [ 2884.719705] ? xas_alloc+0x336/0x440 [ 2884.720400] should_failslab+0x5/0x20 [ 2884.721103] kmem_cache_alloc+0x5b/0x310 [ 2884.721860] xas_alloc+0x336/0x440 [ 2884.722523] xas_create+0x34a/0x10d0 [ 2884.723220] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2884.724179] xas_store+0x8c/0x1c40 [ 2884.724864] __xa_store+0x164/0x2d0 [ 2884.725532] ? xa_delete_node+0x280/0x280 [ 2884.726313] ? trace_hardirqs_on+0x5b/0x180 [ 2884.727130] xa_store+0x31/0x50 [ 2884.727741] __io_uring_add_tctx_node+0x1cf/0x520 [ 2884.728645] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2884.729624] ? alloc_fd+0x2e7/0x670 [ 2884.730326] io_uring_setup+0x1fbb/0x2980 [ 2884.731096] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2884.732046] ? wait_for_completion_io+0x270/0x270 [ 2884.732966] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2884.733948] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2884.734909] do_syscall_64+0x33/0x40 [ 2884.735590] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2884.736515] RIP: 0033:0x7f900b55eb19 [ 2884.737186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2884.740551] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2884.741940] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2884.743250] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2884.744539] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2884.745835] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2884.747142] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2884.748837] FAULT_INJECTION: forcing a failure. [ 2884.748837] name failslab, interval 1, probability 0, space 0, times 0 [ 2884.751926] CPU: 0 PID: 12240 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2884.753675] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2884.755781] Call Trace: [ 2884.756501] dump_stack+0x107/0x167 [ 2884.757443] should_fail.cold+0x5/0xa [ 2884.758371] ? xas_alloc+0x336/0x440 [ 2884.759152] should_failslab+0x5/0x20 [ 2884.759946] kmem_cache_alloc+0x5b/0x310 [ 2884.760807] xas_alloc+0x336/0x440 [ 2884.761553] xas_create+0x34a/0x10d0 [ 2884.762367] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2884.763471] xas_store+0x8c/0x1c40 [ 2884.764150] FAULT_INJECTION: forcing a failure. [ 2884.764150] name failslab, interval 1, probability 0, space 0, times 0 [ 2884.764234] __xa_store+0x164/0x2d0 [ 2884.766987] ? xa_delete_node+0x280/0x280 [ 2884.767862] ? trace_hardirqs_on+0x5b/0x180 [ 2884.768850] xa_store+0x31/0x50 [ 2884.769774] __io_uring_add_tctx_node+0x1cf/0x520 [ 2884.771049] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2884.772388] ? alloc_fd+0x2e7/0x670 [ 2884.773352] io_uring_setup+0x1fbb/0x2980 [ 2884.774460] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2884.775752] ? wait_for_completion_io+0x270/0x270 [ 2884.777056] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2884.778411] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2884.779757] do_syscall_64+0x33/0x40 [ 2884.780711] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2884.782125] RIP: 0033:0x7f28100dfb19 [ 2884.783073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2884.787759] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2884.789698] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2884.791513] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2884.793336] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2884.795126] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2884.797107] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2884.798870] CPU: 1 PID: 12242 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2884.800093] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2884.801521] Call Trace: [ 2884.801987] dump_stack+0x107/0x167 [ 2884.802615] should_fail.cold+0x5/0xa [ 2884.803266] ? create_object.isra.0+0x3a/0xa20 [ 2884.804050] should_failslab+0x5/0x20 [ 2884.804703] kmem_cache_alloc+0x5b/0x310 [ 2884.805408] ? mark_held_locks+0x9e/0xe0 [ 2884.806122] create_object.isra.0+0x3a/0xa20 [ 2884.806902] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2884.807806] kmem_cache_alloc+0x159/0x310 [ 2884.808549] xas_alloc+0x336/0x440 [ 2884.809185] xas_create+0x34a/0x10d0 [ 2884.809867] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2884.810795] xas_store+0x8c/0x1c40 [ 2884.811440] __xa_store+0x164/0x2d0 [ 2884.812068] ? xa_delete_node+0x280/0x280 [ 2884.813255] ? trace_hardirqs_on+0x5b/0x180 [ 2884.814104] xa_store+0x31/0x50 [ 2884.814679] __io_uring_add_tctx_node+0x1cf/0x520 [ 2884.815625] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2884.816808] ? alloc_fd+0x2e7/0x670 [ 2884.817588] io_uring_setup+0x1fbb/0x2980 [ 2884.818341] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2884.819386] ? wait_for_completion_io+0x270/0x270 [ 2884.820432] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2884.821399] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2884.822396] do_syscall_64+0x33/0x40 [ 2884.823169] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2884.824199] RIP: 0033:0x7f6839abdb19 [ 2884.825009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2884.828543] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2884.830068] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2884.831294] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2884.832500] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2884.833697] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2884.834927] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:05:53 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0xc0ff20}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:05:53 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x20202, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x40000000) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="00000000000011002e2f66696c653000"]) r3 = mq_open(&(0x7f0000000180)='-!:&^\x00', 0x80, 0x1c1, &(0x7f0000000200)={0x3, 0xffffffffffffffc1, 0x6, 0x4}) sendfile(r2, r3, &(0x7f0000000240)=0x1, 0x1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) 09:05:53 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 42) 09:05:53 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x20a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:05:53 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 56) 09:05:53 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x80000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2885.026578] FAULT_INJECTION: forcing a failure. [ 2885.026578] name failslab, interval 1, probability 0, space 0, times 0 [ 2885.028033] FAULT_INJECTION: forcing a failure. [ 2885.028033] name failslab, interval 1, probability 0, space 0, times 0 [ 2885.029518] CPU: 0 PID: 12257 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2885.032976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2885.035113] Call Trace: [ 2885.035791] dump_stack+0x107/0x167 [ 2885.036730] should_fail.cold+0x5/0xa [ 2885.037698] ? xas_alloc+0x336/0x440 [ 2885.038654] should_failslab+0x5/0x20 [ 2885.039622] kmem_cache_alloc+0x5b/0x310 [ 2885.040668] xas_alloc+0x336/0x440 [ 2885.041535] xas_create+0x34a/0x10d0 [ 2885.042478] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2885.043835] xas_store+0x8c/0x1c40 [ 2885.044777] __xa_store+0x164/0x2d0 [ 2885.045717] ? xa_delete_node+0x280/0x280 [ 2885.046793] ? trace_hardirqs_on+0x5b/0x180 [ 2885.047896] xa_store+0x31/0x50 [ 2885.048737] __io_uring_add_tctx_node+0x1cf/0x520 [ 2885.049958] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2885.051288] ? alloc_fd+0x2e7/0x670 [ 2885.052232] io_uring_setup+0x1fbb/0x2980 [ 2885.053303] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2885.054607] ? wait_for_completion_io+0x270/0x270 [ 2885.055876] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2885.057200] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2885.058518] do_syscall_64+0x33/0x40 [ 2885.059468] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2885.060772] RIP: 0033:0x7f900b55eb19 [ 2885.061734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2885.066463] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2885.068240] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2885.069722] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2885.071197] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2885.072674] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2885.074160] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2885.075691] CPU: 1 PID: 12258 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2885.076746] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2885.077942] Call Trace: [ 2885.078338] dump_stack+0x107/0x167 [ 2885.078864] should_fail.cold+0x5/0xa [ 2885.079419] ? create_object.isra.0+0x3a/0xa20 [ 2885.080085] should_failslab+0x5/0x20 [ 2885.080630] kmem_cache_alloc+0x5b/0x310 [ 2885.081210] ? mark_held_locks+0x9e/0xe0 [ 2885.081796] create_object.isra.0+0x3a/0xa20 [ 2885.082433] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2885.083158] kmem_cache_alloc+0x159/0x310 [ 2885.083748] xas_alloc+0x336/0x440 [ 2885.084259] xas_create+0x34a/0x10d0 [ 2885.084802] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2885.085563] xas_store+0x8c/0x1c40 [ 2885.086097] __xa_store+0x164/0x2d0 [ 2885.086626] ? xa_delete_node+0x280/0x280 [ 2885.087245] ? trace_hardirqs_on+0x5b/0x180 [ 2885.087886] xa_store+0x31/0x50 [ 2885.088365] __io_uring_add_tctx_node+0x1cf/0x520 [ 2885.089187] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2885.089965] ? alloc_fd+0x2e7/0x670 [ 2885.090510] io_uring_setup+0x1fbb/0x2980 [ 2885.091124] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2885.091861] ? wait_for_completion_io+0x270/0x270 [ 2885.092593] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2885.093370] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2885.094135] do_syscall_64+0x33/0x40 [ 2885.094673] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2885.095409] RIP: 0033:0x7f28100dfb19 [ 2885.095947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2885.098649] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2885.099999] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2885.101208] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2885.102353] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2885.103491] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2885.104612] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:05:54 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e00000000000000000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000000000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a84000000000000fcffffffffffffff08000000000000000000000000000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee5868cbd58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721234a84652ebf4218b6e0ce32fe10c1fa4d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d6339832bd4c6806617b12ee49a7c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) r4 = creat(&(0x7f0000000180)='./file0\x00', 0x1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x110, r4, 0x8000000) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r5, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r5) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:05:54 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x1000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:05:54 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 47) [ 2885.147925] FAULT_INJECTION: forcing a failure. [ 2885.147925] name failslab, interval 1, probability 0, space 0, times 0 [ 2885.149507] CPU: 1 PID: 12265 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2885.150486] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2885.151628] Call Trace: [ 2885.151995] dump_stack+0x107/0x167 [ 2885.152502] should_fail.cold+0x5/0xa [ 2885.153032] ? ___slab_alloc+0x360/0x700 [ 2885.153594] ? create_object.isra.0+0x3a/0xa20 [ 2885.154226] should_failslab+0x5/0x20 [ 2885.154748] kmem_cache_alloc+0x5b/0x310 [ 2885.155303] create_object.isra.0+0x3a/0xa20 [ 2885.155884] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2885.156567] kmem_cache_alloc+0x159/0x310 [ 2885.157129] xas_alloc+0x336/0x440 [ 2885.157609] xas_create+0x34a/0x10d0 [ 2885.158135] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2885.158844] xas_store+0x8c/0x1c40 [ 2885.159329] __xa_store+0x164/0x2d0 [ 2885.159820] ? xa_delete_node+0x280/0x280 [ 2885.160381] ? trace_hardirqs_on+0x5b/0x180 [ 2885.160967] xa_store+0x31/0x50 [ 2885.161405] __io_uring_add_tctx_node+0x1cf/0x520 [ 2885.162081] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2885.162783] ? alloc_fd+0x2e7/0x670 [ 2885.163289] io_uring_setup+0x1fbb/0x2980 [ 2885.163865] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2885.164559] ? wait_for_completion_io+0x270/0x270 [ 2885.165226] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2885.165936] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2885.166635] do_syscall_64+0x33/0x40 [ 2885.167141] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2885.167829] RIP: 0033:0x7f6839abdb19 [ 2885.168318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2885.170781] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2885.171799] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2885.172759] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2885.173706] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2885.174666] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2885.175628] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:05:54 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x400000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:05:54 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x2000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:05:54 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x21a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:05:54 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x3, 0x5, 0x2, 0x7, 0x0, 0x2, 0x1000, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7, 0x0, @perf_bp={&(0x7f0000000000), 0xd}, 0xd9158cab9ba46ad5, 0x5, 0x2, 0x1, 0x100, 0x200, 0x2, 0x0, 0x76d355d6, 0x0, 0x7ff}, 0x0, 0xb, 0xffffffffffffffff, 0xb) 09:05:54 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 48) 09:05:54 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x600000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:05:54 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x3000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:05:54 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 57) [ 2885.366537] FAULT_INJECTION: forcing a failure. [ 2885.366537] name failslab, interval 1, probability 0, space 0, times 0 [ 2885.368276] CPU: 1 PID: 12283 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2885.369277] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2885.370488] Call Trace: [ 2885.370880] dump_stack+0x107/0x167 [ 2885.371406] should_fail.cold+0x5/0xa [ 2885.371951] ? xas_alloc+0x336/0x440 [ 2885.372485] should_failslab+0x5/0x20 [ 2885.373040] kmem_cache_alloc+0x5b/0x310 [ 2885.373641] xas_alloc+0x336/0x440 [ 2885.374170] xas_create+0x34a/0x10d0 [ 2885.374741] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2885.375497] xas_store+0x8c/0x1c40 [ 2885.376023] __xa_store+0x164/0x2d0 [ 2885.376557] ? xa_delete_node+0x280/0x280 [ 2885.377162] ? trace_hardirqs_on+0x5b/0x180 [ 2885.377790] xa_store+0x31/0x50 [ 2885.378278] __io_uring_add_tctx_node+0x1cf/0x520 [ 2885.378967] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2885.379724] ? alloc_fd+0x2e7/0x670 [ 2885.380266] io_uring_setup+0x1fbb/0x2980 [ 2885.380866] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2885.381588] ? wait_for_completion_io+0x270/0x270 [ 2885.382315] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2885.383064] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2885.383809] do_syscall_64+0x33/0x40 [ 2885.384339] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2885.385064] RIP: 0033:0x7f6839abdb19 [ 2885.385602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2885.388230] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2885.389322] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2885.390346] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2885.391330] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2885.392330] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2885.393336] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2885.414031] FAULT_INJECTION: forcing a failure. [ 2885.414031] name failslab, interval 1, probability 0, space 0, times 0 [ 2885.416576] CPU: 0 PID: 12288 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2885.418068] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2885.419843] Call Trace: [ 2885.420399] dump_stack+0x107/0x167 [ 2885.421180] should_fail.cold+0x5/0xa [ 2885.422012] ? create_object.isra.0+0x3a/0xa20 [ 2885.422995] should_failslab+0x5/0x20 [ 2885.423809] kmem_cache_alloc+0x5b/0x310 [ 2885.424680] ? mark_held_locks+0x9e/0xe0 [ 2885.425556] create_object.isra.0+0x3a/0xa20 [ 2885.426508] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2885.427601] kmem_cache_alloc+0x159/0x310 [ 2885.428499] xas_alloc+0x336/0x440 [ 2885.429262] xas_create+0x34a/0x10d0 [ 2885.430082] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2885.431204] xas_store+0x8c/0x1c40 [ 2885.431989] __xa_store+0x164/0x2d0 [ 2885.432771] ? xa_delete_node+0x280/0x280 [ 2885.433656] ? trace_hardirqs_on+0x5b/0x180 [ 2885.434585] xa_store+0x31/0x50 [ 2885.435296] __io_uring_add_tctx_node+0x1cf/0x520 [ 2885.436336] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2885.437462] ? alloc_fd+0x2e7/0x670 [ 2885.438266] io_uring_setup+0x1fbb/0x2980 [ 2885.439166] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2885.440257] ? wait_for_completion_io+0x270/0x270 [ 2885.441322] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2885.442452] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2885.443568] do_syscall_64+0x33/0x40 [ 2885.444366] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2885.445468] RIP: 0033:0x7f28100dfb19 [ 2885.446272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2885.450103] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2885.451715] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2885.453231] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2885.454754] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2885.456266] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2885.457779] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:06:08 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 58) 09:06:08 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x4000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:06:08 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 43) 09:06:08 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 49) 09:06:08 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000600)=ANY=[@ANYBLOB="00f9ff00000000000100606e74a80fb646147dc85e00000000000000000000ff030000000000000000000000000000000000000000000000000000000000eaff0200000003000000ffff00000000000009000000000000000600000000000000020000800000000000000000000000000000000000000000000000000000000000800000030000000200007f000000002a84000000000000fcffffffffffffff08000000000000000000000000000000000000000000000000000000c91d84c3000000000000000000000008000000000000000000000000000000000000001d300000010000030000000000000000e2ffffff00000000000000000000000000bde386d63bcd07f198d746b9157e5bb66ca4c3317884d539c0cb07f0432fa5c0cc6d215b3df4f3146623cc352833ca4e5c8a29f5293b66bbbbe1626566e7cb7f908feb74133e10edb36e004febd9bdd5666aba350b1e4871fe1d3d3163daea34319314168a0f52566e068efc69ae2467ed0521131580f063b47145fde83dcc89ec6faa226f316174181770836d9ccf8467f3fcf34e54f752b6ee5868cbd58a1db6558002ff5d649ad2c97ac5b25884429d9b7e372a480cb61ddd873a2cbd146b69ba038acbfbfe843411c124e8d22947d62368d0a977d4bea46832dc2d0efb9675f96687f1c3417d7d49aeb8045c21ffc969cfb704e450fe462050ff80588979a1d69879903f989bae9dc2c599441721234a84652ebf4218e126d9ed922673504d5e170c515229628131de71197e7387ec2eab018be7b4c6a4f2dfe76b5f9d240033f8b3872484db4f182d9d1fba63d800978b3f9845123490549ea944cb838f02000000f87cf524c9079f60b9dc621518e0039ec3f20f717ae0b38da93bd3ec9ae808a142cb8af18cd4142038d6e34429d561b257f6997e38d6cae1d4686aa4653cc972bf37a717695ff75b5d6339832bd4c6806617b12ee49a7c46ebaeaa65bb855f07737fbaa23820c7bd62591186c41483c3844693561fa500b316fae64e23a08c92f84aca459d3f9378d8b01aef35ab25ba9e50efaef3c630ea6fc85051ca4bdeeed8a43b82d3b124bd6d1257f7dc80991c9ecbf69ea8c48681c82742577f5cede6317c88265db7aceaf569a82c5c3a1d0d925ccc7f1e5bded1bc01c47e7981cd51df72ecfe106c6deffde36936cd12436226c0e49c1da4ec8dc66b076bb5afa5171b06e0f2eb6ca5dd21834c6a8ed72bbe767b7b6cebf583"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f00000002c0)='erofs\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) syncfs(r2) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x93, 0x9, 0x0, 0xde, 0x0, 0x9, 0x4, 0x8, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xffff, 0x2, @perf_config_ext={0x80000000, 0x3}, 0x314, 0x2000000040000, 0x6, 0x0, 0x5, 0x80000001, 0x5, 0x0, 0x9, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x9) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:06:08 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x22a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:06:08 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x800000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:06:08 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) [ 2900.137799] FAULT_INJECTION: forcing a failure. [ 2900.137799] name failslab, interval 1, probability 0, space 0, times 0 [ 2900.141242] CPU: 1 PID: 12307 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2900.143300] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2900.145775] Call Trace: [ 2900.146581] dump_stack+0x107/0x167 [ 2900.147674] should_fail.cold+0x5/0xa [ 2900.148814] ? xas_alloc+0x336/0x440 [ 2900.149930] should_failslab+0x5/0x20 [ 2900.151083] kmem_cache_alloc+0x5b/0x310 [ 2900.152326] xas_alloc+0x336/0x440 [ 2900.153439] xas_create+0x34a/0x10d0 [ 2900.154597] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 2900.156091] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2900.157671] xas_store+0x8c/0x1c40 [ 2900.158303] FAULT_INJECTION: forcing a failure. [ 2900.158303] name failslab, interval 1, probability 0, space 0, times 0 [ 2900.158794] __xa_store+0x164/0x2d0 [ 2900.162356] ? xa_delete_node+0x280/0x280 [ 2900.163628] ? trace_hardirqs_on+0x5b/0x180 [ 2900.164919] xa_store+0x31/0x50 [ 2900.165910] __io_uring_add_tctx_node+0x1cf/0x520 [ 2900.167350] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2900.168892] ? alloc_fd+0x2e7/0x670 [ 2900.170001] io_uring_setup+0x1fbb/0x2980 [ 2900.171261] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2900.172754] ? wait_for_completion_io+0x270/0x270 [ 2900.174240] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2900.175814] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2900.177389] do_syscall_64+0x33/0x40 [ 2900.178492] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2900.180000] RIP: 0033:0x7f900b55eb19 [ 2900.181107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2900.186627] RSP: 002b:00007f9008ab3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2900.188858] RAX: ffffffffffffffda RBX: 00007f900b672020 RCX: 00007f900b55eb19 [ 2900.190983] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2900.193066] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2900.195157] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2900.197224] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2900.199388] CPU: 0 PID: 12308 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2900.200942] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2900.202798] Call Trace: [ 2900.203369] dump_stack+0x107/0x167 [ 2900.204172] should_fail.cold+0x5/0xa [ 2900.205032] ? create_object.isra.0+0x3a/0xa20 [ 2900.206056] should_failslab+0x5/0x20 [ 2900.206907] kmem_cache_alloc+0x5b/0x310 [ 2900.207804] ? mark_held_locks+0x9e/0xe0 [ 2900.208724] create_object.isra.0+0x3a/0xa20 [ 2900.209686] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2900.210832] kmem_cache_alloc+0x159/0x310 [ 2900.211777] xas_alloc+0x336/0x440 [ 2900.212591] xas_create+0x34a/0x10d0 [ 2900.213586] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2900.214783] xas_store+0x8c/0x1c40 [ 2900.215599] __xa_store+0x164/0x2d0 [ 2900.216438] ? xa_delete_node+0x280/0x280 [ 2900.217413] ? trace_hardirqs_on+0x5b/0x180 [ 2900.218409] xa_store+0x31/0x50 [ 2900.219172] __io_uring_add_tctx_node+0x1cf/0x520 [ 2900.219549] FAULT_INJECTION: forcing a failure. [ 2900.219549] name failslab, interval 1, probability 0, space 0, times 0 [ 2900.220258] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2900.220277] ? alloc_fd+0x2e7/0x670 [ 2900.220312] io_uring_setup+0x1fbb/0x2980 [ 2900.220344] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2900.227703] ? wait_for_completion_io+0x270/0x270 [ 2900.228846] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2900.230049] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2900.231235] do_syscall_64+0x33/0x40 [ 2900.232088] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2900.233279] RIP: 0033:0x7f28100dfb19 [ 2900.234120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2900.238216] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2900.239958] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2900.241553] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2900.243148] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2900.244734] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2900.246316] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2900.247976] CPU: 1 PID: 12311 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2900.250065] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2900.252560] Call Trace: [ 2900.253412] dump_stack+0x107/0x167 [ 2900.254584] should_fail.cold+0x5/0xa [ 2900.255808] ? xas_alloc+0x336/0x440 [ 2900.256999] should_failslab+0x5/0x20 [ 2900.258219] kmem_cache_alloc+0x5b/0x310 [ 2900.259529] xas_alloc+0x336/0x440 [ 2900.260660] xas_create+0x34a/0x10d0 [ 2900.261854] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2900.263516] xas_store+0x8c/0x1c40 [ 2900.264588] __xa_store+0x164/0x2d0 [ 2900.265659] ? xa_delete_node+0x280/0x280 [ 2900.266893] ? trace_hardirqs_on+0x5b/0x180 [ 2900.268129] xa_store+0x31/0x50 [ 2900.269085] __io_uring_add_tctx_node+0x1cf/0x520 [ 2900.270462] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2900.271993] ? alloc_fd+0x2e7/0x670 [ 2900.273064] io_uring_setup+0x1fbb/0x2980 [ 2900.274273] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2900.275748] ? wait_for_completion_io+0x270/0x270 [ 2900.277183] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2900.278720] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2900.280218] do_syscall_64+0x33/0x40 [ 2900.281277] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2900.282781] RIP: 0033:0x7f6839abdb19 [ 2900.283862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2900.289158] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2900.291309] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2900.293346] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2900.295396] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2900.297400] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2900.299422] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:06:09 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x80ffff}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:06:09 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 09:06:09 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x23a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:06:09 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x5000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:06:09 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0xb0ff20}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:06:09 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 59) [ 2900.620099] FAULT_INJECTION: forcing a failure. [ 2900.620099] name failslab, interval 1, probability 0, space 0, times 0 [ 2900.622805] CPU: 1 PID: 12329 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2900.624352] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2900.626185] Call Trace: [ 2900.626910] dump_stack+0x107/0x167 [ 2900.628096] should_fail.cold+0x5/0xa [ 2900.628947] ? xas_alloc+0x336/0x440 [ 2900.629860] should_failslab+0x5/0x20 [ 2900.630721] kmem_cache_alloc+0x5b/0x310 [ 2900.631642] xas_alloc+0x336/0x440 [ 2900.632418] xas_create+0x34a/0x10d0 [ 2900.633266] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2900.634474] xas_store+0x8c/0x1c40 [ 2900.635307] __xa_store+0x164/0x2d0 [ 2900.636074] ? xa_delete_node+0x280/0x280 [ 2900.636984] ? trace_hardirqs_on+0x5b/0x180 [ 2900.637938] xa_store+0x31/0x50 [ 2900.638754] __io_uring_add_tctx_node+0x1cf/0x520 [ 2900.639790] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2900.640971] ? alloc_fd+0x2e7/0x670 [ 2900.641778] io_uring_setup+0x1fbb/0x2980 [ 2900.642549] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2900.643467] ? wait_for_completion_io+0x270/0x270 [ 2900.644356] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2900.645308] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2900.646234] do_syscall_64+0x33/0x40 [ 2900.646923] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2900.647849] RIP: 0033:0x7f28100dfb19 [ 2900.648526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2900.651865] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2900.653218] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2900.654483] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2900.655774] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2900.657048] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2900.658308] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:06:26 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 44) 09:06:26 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0xc0ff20}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:06:26 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 