000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(0x0, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r3, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:43:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 16) 12:43:18 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 19) 12:43:18 executing program 2: syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/time_for_children\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xc02c2, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000140)="ae93524bb13e49c6", 0x8}, {&(0x7f00000004c0)="1296ca6b2afc3278755b7cdfd45d8a59295daccda003be4aa322e04b03eb93b79518fc6ddc4a2c882d4cd9e332e158e7c6b37c", 0x33}, {&(0x7f0000000240)="93e89e0b66979ffc3e81c8805bcd51156ea7d16c16af66950dd8d058393d3cde528f5af678b15390b41fca27779ce7e95ea6f9be7a4e161c4a22d28a62889fb0743135c0eab56c25aff4f73d7f89bb85a6e8faeecc57c06499467091bdae7953a1c42b2bd5ff37f940cc4df4cc86c0a9f733a27746103c8257ad1681edcbe3ab5c6657e3a51d0287f89a506b5c064c3d84b119367228924ce4caca16b9272d9772", 0x104}, {&(0x7f0000000540)="021d4747028b47c14b5e1b661173253d1f3becb69e674943f82f6f535f425b165476b035d2ce9eda801c14d4e45721d17f56c5934bfd13dc76901ebed1a1183e507adbd279b8c00f7dbef739702be0c4b7b4ce2622cfef50026b5127918d1ddc96db6944d2d13e2ba79b13afba4d575fd8593e7c195343e3d3661a6adbe66f54310e81", 0x83}], 0x4) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/stat\x00') openat$incfs(r1, &(0x7f0000000fc0)='.pending_reads\x00', 0x0, 0x0) r2 = syz_genetlink_get_family_id$gtp(&(0x7f0000000380), r0) sendmsg$GTP_CMD_DELPDP(r1, &(0x7f0000000080)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000400)={&(0x7f0000000600)=ANY=[@ANYBLOB="1c9b65ae5b5d5dee79000000000068df49fc6e2bb0d200ca89e4fa7634509807000000000000", @ANYRES16=r2, @ANYBLOB="87ce2abd7000ffdbdf250100000008000800000000000800090001002000"], 0x24}, 0x1, 0x0, 0x0, 0x4008421}, 0x4002) sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r2, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@GTPA_O_TEI={0x8, 0x9, 0x2}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_O_TEI={0x8, 0x9, 0x1}, @GTPA_O_TEI={0x8, 0x9, 0x2}, @GTPA_I_TEI={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x4000) 12:43:18 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) [ 1539.136348] FAULT_INJECTION: forcing a failure. [ 1539.136348] name failslab, interval 1, probability 0, space 0, times 0 [ 1539.138831] CPU: 1 PID: 9828 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1539.140315] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1539.142118] Call Trace: [ 1539.142693] dump_stack+0x107/0x167 [ 1539.143484] should_fail.cold+0x5/0xa [ 1539.144338] ? create_object.isra.0+0x3a/0xa20 [ 1539.145415] should_failslab+0x5/0x20 [ 1539.146328] kmem_cache_alloc+0x5b/0x310 [ 1539.147272] create_object.isra.0+0x3a/0xa20 [ 1539.148298] kmemleak_alloc_percpu+0xa0/0x100 [ 1539.149341] pcpu_alloc+0x4e2/0x1240 [ 1539.150239] ? io_async_queue_proc+0x80/0x80 [ 1539.151252] percpu_ref_init+0x31/0x3d0 [ 1539.152180] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1539.153425] io_uring_setup+0x14f6/0x2980 [ 1539.154403] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1539.155560] ? wait_for_completion_io+0x270/0x270 [ 1539.156699] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1539.157915] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1539.159104] do_syscall_64+0x33/0x40 [ 1539.159961] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1539.161138] RIP: 0033:0x7fddef796b19 [ 1539.162020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1539.166236] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1539.167985] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1539.169623] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1539.171272] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1539.172893] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1539.174531] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1539.180213] FAULT_INJECTION: forcing a failure. [ 1539.180213] name failslab, interval 1, probability 0, space 0, times 0 [ 1539.182817] CPU: 1 PID: 9825 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1539.184371] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1539.186273] Call Trace: [ 1539.186872] dump_stack+0x107/0x167 [ 1539.187708] should_fail.cold+0x5/0xa [ 1539.188587] ? create_object.isra.0+0x3a/0xa20 [ 1539.189645] should_failslab+0x5/0x20 [ 1539.190516] kmem_cache_alloc+0x5b/0x310 [ 1539.191450] create_object.isra.0+0x3a/0xa20 [ 1539.192456] kmemleak_alloc_percpu+0xa0/0x100 [ 1539.193472] pcpu_alloc+0x4e2/0x1240 [ 1539.194348] ? io_async_queue_proc+0x80/0x80 [ 1539.195348] percpu_ref_init+0x31/0x3d0 [ 1539.196250] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1539.197480] io_uring_setup+0x14f6/0x2980 [ 1539.198435] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1539.199569] ? wait_for_completion_io+0x270/0x270 [ 1539.200687] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1539.201882] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1539.203042] do_syscall_64+0x33/0x40 [ 1539.203885] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1539.205046] RIP: 0033:0x7f5e2aecab19 [ 1539.205905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1539.210030] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1539.211738] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1539.213338] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1539.215179] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1539.217059] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1539.218960] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1539.234519] FAULT_INJECTION: forcing a failure. [ 1539.234519] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1539.236137] CPU: 0 PID: 9833 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1539.237072] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1539.238281] Call Trace: [ 1539.238694] dump_stack+0x107/0x167 [ 1539.239193] should_fail.cold+0x5/0xa [ 1539.239725] _copy_from_user+0x2e/0x1b0 [ 1539.240271] __copy_msghdr_from_user+0x91/0x4b0 [ 1539.240906] ? __ia32_sys_shutdown+0x80/0x80 [ 1539.241506] ? __lock_acquire+0x1657/0x5b00 [ 1539.242119] ___sys_recvmsg+0xd5/0x200 [ 1539.242653] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1539.243326] ? __lockdep_reset_lock+0x180/0x180 [ 1539.243970] ? __fget_files+0x2cf/0x520 [ 1539.244518] ? lock_acquire+0x197/0x470 [ 1539.245060] ? find_held_lock+0x2c/0x110 [ 1539.245621] ? __might_fault+0xd3/0x180 [ 1539.246179] ? lock_downgrade+0x6d0/0x6d0 [ 1539.246760] do_recvmmsg+0x24c/0x6d0 [ 1539.247287] ? ___sys_recvmsg+0x200/0x200 [ 1539.247857] ? lock_downgrade+0x6d0/0x6d0 [ 1539.248429] ? ksys_write+0x12d/0x260 [ 1539.248966] ? wait_for_completion_io+0x270/0x270 [ 1539.249628] ? rcu_read_lock_any_held+0x75/0xa0 [ 1539.250274] ? vfs_write+0x354/0xb10 [ 1539.250791] __x64_sys_recvmmsg+0x20f/0x260 [ 1539.251380] ? ksys_write+0x1a9/0x260 [ 1539.251914] ? __do_sys_socketcall+0x600/0x600 [ 1539.252540] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1539.253257] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1539.253966] do_syscall_64+0x33/0x40 [ 1539.254492] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1539.255191] RIP: 0033:0x7f2d4b68ab19 [ 1539.255701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1539.258189] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1539.259223] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1539.260200] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1539.261171] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1539.262143] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1539.263102] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:43:18 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 17) 12:43:18 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002000028", 0x5d, 0x400}, {&(0x7f0000010400)="02000000030000000400", 0xa, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:43:18 executing program 2: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xee01, 0xee00}}, './file0\x00'}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x640, 0x4, 0x0, 0x1, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, r3, 0x2) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r4) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x36, &(0x7f0000000040)=@hopopts={0x0, 0x5, '\x00', [@enc_lim={0x4, 0x1, 0x6}, @padn, @generic={0x3f, 0x27, "bfbaee49142b9384acc194db5e0212fa866035729354d71dcc1fec512f7773e70fb2d4781cc61c"}]}, 0x38) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000003080)={0x0, "1aaaa8aae701d5ca00"}) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f00000003c0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343d08000000000000000665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab5f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43db7e4116e6031e00"/146, @ANYRES16=r5, @ANYRES16], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x8040) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f0000000200)=0x1f) openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x80202, 0x100) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f0000000240)=@random="5274f211af1f54bd5a7976c966662bb790a70c7e473c7476670d99d9f4", 0x1d, 0x0) 12:43:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 17) 12:43:18 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(0x0, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r3, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:43:18 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = accept$inet6(r0, &(0x7f0000006d00)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000006d40)=0x1c) ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r3, 0x8010661b, &(0x7f0000006d80)) setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000000080), 0x4) getsockopt$inet6_mreq(r0, 0x29, 0x15, &(0x7f00000001c0)={@initdev, 0x0}, &(0x7f00000004c0)=0x14) [ 1539.451322] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1539.464641] FAULT_INJECTION: forcing a failure. [ 1539.464641] name failslab, interval 1, probability 0, space 0, times 0 [ 1539.467113] CPU: 1 PID: 9848 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1539.468569] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1539.469177] loop7: detected capacity change from 0 to 33792 [ 1539.470338] Call Trace: [ 1539.470371] dump_stack+0x107/0x167 [ 1539.470405] should_fail.cold+0x5/0xa [ 1539.473151] ? create_object.isra.0+0x3a/0xa20 [ 1539.474127] should_failslab+0x5/0x20 [ 1539.474933] kmem_cache_alloc+0x5b/0x310 [ 1539.475797] create_object.isra.0+0x3a/0xa20 [ 1539.476808] kmemleak_alloc_percpu+0xa0/0x100 [ 1539.477986] pcpu_alloc+0x4e2/0x1240 [ 1539.479005] ? io_async_queue_proc+0x80/0x80 [ 1539.480205] percpu_ref_init+0x31/0x3d0 [ 1539.481147] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1539.482295] io_uring_setup+0x14f6/0x2980 [ 1539.483177] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1539.484235] ? wait_for_completion_io+0x270/0x270 [ 1539.485278] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1539.486389] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1539.487705] do_syscall_64+0x33/0x40 [ 1539.488694] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1539.489792] RIP: 0033:0x7fddef796b19 [ 1539.490571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 sendmmsg$inet6(r2, &(0x7f0000006ac0)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x7ff, @remote, 0x4}, 0x1c, &(0x7f0000000440)=[{&(0x7f0000000040)="227ec6cbe9094a2d701e66056c2f98ec114250bfb8e61712165c8c1222ee075735ee0f770661f0d1461a58861a47e09725aae95d8db025d30124cfed3e563a8d7fe17f97025802a04c99ad2a15ec4c2e9a201ea646f1eea39a38a8112baca7cd5696fa2c1f296dbef7dc557c2dc6975478f5abb27c2d91d34931276f200da06d17d23a883ced4d055c86419d4145497b853c", 0x92}, {&(0x7f0000000100)="66a921559010f6be56842c69f90d436154bff7a0a59e22346fd35559aecfa517a27cd0cf44a12afcf27c6cef3dd826700c3db0e213c609ca3fe316ee949dc0f4b6d60a6f7f321f5d1070fc0e9f2e731fb65c45aef3a29a869c3f23fc3ec9ad7def0058f63d1bb34ad38a6bb99e2646b7dbecde7f12f0605e6586c44e358ef9b4d012260768f871e114a94d85df04cbd637463570d6b84aac1a46", 0x9a}, {&(0x7f0000000240)="1c9a4049ae9e5efe9ffabc8fa971f624d7d060588fa52f1aa656d4c51a24847bf531c68ba835c47d50ff80fbad20ef1d9fc900d8f5f5b6743fe3c8b41d8c8a43bdc04bd74405f06fa840b288bfbc9f1a7439e3d9097286be8908610ef0678c5c433c", 0x62}, {&(0x7f00000002c0)="6b4eaa9835e94a6c2470231e1412ecc29f4a7cdf09bbd669d1f99bb6d663f44d4da4c4c15bc76e0f88610d71f09c3a875a0b40bc810271a38a7558354e5242278edea5ae748280faaa1ee6c6dcc54214cdd3858245e8837cef27d7b01d113ee3cc5ebfb513c07688722a8a87adbfaf0fce782e9160bac3b7ab207c6dbc61667895bd0f3974c812f3d3e76427b0b00bf2ea371cbf8549f60dc69b077250597c9ee1", 0xa1}, {&(0x7f0000000380)="5dfb82be2b12ceaa17cba1ece3de2f810b6cfe23b93bbbe47bbe28765fb617c73c961c583da24a46df3a10b819542b82bc2f19e7be623fdd58af18eb0b52438662d2d00c537a9abbc4223ca98b2048f6c3879320e466897702e908ac0b9655acc85f9b9b6f490bf34595bf64ed04fcd4ad21357906458fc9650501905dd7f38d0ab662a4c068f3c7d500d1b2442af940ee215ec3887e0cbfee1e2e0ed18b33b0dd8fa2dfbb5c", 0xa6}], 0x5, &(0x7f0000000500)=[@tclass={{0x14, 0x29, 0x43, 0x800}}, @tclass={{0x14}}, @dontfrag={{0x14, 0x29, 0x3e, 0xffffffe1}}, @hoplimit_2292={{0x14}}, @dstopts_2292={{0x20, 0x29, 0x4, {0x33, 0x0, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}}}, @pktinfo={{0x24, 0x29, 0x32, {@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', r4}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xff}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xfff}}], 0xd8}}, {{&(0x7f0000000600)={0xa, 0x4e23, 0x2, @empty, 0x800}, 0x1c, &(0x7f00000006c0)=[{&(0x7f0000000640)="d59f6f2cf93ba6bb6adb7c2706ccfae221fae3cbdff769dd5761019c57ab06f572a77725a21de1a7733144fab04c36bf814d9d63d1d8666c9e670bb38ff64e5be10b8e337c19cd24b59635fc", 0x4c}], 0x1}}, {{&(0x7f0000000700)={0xa, 0x4e22, 0x1000, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x80000000}, 0x1c, &(0x7f0000001bc0)=[{&(0x7f0000000740)="296b54fc55a8ce556824e558ca3efbf647d116d656bfd4ee2e0425b313ad44d6a3b4d339f377e11a62a2f245a2c828a0948f153b11eb7f0a6b179fed9d35dd0b962dad552c3925f06ca305c0624d050fafe53ded3817053ea9819f0b7e06bf1fda473358aa58921c2def93ebccdad7968a1fcf9b5bfff6c1a5ff1e47f420ef2df50057f89b84af5647c82e61eb5e7a54e9e7edaf24a012aa1bf315e68ccfea821f0c8ab32fa282aed145f1883bd6169a7211b25a9d8f96a28a59c51d6303cf41c404ab1b403896f0c80b9ae1f506a2376edc40d2e65ade9f027410b764302ed84b30886889b63b45dff260ad009ef9b4b9360acbaf", 0xf5}, {&(0x7f0000000840)="3fd1eeb918ffd1d863f3ec7a429de7b7626b311f76ca89574955ed112b6e908db8a8013d08e22906498a5879a926cb2769c9c0e9d54f56cff7ecaa97c18697c680ec1af52fab743336e93bdd9bac86ee54770be4825c9acb0f92025b7761b22b36fc6c6bc564dd62e6a27348a39abbc6a69c48750c50b9044ad488227a081b1a9a3aae820afae8a821bdcfac2afedeb21e56e0908394687343154347b167802f3df3188ea45bc3e4b3cd642e4b914ff8934f0e28595d056df41def7436c26e64cfcb7591d87756f5ad8c6a40aed4bf3d8c83fca3e6021929ea481db0d0ed6177584d30b6487c1b04a2d8", 0xea}, {&(0x7f0000000940)="a14dfa04cbeea1be1af17badea9fb462c55cf6afba6f87b4cc98dcd5b319d6aaa61b5342a1d38b10c406c64b0b6b121c5f7e8e2a94af2ccfc30149d997f251e204d5fd2b1fb3b5cdfe3085e854198bf5c3f3efddfffebcf7a62a5d58b62f5deaf28badcfbe45f150", 0x68}, {&(0x7f00000009c0)="597495bc6c156ca7d994b4c5b5c151c436648f580346b71b4f1b5536a9c05b2534fd78ca077789eacacb505b2250275cb81d0d7c995b237ebd8d80514a329a7c3837f9e098a9084ac9bd447dc5609fffa0", 0x51}, {&(0x7f0000000a40)="81d758edd243b37bdca96a72caf1ba9c4651d0f979325b8d2e197ce0b5277599cdc8de9c5462b7416bb00de1147d27c63fa496653cabcaf1c3d5300e2a4241b8347f44a94086ae1b15c3d004ec8f883cfd7a4b68ee1ab27a71a89d1187389dce57e5732e3ca143ab5eca670bed880e", 0x6f}, {&(0x7f0000000ac0)="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", 0x1000}, {&(0x7f0000001ac0)="3bfc6ac25b4eb68094da6b71190d68293fa7fbb2d48f60c1be88e221ed5e72499f6964fff276", 0x26}, {&(0x7f0000001b00)="3936f9f200577ef32bc5930c7d4e52e7aa711c9f5b48718b9172a9548a97e0b02c7713df7667f0b812f3059beb6da2d114b6f2cfbae1252117c5da7729bb7a881aa8190f7ab0c8e671d62dde8e733ab8bc56df817d2bb1a5a59b58f9fa0a57714720e0d7b759044f20b8096b46c894ed78fc81aaa159c92e3f47f5d76a7b1e276d71e9db79f006ae754832ba419134", 0x8f}], 0x8}}, {{&(0x7f0000001c40)={0xa, 0x4e20, 0x5, @mcast1}, 0x1c, &(0x7f0000004100)=[{&(0x7f0000001c80)="1409d02537d804a691d92aeff4a7a89fa24928e25f63c03b7869634fd1891c5b0e653a6a6f40066ec137c9fef733c596a6c5e44f5d118a8377401b68db7c3b43c174d874b8b6a2d8e13745754bd675acb693c11dbebd82508439647ce59049b09e614f851c82b297ce2514d67a02ab59aa50651df56caf4e3e9dc2c063f117350ac4f8f88e65e0654333cfe83e45f54730e03985c88788417fa7a587ec56e46d95e636b5e00bd7fb8cdfe03211368a78b77bfe42619a1615a0681c34c9aac147ffd19d533ebebf6d8c77b5495c18bd8a592992abb2c2baf2f8bff5d846c726", 0xdf}, {&(0x7f0000001d80)="e87bb80702b779d8f58df57bf665e0c31f0c7f98cff8b13cca7bcce94eb9c8df17c39bb330d17472e1980b3c0c0e4400f44efcdb193f5fb0018a3bf4e91feaa8c1d414a97f766905a38d01dc900a44320eb41e6b449e71eb18c21c6c4100ab288086775180f57222c9dd94baa9a410e8bbc92884697af6778ffd488ff7518e009451af0b", 0x84}, {&(0x7f0000001e40)="7aadc4f19762178c28b54c3d26c04b90feca6ee1eb7263d01c9ee0f6b99a351ea54ba18c8a2c14a0cc1f", 0x2a}, {&(0x7f0000001e80)="f9bbd0b44ddc5068849c42e2b4c9e5", 0xf}, {&(0x7f0000001ec0)="23a19504fa35f54ed295d8adc5cf9a11", 0x10}, {&(0x7f0000001f00)="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", 0x1000}, {&(0x7f0000002f00)="fd0f5bf48420dd264e590e717a7dd029aaaca9b15f85d4e77ea519e5fd2a3edd8fc4fdae87b31c04310551b6d12f8abff354", 0x32}, {&(0x7f0000002f40)="9d686b451d3241e631b01e3454308eec3e88f112489a3136aedca49ccf34807a5d6294887d8dc9800577f6f30e2ad7c8ccf3a3692259d17a287ac2b2e4f26287b37e7890453a437e21fc953684ded5d90316519d4f6c447fef1f93e58aa8975a01019e3c4733001149b25960b3e3ed29626785f9e9ae7a75910fc5f6aa578ca387d46b8b2b1e10232f57cfb67e04fc1672ec", 