60) 09:06:26 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x24a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2917.225725] FAULT_INJECTION: forcing a failure. [ 2917.225725] name failslab, interval 1, probability 0, space 0, times 0 [ 2917.228268] CPU: 1 PID: 12337 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2917.229756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2917.231551] Call Trace: [ 2917.232123] dump_stack+0x107/0x167 [ 2917.232909] should_fail.cold+0x5/0xa [ 2917.233735] ? create_object.isra.0+0x3a/0xa20 [ 2917.234694] should_failslab+0x5/0x20 [ 2917.235524] kmem_cache_alloc+0x5b/0x310 [ 2917.236397] ? mark_held_locks+0x9e/0xe0 [ 2917.237276] create_object.isra.0+0x3a/0xa20 [ 2917.238219] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2917.239322] kmem_cache_alloc+0x159/0x310 [ 2917.240219] xas_alloc+0x336/0x440 [ 2917.240993] xas_create+0x34a/0x10d0 [ 2917.241811] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2917.243160] xas_store+0x8c/0x1c40 09:06:26 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x6000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:06:26 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000240)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f0000000200)=0xc) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000280)) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x40, 0x5, 0x7, 0x0, 0xfff, 0x140220, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffffffff, 0x2, @perf_bp={&(0x7f0000000000), 0x8}, 0x0, 0x2, 0x5, 0x9, 0x7, 0xaf, 0x2, 0x0, 0x9, 0x0, 0xe000000000000}, r2, 0x6, r0, 0xb) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x24, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x10, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251"]}]}, 0x24}}, 0x0) r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffdfffffffff, 0xffffffffffffffff, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, r5, {0xee01, r6}}, './file1\x00'}) fchown(r4, r3, r6) fremovexattr(r5, &(0x7f0000000100)=@random={'os2.', '(\x00'}) 09:06:26 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000008c0)={{{@in6=@initdev, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@private0}}, &(0x7f00000009c0)=0xe8) [ 2917.243951] __xa_store+0x164/0x2d0 [ 2917.244913] ? xa_delete_node+0x280/0x280 [ 2917.245825] ? trace_hardirqs_on+0x5b/0x180 [ 2917.246933] xa_store+0x31/0x50 [ 2917.247690] __io_uring_add_tctx_node+0x1cf/0x520 syz_mount_image$nfs4(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x2, 0x9, &(0x7f00000007c0)=[{&(0x7f00000002c0)="9fb0a55aa605c3a0b700d5bfe568374ced1a47825095137ec85d13df2d113f0b908da74f04d89fe3a2b3f89c9de04a91a01118db0b353101102197e4fdce9277219d5dbf3557f5f3761b", 0x4a, 0x80}, {&(0x7f0000000480)="5baca03d25cf00666f776775c9a49c637cba1f07130f0c1f502422089b6d64d0d4b086b67911bcb917f3d91f0fb6683d3a1865da43111cf7ef9aa0", 0x3b, 0x1ff}, {&(0x7f0000000600)="276f851f3a440078c08bb1bfd29d75f574862abbcb8b84", 0x17, 0x4}, {&(0x7f0000000640)="11374415b46c1e72e5a70405265ee5376fa2b4292c5d7a8009e669ae0e0cd42b920f14475720d6ccb8f798f0ba8b68d4cbbfaac308f262a054d5cb3e67c4be75ca7cb9148b50dc294496287d6854c84169", 0x51, 0x6903}, {&(0x7f00000006c0)="ef0e0a1a630be73df802e4c2f2e6a20680fa34ce5c6392d142649640e1210bf19284aa8021259fcfd626ccb5bfccdc7e3b63e1795cc1f95830d86ae22ce66025d0a91fb060b757df1a8403cd56a277eb1eabdc45be1af0fd6ebfef91e6afaee94e5696daa9970843affd6dcbdef3a5c124aa61fd0cb960e4bbdba4c4ebb175c149c967733aa5bd60f7", 0x89, 0x9}, {&(0x7f0000000d80)="a6c55ad2bbc835c61012b1338fcbbd5dca4437ab4e90e4a9314f766adc7378401207dc351961880f60925af6172029d8b64a1b5349c69a90aac579184bff841173958e9c53d46794a345070748411df6a866765e3e73ec07fd25fff5fc2155e99945957b768efa339559a2bc9b309538ead544c525d2ecd3f4127f37c7ef01532ddb9cd1866a779ced9d1affc8d3d88d7326d75652a8ce20a96e220dbc5d8ef6e71569a2dfe5b89dc8200b0e057b4aad0b07a777188a4d3c48fccc0fca768611cb2b502474006e57b5da6a6b05a2909132a1fb72593ce24e104eed00d0f13f3c909e5b6e7a8c3abc3b4c9b4d166f94b7d9ffb5962e0eca817ba0d8725662d3131f08febe692d1bd8a3276a26166434ecd90272fa0fe197362c808919a9586f5ac046ff57b3619ff1c98274987377e1dd11e6b863eb937245c97886341626d69215f162812e8dd8b78899601a0fe4a102f1025982b37a44ecb3de89077f09cdceb57a04eb53b2f916c3c9b183c0486c2bdc5f97a7b2bba4af9fb4cc8763a036bb97d00cb468d9fc18316e92891d309e0f6001072ee09ab2cebcc369d2f661c39219dcfba216fc6cd6130b0e77e3879bf5bba68a341f99fa44eda5494fa52df8b201d349112d1f6c1c595a02d774ffff751fd645b42f5b3e675a999c5c51a7a9118b676f57d6eb0d25b2a78fce22dbe2d1c03b1e7c94195c10e208025a1af2eed01aba7812582766fb59e6830459b788a4bd3eb95e76c00d365ca7f4c0c98e4f5398b647311400de06f51b116fc85842beb05721a9efbba54fef364e538c1839058772e3c41d4b772e206d3c71e68ce7205b7c649d26ebedcfa487e21349dd8247c84cd4154ae84155fe651218d33d669813ed26527c385c2b6639338df738887f32b995b0083bca0441faabe3a78c78ec05b224567a036aa6deab86de88a24112a5ee9e5a02482f5614c4cbb21413586cf98f3a391602046afc12000b983871353b512101c31acc909d9061e5803a66e38845996fe319f2612ed992c9c676522c51bba7cb1fa6f82b047499652f2a351c3863bdc100a40cb693d5b44b2cb0d2cae72adefe624cb72530ed1607d5649ff9d8c232919ca664aff725f64d7ae0c853cf0d632e5fe418c210c612f962591f81f49328a06df74eef54e21ce2610794d25c0bc69b362977e19b8a8464c320d013043d0812d3e7cdf2cef9df92d4b99f0628593bcdcb41c391f70eaef9777dca5b493b46e4f6e21e6dd5887ebb71429727de1244d9b41b2a25aedbd2a605d8169966ea1c81447b80937cc82fc1097e1f8ede683452e353baf23f3fc596c229a53314fe7151d54734e2349ecb4abbe2e20ee7fe7a8eeb1019c833ad96c15305644d95d2f8d4bc68c96b446917c486b6f5fdb394f90248e03224cfc162affa6586b22e59ea8866d175b5ef6e478fc7f3bd4ef83306d3be6c7b1fc2a24d97d3c7a68e70725ffe985d90a4ca7a3cbc35ce17a0cd21d35fb009c2bd09f9fd6a4c7a56e72914c1938a9e4c725cac2364a00b6aaae864ebff8c7b1c0196e4b13ebe43d9550e7b885ab4933a5ae99de59e56b1f0ebce7d4f613a3ae226d952fd394a5c5e5c45e2b8b18ed8772038ebce7787c6d16211916c5ae4d5e81389e7f84713b300487effbb34945a6b195cfc2e5ebf3edd9e0c4aaf3acdbba9a000b939154df19e7b0a42055b3ed0235f7a22520f7444716e7fe813bb3a169c334847b79e88227af5fb0d50f6c7473b7f02673a8dfadc8597072a83010f866c0b66ef4dbe51ffa3fbb0d7ea7405b28611cf569feb523c772ba1ccb3ecd095278979ba215ba31f5fb7dd336c1cd6c3d77731c3ade5d044fde1df9273231865ed2e342c5fbcf69bb19fe66791b779a36bf1979bc3c4e19fa7a7a3d0e0e03982ca51e6f511528fd628a20ea626eba49832b0d74b2fddee910ec17fec7aeba76cb86a4700a5ba03f5abc8ad000fec079ee9da4ccf9f781912b02d6aa8101896a69b87e74be531d0a648c6f53a32da5233c53df5a5ca594ea8865d54449bf25d0c3b07a4e160f27f9052e2db145c83219aad7899e04b0ecfedf7c7d54610d09c01621a6e281bc98d3ea0bba9c6cc0a9e588471bcc60229e11f49590840e60512f26dea5ad40e40661076eb8223acc77c901ae9d395b1563d718d8164e42acdc8c0a5c65095ed6214f8708b29121e893405785c284505dd3d862d46b558c2582cef8b0b25c78401eb359293b3d866308be2d132984cf0e572ec996533e069d997abc73bb2f94bbe296752d5018d5946b1af38b9bf2e85d8464d2421d61479e55820b7f45224e302a5951f7f33dfeb1348381083e584bcdb891a9579ea815fbff6ca5cf2d34a3aecf36ffad9412b3b9ab6e219f7340aaf853d3b51312be039be556e355b21a6e3889d28fd95d9dc9f5085976625a5897fb6a3707b205f2b7696bd04c187ca971a966a2d4a3daa8ef79fa914229a053c9fa3905ea0b14c1621b1df866c0d59b50e16dde268c759c4747b607e0ccae68933ce7e43ae8235325d798226311ba20daaff47dcec98c46940689eeb1f1fe8a2a462a68666ef743cce58a0d038c0a3dfe48effb87c2953064f8aa0686e8d7260557ede70cd99be37d976b7f8ee3722e50b42e416e7493c1e556f8c1ebd969152e49dfaa092f4a2b57a29dcd939b174e08a29f8a5040155433050a82f97e9b8ff09b447a276ff11a7030378366645af4441b3763aba7ce07b39d96361bbf38e970e1b8c9a179eaa210c751d803300ed465d3f5b66de5fd751ccde57881f0ca75084d219ace97d8253c746bc3d02ae254a4483ac4f3929206f187e35a6de0e566a1033a81a5bb4e6bba68e45459c09e5ea6e704ad92496eb7ff073e5a4c362b2230e5cbf6440bc0cf4b6d2889b85b0ab467bb25ed026899792b57f14309ecafbee1b7aec3fa4c1ded53adc6900058d48046c31a0464210b640466cb12442f587a608c6ae481184693a0c627c0e52c96181a0bb8e545b50bd6afe5606d1e2c1ccd33b48b371974b2e66ec1d2f32e40d2c7fb4f9956a2cbb06c03eae2e543561f77abec8af25ecb95a179b5d3f333abdb13c00f5e9d9352ad877d78ee64a68ff92a02ab49f0f9fee5c4a55d1852a9c6eecd9553782de6f182b0368be25563af32e721fa38c8087b473513724fe0f7c71318a532967392b1d5c6d66107ecdc1e733e125cd9d41c824ab802f0e489199b258905603a3a2f49ce022565c715e3cd1139570abab9c0a4f77253d46e21a00e50996abac85bcf91999ab443b69efc12b3a2afd1f23d9f186b50e287384d5b76962158486a8367c4e50d674e4f18c9b0bcae8a8fd9040f88f26d7f226f31d319baa95bde5a816106a48deb66ce088d83952954f1eff3dd791821ae4817c37ec85cf77d283249f0a5bb56ece8a094f52cdb0d0e15b7ffc5aa0f8d518de7f6715d840dc09bd802b4f40c0a9a13cc6aec1ad1d07bbde65b772f361b1ed8e87d4818ae49de20fca8659dc0cb1b9e2ef42c12ec1d07750d814d211cda62d44975e08afd4b89c17499082dcf8a4a1e05496f835703b3e9accdd393cc45f71df46e513702c74949c0857bea99fe45a92700484274a67abe29eba419fbeec9773dda55f2a1771d4cc118afbe2a1430494ce0127a7358d68c5586e397c6c61f100796c9de6767eada96e5c0312f5cd8c5e1a63e40dd373492da003eb6309f664ba298e9580f63858f2d6b4d7e40e174bd7cbb680e4bfb9f27c49e8d21c5effb03e076638837fce47adef25c76f23389af8b11b02e873eaf2bfc2c961e830f04b388b0edc9ad21d0282a2c20c10e03f42c903c15c9d7e48a2b70691b0b87acc0c1d4a1977232ebdc24933c007305e5f07f35f69964e5e1fe5958161d28742f8cfe814d450edae75ca0cba04d0d9d20b555b99ccc0ff2a92804b3d354adcf49402e1148e53aa7171302873010811b39bee5729aee4a511562834aca8461bf3f5b5dfbd0c737000a09f2dc10dd26ca227abbdca18988d9d3714604c993f6f33d96802a44b72583289b7d0ff838b96e9d37170cd3b54d0c89c4c4beb3780ae9324dcd4efb3153d9d2977ecd095a0cc855f53d519665fa91666e4048ee1044e094c5d2df2cb9b897a6b65773843016bc7a23b1a2dc89173ae7dee6b87e1ac7c7e4cac1fce698465fdf8709af63f17b1bea5d43dc4261aa7827a1b92c39a5132e8d36535e7355d07323b2e4bcd16fbf9973138eca52252cab87ddcc2870b51894b42e0842b4cee65c630a30a358bbd88f61183d83767a200be90d04a0814a4c8aeeaead4c2aea400db334f00778c760a8695d0c98fd53c70b12c5095dfe6f569c3a12a752cab39c942f365f2bb068452cdacd7a5217e3b344177f07742931fa013d06b421cd2c86c45394e5ef1cf753714d5b9bc999d80e393712383ad39bf50f55bb3b756e0ab80455d3855a3a9e02093edb64cd973db60a4490c15a711345fb91dd3307a7890771aea33f68e8ac3a6910de12c2e1a73d117e331bee671bf6eccb9a3b486cbaf07f15b275dc78bf3a14a0aaac682b27757d84726119ee1a221a8235ffecb59a710e0db6cf1479a7e5f4933ab30ec68191cc025b87733a0335af8476f4053dea6d299002bcbe84e7b75c2e53a929f2d34624fb8f065d39673ee78414a0ee71402741ec012730c15258507f1b4ee951f4c23497eea56922845f1d792b31be207f86a2d74768356e71754c9cb958adec2fa97e92788e6548d8ec74b9c95ec7a726ce9a90c84aa7c126df2ac682b050edcd2f2ffc6858c943bab69cb17b7cd4bec47f255c39a9785b64a73ece4b3dd663b85bdd66d91e5fde9c4d41548cc73594ce4dc004376cd227a7ed78664da9d4913052dae2f4a808fcdfaf77ffa108578a173a55aceb330417207a8423e2a70efda9c78a33ea71294473986c526df997a98ef14814f34f6a63fae2781fbf878642b03bd77c4dffbd34be888aba7609efc87f29487259df0ba350cfbfc33629d09e451544f876bb3ad94caf9c16e0408fb2392325ac053e6a5eb4832934d7f0e3401bc84ef3953d50d5d470d596d269c23f3267e5f77c9b86d8e21dc220f7f593d35d1b0e80a37fd8ea8716296a94fc0d6cd27c0c88c32be72111684d8ce75cd541c722b797a568dbf21db1cdc973ceeb4b3ddad264fc7fc180a4631ff9be046a3875df91ea559797e7b1f0d141659df899f04c7b03c5f4ceb813c9181edeeeef294802654f0bbb961421a91a7f2a6f67011804b66fd8d3c4f05040fcd39b6a922f98507167e51606901c2fd04f6f581509b5be1d5dc934abc7567cc737c72b80d55f8945e8d64db08db9e6745552c73f0f5a31da7aaba6e8696f17a968cd48fb86f590977b8e484627aa4d9b4a0e8e868b8ec43af76e4323fa03514046b3487bb727a6b7981d1f2c8470cf055f34b4a68dc119c605b2b9a6f8bbc9140049e12043d0fe7a417effd59a0e81a24914fd238e4076ab014d61f4b091d3347d13ceeee0a2f7678b8f10554e5ff8fc622dd5ce1569191ec8ced62a2e4a6e20d9185d20e00d7262c11a55a245efb1dc4b2b6c34d9cf18b6e9528af6095cfe8d8a9a038a18337edef3923b3da7949872e16da68605f7e2a32d89b37cbce34c6f9d3f7b5d342047f11eb8a2277fb6fd026840702966aebdbcab015d616b475aee2b7d35cbcd659324e67c19034814a7d1540f0cc05f131f9d7d55a875586b224cb1ff27586f623514cf22b4a3b808e7174a6124c312b15b4d82ae926f66a23e717df10d8c3043190825789797a7926fb", 0x1000, 0x6}, {&(0x7f0000002e40)="fcbaad787731766f8eeb4e6cb0766b9988603f57fee657146839a0a39b9af6d2970d4108aa32659be54d862f59b6893857f11cc883b31603dea24cda3711813c8a37cc9e96f19d1793dc4531125e9edb80ca3f61fbbfeaf10050332ea9c5357f379ef5ca12e8463a1e2c430cf4f81f4cda95a593b757d1f76692276a7705c943007921f795c5f1fe2256a3e32e85d38af8a588665a58a6eb115d36c1ab69b0f02bcfd9e8a32cbd2c6e6b07caaa89f3630a80242a945136c28ac53b965cfbc19e096eaeb4ad127013cb6b032ee360851885ea938ebcca6f185a177216638706418a4fda2e7a4f408f5baa2b503446b6322c322a8b5327b96827dd0d6061741ee5066c15a246efe1469a78ad9c1304183fe5891f888053cfddb4e317c15ca5198940331baddd95d7d2aaf50d305b0af3004950f1c56a24d73f5085366f9712a3cde8ced64e0723e92b074ad7d395aa8cecb60b08be67defe8d6d8627909aee703a3bdcf5dad0877c7b3104ef4532e7d51c234e8ef223b3d1605eaf7c1544d8008afdee6bc5dec174053f37ce1658823440bbb86b274c7bc480c4453300c5841664778492ea083eff89f8a3e309d0ab41d61c3c74330d0128dbf12122cb18467b7ed29fa9d38b29211e9b34667438df33af8d4392628f265bf841e1456c8f42dfaf4a5e85ca598aff36122e0e28e9a58b865376dafca675be10b6dfb12de69e3191fddd4801a2089d684adeb0691d37cd50336e2ea6d6c7395f5bda6879a104351117bae4a6de0606f4a9d4d68d4753c86bd6335e65e95e23494651075a61871fa8d9743917bbd447be5730960e329b43334f3f584fc8804ae467eb5086f3413188a7638380efdd4e8c79bbf2d8060587f99a7a33f4c0289be5b5d1a78ae029b96c2964563825894fb6aee4dfd5ccce10587b19b7ee78f5c553a78b110627d9bebf7787570218e993585c0a76465f635f972fb6e68eaaf22fffda2cd18cce052a78751106871b543b4607342d17c4379356137832612a5d2187b0c39edd7a01223329af3b282780247e4ee5c574f162cdd854d2c4df230076109348f0ba929995b7552c5e7d2963a22c7cbdaa5cb7d9023c122207dc53d8ca272d85740d65ded5d7bfe223dbb947db04ca5f094cda271dbbfbaa48a0714e1f600b1ceb39144e9553bbb161d9b42aed7ef372a13ca018ba4cdb03ff8d3f753c6e9b6490f78351814a9f65e19e3faac6e45d1587638a0b801711c6ec03d3bebb026f917c4f7d1f8fc82cb628118998fb46dbc2020395d32a03bc1a29c15dfcc89f3ce45476e76f9bf9275268be116121cc9d7e5fa7b0b3c674ca7f45bee0167700de849a1134cf9d9a732590b715276e6104c9720474a3214dc70303293becb49af6844971f0c5c191457f3d11229f6360be7fd9f75faf41deec94d687a3ec00e9c382e68bf808c7455de7bdcd1e23896fb37751c065d370b1f3ca606c7e523e934d9f89c2a33358d4dbbbf5930674f7665b94faacec988d631a5244b202153f1de610cc988fbad6671a8175a22b7084318f1a44d4dea0d5e8c995ae084f723ba45ea5a087dad2aab8292305a195dcdd874c4ccead2f50a2b5b8ce0cb866780922bfc58f2968c01d98d2f66dcb0ad9b364d7451ec4a3468a65fb8b1b126face14297e21d638bb57c0477f631e596a4bb1fd0d2f386122aa2eb387fa2303f5c4688b7ed0452e8e23c6dd84dff359c2ea2f0bbd15ca116bcc93815a71950e0b00d2433ac54522d2e104ab21e3b29b28aa3627fd559163f011d3dabfc6db507e8f20aecd08501d01e6eb8664497ef7136445df43ac846ee58a0f7fb437568c04e22639b850320c5904be5c2f9517cc0ba9846c87bb74dfa36896b4c0e1c20f127fba829fa7174ad0fccb712557a6b3327938e03ac84befb5c922b3ade6199a2a18018797fd4d76e73572a152812d76bf29fb76208015761dd0ebcda3100587a60040b0dc159338c04276297dba9c5ff417dd482c9126950857b19431b96df19293abe81c27e3313389945165d64d03c5d2bd5b4381fbd7b460157077683705bd313568460ca76d894744251191ee1db0641a49d3f508f5e69f94e34c551d3f3573112823821dac0a685f6ee3eb9a2e9dbf6e8e635afe9265831cd65dcdf98257b2ae047d34c4185dbfa449013ba7f1729b490894b7735b497933837ac027706e93722e28e4bfd168cf3131c8cfa8a902eaf272d0e8978c4e7de12e8c6238d6975558eca11eca712bcc8ceeb89203fbf5488b92702f1d123eeedb94be9dd1e5834115611e9377dc6c3a1ef12f8ab80bc2c10348fcb3f3aaadf254af476949129aa86ed57ebcaa48bb9b1ea78d0c407cc71c6609f076d45cc1a6742b4dc8eabda3e5e64e54e62