0x92}, {&(0x7f0000003000)="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", 0x1000}, {&(0x7f0000004000)="d91ad9d0ea32ae5b83096aeebd7c470ec4aa6ccc5133aea20ed90b81714872b298d002fac27cf591f838b89e2b20490644b91f6642e374d6ffe38fffe42c2a9e0e6a33f3cfdcd91907ad029b08195b456457bfb2f3c863e651c1ac4a6b5a79c3b603b3db8d5332ac75f9e533c2763c7d93ed931bd43c6431bcf6e617714d5e11c19978a0129d5a4cea18285041e4d69c978c2f45bcccacc5cd078a130512f0dda702b9841f047efce73994e69b33038049ce0dff6d042d35064901c1ea57d7f61a", 0xc1}], 0xa, &(0x7f00000041c0)=[@dontfrag={{0x14, 0x29, 0x3e, 0x2}}, @tclass={{0x14, 0x29, 0x43, 0xff}}, @hopopts={{0x38, 0x29, 0x36, {0x0, 0x3, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0xff, 0x0, [0x1]}}, @jumbo={0xc2, 0x4, 0x5}, @ra={0x5, 0x2, 0x5}]}}}, @dstopts={{0x20, 0x29, 0x37, {0x89, 0x0, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}}}, @hopopts={{0x20, 0x29, 0x36, {0x2c, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x96}]}}}, @dstopts_2292={{0x138, 0x29, 0x4, {0x5c, 0x23, '\x00', [@enc_lim={0x4, 0x1, 0x9c}, @jumbo={0xc2, 0x4, 0x4}, @generic={0x6, 0xf4, "30fb22920aac978d2ea29ae6eb931afe234e269c50f80f3525a90984c3e3caeaa839d9481ade7f892d4715968f34de35350ba1f9374d3b97d9db7a7b1aef97141d696c9e91c400f44b0ef3f54d2f9b0d5d8205a9627fdc448575a58e22231c11a88249f20adc098aa4c98d0d96331df4df4c7d7071bb491a77b89e6f7e2e951cfb04a73ea60109281b893ab5e00413be097a3239b11a839c826e556f83e6f532a814461b22507cd2d35da57315988440284150775d41f9b401b0807bf2da5fbfc0de0e1c9c9180ae543a8a651240d324d66bd024df95d00076df79075172c9d99cfa724ad4e7decdf6421d247ee1d6d430a1d123"}, @hao={0xc9, 0x10, @mcast2}, @ra={0x5, 0x2, 0x71b}, @pad1, @pad1]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x8}}, @hopopts_2292={{0x28, 0x29, 0x36, {0x2, 0x1, '\x00', [@jumbo={0xc2, 0x4, 0x100}, @enc_lim={0x4, 0x1, 0xe4}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x7fffffff}}], 0x238}}, {{&(0x7f0000004400)={0xa, 0x4e21, 0x3, @remote, 0x4}, 0x1c, &(0x7f0000004540)=[{&(0x7f0000004440)="a3dfa1d7f22ce6ef4a70e55cecc38da130e51f632e1b8755f92c03ad1f159636dfc77de8478cd756dc28157589ba4dc12b7bdc7519cee4f61138a6649626f178814c", 0x42}, {&(0x7f00000044c0)="38d5a29bdb24020acaf7f24b1fafe03492d9ae7e2101bdfd2b1d82a6ac9d950776154b40926885c6bde1f7b6cb20b558b97d9d67ebfbaee757ec341bcc57870d440906c7bc8bc4858de2b707c27a622d211a8d67e8e920259816c11cf2e46a3e290dcbd74a78a1635f2868e364b7a7143e", 0x71}], 0x2, &(0x7f0000004580)=[@tclass={{0x14, 0x29, 0x43, 0x6}}], 0x18}}, {{&(0x7f00000045c0)={0xa, 0x4e21, 0xfe00000, @loopback, 0x1}, 0x1c, &(0x7f00000058c0)=[{&(0x7f0000004600)="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", 0x1000}, {&(0x7f0000005600)="cd6b6e7dff590c8e206385891a3e27fb755ae10ace23a0edf62938e79869a04d6482c16ca101377236568a54bf3d8d", 0x2f}, {&(0x7f0000005640)="aad43aa8d00061cbd1a8e25043acbc5f32ff2a726758ce1ddc9732d9ea2144e340af1cad200c30a2fc16acb3c1a2", 0x2e}, {&(0x7f0000005680)="d0176bf2cc89a36f20b3bf6e05db2b61afd762aad645db487c1528d664d60a1b17ae2095b32116e18b9bad36bb0ba971b1502ad28d2906c58d865917697a9677b87392314e572ddd9e13c62bdb775c22d58518d9014e55880af6aed34dd1556a7ec92d7cda5a433497353529c6a70b6911eac980d64e780d7a86a96194c6917966bef1a8ed7590fec77e224fc6578b6a374dd9bb7b60e40e1b30312c03c69aaed16f3d8a5d92f130116caf70b2e4cdbbf30230227f5c53e876d8d8676828f3a307c7cbe997b9b0746dd1f70459d13336", 0xd0}, {&(0x7f0000005780)="c22443be070aaa25a26c8cf8972a72e4f99e3486c0f5e04967dd551516b589976188882f7aefbeefdd000068fd0ceef80b918983b0e109f1624fb6bf6808a002705193d4cdecf1600bd9e6bf95e5", 0x4e}, {&(0x7f0000005800)="e43f581d097448638c0cddabd6ff1711d74ecd1e375cb44d15e367b52a8d26", 0x1f}, {&(0x7f0000005840)="4ffebde45440ad8fafaaa0a01be3796d45c6723e298bd9824f87604f1af58f9f6e766469a16f812d27cc1b729eeef1c7ae18c761311cc9d3caab53de805709e4af8ffe385538cc1501ac8c3d09a4e2489ac0493f0e98e1b45012ddc2831b", 0x5e}], 0x7, &(0x7f0000005940)=[@hopopts={{0x100, 0x29, 0x36, {0x89, 0x1c, '\x00', [@calipso={0x7, 0x28, {0x3, 0x8, 0xdb, 0x1, [0x2, 0x4, 0xfffffffffffffffd, 0x2400000]}}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @generic={0x1f, 0xb0, "dc1e9fe5be683e4bddae01cc7b9ec16cfa179529de4cf850603dfa53f5793549c392160e952682eb0db9942ee6eb535ae272cc2f8fe602bac26a484baa3fc6d1782b0a09d775a7a81d288d297e2b7b079094cf8ea33380af1100ff59b7f520eb3fddd548676fe0f42b64511046d592f82416d1d7ad3303a55b66aa71a5f753765f7fc10c93e86d1ddd657931ac2e6605e4fe5fc2f9f03b6ae7eb8c8c3f06458b493f7b3b08510f07a93ab37498ed2772"}]}}}, @rthdrdstopts={{0x70, 0x29, 0x37, {0x4, 0xa, '\x00', [@enc_lim={0x4, 0x1, 0xfa}, @jumbo={0xc2, 0x4, 0xaedc}, @generic={0x9, 0x3d, "d62698f59c846963b2b4298964e2718367932601d26dc4cd2eae03ea2e1f15d29f3cdc938b79a55070e4d7af28c7ce353a85c39e418398abfe94a607e9"}, @enc_lim={0x4, 0x1, 0x5}, @jumbo={0xc2, 0x4, 0x2}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x8}}], 0x188}}, {{&(0x7f0000005b00)={0xa, 0x4e22, 0x1, @private0, 0x1}, 0x1c, &(0x7f00000061c0)=[{&(0x7f0000005b40)="84916d954e1346feea399718279fb22e2f3c40500410f908e24c58ccfbb865af27d3b2cceab7749fbb06b4874168067007e049c1954a3502f5666daaeff8106f1a2241ed47d6faf63005c9e33ebd87563d6f9cd3f5ae12df6720c37ce57b41ebc957da3c8515259ac9d192e1de309388f060d5efcc1223361f3f924cdfa0dc26e09767c2add08e2870092351b36cd00e67216a99fd4e620d2d5a3b01e8c541d59876fd9b446c5fc53675b2eb2b24d7d9161dcbf8e51098508306c4f0c33573e5f5103506f8f2e07ef31a5ceb945d54df6f1d2ce7", 0xd4}, {&(0x7f0000005c40)="e1c6c2cd4323cc326b48d4b5a0cae315b2f8d6ef93ae647255348973d3277c79b8ef211b3c3d36f5b7347703188ade89f5cfc1379d0878ec26d94ac475390e324cac82cfb934276dda13c9a4ae64b4ec18a7c80bc00a479513b1f44e518d57b28b34e4e5008091c9446b5ad6c2f7de0ec81803fc932ddb06c90448082c40a1b86dc26095afe5f97ff29e8919db9ac7263ee971f739238d996a78f3d505b78da6b96a5774c5628e4293884a18ca0fb852000c68a6022dd4cb4178f0de3d55a6f5a5f948b7565558c836b9d9c762ec74", 0xcf}, {&(0x7f0000005d40)="39ed246e05a2a74fc9232c014a505e24f96fa326960cc265a25dd13d715ad7cbbe0e1600cbdeae996aa8222e6a385c7a71cb696ba40790f5c76deb9a58688801e430254033f26a3f583f9eb007ba3b4aed7274fc1116267ebdee5644abe30ddff0f388010b64a4bb1ea6222e5d7ec5d1634db04258e9d1fd88738b436e49b7104bc45352df2502811bb2d47304cf0085206946892da18ef2e3edcdb5e9727e13079821df6a113cee161d7e20fae2c55d5f35111604af8a5b71dd564087a0a3a65978bc4f9828ae2edfd91eec94d009", 0xcf}, {&(0x7f0000005e40)="f3f1883cc03d2bbfc0bd2b2c61c01fdfb62e68fe4974d10cad1545bb47667a1396fa3d43e563b9de25134f9c25aac32bf513dcaf05a655acbc10ff5315", 0x3d}, {&(0x7f0000005e80)="d3a0b0f16cfe2905a84127e51a30b6da4dd4b91efd233b9229e460a879165e0bedb6ddf2be45012d56f3bd93a8669dc27fd53bb36fb160606a39fc6696e23de618ea82098ae13cf4830b10cdf0b1fdd89e99d4eb2d444ab5d466ddfc6713a4e1b7bd74f15ab5f1259e150fdb72e02e4ee20e963858ee2a70696812501079dd8fe820844b6dd636bc7db788b6c7d675b318abfb82d51865b614492fa261a02e44d657d52146b4f22fa85da9f0b28795fc3e89032a89", 0xb5}, {&(0x7f0000005f40)="176572d44d267613ade3bc733c78d38d3dd2d9ac78d29702483a879cedb58c7c4d176fb76146a5205f48f7ad6aa34a94038b240ed34b630e41710107482e6ce51fc7ccbc5f85407310ef93ce4d8ec0314684373e3d86f9ccd960391a6a60d42ebd36e8e14f71a57c3ddc164da6473b05a1e23660b5e2bd6038c2821e6aaf233e82fde8628cf01df417d89e726c4879c24ddfe6de35cfd061541e8d2958530469f6ce5b6ff1ea21a1fe34a59751cfa11bf346c1b5c72521bae1829c228ac55d1354094e6c56e3ac97b98716272d205b150ac1d19b52f4aa03cf1b13ef8ac615d56d8571c401b4", 0xe6}, {&(0x7f0000006040)="29c121019306bcfbc02d3c815194b745e1bc7add655a155d05db6fc215d5463f9773d4281148ac2a86ae2ae498eaca668c09bef4572aa70042a1d932983bdd8b75dc158ed1a25a323789eecb68dfc600c95a349b80c1c9b5fe6ee96c3381742445218b63b90cc226a7676f63b9fefcc2a81741fd2c67de1eda5441c97fc4edbd619dfa58961f94ebe9634aa26e515baaa5db5fc27854e81be79d7ec730f6535b76066882238e4952d19a0e0d501c1308", 0xb0}, {&(0x7f0000006100)="18c2f535d34d32fbe1c884a4020510fa288159adab1db3759fa7c56e75b853a2ba8c61cb0053ee3bcc26310f71be745b688cf2b407119cf7d2f4a52c6df53a85d98d81c64f0728677e8fdac3ee52259dd0c7ba99e07d526276fe8de7838514ef654b48db23d8bc944f25324b75b9d2162fce8bf92a6de14e50f063b754d6cfccc25381b2143cd6bea4c227d3eaebd877952a14a85e89f868b0a74b538987f7b12ef488", 0xa3}], 0x8, &(0x7f0000006240)=[@dstopts={{0xd8, 0x29, 0x37, {0x2b, 0x17, '\x00', [@hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}, @generic={0x3, 0x70, "aa6083a02327997bb495d9ccabe07f1b53b9d0baa5b0f787cd1361820c2845fe8bafe5136dac5ba1c491488fb0a3a15345030c0c57733ff571ca2a3e37c55c7e4e96ee09ae101e8ef9934dc42c039cc3d532d8f43bba0b8b6f82db945d043b207a5afcb016e393ff02e74424024b8c05"}, @padn={0x1, 0x2, [0x0, 0x0]}, @calipso={0x7, 0x30, {0x2, 0xa, 0x7, 0x0, [0x10001, 0xffff, 0x0, 0x3, 0x6]}}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x2}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x5d7}}, @rthdr_2292={{0x88, 0x29, 0x39, {0x16, 0xe, 0x0, 0x6, 0x0, [@local, @private0, @private1, @local, @mcast1, @remote, @mcast2]}}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x2e, 0x0, '\x00', [@ra={0x5, 0x2, 0x4}, @enc_lim={0x4, 0x1, 0x1}]}}}], 0x1b0}}, {{0x0, 0x0, &(0x7f0000006540)=[{&(0x7f0000006400)="2dd04efa1df991fc7d4ba8f94435b08478d19e5b3c23b1f297da50c80643a30d6f02ceb13545486f5671fb98bca930caa9d6c35f4d80a33238e93e10abe477bae751d1b9654f3f0d81045b8d5d523f45a435496c2d700e8f7afdd5efc5c4d6c156e22962a44b9f627ce6e8e107a2b02f55788ef2b2924a86d51addc0029ab71216", 0x81}, {&(0x7f00000064c0)="ef46c852bfa235791179909bff46dda17138a0cea826ebc7723edeadea4ab57cd413dde2e0d85c5f0399d41d464cfe817a0304f2b18caf816ac388241cd731c625bbf3f335f275a4ff4a82dcce1ab18deb11061544", 0x55}], 0x2, &(0x7f0000006580)=[@dstopts={{0xe8, 0x29, 0x37, {0x67, 0x19, '\x00', [@pad1, @padn={0x1, 0x1, [0x0]}, @pad1, @pad1, @ra={0x5, 0x2, 0x5}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x3c}}, @pad1, @calipso={0x7, 0x20, {0x3, 0x6, 0x3, 0x100, [0x0, 0x4cc380000000000, 0xf03f]}}, @generic={0x0, 0x81, "6f6f26ac6af18097913cce7a50501fa199fd9d45253dbdec3e5b45078095682274538e1d1060d33ac08cd643e0ba8260b1a3c89479b68982e60ae3a77e20d866da262d65669ebe7d752dfc2045029964d40a9d89ec904864a7c6d8c9d12d23cc7f3e2a06f16e9790bc40670a9ddc60b67152f097be2ee55e24e73df7a00a6ee900"}, @pad1]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x3}}, @dontfrag={{0x14, 0x29, 0x3e, 0x3}}, @dontfrag={{0x14, 0x29, 0x3e, 0x9}}, @hoplimit={{0x14, 0x29, 0x34, 0x4}}], 0x148}}, {{&(0x7f0000006700)={0xa, 0x4e24, 0x5, @private1={0xfc, 0x1, '\x00', 0x1}, 0xfffff94c}, 0x1c, &(0x7f0000006880)=[{&(0x7f0000006740)="61656fcd1d99d10f1451a14969b6cd84237f9d44b43ce331555345b02277d0b542f4d964c9579c15942d007b22bf2ada3d89ee79f984a5a9bdf52fc5918c815ba9aa1cedc3805b9837fd3d9ef8f816abc932b8eab8206061843d3788c8cd0e79703f475389821c28b63c0844222adb55cacf2bdfa948b7e76c428bf8739e7d3b41baa791dad87bf2ad20133d72fabf336a82b546da5dfb17cdbe07b52fa40120829dffeff638dfac44610f85854cf2", 0xaf}, {&(0x7f0000006800)="af8d307aa470b2761444011a7c077627b9db5741b0f57fd4f5f34b8c389e6a8c72400d38dff88f644245ea31b3aa41ed3416435fca4674c788283f2e95fe3c9d5dcac7f9241ac405226c34637c117115527cfe36fa6a0cd99a64ce7f49324b61ac4d6f8fd172ddbc778d11dbf5ab32", 0x6f}], 0x2, &(0x7f00000068c0)=[@rthdr_2292={{0x78, 0x29, 0x39, {0x2c, 0xc, 0x0, 0x1f, 0x0, [@remote, @mcast1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @private2, @local, @mcast1]}}}, @dstopts_2292={{0x40, 0x29, 0x4, {0x15, 0x4, '\x00', [@hao={0xc9, 0x10, @mcast1}, @calipso={0x7, 0x10, {0x1, 0x2, 0x7f, 0x6, [0x3]}}]}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x21, 0x4, 0x2, 0x58, 0x0, [@private1, @empty]}}}, @rthdrdstopts={{0x68, 0x29, 0x37, {0x1, 0x9, '\x00', [@pad1, @pad1, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @calipso={0x7, 0x30, {0x0, 0xa, 0xff, 0xffff, [0x100, 0x271, 0x5, 0x100000001, 0x1]}}]}}}, @hopopts_2292={{0x98, 0x29, 0x36, {0x2f, 0xf, '\x00', [@ra={0x5, 0x2, 0x8}, @generic={0x7, 0x62, "3236b0a734d5e4feb41871a4d65cd7066e8aee93786244cbf69004c41fbc787bb32fddb5a84d5ba397c94a2da3306f4201b6bb5990bbb64eb7e27ce55a8bfd1fee85d3679b9b62549552945d32598a0e5e876ab6818ca896ba1b9257eb82f52e03a8"}, @jumbo={0xc2, 0x4, 0xf11}, @jumbo={0xc2, 0x4, 0xca}, @padn={0x1, 0x1, [0x0]}, @ra={0x5, 0x2, 0x2}]}}}], 0x1f0}}], 0x9, 0x800) close_range(r0, 0xffffffffffffffff, 0x0) [ 1539.494449] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1539.496129] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1539.497796] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1539.499296] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1539.500794] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1539.502308] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:43:18 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 20) [ 1539.511448] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1539.512384] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1539.513485] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1539.521782] EXT4-fs (loop7): Unrecognized mount option "hash" or missing value [ 1539.534256] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 12:43:18 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = dup3(r0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)=0x1000) ftruncate(r1, 0x133c9585) [ 1539.569055] FAULT_INJECTION: forcing a failure. [ 1539.569055] name failslab, interval 1, probability 0, space 0, times 0 [ 1539.570444] CPU: 0 PID: 9852 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1539.571380] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1539.572349] Call Trace: [ 1539.572664] dump_stack+0x107/0x167 [ 1539.573089] should_fail.cold+0x5/0xa [ 1539.573541] ? create_object.isra.0+0x3a/0xa20 [ 1539.574079] should_failslab+0x5/0x20 [ 1539.574526] kmem_cache_alloc+0x5b/0x310 [ 1539.575003] create_object.isra.0+0x3a/0xa20 [ 1539.575522] kmemleak_alloc_percpu+0xa0/0x100 [ 1539.576046] pcpu_alloc+0x4e2/0x1240 [ 1539.576492] ? io_async_queue_proc+0x80/0x80 [ 1539.577001] percpu_ref_init+0x31/0x3d0 [ 1539.577464] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1539.578094] io_uring_setup+0x14f6/0x2980 [ 1539.578579] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1539.579162] ? wait_for_completion_io+0x270/0x270 [ 1539.579745] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1539.580349] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1539.580946] do_syscall_64+0x33/0x40 [ 1539.581385] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1539.581981] RIP: 0033:0x7f5e2aecab19 [ 1539.582422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1539.584536] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1539.585411] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1539.586237] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1539.587064] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1539.587883] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1539.588710] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1539.681611] FAULT_INJECTION: forcing a failure. [ 1539.681611] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1539.683040] CPU: 0 PID: 9860 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1539.683824] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1539.684771] Call Trace: [ 1539.685078] dump_stack+0x107/0x167 [ 1539.685495] should_fail.cold+0x5/0xa [ 1539.685942] _copy_from_user+0x2e/0x1b0 [ 1539.686426] __copy_msghdr_from_user+0x91/0x4b0 [ 1539.687067] ? __ia32_sys_shutdown+0x80/0x80 [ 1539.687576] ? __lock_acquire+0x1657/0x5b00 [ 1539.688080] ___sys_recvmsg+0xd5/0x200 [ 1539.688530] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1539.689090] ? __lockdep_reset_lock+0x180/0x180 [ 1539.689627] ? __fget_files+0x2cf/0x520 [ 1539.690096] ? lock_acquire+0x197/0x470 [ 1539.690547] ? find_held_lock+0x2c/0x110 [ 1539.691017] ? __might_fault+0xd3/0x180 [ 1539.691473] ? lock_downgrade+0x6d0/0x6d0 [ 1539.691959] do_recvmmsg+0x24c/0x6d0 [ 1539.692391] ? ___sys_recvmsg+0x200/0x200 [ 1539.692864] ? lock_downgrade+0x6d0/0x6d0 [ 1539.693342] ? ksys_write+0x12d/0x260 [ 1539.693790] ? wait_for_completion_io+0x270/0x270 [ 1539.694342] ? rcu_read_lock_any_held+0x75/0xa0 [ 1539.694872] ? vfs_write+0x354/0xb10 [ 1539.695302] __x64_sys_recvmmsg+0x20f/0x260 [ 1539.695799] ? ksys_write+0x1a9/0x260 [ 1539.696237] ? __do_sys_socketcall+0x600/0x600 [ 1539.696762] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1539.697368] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1539.697962] do_syscall_64+0x33/0x40 [ 1539.698395] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1539.698982] RIP: 0033:0x7f2d4b68ab19 [ 1539.699408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1539.701502] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1539.702376] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1539.703186] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1539.704000] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1539.704814] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1539.705624] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:43:35 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 18) 12:43:35 executing program 2: openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe9b02, 0x0) ioctl$SG_IO(r0, 0x127f, &(0x7f00000003c0)={0xe00, 0x0, 0x0, 0x0, @buffer={0x300, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x13, 0x0, 0x0}) ioctl$SCSI_IOCTL_GET_IDLUN(r0, 0x5382, &(0x7f0000000080)) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) dup2(0xffffffffffffffff, 0xffffffffffffffff) 12:43:35 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:43:35 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r1, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r2 = dup2(r1, r0) r3 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x100010, r2, 0x10000000) r5 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r6}}, 0x6) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x3, 0x6000, @fd=r5, 0xfffffffffffffffa, &(0x7f0000000100)=[{&(0x7f0000000180)=""/74, 