a12427ec969ab8bdc14f9d5ac9d9c6975cd3e82063dac465b4427701897a54c0fa9025fe2a7a0c18194d385a60a3520ef9c77a492d105dd18459e529006a2c69b84f7b01cb44a2905caca7bc0957a0fcc4214b0b81810a50284fca1d8ecb04983b9ea25ca9c497c2763de09bfab23b5a5e6b28c632c43244fadb5eb16c7d8e9e6017f1046b8637e19ea6a9daf3f43f2f62badfc509bb35ddda3b9d53e2d38161b6a6d431913124efd6170dd8d46424272ca830fa73ca593f2827b25f748aad03c2f091a754fde2d84e559c910590d93026d666ba9d3288606ccedf90acba93eb04caf6c4e84446f2554bc2f14e680e38c5db1425fef895f0b62fc71aef5a117c1b5599d17a982f48c1d36ecd61106a0d5efeb6522774fc526062d0b6d448ad9d06d02b13368bed9cd1a6e22f63927cac21d79ee2d95b7b64937951446721fc869bfdefdce109ba22d1c5d7baabca7c96b93dcb9545e7da81a985e7663dcbd6d310fcbb9122dee6da8d857b9fd1c7eac21481a0f9642048071d4951371f5b7cb132f2e06b174ce2131f001d024fabce1efdca113f3931d70ad5f5d8bb5c2b151af0083fd5b44774d8c6b532863a17826b870fd8a2976d10bd155141ed1fa8b065ad07a3748a8685d85751dc42e9c001e2b85983cadf00ff5ade388cbf7493dcd746b3c97ad62a2d13f19b7d06bebb430bafeca909adae68d35bcaa050bc6054b64b81a3e3108819d4b00ab78142f24ce3a00a43521d63754da0f5e4c5de4b48e7d321a0a6651f207c0e8c7304459f88e747e5f57608ac1f7ec67c2ccf874e5d2137da89885aa9208331053fb2e36f8f4252b5653291bd9766fd10243b9ffa2c1dbae12a612ffda49cd047e0b13f036333a7f81d1e6ce7449b1d0487051a2687e4523a7fca747038615556a4b1da71697679ad3c0e7b751e666d05291d6c7c15876d79cbdd83dbc134b77cb2e113fc28d93b3c14c057be989d2891d2c1513eb0bd0a2a6b81662e3086fbf6ec3ca05a020fd1d6ced539bccb80b4b50348c0775e62faa95eef5016e19e0187127fb3b3c33e922678d3360c07084f8eee60d9401cfab1841e3a3ad29e3eeb68a275b5e088815f7b7b17ae69c841fc62692b0beff60fd332b2974f003cc4a23c87e956b87b6fbe3adc3dd9ee808c4aed1d20bfd88a8db23eaadeba4f9f75ca886e7b38968722fd4c008781f099d7b2f81f2f0cf5ebab97eb86e0cac00558396cdd854c09078a1b713452d62c5005ffa0fdb4faeca16a03d20c53a959831641ff34ea9797d2a9bcf01c5826f0d5ccdba79b0bd3d7f80474688a1d173698ef2c44bfd5e7e813cfc5390e11c45d5c6bb99fe2efade9d038d5f7cd379f3e992523a331a4883c00c43faa24cfa1ae364dd04c2e0c971d0c3501b241e6221bd0eb81d1b752f48f955c2c0be897202821b794d9436eabc8ceb446d1fc2d1babe4cdbd811528785caba4098a26b5a84a8fb3902d56c21d6546358802ef069e34421f92d8a552eb0dd1af6956fc91974e5a1afc2ffbfb7d3290c22288b5b36706017127c8f4dbdb02e439795b47578c2322fa406ad92adb8d4cd2a4a12f10109ac449e16979612259d88bb6da3da443400da54d1e31bbd095f1dbacbb189971f6a85e9272a5425382d3e950f9481400c9d84a936ecfbb38f4b8098445787701477307d11b597e7a62194abad99a1bdaae9c95ff50805ed01405ceb0f09b3e0e69fa2db2995021f3111c7731f215391ee4d9b62aaaa94bca0f2153febe759940da0f8ba474fd097e009386e23ec0bd5b40813df0abef24cf091603d5f8e96c73e25cd83346bb566ad3a109f05b9254ebb3490c5f90426666281ab5ce740b8ce3d8d18aaa7c69f61d2074170b56d828c369b4f7d4952166ca4a6fcc59c7464da779ed5ca20eafaeaf407022e89b5becbf6f0e50001529cd1bf8fc96be979681292b610e63e3e08e0b630eab4d20b8dd7ad8dbc1ac4b9585501968abbd68728da47f04b0e2d40787744c04af1688f9f187f183f34caf93641bde0f8527fad803639f3ea2d201e90851bf16b65584cdf9679b1e25fff04a6673660eb13641ba65dbe007d602ddd5cc67d89e213fe442716a5e6ef9cdb04e4a0e947b20493d46bf93a2fb1bb65e9440e39cb8dd431b179b8916a6eb333f80d0e0760507ef6c5bd7f3f330ae82af80d70ce2d8dc3de309adcad04d16771635683f3b0c7701bd92319284d96cb09034cba367ed5960f344ad3b1a26a1d6d88900132a5576c94d3cfa44935535c88ce815f660a69bd8425f6676c8308136e57d5a777df5b7f3e5c87698a43dccd2153da129c79c0520e44c3eccb9dff23bbaa5fdf4519896ae3d265612bcf76e9a529e819222c8d102baf909dbff9a01dfddd085ba040e2737cc3c60f88863aabb408a6e66ff1788e16e526426869a7e0dab2bc5959e92bb578594dd942ce5008f79526dc04cf1c48c74e5fda5e98555f43399a66158b34bdc577db36813bd006b73f3a2cde17dcb1a925146896cec8e89861acd359ca63c22bc9319e3fd1d78068cbefa33fac0bfe18a88368690892ffe020e51eb12b088ccd8221816c4fd00b0c838297a5cb23e6a16f7b0166c3b031659dbffdac4baec18d58c84874ba5cb16d4e10701a7b038b48a0a973bc6d045e0b8b0b81f0d647c94c1aed248d2a164c8f13ce82e1986e5128539b42ae1b19c5c157ca4ca437c6b7a2b7130179d44896ea4b0c31d6969a4ed8666e9c0c6b3cc04bcb969cb01ee22994807a183c95b3d108e8c7fc62a26f7c393b9fbd006d963c0e40da6666395d62078ef7c908894fe61ed3a3728a34adfdb0f630eb56fee924b24fea38628f7af2cfe01897daa996829fcbb0df26608cad3d54905a5eb060aaffed80f80dc67a4c6f295b5e5c80ebf8f738e6c8d4c52fcc0efb6fbb401231d6851f3326041abf7019bef63168d668b0cd4cf76298a34f06d0e4a8c7785bdcbb0fe1246bdf57cfc7bb0d68b531187f262ab9abf9c93a1fd072f70169b2e36d90a96a4c27d07ae9fa51061fe8b6b7452f5618fbd9af8e9a1609d6e78a295e9197bfe5a7b233a9088a3a4b7cc39034d612c91e01f0bb79ddd5ebed8ad4a3e3f1a61f8a5c4ed73df33f12981aa7c15fc7c58edd1afc9729dc664f8ae7d69b44a91238de904fcbbe219dd8c0951a00dd3ab79fd86376d0369b5ba6cb6bb356f7ad0b807ea2e89c13af81c016675cbadde88e5eaa590c54ffaf9692507dd8818ac7845fa817511018e3f970f36418e0896c14a3a6d3f0e986549131857bc3b80471b6bbb38240a1f07a98255cd4a279a02b296bbbeb37e5205376be699944c9ce25abea57a30ceddd51048ebc2b29f3485293fa4a0df283bc1978ecdf65ff7409f11787c79cf5b42d0c4ba9b485413", 0x1000, 0x400}, {&(0x7f0000000780)="c78f292d46e88e149a735503b27bd04b80b67a82b5853ca09699e1b327d4d7d578fa9f9b55cd38750664bb0891bbe4c5a3b5b2eb4360f8f00955ef43ffa7", 0x3e, 0xe8e}, {&(0x7f0000003e40)="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", 0x1000, 0x2}], 0x4000, &(0x7f0000004e40)={[{'mountinfo\x00'}, {'#'}, {'[.,$\xcb-:'}, {']'}, {'mountinfo\x00'}, {'\x00'}], [{@obj_role={'obj_role', 0x3d, '\x00'}}, {@euid_lt}, {@smackfsroot={'smackfsroot', 0x3d, '('}}, {@euid_gt={'euid>', r4}}, {@dont_hash}, {@uid_eq={'uid', 0x3d, 0xffffffffffffffff}}, {@fscontext={'fscontext', 0x3d, 'system_u'}}, {@hash}, {@pcr={'pcr', 0x3d, 0x2b}}]}) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r5, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r5) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2917.248748] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2917.250424] ? alloc_fd+0x2e7/0x670 [ 2917.251326] io_uring_setup+0x1fbb/0x2980 [ 2917.252419] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2917.253513] ? wait_for_completion_io+0x270/0x270 [ 2917.254732] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 09:06:26 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 50) [ 2917.256031] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2917.257328] do_syscall_64+0x33/0x40 [ 2917.258247] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2917.259510] RIP: 0033:0x7f900b55eb19 [ 2917.260376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2917.264515] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2917.266107] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2917.267609] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2917.269096] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2917.270607] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2917.272114] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2917.324882] FAULT_INJECTION: forcing a failure. [ 2917.324882] name failslab, interval 1, probability 0, space 0, times 0 [ 2917.327815] CPU: 1 PID: 12349 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2917.329414] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2917.331232] Call Trace: [ 2917.331807] dump_stack+0x107/0x167 [ 2917.332602] should_fail.cold+0x5/0xa [ 2917.333430] ? create_object.isra.0+0x3a/0xa20 [ 2917.334425] should_failslab+0x5/0x20 [ 2917.335260] kmem_cache_alloc+0x5b/0x310 [ 2917.336144] ? mark_held_locks+0x9e/0xe0 [ 2917.337033] create_object.isra.0+0x3a/0xa20 [ 2917.337985] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2917.339104] kmem_cache_alloc+0x159/0x310 [ 2917.340014] xas_alloc+0x336/0x440 [ 2917.340796] xas_create+0x34a/0x10d0 [ 2917.341621] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2917.342766] xas_store+0x8c/0x1c40 [ 2917.343566] __xa_store+0x164/0x2d0 [ 2917.344360] ? xa_delete_node+0x280/0x280 [ 2917.345271] ? trace_hardirqs_on+0x5b/0x180 [ 2917.346218] xa_store+0x31/0x50 [ 2917.346937] __io_uring_add_tctx_node+0x1cf/0x520 [ 2917.347993] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2917.349127] ? alloc_fd+0x2e7/0x670 [ 2917.349931] io_uring_setup+0x1fbb/0x2980 [ 2917.350841] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2917.351951] ? wait_for_completion_io+0x270/0x270 [ 2917.353030] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2917.354166] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2917.355297] do_syscall_64+0x33/0x40 [ 2917.356105] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2917.357216] RIP: 0033:0x7f28100dfb19 [ 2917.358022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2917.362058] RSP: 002b:00007f280d655108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2917.363734] RAX: ffffffffffffffda RBX: 00007f28101f2f60 RCX: 00007f28100dfb19 [ 2917.365286] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2917.366835] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2917.368391] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2917.369942] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:06:26 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x7000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2917.399859] FAULT_INJECTION: forcing a failure. [ 2917.399859] name failslab, interval 1, probability 0, space 0, times 0 [ 2917.402224] CPU: 1 PID: 12356 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2917.403687] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2917.405435] Call Trace: [ 2917.405995] dump_stack+0x107/0x167 [ 2917.406763] should_fail.cold+0x5/0xa [ 2917.407586] ? create_object.isra.0+0x3a/0xa20 09:06:26 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) connect$unix(r2, &(0x7f0000000180)=@file={0x1, './file2\x00'}, 0x6e) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2917.408548] should_failslab+0x5/0x20 [ 2917.409466] kmem_cache_alloc+0x5b/0x310 [ 2917.410329] ? mark_held_locks+0x9e/0xe0 [ 2917.411194] create_object.isra.0+0x3a/0xa20 [ 2917.412118] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2917.413187] kmem_cache_alloc+0x159/0x310 [ 2917.414066] xas_alloc+0x336/0x440 [ 2917.414812] xas_create+0x34a/0x10d0 [ 2917.415622] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2917.416725] xas_store+0x8c/0x1c40 [ 2917.417496] __xa_store+0x164/0x2d0 [ 2917.418259] ? xa_delete_node+0x280/0x280 [ 2917.419146] ? trace_hardirqs_on+0x5b/0x180 [ 2917.420064] xa_store+0x31/0x50 [ 2917.420761] __io_uring_add_tctx_node+0x1cf/0x520 [ 2917.421771] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2917.422869] ? alloc_fd+0x2e7/0x670 [ 2917.423658] io_uring_setup+0x1fbb/0x2980 [ 2917.424542] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2917.425605] ? wait_for_completion_io+0x270/0x270 [ 2917.426643] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2917.427751] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2917.428833] do_syscall_64+0x33/0x40 [ 2917.429615] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2917.430691] RIP: 0033:0x7f6839abdb19 [ 2917.431479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2917.435355] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2917.436952] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2917.438460] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2917.439967] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2917.441475] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2917.442971] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:06:45 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 61) 09:06:45 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 51) [ 2936.598300] FAULT_INJECTION: forcing a failure. [ 2936.598300] name failslab, interval 1, probability 0, space 0, times 0 [ 2936.600710] CPU: 1 PID: 12372 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2936.602144] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2936.603891] Call Trace: [ 2936.604442] dump_stack+0x107/0x167 [ 2936.605205] should_fail.cold+0x5/0xa [ 2936.605997] ? xas_alloc+0x336/0x440 [ 2936.606778] should_failslab+0x5/0x20 [ 2936.607575] kmem_cache_alloc+0x5b/0x310 [ 2936.608444] xas_alloc+0x336/0x440 [ 2936.609196] xas_create+0x34a/0x10d0 [ 2936.609999] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2936.611093] xas_store+0x8c/0x1c40 [ 2936.611895] __xa_store+0x164/0x2d0 [ 2936.612658] ? xa_delete_node+0x280/0x280 [ 2936.613534] ? trace_hardirqs_on+0x5b/0x180 [ 2936.614445] xa_store+0x31/0x50 [ 2936.615136] __io_uring_add_tctx_node+0x1cf/0x520 [ 2936.616156] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2936.617257] ? alloc_fd+0x2e7/0x670 [ 2936.618097] io_uring_setup+0x1fbb/0x2980 [ 2936.619070] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2936.620144] ? wait_for_completion_io+0x270/0x270 [ 2936.621178] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2936.622276] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2936.623357] do_syscall_64+0x33/0x40 [ 2936.624144] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2936.625226] RIP: 0033:0x7f6839abdb19 09:06:45 executing program 5: getsockname$unix(0xffffffffffffffff, &(0x7f0000000000)=@abs, &(0x7f0000000140)=0x6e) r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x8, 0xffffffffffffffff, 0x3) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r2) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffe0, 0x8}}, './file0\x00'}) write$P9_RREADLINK(r2, &(0x7f0000000180)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10) pread64(r0, &(0x7f00000002c0)=""/106, 0x6a, 0x7) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r3) ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffe0, 0x8}}, './file0\x00'}) pwrite64(r3, &(0x7f0000000200)="01e10e8789144f903538c55a3f0959f7d76d4696e6d221ec6a8d4c228f62f7a8e97913e5750a6a54d80494e3fae4ba926415aa9ba4", 0x35, 0x6) 09:06:45 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x25a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:06:45 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x1000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:06:45 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 45) 09:06:45 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x8000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:06:45 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) fchdir(0xffffffffffffffff) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200), 0x0) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) write$P9_RXATTRCREATE(r0, &(0x7f0000000180)={0x7, 0x21, 0x1}, 0x7) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2936.626216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2936.630241] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2936.631881] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2936.633384] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2936.634867] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2936.636500] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2936.637998] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2936.661397] FAULT_INJECTION: forcing a failure. [ 2936.661397] name failslab, interval 1, probability 0, space 0, times 0 [ 2936.663948] CPU: 0 PID: 12382 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2936.665424] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2936.667175] Call Trace: [ 2936.667755] dump_stack+0x107/0x167 [ 2936.668529] should_fail.cold+0x5/0xa [ 2936.669339] ? vm_area_dup+0x78/0x290 [ 2936.670150] should_failslab+0x5/0x20 [ 2936.670965] kmem_cache_alloc+0x5b/0x310 [ 2936.671835] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2936.672943] vm_area_dup+0x78/0x290 [ 2936.673721] ? mark_lock+0xf5/0x2df0 [ 2936.674516] ? lock_chain_count+0x20/0x20 [ 2936.675387] ? mark_lock+0xf5/0x2df0 [ 2936.676191] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2936.677292] ? lock_chain_count+0x20/0x20 [ 2936.678171] ? _raw_spin_unlock_irq+0x1f/0x30 [ 2936.679112] ? trace_hardirqs_on+0x5b/0x180 [ 2936.680055] ? mark_lock+0xf5/0x2df0 [ 2936.680845] ? vm_area_alloc+0x110/0x110 [ 2936.681702] ? __lock_acquire+0x1657/0x5b00 [ 2936.682634] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2936.683735] ? SOFTIRQ_verbose+0x10/0x10 [ 2936.684600] ? vmacache_find+0x55/0x2a0 [ 2936.685440] __split_vma+0xa8/0x4e0 [ 2936.686208] __do_munmap+0x365/0x1260 [ 2936.687011] ? arch_get_unmapped_area+0x450/0x450 [ 2936.688032] ? lock_release+0x680/0x680 [ 2936.688870] mmap_region+0x7c8/0x1500 [ 2936.689691] do_mmap+0xcdb/0x11e0 [ 2936.690432] vm_mmap_pgoff+0x198/0x1f0 [ 2936.691258] ? randomize_page+0xb0/0xb0 [ 2936.692125] ksys_mmap_pgoff+0x41c/0x560 [ 2936.692978] ? find_mergeable_anon_vma+0x250/0x250 [ 2936.694013] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2936.695112] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2936.696208] do_syscall_64+0x33/0x40 [ 2936.696996] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2936.698077] RIP: 0033:0x7f28100dfb62 [ 2936.698866] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2936.702735] RSP: 002b:00007f280d6340f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2936.704343] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f28100dfb62 [ 2936.705846] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000 [ 2936.707468] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000000000000 [ 2936.709369] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2936.711145] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2936.727643] FAULT_INJECTION: forcing a failure. [ 2936.727643] name failslab, interval 1, probability 0, space 0, times 0 [ 2936.730123] CPU: 1 PID: 12378 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2936.731571] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2936.733340] Call Trace: [ 2936.733900] dump_stack+0x107/0x167 [ 2936.734661] should_fail.cold+0x5/0xa [ 2936.735456] ? xas_alloc+0x336/0x440 [ 2936.736260] should_failslab+0x5/0x20 [ 2936.737064] kmem_cache_alloc+0x5b/0x310 [ 2936.737930] xas_alloc+0x336/0x440 [ 2936.738685] xas_create+0x34a/0x10d0 [ 2936.739478] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2936.740576] xas_store+0x8c/0x1c40 [ 2936.741341] __xa_store+0x164/0x2d0 [ 2936.742104] ? xa_delete_node+0x280/0x280 [ 2936.742979] ? trace_hardirqs_on+0x5b/0x180 [ 2936.743929] xa_store+0x31/0x50 [ 2936.744626] __io_uring_add_tctx_node+0x1cf/0x520 [ 2936.745646] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2936.746744] ? alloc_fd+0x2e7/0x670 [ 2936.747514] io_uring_setup+0x1fbb/0x2980 [ 2936.748388] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2936.749448] ? wait_for_completion_io+0x270/0x270 [ 2936.750489] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2936.751574] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2936.752664] do_syscall_64+0x33/0x40 [ 2936.753437] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2936.754508] RIP: 0033:0x7f900b55eb19 [ 2936.755282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2936.759115] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2936.760727] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2936.762220] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2936.763723] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2936.765219] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2936.766707] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:06:45 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 62) 09:06:45 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x2000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:06:45 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0xc000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:06:45 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 52) [ 2936.909181] FAULT_INJECTION: forcing a failure. [ 2936.909181] name failslab, interval 1, probability 0, space 0, times 0 [ 2936.911699] CPU: 1 PID: 12392 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2936.913164] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2936.914889] Call Trace: [ 2936.915445] dump_stack+0x107/0x167 [ 2936.916220] should_fail.cold+0x5/0xa [ 2936.917018] ? create_object.isra.0+0x3a/0xa20 [ 2936.917974] should_failslab+0x5/0x20 [ 2936.918768] kmem_cache_alloc+0x5b/0x310 [ 2936.919617] create_object.isra.0+0x3a/0xa20 [ 2936.920541] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2936.921600] kmem_cache_alloc+0x159/0x310 [ 2936.922473] vm_area_dup+0x78/0x290 [ 2936.923239] ? lock_release+0x680/0x680 [ 2936.924078] ? mark_lock+0xf5/0x2df0 [ 2936.924864] ? lock_chain_count+0x20/0x20 [ 2936.925731] ? mark_lock+0xf5/0x2df0 [ 2936.926515] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2936.927604] ? lock_chain_count+0x20/0x20 [ 2936.928485] ? mark_lock+0xf5/0x2df0 [ 2936.929262] ? vm_area_alloc+0x110/0x110 [ 2936.930116] ? __lock_acquire+0x1657/0x5b00 [ 2936.931028] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2936.932126] ? SOFTIRQ_verbose+0x10/0x10 [ 2936.932971] ? vmacache_find+0x55/0x2a0 [ 2936.933800] __split_vma+0xa8/0x4e0 [ 2936.934557] __do_munmap+0x365/0x1260 [ 2936.935359] ? arch_get_unmapped_area+0x450/0x450 [ 2936.936378] ? lock_release+0x680/0x680 [ 2936.937218] mmap_region+0x7c8/0x1500 [ 2936.938039] do_mmap+0xcdb/0x11e0 [ 2936.938786] vm_mmap_pgoff+0x198/0x1f0 [ 2936.939600] ? randomize_page+0xb0/0xb0 [ 2936.940451] ksys_mmap_pgoff+0x41c/0x560 [ 2936.941299] ? find_mergeable_anon_vma+0x250/0x250 [ 2936.942327] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2936.943420] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2936.944506] do_syscall_64+0x33/0x40 [ 2936.945283] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2936.946356] RIP: 0033:0x7f28100dfb62 [ 2936.947129] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2936.947468] FAULT_INJECTION: forcing a failure. [ 2936.947468] name failslab, interval 1, probability 0, space 0, times 0 [ 2936.951224] RSP: 002b:00007f280d6550f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2936.951245] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f28100dfb62 [ 2936.951257] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000 [ 2936.951267] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 2936.951278] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2936.951298] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2936.962551] CPU: 0 PID: 12396 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2936.963913] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2936.965535] Call Trace: [ 2936.966053] dump_stack+0x107/0x167 [ 2936.966767] should_fail.cold+0x5/0xa [ 2936.967507] ? create_object.isra.0+0x3a/0xa20 [ 2936.968409] should_failslab+0x5/0x20 [ 2936.969165] kmem_cache_alloc+0x5b/0x310 [ 2936.969968] ? mark_held_locks+0x9e/0xe0 [ 2936.970763] create_object.isra.0+0x3a/0xa20 [ 2936.971605] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2936.972601] kmem_cache_alloc+0x159/0x310 [ 2936.973419] xas_alloc+0x336/0x440 [ 2936.974112] xas_create+0x34a/0x10d0 [ 2936.974852] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2936.975883] xas_store+0x8c/0x1c40 [ 2936.976585] __xa_store+0x164/0x2d0 [ 2936.977296] ? xa_delete_node+0x280/0x280 [ 2936.978115] ? trace_hardirqs_on+0x5b/0x180 [ 2936.978973] xa_store+0x31/0x50 [ 2936.979620] __io_uring_add_tctx_node+0x1cf/0x520 [ 2936.980570] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2936.981619] ? alloc_fd+0x2e7/0x670 [ 2936.982340] io_uring_setup+0x1fbb/0x2980 [ 2936.983150] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2936.984140] ? wait_for_completion_io+0x270/0x270 [ 2936.985105] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2936.986108] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2936.987108] do_syscall_64+0x33/0x40 [ 2936.987832] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2936.988823] RIP: 0033:0x7f6839abdb19 [ 2936.989544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2936.993100] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2936.994582] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2936.995952] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2936.997348] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2936.998884] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2937.000272] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:06:45 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)=0x0) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) syz_io_uring_setup(0x2aae, &(0x7f0000000580)={0x0, 0xa537, 0x10, 0x1, 0x3d5, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000600), &(0x7f0000000640)=0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r8}}, 0x10000) syz_io_uring_submit(r5, r7, &(0x7f0000000880)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000680)="07bfec273780b5859526721804190cb52c0e7ff99c3485ba1daa77dfa7f2246eeae9a0ee5a7c8062f43113d9b955a173f9ceb9b6aef8f7c5a3110b0de79c1eb42df3e39711a69dbb79542a78a98bd03ed6081fd467fab43c51b0237c7c71a7a787f0af806dd652fa098417a91b420f503c51f7dfeda0a637b90f6cf6fee46043d7", 0x81}, {&(0x7f0000000740)="7d8f03cbc5342ebeb2ded6d810d8291a09f5aca7f0b597d4df91972120752ce77862236274c858e8208531b35022842ab4394fe052352bd832640a9483a50896af44c96365ab0937fbd51185bc1128455111de9a360df9debbfa6b07f6b8d7e7ef1345041a08269e1301a913bfd0dc30508752644e9cab849284e1256fd0cee09203ec41fbfa1056da002eac", 0x8c}, {&(0x7f0000000900)="72ea3a158481c6b08ed5faac16e2d06b7dcb75d328036501b52f0561f7af123400393a9fadd0f1d70037a2edb12dcf69334092e73c508739b7c9975bd2e967aaa8289014fac4029f03201cd23d470487d8e119a16fb8e8d749c4cfa6cd6d5566b3e9a3c0b854418905a0058f352344a0ba2a7d1e9728a628b4958dfff609c464f55d0c152edc2f89070f339d5eade6840dceb95caa97566220237feaf3ffc351acdd62eb0fa45152d3ff8116d617802f7ce8d9faee8c13f74892c402ef01eafb366b268e67d4ac381fc950d221e3fc", 0xcf}], 0x3, &(0x7f0000000a00)=[{0x1010, 0x206, 0x6, "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"}, {0x100, 0x119, 0x1f, "89caccd621968d5ea2c546bd7e6202fb58cd042ea60ff1f998143860adc497981f6489780654ba2f704de1af3983665f82bf25549c47dc2243cdd3bd822415ad0f12e92676d84f51510c62a09c6d0f4591a44dd43f7bd3f9af5abe1cc28fb06cd40b062d68de3c7509be9cea43247c304ce7f4ca72b749f5060cb77997b9e039cef06327a1747e26eca11743b8ed81defd6333d0f4a7e6b09e3efd68f4ff930aa2d8db42aa773e151d9e17fc3f54f3e79d5b660ae5c0473fcbcb40d1f107bd922cd2eb2f5ba0a1ab269fa5f72bc7890476fb3e3e0ede2ae0e2963bafea3fb2dc48c22efc76c6d8ab84"}, {0x1010, 0x104, 0x400, "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"}, {0xc8, 0x10d, 0x8, "8fe4bdb192c19b959ef35722ab3be668ba3d5778044dddeb3221b9ba02ca773cf7c78ff765cc68fa2b38ef33fcc16996974d8e6026e0b124c9e82d36b421e741bd58b8a7135608f683268634e21e9530e88a014ac3b804561a09eaea79fd2e94ac65e07d502c89e1979e117abfda9f523597c00bbdcba562207363588d86721dda4be27fc47606e635e971ed22bcc88b97276617947f0efc6717aff0f70f460db6e743228b509d78ea3518c56ca874b2f549a5"}, {0x58, 0x29, 0x1, "0c081985fbd6bf07d223f2ebba014c8c07f98987041e21eafb52e5ed0dd057085ecb77b4c0ee876df33cea3d2d7235bb90da1d4f3fee9588da4d4796881e1242f4d32a9a2150"}], 0x2240}, 0x0, 0x48d1, 0x0, {0x0, r8}}, 0x1) syz_io_uring_setup(0x55f4, &(0x7f0000000400)={0x0, 0x6d4d, 0x10, 0x2, 0x2bd, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540)) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r9, r4, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index}, 0x8001) syz_io_uring_submit(r9, r1, &(0x7f00000003c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000200)=""/167, 0xa7}, {&(0x7f00000002c0)=""/244, 0xf4}], 0x2}, 0x0, 0x2022}, 0x1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) 09:06:45 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x26a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:06:45 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x10000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:07:04 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x3000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:07:04 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000100)=0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x4, &(0x7f0000000040)={r3, r4+60000000}, 0x1, 0x0, 0x1}, 0x9) 09:07:04 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 53) 09:07:04 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 46) 09:07:04 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:07:04 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x27a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:07:04 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 63) 09:07:04 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x12000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 2955.700141] FAULT_INJECTION: forcing a failure. [ 2955.700141] name failslab, interval 1, probability 0, space 0, times 0 [ 2955.701617] CPU: 1 PID: 12430 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2955.702495] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2955.703543] Call Trace: [ 2955.703881] dump_stack+0x107/0x167 [ 2955.704344] should_fail.cold+0x5/0xa [ 2955.704837] ? create_object.isra.0+0x3a/0xa20 [ 2955.705411] should_failslab+0x5/0x20 [ 2955.705893] kmem_cache_alloc+0x5b/0x310 [ 2955.706414] ? mark_held_locks+0x9e/0xe0 [ 2955.706941] create_object.isra.0+0x3a/0xa20 [ 2955.707503] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2955.708155] kmem_cache_alloc+0x159/0x310 [ 2955.708369] FAULT_INJECTION: forcing a failure. [ 2955.708369] name failslab, interval 1, probability 0, space 0, times 0 [ 2955.708696] xas_alloc+0x336/0x440 [ 2955.708712] xas_create+0x34a/0x10d0 [ 2955.708736] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2955.712539] xas_store+0x8c/0x1c40 [ 2955.713003] __xa_store+0x164/0x2d0 [ 2955.713441] ? xa_delete_node+0x280/0x280 [ 2955.713972] ? trace_hardirqs_on+0x5b/0x180 [ 2955.714495] xa_store+0x31/0x50 [ 2955.714914] __io_uring_add_tctx_node+0x1cf/0x520 [ 2955.715491] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2955.716153] ? alloc_fd+0x2e7/0x670 [ 2955.716607] io_uring_setup+0x1fbb/0x2980 [ 2955.717134] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2955.717740] ? wait_for_completion_io+0x270/0x270 [ 2955.718370] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2955.718994] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2955.719645] do_syscall_64+0x33/0x40 [ 2955.720089] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2955.720740] RIP: 0033:0x7f900b55eb19 [ 