0x4a}], 0x1, 0x12, 0x0, {0x0, r6}}, 0x1) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2) syz_io_uring_submit(0x0, r4, &(0x7f0000000140)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r1, &(0x7f0000000040)=0x80, &(0x7f0000000080)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast}, 0x0, 0x800, 0x1, {0x0, r6}}, 0x80000001) syz_io_uring_submit(0x0, r4, &(0x7f0000000000)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1, {0x0, r6}}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 12:43:35 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 18) 12:43:35 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 21) 12:43:35 executing program 3: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x0, 0x0, 0x10, 0x0, 0x0, 0x5e, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3f, 0x2}, 0x11010, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = pkey_alloc(0x0, 0x2) r1 = pkey_alloc(0x0, 0x5) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r1) pkey_mprotect(&(0x7f0000ff6000/0x1000)=nil, 0x1000, 0x2000000, r0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x0, r0) r2 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x3000004, r2) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x5, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, r1) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r3 = creat(&(0x7f0000000000)='./file1\x00', 0x80) fallocate(r3, 0x0, 0x0, 0x8800000) pkey_free(r0) 12:43:35 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002000028", 0x5d, 0x400}, {&(0x7f0000010400)="02000000030000000400", 0xa, 0x1000}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) [ 1556.541460] loop7: detected capacity change from 0 to 8192 [ 1556.550694] FAULT_INJECTION: forcing a failure. [ 1556.550694] name failslab, interval 1, probability 0, space 0, times 0 [ 1556.553359] CPU: 1 PID: 9888 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1556.554877] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1556.557141] Call Trace: [ 1556.557813] dump_stack+0x107/0x167 [ 1556.558659] should_fail.cold+0x5/0xa [ 1556.559663] ? percpu_ref_init+0xd8/0x3d0 [ 1556.560831] should_failslab+0x5/0x20 [ 1556.561738] kmem_cache_alloc_trace+0x55/0x320 [ 1556.562749] ? io_async_queue_proc+0x80/0x80 [ 1556.563702] percpu_ref_init+0xd8/0x3d0 [ 1556.564581] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1556.565772] io_uring_setup+0x14f6/0x2980 [ 1556.566701] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1556.567815] ? wait_for_completion_io+0x270/0x270 [ 1556.568755] FAULT_INJECTION: forcing a failure. [ 1556.568755] name failslab, interval 1, probability 0, space 0, times 0 [ 1556.568901] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1556.572443] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1556.573568] do_syscall_64+0x33/0x40 [ 1556.574391] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1556.575513] RIP: 0033:0x7f5e2aecab19 [ 1556.576328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1556.580351] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1556.582014] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1556.583558] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1556.585102] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1556.586667] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1556.588251] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1556.589870] CPU: 0 PID: 9884 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1556.591366] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1556.593174] Call Trace: [ 1556.593753] dump_stack+0x107/0x167 [ 1556.593933] FAULT_INJECTION: forcing a failure. [ 1556.593933] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1556.594549] should_fail.cold+0x5/0xa [ 1556.594576] ? percpu_ref_init+0xd8/0x3d0 [ 1556.594605] should_failslab+0x5/0x20 [ 1556.599592] kmem_cache_alloc_trace+0x55/0x320 [ 1556.600585] ? io_async_queue_proc+0x80/0x80 [ 1556.601540] percpu_ref_init+0xd8/0x3d0 [ 1556.602419] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1556.603588] io_uring_setup+0x14f6/0x2980 [ 1556.604495] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1556.605590] ? wait_for_completion_io+0x270/0x270 [ 1556.606675] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1556.607819] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1556.608935] do_syscall_64+0x33/0x40 [ 1556.609738] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1556.610861] RIP: 0033:0x7fddef796b19 [ 1556.611666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1556.615693] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1556.617340] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1556.618933] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1556.620473] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1556.622022] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1556.623574] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1556.625167] CPU: 1 PID: 9891 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1556.626688] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1556.628705] Call Trace: [ 1556.629288] dump_stack+0x107/0x167 [ 1556.630099] should_fail.cold+0x5/0xa [ 1556.631126] _copy_from_user+0x2e/0x1b0 [ 1556.632131] __copy_msghdr_from_user+0x91/0x4b0 [ 1556.633161] ? __ia32_sys_shutdown+0x80/0x80 [ 1556.634139] ? __lock_acquire+0x1657/0x5b00 [ 1556.635111] ___sys_recvmsg+0xd5/0x200 [ 1556.635973] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1556.637055] ? __lockdep_reset_lock+0x180/0x180 [ 1556.637314] EXT4-fs (loop7): Unrecognized mount option "hash" or missing value [ 1556.638084] ? __fget_files+0x2cf/0x520 [ 1556.638112] ? lock_acquire+0x197/0x470 [ 1556.641390] ? find_held_lock+0x2c/0x110 [ 1556.642298] ? __might_fault+0xd3/0x180 [ 1556.643170] ? lock_downgrade+0x6d0/0x6d0 [ 1556.644100] do_recvmmsg+0x24c/0x6d0 [ 1556.644925] ? ___sys_recvmsg+0x200/0x200 [ 1556.645836] ? lock_downgrade+0x6d0/0x6d0 [ 1556.646760] ? ksys_write+0x12d/0x260 [ 1556.647614] ? wait_for_completion_io+0x270/0x270 [ 1556.648667] ? rcu_read_lock_any_held+0x75/0xa0 [ 1556.649679] ? vfs_write+0x354/0xb10 [ 1556.650517] __x64_sys_recvmmsg+0x20f/0x260 [ 1556.651458] ? ksys_write+0x1a9/0x260 [ 1556.652291] ? __do_sys_socketcall+0x600/0x600 [ 1556.653292] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1556.654450] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1556.655588] do_syscall_64+0x33/0x40 [ 1556.656409] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1556.657539] RIP: 0033:0x7f2d4b68ab19 [ 1556.658357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1556.662395] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1556.664058] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1556.665629] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1556.667208] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1556.668784] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1556.670357] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:43:35 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 19) 12:43:35 executing program 3: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000180)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101000, 0x1) mknodat$loop(0xffffffffffffffff, &(0x7f0000000400)='./file0\x00', 0x504, 0x1) openat(r0, &(0x7f0000000240)='./file1\x00', 0x0, 0x46) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x20b00, 0x0) r2 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup3(r2, r2, 0x80000) r3 = openat(r2, &(0x7f00000000c0)='./file0\x00', 0x458080, 0xc4) sendto(r3, &(0x7f00000002c0), 0x0, 0x4801, &(0x7f0000000300)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e24, @remote}, 0x4, 0x2, 0x0, 0x1}}, 0x80) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(0xffffffffffffffff, 0x4008941a, &(0x7f00000000c0)=0x2) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r4, 0x29, 0x16, &(0x7f0000000080), 0x4) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000540)={{{@in6=@mcast1, @in6=@mcast1}}, {{@in6=@private2}, 0x0, @in6=@local}}, &(0x7f00000001c0)=0xe8) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000140)={0x0, 0x100000000}) 12:43:35 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002000028", 0x5d, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:43:35 executing program 2: ioctl$AUTOFS_IOC_FAIL(0xffffffffffffffff, 0x9361, 0x6) set_mempolicy(0x2, &(0x7f00000000c0)=0x924b, 0x4) set_mempolicy(0x0, &(0x7f0000000140)=0x101, 0x4) set_mempolicy(0x8000, &(0x7f0000000080)=0x3c, 0xfffffffffffffff9) r0 = creat(&(0x7f0000000000)='./file0\x00', 0x20) pwrite64(r0, &(0x7f0000000180)="af", 0x1, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)=0x0) capset(&(0x7f0000000240)={0x0, r1}, &(0x7f0000000300)={0x800, 0x3, 0x7, 0xd7, 0x8000, 0x6}) fcntl$lock(r0, 0x26, &(0x7f0000000040)={0x2, 0x0, 0xfff, 0x5, r1}) [ 1556.926686] FAULT_INJECTION: forcing