2955.721207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2955.723394] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2955.724355] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2955.725259] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2955.726157] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2955.727058] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2955.727956] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2955.728900] CPU: 0 PID: 12429 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2955.730366] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2955.730494] FAULT_INJECTION: forcing a failure. [ 2955.730494] name failslab, interval 1, probability 0, space 0, times 0 [ 2955.732083] Call Trace: [ 2955.732120] dump_stack+0x107/0x167 [ 2955.734770] should_fail.cold+0x5/0xa [ 2955.735561] ? xas_alloc+0x336/0x440 [ 2955.736341] should_failslab+0x5/0x20 [ 2955.737134] kmem_cache_alloc+0x5b/0x310 [ 2955.737973] xas_alloc+0x336/0x440 [ 2955.738739] xas_create+0x34a/0x10d0 [ 2955.739524] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2955.740602] xas_store+0x8c/0x1c40 [ 2955.741355] __xa_store+0x164/0x2d0 [ 2955.742120] ? xa_delete_node+0x280/0x280 [ 2955.742995] ? trace_hardirqs_on+0x5b/0x180 [ 2955.743902] xa_store+0x31/0x50 [ 2955.744596] __io_uring_add_tctx_node+0x1cf/0x520 [ 2955.745590] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2955.746687] ? alloc_fd+0x2e7/0x670 [ 2955.747457] io_uring_setup+0x1fbb/0x2980 [ 2955.748331] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2955.749401] ? wait_for_completion_io+0x270/0x270 [ 2955.750479] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2955.751571] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2955.752655] do_syscall_64+0x33/0x40 [ 2955.753433] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2955.754499] RIP: 0033:0x7f6839abdb19 [ 2955.755279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2955.759103] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2955.760706] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2955.762193] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2955.763675] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2955.765166] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2955.766647] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2955.768379] CPU: 1 PID: 12424 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2955.769393] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2955.770522] Call Trace: [ 2955.770899] dump_stack+0x107/0x167 [ 2955.771389] should_fail.cold+0x5/0xa [ 2955.771922] ? anon_vma_clone+0xdc/0x590 [ 2955.772504] should_failslab+0x5/0x20 [ 2955.773053] kmem_cache_alloc+0x5b/0x310 [ 2955.773624] anon_vma_clone+0xdc/0x590 [ 2955.774206] __split_vma+0x17c/0x4e0 [ 2955.774741] __do_munmap+0x365/0x1260 [ 2955.775291] ? arch_get_unmapped_area+0x450/0x450 [ 2955.775968] ? lock_release+0x680/0x680 [ 2955.776505] mmap_region+0x7c8/0x1500 [ 2955.777053] do_mmap+0xcdb/0x11e0 [ 2955.777560] vm_mmap_pgoff+0x198/0x1f0 [ 2955.778088] ? randomize_page+0xb0/0xb0 [ 2955.778576] ksys_mmap_pgoff+0x41c/0x560 [ 2955.779068] ? find_mergeable_anon_vma+0x250/0x250 [ 2955.779653] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2955.780282] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2955.780922] do_syscall_64+0x33/0x40 [ 2955.781414] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2955.782055] RIP: 0033:0x7f28100dfb62 [ 2955.782506] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2955.784695] RSP: 002b:00007f280d6550f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2955.785590] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f28100dfb62 [ 2955.786441] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000 [ 2955.787285] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 2955.788128] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2955.788990] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:07:04 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x4000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:07:04 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x18000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:07:04 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 47) 09:07:04 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) close(r0) 09:07:04 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x2801, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2955.910792] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted 09:07:04 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x5000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:07:04 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 54) [ 2955.972088] FAULT_INJECTION: forcing a failure. [ 2955.972088] name failslab, interval 1, probability 0, space 0, times 0 [ 2955.974567] CPU: 0 PID: 12445 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2955.976007] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2955.977748] Call Trace: [ 2955.978300] dump_stack+0x107/0x167 [ 2955.979068] should_fail.cold+0x5/0xa [ 2955.979866] ? create_object.isra.0+0x3a/0xa20 [ 2955.980831] should_failslab+0x5/0x20 [ 2955.981631] kmem_cache_alloc+0x5b/0x310 [ 2955.982476] ? mark_held_locks+0x9e/0xe0 [ 2955.983352] create_object.isra.0+0x3a/0xa20 [ 2955.984262] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2955.985338] kmem_cache_alloc+0x159/0x310 09:07:04 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x6000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:07:04 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 64) [ 2955.986213] xas_alloc+0x336/0x440 [ 2955.987153] xas_create+0x34a/0x10d0 [ 2955.987941] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2955.989057] xas_store+0x8c/0x1c40 [ 2955.989818] __xa_store+0x164/0x2d0 [ 2955.990576] ? xa_delete_node+0x280/0x280 [ 2955.991446] ? trace_hardirqs_on+0x5b/0x180 [ 2955.992360] xa_store+0x31/0x50 [ 2955.993070] __io_uring_add_tctx_node+0x1cf/0x520 [ 2955.994081] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2955.995174] ? alloc_fd+0x2e7/0x670 [ 2955.995946] io_uring_setup+0x1fbb/0x2980 [ 2955.996842] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2955.997906] ? wait_for_completion_io+0x270/0x270 [ 2955.998956] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2956.000054] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2956.001135] do_syscall_64+0x33/0x40 [ 2956.001913] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2956.002985] RIP: 0033:0x7f900b55eb19 [ 2956.003764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2956.004135] FAULT_INJECTION: forcing a failure. [ 2956.004135] name failslab, interval 1, probability 0, space 0, times 0 [ 2956.007685] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2956.007709] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2956.007727] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2956.013381] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2956.014770] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2956.016163] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2956.017728] CPU: 1 PID: 12452 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2956.018619] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2956.019611] Call Trace: [ 2956.019955] dump_stack+0x107/0x167 [ 2956.020462] should_fail.cold+0x5/0xa [ 2956.020970] ? create_object.isra.0+0x3a/0xa20 [ 2956.021549] should_failslab+0x5/0x20 [ 2956.022016] kmem_cache_alloc+0x5b/0x310 [ 2956.022528] create_object.isra.0+0x3a/0xa20 [ 2956.023072] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2956.023727] kmem_cache_alloc+0x159/0x310 [ 2956.024277] anon_vma_clone+0xdc/0x590 [ 2956.024803] __split_vma+0x17c/0x4e0 [ 2956.025242] __do_munmap+0x365/0x1260 [ 2956.025712] ? arch_get_unmapped_area+0x450/0x450 [ 2956.026302] ? lock_release+0x680/0x680 [ 2956.026739] mmap_region+0x7c8/0x1500 [ 2956.027170] do_mmap+0xcdb/0x11e0 [ 2956.027554] vm_mmap_pgoff+0x198/0x1f0 [ 2956.027981] ? randomize_page+0xb0/0xb0 [ 2956.028430] ksys_mmap_pgoff+0x41c/0x560 [ 2956.028875] ? find_mergeable_anon_vma+0x250/0x250 [ 2956.029409] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2956.029999] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2956.030575] do_syscall_64+0x33/0x40 [ 2956.030993] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2956.031576] RIP: 0033:0x7f28100dfb62 [ 2956.031995] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2956.034077] RSP: 002b:00007f280d6550f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2956.034934] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f28100dfb62 [ 2956.035735] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000 [ 2956.036547] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 2956.037349] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2956.038151] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:07:04 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x1e000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:07:04 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_setup(0x74db, &(0x7f0000000000)={0x0, 0xfa96, 0x8, 0x0, 0xd3, 0x0, r0}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f0000000140)) [ 2956.063163] FAULT_INJECTION: forcing a failure. [ 2956.063163] name failslab, interval 1, probability 0, space 0, times 0 [ 2956.064761] CPU: 1 PID: 12455 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2956.065705] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2956.066830] Call Trace: [ 2956.067195] dump_stack+0x107/0x167 [ 2956.067699] should_fail.cold+0x5/0xa [ 2956.068237] ? create_object.isra.0+0x3a/0xa20 [ 2956.068885] should_failslab+0x5/0x20 [ 2956.069407] kmem_cache_alloc+0x5b/0x310 [ 2956.069971] ? mark_held_locks+0x9e/0xe0 [ 2956.070545] create_object.isra.0+0x3a/0xa20 [ 2956.071149] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2956.071858] kmem_cache_alloc+0x159/0x310 [ 2956.072440] xas_alloc+0x336/0x440 [ 2956.072930] xas_create+0x34a/0x10d0 [ 2956.073451] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2956.074167] xas_store+0x8c/0x1c40 [ 2956.074667] __xa_store+0x164/0x2d0 [ 2956.075169] ? xa_delete_node+0x280/0x280 [ 2956.075747] ? trace_hardirqs_on+0x5b/0x180 [ 2956.076343] xa_store+0x31/0x50 [ 2956.076805] __io_uring_add_tctx_node+0x1cf/0x520 [ 2956.077463] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2956.078182] ? alloc_fd+0x2e7/0x670 [ 2956.078699] io_uring_setup+0x1fbb/0x2980 [ 2956.079286] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2956.079986] ? wait_for_completion_io+0x270/0x270 [ 2956.080687] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2956.081426] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2956.082141] do_syscall_64+0x33/0x40 [ 2956.082659] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2956.083355] RIP: 0033:0x7f6839abdb19 [ 2956.083870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2956.086387] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2956.087424] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2956.088409] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2956.089383] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2956.090355] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2956.091322] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:07:05 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffe0, 0x8}}, './file0\x00'}) mmap$IORING_OFF_CQ_RING(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x1, 0x30, 0xffffffffffffffff, 0x8000000) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r3, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:07:05 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x7000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:07:05 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x28a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:07:05 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x8000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:07:05 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 55) 09:07:05 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 65) 09:07:05 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000100)={0x0, 0xc093, 0x4, 0x1, 0x33d}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000000)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) mmap$IORING_OFF_CQ_RING(&(0x7f0000fee000/0x12000)=nil, 0x12000, 0xf, 0x4000010, r0, 0x8000000) [ 2956.274426] FAULT_INJECTION: forcing a failure. [ 2956.274426] name failslab, interval 1, probability 0, space 0, times 0 [ 2956.275730] CPU: 1 PID: 12474 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2956.276518] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2956.277463] Call Trace: [ 2956.277764] dump_stack+0x107/0x167 [ 2956.278181] should_fail.cold+0x5/0xa [ 2956.278616] ? create_object.isra.0+0x3a/0xa20 [ 2956.279133] should_failslab+0x5/0x20 [ 2956.279568] kmem_cache_alloc+0x5b/0x310 [ 2956.280039] create_object.isra.0+0x3a/0xa20 [ 2956.280537] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2956.281247] kmem_cache_alloc+0x159/0x310 [ 2956.281738] anon_vma_clone+0xdc/0x590 [ 2956.282196] __split_vma+0x17c/0x4e0 [ 2956.282633] __do_munmap+0x365/0x1260 [ 2956.283082] ? arch_get_unmapped_area+0x450/0x450 [ 2956.283650] ? lock_release+0x680/0x680 [ 2956.284118] mmap_region+0x7c8/0x1500 [ 2956.284582] do_mmap+0xcdb/0x11e0 [ 2956.284994] vm_mmap_pgoff+0x198/0x1f0 [ 2956.285504] ? randomize_page+0xb0/0xb0 [ 2956.286002] ksys_mmap_pgoff+0x41c/0x560 [ 2956.286481] ? find_mergeable_anon_vma+0x250/0x250 [ 2956.287059] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2956.287678] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2956.288287] do_syscall_64+0x33/0x40 [ 2956.288737] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2956.289337] RIP: 0033:0x7f28100dfb62 [ 2956.289773] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2956.291896] RSP: 002b:00007f280d6550f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2956.292801] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f28100dfb62 [ 2956.293636] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000 [ 2956.294471] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 2956.295303] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2956.296138] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2956.315774] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted [ 2956.316985] FAULT_INJECTION: forcing a failure. [ 2956.316985] name failslab, interval 1, probability 0, space 0, times 0 [ 2956.317008] CPU: 0 PID: 12471 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2956.317018] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2956.317025] Call Trace: [ 2956.317050] dump_stack+0x107/0x167 [ 2956.317072] should_fail.cold+0x5/0xa [ 2956.317092] ? xas_alloc+0x336/0x440 [ 2956.317119] should_failslab+0x5/0x20 [ 2956.325410] kmem_cache_alloc+0x5b/0x310 [ 2956.326290] xas_alloc+0x336/0x440 [ 2956.327062] xas_create+0x34a/0x10d0 [ 2956.327882] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2956.329025] xas_store+0x8c/0x1c40 [ 2956.329809] __xa_store+0x164/0x2d0 [ 2956.330593] ? xa_delete_node+0x280/0x280 [ 2956.331498] ? trace_hardirqs_on+0x5b/0x180 [ 2956.332450] xa_store+0x31/0x50 [ 2956.333168] __io_uring_add_tctx_node+0x1cf/0x520 [ 2956.334210] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2956.335334] ? alloc_fd+0x2e7/0x670 [ 2956.336134] io_uring_setup+0x1fbb/0x2980 [ 2956.337048] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2956.338141] ? wait_for_completion_io+0x270/0x270 [ 2956.339205] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2956.340340] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2956.341460] do_syscall_64+0x33/0x40 [ 2956.342259] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2956.343362] RIP: 0033:0x7f6839abdb19 [ 2956.344178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2956.348159] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2956.349809] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2956.351349] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2956.352940] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2956.354523] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2956.356061] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:07:22 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 48) 09:07:22 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x29a2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:07:22 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x20000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:07:22 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 56) 09:07:22 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000100)=0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x1, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0xa0}, 0x1, {0x0, r4}}, 0x6) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xa, 0x11, r0, 0x0) 09:07:22 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0xc000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:07:22 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 66) 09:07:22 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) fallocate(0xffffffffffffffff, 0x4, 0x8000, 0x8) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40086607, &(0x7f0000000080)) r3 = syz_io_uring_setup(0x4b8a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0xf0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000240)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x800448d2, &(0x7f0000000080)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r1, 0x8, 0xffff, 0x100000001}) io_uring_enter(r5, 0x64be, 0x7e41, 0x3, &(0x7f0000000140), 0x8) syncfs(r4) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) [ 2973.736952] FAULT_INJECTION: forcing a failure. [ 2973.736952] name failslab, interval 1, probability 0, space 0, times 0 [ 2973.739554] CPU: 0 PID: 12498 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2973.741108] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2973.742936] Call Trace: [ 2973.743525] dump_stack+0x107/0x167 [ 2973.744333] should_fail.cold+0x5/0xa [ 2973.745206] ? ___slab_alloc+0x155/0x700 [ 2973.746113] ? create_object.isra.0+0x3a/0xa20 [ 2973.747173] should_failslab+0x5/0x20 [ 2973.748010] kmem_cache_alloc+0x5b/0x310 [ 2973.748918] create_object.isra.0+0x3a/0xa20 [ 2973.749904] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2973.751034] kmem_cache_alloc+0x159/0x310 [ 2973.751959] xas_alloc+0x336/0x440 [ 2973.752749] xas_create+0x34a/0x10d0 [ 2973.753612] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2973.754779] xas_store+0x8c/0x1c40 [ 2973.755587] __xa_store+0x164/0x2d0 [ 2973.756400] ? xa_delete_node+0x280/0x280 [ 2973.757330] ? trace_hardirqs_on+0x5b/0x180 [ 2973.758302] xa_store+0x31/0x50 [ 2973.759023] __io_uring_add_tctx_node+0x1cf/0x520 [ 2973.760091] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2973.761162] FAULT_INJECTION: forcing a failure. [ 2973.761162] name failslab, interval 1, probability 0, space 0, times 0 [ 2973.761238] ? alloc_fd+0x2e7/0x670 [ 2973.761279] io_uring_setup+0x1fbb/0x2980 [ 2973.765862] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2973.766979] ? wait_for_completion_io+0x270/0x270 [ 2973.768079] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2973.769252] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2973.770398] do_syscall_64+0x33/0x40 [ 2973.771220] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2973.772342] RIP: 0033:0x7f6839abdb19 [ 2973.773133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2973.776927] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2973.778560] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2973.780091] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2973.781593] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2973.783080] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2973.784558] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2973.786097] CPU: 1 PID: 12500 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2973.787954] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2973.790118] Call Trace: [ 2973.790823] dump_stack+0x107/0x167 [ 2973.791801] should_fail.cold+0x5/0xa [ 2973.792739] ? create_object.isra.0+0x3a/0xa20 [ 2973.793862] should_failslab+0x5/0x20 [ 2973.794785] kmem_cache_alloc+0x5b/0x310 [ 2973.795779] ? mark_held_locks+0x9e/0xe0 [ 2973.796832] create_object.isra.0+0x3a/0xa20 [ 2973.798005] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2973.799236] kmem_cache_alloc+0x159/0x310 [ 2973.800260] xas_alloc+0x336/0x440 [ 2973.803850] xas_create+0x34a/0x10d0 [ 2973.804733] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2973.805974] xas_store+0x8c/0x1c40 [ 2973.806847] __xa_store+0x164/0x2d0 [ 2973.807645] ? xa_delete_node+0x280/0x280 [ 2973.808676] ? trace_hardirqs_on+0x5b/0x180 [ 2973.809742] xa_store+0x31/0x50 [ 2973.810444] __io_uring_add_tctx_node+0x1cf/0x520 [ 2973.811450] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2973.812551] ? alloc_fd+0x2e7/0x670 [ 2973.813345] io_uring_setup+0x1fbb/0x2980 [ 2973.814233] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2973.815300] ? wait_for_completion_io+0x270/0x270 [ 2973.816351] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2973.817512] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2973.818620] do_syscall_64+0x33/0x40 [ 2973.819538] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2973.820767] RIP: 0033:0x7f900b55eb19 [ 2973.821586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2973.826047] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2973.827816] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2973.829443] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2973.831045] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2973.832663] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 09:07:22 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x10000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) [ 2973.834236] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2973.863652] FAULT_INJECTION: forcing a failure. [ 2973.863652] name failslab, interval 1, probability 0, space 0, times 0 [ 2973.866172] CPU: 1 PID: 12505 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2973.867750] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2973.869686] Call Trace: [ 2973.870232] dump_stack+0x107/0x167 [ 2973.870979] should_fail.cold+0x5/0xa [ 2973.871891] ? create_object.isra.0+0x3a/0xa20 [ 2973.872901] should_failslab+0x5/0x20 [ 2973.873700] kmem_cache_alloc+0x5b/0x310 [ 2973.874632] create_object.isra.0+0x3a/0xa20 [ 2973.875642] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2973.876802] kmem_cache_alloc+0x159/0x310 [ 2973.877710] vm_area_alloc+0x1c/0x110 [ 2973.878575] mmap_region+0x97e/0x1500 [ 2973.879427] do_mmap+0xcdb/0x11e0 [ 2973.880185] vm_mmap_pgoff+0x198/0x1f0 [ 2973.881094] ? randomize_page+0xb0/0xb0 [ 2973.881920] ksys_mmap_pgoff+0x41c/0x560 [ 2973.882833] ? find_mergeable_anon_vma+0x250/0x250 [ 2973.883941] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2973.885186] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2973.886236] do_syscall_64+0x33/0x40 [ 2973.887007] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2973.888236] RIP: 0033:0x7f28100dfb62 [ 2973.889020] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2973.892793] RSP: 002b:00007f280d6340f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2973.894354] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f28100dfb62 [ 2973.895798] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000 [ 2973.897252] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 2973.898717] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2973.900162] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:07:22 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x8, 0x80010, 0xffffffffffffffff, 0x8000000) r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x5000)=nil, 0x5000, 0x4, 0x30, 0xffffffffffffffff, 0x10000000) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r2, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r2, 0x2401, 0x4) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x10000) syz_io_uring_submit(r0, r1, &(0x7f0000000140)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x7, 0x0, @fd=r2, 0xf9, 0x0, 0x53, 0x2, 0x0, {0x0, r3}}, 0x7fff) r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000100)=@IORING_OP_TIMEOUT={0xb, 0x3, 0x0, 0x0, 0x5, &(0x7f0000000040)={0x77359400}}, 0x8) r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r7) ioctl$AUTOFS_DEV_IOCTL_FAIL(r7, 0xc0189377, &(0x7f00000002c0)=ANY=[@ANYBLOB="0100000001000000180000002862e541e700807f875c3f029449285093d3064320e6aa6c84724eb86a2423d666ec94d58cca20ab7a8a93e22c5059f8521071bf4e079cdb5e4067e55cb00dc40252c1aab0e29700000000bd08e2855d1492bfeffe36a7c08be6a53f56059882f22a3e9658f8e46941e35b3b54c05a23b321f0e75ffd21923a4689240a6de712404a4aea728c6c337075588e54c5ebcb", @ANYRES32, @ANYBLOB="e0ffffff080000002e2f66696c653000"]) mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x8031, r7, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000) 09:07:22 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x2aa2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) 09:07:22 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x20ffc000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:07:22 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 57) [ 2974.163265] FAULT_INJECTION: forcing a failure. [ 2974.163265] name failslab, interval 1, probability 0, space 0, times 0 [ 2974.165689] CPU: 0 PID: 12520 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2974.167129] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2974.168855] Call Trace: [ 2974.169418] dump_stack+0x107/0x167 [ 2974.170180] should_fail.cold+0x5/0xa [ 2974.170977] ? xas_alloc+0x336/0x440 [ 2974.171754] should_failslab+0x5/0x20 [ 2974.172548] kmem_cache_alloc+0x5b/0x310 [ 2974.173409] xas_alloc+0x336/0x440 [ 2974.174154] xas_create+0x34a/0x10d0 [ 2974.174966] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2974.176056] xas_store+0x8c/0x1c40 [ 2974.176818] __xa_store+0x164/0x2d0 [ 2974.177586] ? xa_delete_node+0x280/0x280 [ 2974.178459] ? trace_hardirqs_on+0x5b/0x180 [ 2974.179364] xa_store+0x31/0x50 [ 2974.180056] __io_uring_add_tctx_node+0x1cf/0x520 [ 2974.181066] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2974.182153] ? alloc_fd+0x2e7/0x670 [ 2974.182924] io_uring_setup+0x1fbb/0x2980 [ 2974.183796] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2974.184855] ? wait_for_completion_io+0x270/0x270 [ 2974.185898] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2974.186983] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2974.188059] do_syscall_64+0x33/0x40 [ 2974.188839] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2974.189911] RIP: 0033:0x7f6839abdb19 [ 2974.190686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2974.194550] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2974.196139] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2974.197631] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2974.199111] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2974.200591] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2974.202080] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:07:39 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 58) 09:07:39 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 49) 09:07:39 executing program 6: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x24000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 09:07:39 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) pread64(r1, 0x0, 0x0, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000200)=0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0/../file0\x00'}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x4) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) r4 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = syz_open_dev$usbmon(&(0x7f0000000140), 0x6, 0x185643) mkdirat(r4, &(0x7f0000000240)='./file0\x00', 0x14) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4}, './file0/../file0\x00'}) poll(&(0x7f0000000180)=[{r7}], 0x1, 0x0) connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x9, @none, 0x81, 0x1}, 0xe) mount$9p_fd(0x2ba2, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) [ 2990.619143] FAULT_INJECTION: forcing a failure. [ 2990.619143] name failslab, interval 1, probability 0, space 0, times 0 [ 2990.621947] CPU: 1 PID: 12527 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 2990.623636] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2990.625373] Call Trace: [ 2990.625970] dump_stack+0x107/0x167 [ 2990.626866] should_fail.cold+0x5/0xa [ 2990.627872] ? create_object.isra.0+0x3a/0xa20 [ 2990.629049] should_failslab+0x5/0x20 [ 2990.629981] kmem_cache_alloc+0x5b/0x310 [ 2990.630951] ? mark_held_locks+0x9e/0xe0 [ 2990.631950] create_object.isra.0+0x3a/0xa20 [ 2990.633099] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2990.634693] kmem_cache_alloc+0x159/0x310 [ 2990.635910] xas_alloc+0x336/0x440 [ 2990.637011] xas_create+0x34a/0x10d0 [ 2990.638210] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2990.639835] xas_store+0x8c/0x1c40 [ 2990.640965] __xa_store+0x164/0x2d0 [ 2990.642116] ? xa_delete_node+0x280/0x280 [ 2990.643405] ? trace_hardirqs_on+0x5b/0x180 [ 2990.644748] xa_store+0x31/0x50 [ 2990.645790] __io_uring_add_tctx_node+0x1cf/0x520 [ 2990.647283] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2990.648861] ? alloc_fd+0x2e7/0x670 [ 2990.650019] io_uring_setup+0x1fbb/0x2980 [ 2990.651329] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2990.652896] ? wait_for_completion_io+0x270/0x270 [ 2990.654388] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2990.655975] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2990.657592] do_syscall_64+0x33/0x40 [ 2990.658729] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2990.660240] RIP: 0033:0x7f900b55eb19 [ 2990.661283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2990.666896] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2990.669134] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2990.671126] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2990.672956] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2990.674798] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2990.676630] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 