a failure. [ 1556.926686] name failslab, interval 1, probability 0, space 0, times 0 [ 1556.929261] CPU: 1 PID: 9905 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1556.930745] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1556.932531] Call Trace: [ 1556.933107] dump_stack+0x107/0x167 [ 1556.933907] should_fail.cold+0x5/0xa [ 1556.934732] ? create_object.isra.0+0x3a/0xa20 [ 1556.935717] should_failslab+0x5/0x20 [ 1556.936536] kmem_cache_alloc+0x5b/0x310 [ 1556.937413] create_object.isra.0+0x3a/0xa20 [ 1556.938362] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1556.939456] kmem_cache_alloc_trace+0x151/0x320 [ 1556.940457] ? io_async_queue_proc+0x80/0x80 [ 1556.941397] percpu_ref_init+0xd8/0x3d0 [ 1556.942263] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1556.943387] io_uring_setup+0x14f6/0x2980 [ 1556.944285] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1556.945362] ? wait_for_completion_io+0x270/0x270 [ 1556.946427] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1556.947543] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1556.948650] do_syscall_64+0x33/0x40 [ 1556.949441] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1556.950546] RIP: 0033:0x7fddef796b19 [ 1556.951336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1556.955286] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1556.956905] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1556.958434] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1556.959963] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1556.961481] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1556.963012] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:43:36 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:43:36 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0xa, 0x4147) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 12:43:36 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 22) 12:43:36 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 19) [ 1557.041668] loop7: detected capacity change from 0 to 2048 [ 1557.061003] EXT4-fs (loop7): Unrecognized mount option "hash" or missing value 12:43:36 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000000201040000000000000000000000000400018004000680f88b53fe2bdde9c9bc734d68c522d66811fd0fbc34d795e9b71ec80bd5d76bbd4ad649f50c7a14fade36728b4f9fae22ccc8aa0eb104db65ba35d1373c8c8564115bbba0befa0f20cd17c7501aafcf1faf05a362bc97dad88a49448502aff6b6402cc2fdc3055fa5ec43c7c25e8381b9d8ec57526f8ebfff8b56ed512a7829db77"], 0x1c}}, 0x0) 12:43:36 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:43:36 executing program 2: ioctl$AUTOFS_IOC_ASKUMOUNT(0xffffffffffffffff, 0x80049370, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0xfdef) ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628) fallocate(r0, 0x0, 0x0, 0x1000002) name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', &(0x7f0000000540)=ANY=[@ANYBLOB="000000000400"/17], &(0x7f0000000500), 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r1}, './file1\x00'}) fcntl$notify(r2, 0x402, 0x12) mount$9p_fd(0x0, &(0x7f0000000340)='./file1\x00', 0x0, 0x2000000, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',ufdno=', @ANYRESHEX, @ANYBLOB=',', @ANYRESDEC=0xee01, @ANYBLOB=',uid>', @ANYRESDEC, @ANYBLOB=',smackksdef=,}}7permit_directio,dont_measure,fowner>', @ANYRESDEC=0x0, @ANYBLOB=',appraise_type=imasig,subj_type=\x00,smackfstransmu']) r3 = open(&(0x7f0000000140)='./file1\x00', 0x101000, 0x0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r3, 0x89f9, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000240)={'sit0\x00', 0x0, 0x2f, 0x2, 0x6a, 0x101, 0x10, @private1, @private2, 0x20, 0x0, 0x61, 0x6}}) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) io_cancel(0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x3, 0x6, r1, &(0x7f0000000040)="db1fdbfe831e6e69b904e8fde89cf5ec8157ab6b562b8e1c614c21d86c05327c7a1f9a313ee9eb0b9130c3fdd57fc7b23b61ecc8082e4fe0e94a026071b96b7d9b4b0442ab64ee93b68a06f9d36d701516a48958c579766926bee8c885a9d2a9351e4848d5677d723abeeded5daa0aa83ca68ee9f9c723b49209004e5ddcf8083f753707cc63fbf4d4d8eb6a096301d8602f987c85b649d536585191", 0x9c, 0x1000, 0x0, 0x2, r3}, &(0x7f0000000180)) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000f, 0x1f012, r0, 0x0) [ 1557.189737] FAULT_INJECTION: forcing a failure. [ 1557.189737] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1557.192199] CPU: 0 PID: 9921 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1557.193654] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.195440] Call Trace: [ 1557.196004] dump_stack+0x107/0x167 [ 1557.196780] should_fail.cold+0x5/0xa [ 1557.197602] _copy_from_user+0x2e/0x1b0 [ 1557.198458] __copy_msghdr_from_user+0x91/0x4b0 [ 1557.199447] ? __ia32_sys_shutdown+0x80/0x80 [ 1557.200380] ? __lock_acquire+0x1657/0x5b00 [ 1557.201323] ___sys_recvmsg+0xd5/0x200 [ 1557.202160] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1557.203210] ? __lockdep_reset_lock+0x180/0x180 [ 1557.204199] ? __fget_files+0x2cf/0x520 [ 1557.205034] ? lock_acquire+0x197/0x470 [ 1557.205890] ? find_held_lock+0x2c/0x110 [ 1557.206766] ? __might_fault+0xd3/0x180 [ 1557.207611] ? lock_downgrade+0x6d0/0x6d0 [ 1557.208513] do_recvmmsg+0x24c/0x6d0 [ 1557.209311] ? ___sys_recvmsg+0x200/0x200 [ 1557.210193] ? lock_downgrade+0x6d0/0x6d0 [ 1557.211087] ? ksys_write+0x12d/0x260 [ 1557.211910] ? wait_for_completion_io+0x270/0x270 [ 1557.212945] ? rcu_read_lock_any_held+0x75/0xa0 [ 1557.213913] ? vfs_write+0x354/0xb10 [ 1557.214713] __x64_sys_recvmmsg+0x20f/0x260 [ 1557.215627] ? ksys_write+0x1a9/0x260 [ 1557.216439] ? __do_sys_socketcall+0x600/0x600 [ 1557.217415] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.218539] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.219638] do_syscall_64+0x33/0x40 [ 1557.220427] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1557.221516] RIP: 0033:0x7f2d4b68ab19 [ 1557.222314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.226226] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1557.227837] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1557.229338] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1557.230852] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1557.232365] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1557.233881] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1557.235879] FAULT_INJECTION: forcing a failure. [ 1557.235879] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.238553] CPU: 1 PID: 9922 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1557.240284] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.242068] Call Trace: [ 1557.242638] dump_stack+0x107/0x167 [ 1557.243424] should_fail.cold+0x5/0xa [ 1557.244244] ? create_object.isra.0+0x3a/0xa20 [ 1557.245225] should_failslab+0x5/0x20 [ 1557.246047] kmem_cache_alloc+0x5b/0x310 [ 1557.246924] create_object.isra.0+0x3a/0xa20 [ 1557.248025] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1557.249327] kmem_cache_alloc_trace+0x151/0x320 [ 1557.250434] ? io_async_queue_proc+0x80/0x80 [ 1557.251541] percpu_ref_init+0xd8/0x3d0 [ 1557.252627] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1557.253920] io_uring_setup+0x14f6/0x2980 [ 1557.254963] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1557.256193] ? wait_for_completion_io+0x270/0x270 [ 1557.257431] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.258850] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.259951] do_syscall_64+0x33/0x40 [ 1557.260923] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1557.262338] RIP: 0033:0x7f5e2aecab19 [ 1557.263137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.267790] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1557.269636] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1557.271315] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1557.273193] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1557.274724] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1557.276234] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1557.414797] EXT4-fs (loop7): VFS: Can't find ext4 filesystem 12:43:52 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 20) 12:43:52 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0xfc00, 0x0, @loopback}, 0x1c) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e20, 0xffffffff, @remote, 0x9}, 0x1c) setsockopt$inet6_tcp_int(r1, 0x6, 0x7, &(0x7f0000000040)=0xcb, 0x4) 12:43:52 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:43:52 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) socket$inet6(0xa, 0x3, 0x40) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'geneve0\x00'}) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x511082, 0x0) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e23, 0x7f3, @mcast2, 0x8}, 