09:07:39 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 67) 09:07:39 executing program 2: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x12000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) 09:07:39 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000a00)={0x3, 0x80, 0x70, 0x0, 0x20, 0x0, 0x0, 0x101, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10602, 0x0, 0x3, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40086607, &(0x7f0000000080)) r2 = syz_io_uring_setup(0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x2c5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000000)) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r3, 0x800448d2, &(0x7f0000000080)) io_uring_enter(r2, 0x64ba, 0x7e41, 0x1, &(0x7f0000000140), 0x8) syncfs(r3) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/233, 0xe9) 09:07:39 executing program 5: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000700)=0x0, &(0x7f0000000100)) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x10000000}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000240)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x80010, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index}, 0x8001) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000800), 0x21a100, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r6, 0x810c9365, &(0x7f0000002900)={{0x10000, 0x6}, 0x100, './file0\x00'}) syz_io_uring_submit(r1, r4, &(0x7f0000000200)=@IORING_OP_FADVISE={0x18, 0x5, 0x0, @fd_index, 0x2, 0x0, 0x4e2d, 0x3, 0x1}, 0xa8dc) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x30, r0, 0x8000000) r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r7) ioctl$AUTOFS_DEV_IOCTL_FAIL(r7, 0xc0189377, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYBLOB="e0ffffff080000002e2b66696c653000"]) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000004, 0x10, r7, 0x0) r8 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_SEND={0x1a, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000140)="569c7755a50565cb0eda06b45d43c002614bfaeecdf530e391b5e1264c2ce6e6613d1c7d841e1fcdda6fc3647318b65d9a82cb3389489ceadcca778d8e47c63dba1219ee90f28eb3bc336767c72a", 0x4e, 0xc0c1, 0x1}, 0x200) syz_io_uring_submit(0x0, r4, &(0x7f00000006c0)=@IORING_OP_SENDMSG={0x9, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000680)={&(0x7f0000000400)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e20, @rand_addr=0x64010100}}, 0x80, &(0x7f0000000640)=[{&(0x7f0000000500)="85b9e8c2b8c07ccf66bf7dd51c1cf5f41b223bc29fbce48764f9d8b3fa5d2e860f6442a2ade488099f198dda82e4105d406baddd22b8f2e3f9a94dfa44643e029f8db9ea460cae754eeb2d1cf7797a4d9c4fb809c1f0c158fad6ae1777cd61c47a99d0a3a084adc93eaef43cf2dbc88ffa6490ce4efa6724a0cc946579fec449d996b6dd2313450ca78733aec986347cc6c159ab30d5996f63d1caec1db82f5de9a5148e", 0xa4}, {&(0x7f00000005c0)="711b3b61dee30646ddabfafb56ac810ec923afb0bcca1de4509595161324bedf0e7277a160a2b28370eab775a7409eff290b0e12dae2d3b0a3275c06a9fbe1b57177092794814c8b886793ac688b10738b313e7c38b0380221d50d6a2033323e6a1fac0d395e60a907812747b0b4c47bf25e", 0x72}], 0x2}, 0x0, 0x40004}, 0x3f) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r8, 0x8008f513, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_DISABLE(r8, 0x2401, 0x4) signalfd(r8, &(0x7f0000000000)={[0x6]}, 0x8) [ 2990.757353] FAULT_INJECTION: forcing a failure. [ 2990.757353] name failslab, interval 1, probability 0, space 0, times 0 [ 2990.760434] CPU: 1 PID: 12538 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2990.762183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2990.764265] Call Trace: [ 2990.764945] dump_stack+0x107/0x167 [ 2990.765894] should_fail.cold+0x5/0xa [ 2990.766857] ? create_object.isra.0+0x3a/0xa20 [ 2990.768025] should_failslab+0x5/0x20 [ 2990.769000] kmem_cache_alloc+0x5b/0x310 [ 2990.770048] ? mark_held_locks+0x9e/0xe0 [ 2990.771096] create_object.isra.0+0x3a/0xa20 [ 2990.772216] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2990.773502] kmem_cache_alloc+0x159/0x310 [ 2990.774585] xas_alloc+0x336/0x440 [ 2990.775502] xas_create+0x34a/0x10d0 [ 2990.776470] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2990.777811] xas_store+0x8c/0x1c40 [ 2990.778734] __xa_store+0x164/0x2d0 [ 2990.779657] ? xa_delete_node+0x280/0x280 [ 2990.780716] ? trace_hardirqs_on+0x5b/0x180 [ 2990.781849] xa_store+0x31/0x50 [ 2990.782686] __io_uring_add_tctx_node+0x1cf/0x520 [ 2990.783904] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2990.785250] ? alloc_fd+0x2e7/0x670 [ 2990.786221] io_uring_setup+0x1fbb/0x2980 [ 2990.787286] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2990.788560] ? wait_for_completion_io+0x270/0x270 [ 2990.789845] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2990.791157] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2990.792460] do_syscall_64+0x33/0x40 [ 2990.793397] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2990.794704] RIP: 0033:0x7f6839abdb19 [ 2990.795652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2990.800292] RSP: 002b:00007f6837033108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2990.802213] RAX: ffffffffffffffda RBX: 00007f6839bd0f60 RCX: 00007f6839abdb19 [ 2990.804531] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2990.806158] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2990.807713] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2990.808658] FAULT_INJECTION: forcing a failure. [ 2990.808658] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2990.809386] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2990.813827] CPU: 0 PID: 12542 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2990.815523] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2990.817533] Call Trace: [ 2990.818172] dump_stack+0x107/0x167 [ 2990.819057] should_fail.cold+0x5/0xa [ 2990.819988] __alloc_pages_nodemask+0x182/0x600 [ 2990.821111] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2990.822393] ? walk_mem_res+0x170/0x170 [ 2990.823256] alloc_pages_current+0x187/0x280 [ 2990.824374] pte_alloc_one+0x16/0x1a0 [ 2990.825341] __pte_alloc+0x1d/0x330 [ 2990.826271] remap_pfn_range_internal+0x9a3/0xf60 [ 2990.827443] ? lookup_memtype+0x5b/0x200 [ 2990.828426] ? apply_to_existing_page_range+0x40/0x40 [ 2990.829695] remap_pfn_range+0xcd/0x160 [ 2990.830717] ? remap_pfn_range_notrack+0x70/0x70 [ 2990.831921] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 2990.833219] io_uring_mmap+0x398/0x530 [ 2990.834227] mmap_file+0x5e/0xe0 [ 2990.835083] mmap_region+0xc49/0x1500 [ 2990.836047] do_mmap+0xcdb/0x11e0 [ 2990.836935] vm_mmap_pgoff+0x198/0x1f0 [ 2990.837936] ? randomize_page+0xb0/0xb0 [ 2990.838970] ksys_mmap_pgoff+0x41c/0x560 09:07:39 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) syz_io_uring_setup(0x3873, &(0x7f00000001c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 50) [ 2990.839988] ? find_mergeable_anon_vma+0x250/0x250 [ 2990.841426] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2990.842668] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2990.843795] do_syscall_64+0x33/0x40 [ 2990.844644] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2990.845790] RIP: 0033:0x7f28100dfb62 [ 2990.846612] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2990.850659] RSP: 002b:00007f280d6340f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2990.852326] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f28100dfb62 [ 2990.853939] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000 [ 2990.855514] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 2990.857058] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2990.858634] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2990.903916] ------------[ cut here ]------------ [ 2990.905227] WARNING: CPU: 0 PID: 12542 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 2990.907562] Modules linked in: [ 2990.908282] CPU: 0 PID: 12542 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 2990.910055] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2990.912088] RIP: 0010:get_pat_info+0x216/0x270 [ 2990.913238] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 91 81 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 7a 81 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 75 79 5a 00 e9 [ 2990.917883] RSP: 0018:ffff88804efdf898 EFLAGS: 00010212 [ 2990.919330] RAX: 00000000000148a9 RBX: ffff888049743600 RCX: ffffc90003803000 [ 2990.921236] RDX: 0000000000040000 RSI: ffffffff81123696 RDI: 0000000000000007 [ 2990.922909] RBP: ffff88804efdf950 R08: 0000000000000000 R09: ffff88804efdf820 [ 2990.924580] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 2990.926939] R13: 1ffff11009dfbf13 R14: 0000000000000000 R15: ffff888049743650 [ 2990.928570] FS: 00007f280d634700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 2990.932783] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2990.934158] CR2: 00007f28101e81f4 CR3: 0000000048d66000 CR4: 0000000000350ef0 [ 2990.937969] Call Trace: [ 2990.938567] ? __warn+0xe2/0x1f0 [ 2990.939280] ? get_pat_info+0x216/0x270 [ 2990.940149] ? report_bug+0x1c1/0x210 [ 2990.940982] ? handle_bug+0x41/0x90 [ 2990.941784] ? exc_invalid_op+0x14/0x50 [ 2990.942645] ? asm_exc_invalid_op+0x12/0x20 [ 2990.943597] ? get_pat_info+0x216/0x270 [ 2990.944426] ? get_pat_info+0x216/0x270 [ 2990.945295] ? get_pat_info+0x216/0x270 [ 2990.946182] ? pgprot_writethrough+0xc0/0xc0 [ 2990.947151] ? finish_task_switch+0x126/0x5d0 [ 2990.948132] untrack_pfn+0xdc/0x240 [ 2990.948931] ? track_pfn_insert+0x150/0x150 [ 2990.949880] ? lock_downgrade+0x6d0/0x6d0 [ 2990.950778] ? uprobe_munmap+0x95/0x560 [ 2990.951662] unmap_single_vma+0x1bc/0x300 [ 2990.952596] zap_page_range_single+0x2ce/0x450 [ 2990.953598] ? unmap_single_vma+0x300/0x300 [ 2990.954532] ? remap_pfn_range_internal+0xc56/0xf60 [ 2990.955623] ? lookup_memtype+0x5b/0x200 [ 2990.956521] ? apply_to_existing_page_range+0x40/0x40 [ 2990.957672] remap_pfn_range+0x139/0x160 [ 2990.958569] ? remap_pfn_range_notrack+0x70/0x70 [ 2990.959598] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 2990.960712] io_uring_mmap+0x398/0x530 [ 2990.961562] mmap_file+0x5e/0xe0 [ 2990.962281] mmap_region+0xc49/0x1500 [ 2990.963095] do_mmap+0xcdb/0x11e0 [ 2990.963858] vm_mmap_pgoff+0x198/0x1f0 [ 2990.964696] ? randomize_page+0xb0/0xb0 [ 2990.965552] ksys_mmap_pgoff+0x41c/0x560 [ 2990.966385] ? find_mergeable_anon_vma+0x250/0x250 [ 2990.967417] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2990.968519] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2990.969616] do_syscall_64+0x33/0x40 [ 2990.970372] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2990.971475] RIP: 0033:0x7f28100dfb62 [ 2990.972231] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2990.976005] RSP: 002b:00007f280d6340f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2990.977596] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f28100dfb62 [ 2990.979079] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000 [ 2990.980561] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 2990.982060] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2990.983539] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 [ 2990.985029] irq event stamp: 1803 [ 2990.985782] hardirqs last enabled at (1813): [] console_unlock+0x92d/0xb40 [ 2990.987549] hardirqs last disabled at (1822): [] console_unlock+0x839/0xb40 [ 2990.989340] softirqs last enabled at (1194): [] asm_call_irq_on_stack+0x12/0x20 [ 2990.991194] softirqs last disabled at (1133): [] asm_call_irq_on_stack+0x12/0x20 [ 2990.993022] ---[ end trace ac84158cb0b8be29 ]--- [ 2991.031365] FAULT_INJECTION: forcing a failure. [ 2991.031365] name failslab, interval 1, probability 0, space 0, times 0 [ 2991.033842] CPU: 0 PID: 12550 Comm: syz-executor.7 Tainted: G W 5.10.234 #1 [ 2991.035553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2991.037256] Call Trace: [ 2991.037808] dump_stack+0x107/0x167 [ 2991.038559] should_fail.cold+0x5/0xa [ 2991.039414] ? xas_alloc+0x336/0x440 [ 2991.040326] should_failslab+0x5/0x20 [ 2991.041252] kmem_cache_alloc+0x5b/0x310 [ 2991.042253] xas_alloc+0x336/0x440 [ 2991.043116] xas_create+0x34a/0x10d0 [ 2991.044055] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2991.045328] xas_store+0x8c/0x1c40 [ 2991.046230] __xa_store+0x164/0x2d0 [ 2991.047120] ? xa_delete_node+0x280/0x280 [ 2991.048144] ? trace_hardirqs_on+0x5b/0x180 [ 2991.049243] xa_store+0x31/0x50 [ 2991.050063] __io_uring_add_tctx_node+0x1cf/0x520 [ 2991.051234] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2991.052501] ? alloc_fd+0x2e7/0x670 [ 2991.053402] io_uring_setup+0x1fbb/0x2980 [ 2991.054433] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2991.055675] ? wait_for_completion_io+0x270/0x270 [ 2991.056883] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2991.058172] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2991.059429] do_syscall_64+0x33/0x40 [ 2991.060336] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2991.061602] RIP: 0033:0x7f900b55eb19 [ 2991.062645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2991.068026] RSP: 002b:00007f9008ad4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2991.070329] RAX: ffffffffffffffda RBX: 00007f900b671f60 RCX: 00007f900b55eb19 [ 2991.072425] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003873 [ 2991.074653] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2991.076688] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2991.078803] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffc000 VM DIAGNOSIS: 09:07:40 Registers: info registers vcpu 0 RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822dde81 RDI=ffffffff879f3140 RBP=ffffffff879f3100 RSP=ffff88804efdf2a0 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000066 R13=0000000000000066 R14=ffffffff879f3100 R15=dffffc0000000000 RIP=ffffffff822dded8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f280d634700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f28101e81f4 CR3=0000000048d66000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f28101c67c000007f28101c67c8 XMM02=00007f28101c67e000007f28101c67c0 XMM03=00007f28101c67c800007f28101c67c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff814725e9 RDX=ffff888049fc8000 RSI=0000000000000000 RDI=0000000000000000 RBP=ffff8880499fff58 RSP=ffff8880499fff08 R8 =0000000000000000 R9 =ffffffff8567850f R10=0000000000000000 R11=0000000000000001 R12=0000000000000003 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff8140b160 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000055556070b400 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2cd29000 CR3=0000000049364000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000ff0000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00007f75fc52f7c800007f75fc52f7c0 XMM04=b60fa8746e6000010000000000fff900 XMM05=234ee6fa16b300a51f56934684c38314 XMM06=c486115962bdc72038a2ba7f73075f85 XMM07=bb65aaaeeb467c9ae42eb1176680c6d4 XMM08=2b8339635d5bf75f6917a737bf72c93c XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000