0x1c) close_range(r0, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x800) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'gretap0\x00'}) 12:43:52 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 23) 12:43:52 executing program 3: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x17, "77004a6efdff00002d1ceb7300"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r1 = socket$inet(0x2, 0xa, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) r3 = syz_open_dev$mouse(&(0x7f0000000040), 0x7, 0x120202) ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f00000001c0)={'team0\x00'}) ioctl$TUNSETQUEUE(r2, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) dup3(r1, r0, 0x0) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) dup(r4) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/breakpoint', 0x10000, 0x0) ioctl$HIDIOCGFEATURE(r5, 0xc0404807, &(0x7f0000000140)={0x3f, "26d43378c75a58a2a0a8a302db5c679524d83cd7baafc3072ea4802b0cd0f39afb1c66314baff3bb828634a37f3505c32f0ef725b23223a4cca97238b0e4682c"}) 12:43:52 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 20) 12:43:52 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) [ 1573.728692] FAULT_INJECTION: forcing a failure. [ 1573.728692] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1573.731598] CPU: 1 PID: 9948 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1573.733045] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1573.734818] Call Trace: [ 1573.735388] dump_stack+0x107/0x167 [ 1573.736250] should_fail.cold+0x5/0xa [ 1573.737229] _copy_from_user+0x2e/0x1b0 [ 1573.738242] __copy_msghdr_from_user+0x91/0x4b0 [ 1573.739240] ? __ia32_sys_shutdown+0x80/0x80 [ 1573.740186] ? __lock_acquire+0x1657/0x5b00 [ 1573.741142] ___sys_recvmsg+0xd5/0x200 [ 1573.741194] FAULT_INJECTION: forcing a failure. [ 1573.741194] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1573.741980] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1573.742018] ? __lockdep_reset_lock+0x180/0x180 [ 1573.746142] ? __fget_files+0x2cf/0x520 [ 1573.746984] ? lock_acquire+0x197/0x470 [ 1573.747823] ? find_held_lock+0x2c/0x110 [ 1573.748695] ? __might_fault+0xd3/0x180 [ 1573.749542] ? lock_downgrade+0x6d0/0x6d0 [ 1573.750467] do_recvmmsg+0x24c/0x6d0 [ 1573.751258] ? ___sys_recvmsg+0x200/0x200 [ 1573.752143] ? lock_downgrade+0x6d0/0x6d0 [ 1573.753036] ? ksys_write+0x12d/0x260 [ 1573.753859] ? wait_for_completion_io+0x270/0x270 [ 1573.754901] ? rcu_read_lock_any_held+0x75/0xa0 [ 1573.755901] ? vfs_write+0x354/0xb10 [ 1573.756696] __x64_sys_recvmmsg+0x20f/0x260 [ 1573.757613] ? ksys_write+0x1a9/0x260 [ 1573.758420] ? __do_sys_socketcall+0x600/0x600 [ 1573.759381] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1573.760475] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1573.761558] do_syscall_64+0x33/0x40 [ 1573.762355] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1573.763449] RIP: 0033:0x7f2d4b68ab19 [ 1573.764239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1573.768135] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1573.769750] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1573.771279] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1573.772796] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1573.774316] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1573.775840] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1573.777384] CPU: 0 PID: 9947 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1573.778654] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1573.780157] Call Trace: [ 1573.780636] dump_stack+0x107/0x167 [ 1573.781306] should_fail.cold+0x5/0xa [ 1573.782026] _copy_to_user+0x2e/0x180 [ 1573.782749] io_uring_setup+0x11b5/0x2980 [ 1573.783531] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1573.784459] ? wait_for_completion_io+0x270/0x270 [ 1573.785367] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1573.786363] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1573.787331] do_syscall_64+0x33/0x40 [ 1573.788027] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1573.788969] RIP: 0033:0x7fddef796b19 [ 1573.789655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1573.793007] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1573.794411] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1573.795712] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1573.797018] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1573.798327] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1573.799647] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1573.823120] FAULT_INJECTION: forcing a failure. [ 1573.823120] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1573.825953] CPU: 1 PID: 9958 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1573.827660] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1573.829424] Call Trace: [ 1573.829989] dump_stack+0x107/0x167 [ 1573.830770] should_fail.cold+0x5/0xa [ 1573.831591] _copy_to_user+0x2e/0x180 [ 1573.832438] io_uring_setup+0x11b5/0x2980 [ 1573.833343] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1573.834448] ? wait_for_completion_io+0x270/0x270 [ 1573.835538] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1573.836672] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1573.837767] do_syscall_64+0x33/0x40 [ 1573.838574] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1573.839675] RIP: 0033:0x7f5e2aecab19 [ 1573.840465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1573.844349] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1573.845963] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1573.847493] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1573.848997] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1573.850512] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1573.852001] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1573.855931] EXT4-fs (loop7): VFS: Can't find ext4 filesystem 12:43:53 executing program 2: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) timer_delete(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0x30, 0x0, @tid=r0}, &(0x7f0000000300)) timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) timer_settime(r1, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, 0x16, 0xd01}, 0x14}}, 0x0) timer_gettime(r1, &(0x7f0000000080)) syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000340)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0xff, 0x46d, 0x404a, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x1, 0x0, 0x3, [{{0x9, 0x4, 0x0, 0x11, 0x2, 0x3, 0x1, 0x2, 0x4b, {0x9, 0x21, 0x101, 0xf9, 0x1, {0x22, 0xdf2}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x2, 0x9, 0x1}}}}}]}}]}}, &(0x7f0000000700)={0xa, &(0x7f0000000380)={0xa, 0x6, 0x300, 0x4, 0x7, 0x7, 0x0, 0x9}, 0xd4, &(0x7f0000000540)={0x5, 0xf, 0xd4, 0x1, [@generic={0xcf, 0x10, 0x1, "b344bc324800ca420887f58960a7555297ed33f7f2c2d2cf2f2ea9e85a4474af00541bcc2874d331e74c3f01368ea8c872b1b5953b717287570a9c43d52602c810d3299d91d6da2dcbc3496633110981b27e5a8b49d7b57097f1f60198288cf72ad8d7cf3418d2c3a4940f67793e76560c5c3183baa10f791d89b9a7df92cdc571ae0bc0b802e05019076402f1630305586e1e7a695449c12e329550d70b43bf1e2a667584fd51dc394f8305d3a85d6194c2bdc139a234d2ba8d5bcf54896b10f547b1c8a1d4c9b069058c74"}]}, 0x3, [{0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x104f}}, {0x81, &(0x7f0000000640)=ANY=[@ANYBLOB="81035da54aeb96d9d5532b9055ce39b9493b31c41acff9964ab0911da3561f737f87f82793f643046b6bd044175d7fd1324143624186053a1aeb878b36daef4bbeb283cc0b6360ad254be3794f84271ef5156a6428b695955c5783a2b80b986d022824a9c95b30397f0ae4b1fadd4a3d435298dc13ae1df775c3881f5802d464d0"]}, {0x30, &(0x7f0000000400)=@string={0x30, 0x3, "0e5754f82570f049ad9eb16a6aa4a6da931754e32b2e4059f4f097331f7de43ece6716711f03b60b45026ab71ea4"}}]}) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 12:43:53 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 21) 12:43:53 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:43:53 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 21) [ 1574.050343] FAULT_INJECTION: forcing a failure. [ 1574.050343] name failslab, interval 1, probability 0, space 0, times 0 [ 1574.052105] CPU: 0 PID: 9970 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1574.053192] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1574.054405] Call Trace: [ 1574.054820] dump_stack+0x107/0x167 [ 1574.055357] should_fail.cold+0x5/0xa [ 1574.055947] ? __d_alloc+0x2a/0x990 [ 1574.056516] should_failslab+0x5/0x20 [ 1574.057092] kmem_cache_alloc+0x5b/0x310 [ 1574.057733] __d_alloc+0x2a/0x990 [ 1574.058278] ? find_held_lock+0x2c/0x110 [ 1574.058909] d_alloc_pseudo+0x19/0x70 [ 1574.059488] alloc_file_pseudo+0xce/0x250 [ 1574.060109] ? alloc_file+0x5a0/0x5a0 [ 1574.060725] ? _copy_to_user+0x61/0x180 [ 1574.061342] anon_inode_getfile+0xc8/0x1f0 [ 1574.062010] io_uring_setup+0x138b/0x2980 [ 1574.062669] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1574.063434] ? wait_for_completion_io+0x270/0x270 [ 1574.064201] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1574.064993] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1574.065764] do_syscall_64+0x33/0x40 [ 1574.066327] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1574.067098] RIP: 0033:0x7fddef796b19 [ 1574.067658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1574.070459] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1574.071614] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1574.072697] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1574.073802] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1574.074924] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1574.076022] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1574.202665] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1574.204371] FAULT_INJECTION: forcing a failure. [ 1574.204371] name failslab, interval 1, probability 0, space 0, times 0 [ 1574.206264] CPU: 0 PID: 9976 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1574.207341] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1574.208500] Call Trace: [ 1574.208880] dump_stack+0x107/0x167 [ 1574.209408] should_fail.cold+0x5/0xa [ 1574.209959] ? __d_alloc+0x2a/0x990 [ 1574.210487] should_failslab+0x5/0x20 [ 1574.211005] kmem_cache_alloc+0x5b/0x310 [ 1574.211559] __d_alloc+0x2a/0x990 [ 1574.212031] ? find_held_lock+0x2c/0x110 [ 1574.212588] d_alloc_pseudo+0x19/0x70 [ 1574.213104] alloc_file_pseudo+0xce/0x250 [ 1574.213690] ? trace_hardirqs_on+0x5b/0x180 [ 1574.214278] ? alloc_file+0x5a0/0x5a0 [ 1574.214815] anon_inode_getfile+0xc8/0x1f0 [ 1574.215397] io_uring_setup+0x138b/0x2980 [ 1574.215966] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1574.216658] ? wait_for_completion_io+0x270/0x270 [ 1574.217364] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1574.218078] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1574.218781] do_syscall_64+0x33/0x40 [ 1574.219286] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1574.219976] RIP: 0033:0x7f5e2aecab19 [ 1574.220483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1574.223001] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1574.224036] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1574.225017] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1574.225998] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1574.226984] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1574.227943] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:44:09 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 22) 12:44:09 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:44:09 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x3) r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r2}}, 0x6) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4, 0x8010, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f0000000080)=@IORING_OP_READV=@pass_iovec={0x1, 0x3, 0x6003, @fd=r1, 0xfffffffffffffffa, &(0x7f0000000100)=[{&(0x7f0000000180)=""/74, 0x4a}], 0x1, 0x12, 0x1, {0x0, r2}}, 0x1) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x2) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xc, 0x810, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x2000, @fd=r0, 0x0, 0x7, 0x8, 0x2, 0x1, {0x2, r2}}, 0x8) r4 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x101380, 0x0) 12:44:09 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x1, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:44:09 executing program 3: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x17, "77004a6efdff00002d1ceb7300"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r1 = socket$inet(0x2, 0xa, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) r3 = syz_open_dev$mouse(&(0x7f0000000040), 0x7, 0x120202) ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f00000001c0)={'team0\x00'}) ioctl$TUNSETQUEUE(r2, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) dup3(r1, r0, 0x0) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) dup(r4) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/breakpoint', 0x10000, 0x0) ioctl$HIDIOCGFEATURE(r5, 0xc0404807, &(0x7f0000000140)={0x3f, "26d43378c75a58a2a0a8a302db5c679524d83cd7baafc3072ea4802b0cd0f39afb1c66314baff3bb828634a37f3505c32f0ef725b23223a4cca97238b0e4682c"}) 12:44:09 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 24) 12:44:09 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 22) 12:44:09 executing program 2: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x13, 0xffffffffffffffff, 0x8000000) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './mnt/file0\x00'}) r4 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00') r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='ns\x00') renameat(r5, &(0x7f0000000080)='./mnt\x00', r4, &(0x7f00000001c0)='./mnt\x00') ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f00000001c0)={'ip6tnl0\x00', &(0x7f0000000300)={'syztnl0\x00', 0x0, 0x2f, 0x9, 0x7f, 0x8, 0x41, @private1, @local, 0x8, 0x8, 0x0, 0x6}}) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) r6 = creat(&(0x7f0000000000)='./file2\x00', 0x0) fcntl$setlease(r6, 0x400, 0x1) close(r6) ioctl$sock_SIOCOUTQNSD(r6, 0x894b, &(0x7f0000000240)) syz_io_uring_submit(0x0, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x3, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000400)="ad6a89f09a83f32cb8acde387af300a4aae2f793b4d1a5ff8d6338316ea51148229c546484357763eac2b013a87077f3acdfd7e4f5c330837dabee7d9600a042e85a8ef7b8f4bea641712166d11506fb4299b1a8861674ffc577ba7ea4f6bbc807c2d4474f091564af5a7a8ab682ba5944", 0x71, 0x8080}, 0x1d5) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index=0x1, 0x4}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x2000001, 0x20010, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x5}, 0x80000001) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1590.830515] loop7: detected capacity change from 0 to 2048 [ 1590.838651] FAULT_INJECTION: forcing a failure. [ 1590.838651] name failslab, interval 1, probability 0, space 0, times 0 [ 1590.840280] CPU: 0 PID: 9992 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1590.841104] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1590.842200] Call Trace: [ 1590.842520] dump_stack+0x107/0x167 [ 1590.842959] should_fail.cold+0x5/0xa [ 1590.843399] ? create_object.isra.0+0x3a/0xa20 [ 1590.843949] should_failslab+0x5/0x20 [ 1590.844410] kmem_cache_alloc+0x5b/0x310 [ 1590.844884] create_object.isra.0+0x3a/0xa20 [ 1590.845411] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1590.845997] kmem_cache_alloc+0x159/0x310 [ 1590.846519] __d_alloc+0x2a/0x990 [ 1590.846939] ? find_held_lock+0x2c/0x110 [ 1590.847431] d_alloc_pseudo+0x19/0x70 [ 1590.847890] alloc_file_pseudo+0xce/0x250 [ 1590.848386] ? trace_hardirqs_on+0x5b/0x180 [ 1590.848900] ? alloc_file+0x5a0/0x5a0 [ 1590.849375] anon_inode_getfile+0xc8/0x1f0 [ 1590.849885] io_uring_setup+0x138b/0x2980 [ 1590.850394] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1590.851002] ? wait_for_completion_io+0x270/0x270 [ 1590.851597] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1590.852224] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1590.852844] do_syscall_64+0x33/0x40 [ 1590.853294] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1590.853909] RIP: 0033:0x7f5e2aecab19 [ 1590.854396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1590.856599] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1590.857511] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1590.858332] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1590.859188] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1590.860043] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1590.860898] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1590.864689] FAULT_INJECTION: forcing a failure. [ 1590.864689] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1590.866221] CPU: 0 PID: 9995 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1590.867180] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1590.868177] Call Trace: [ 1590.868492] dump_stack+0x107/0x167 [ 1590.868930] should_fail.cold+0x5/0xa [ 1590.869392] _copy_from_user+0x2e/0x1b0 [ 1590.869881] __copy_msghdr_from_user+0x91/0x4b0 [ 1590.870467] ? __ia32_sys_shutdown+0x80/0x80 [ 1590.870990] ? __lock_acquire+0x1657/0x5b00 [ 1590.871514] ___sys_recvmsg+0xd5/0x200 [ 1590.871981] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1590.872568] ? __lockdep_reset_lock+0x180/0x180 [ 1590.873093] ? __fget_files+0x2cf/0x520 [ 1590.873576] ? lock_acquire+0x197/0x470 [ 1590.874022] ? find_held_lock+0x2c/0x110 [ 1590.874528] ? __might_fault+0xd3/0x180 [ 1590.875014] ? lock_downgrade+0x6d0/0x6d0 [ 1590.875607] ? asm_common_interrupt+0x1e/0x40 [ 1590.876282] do_recvmmsg+0x24c/0x6d0 [ 1590.876842] ? ___sys_recvmsg+0x200/0x200 [ 1590.877403] ? lock_downgrade+0x6d0/0x6d0 [ 1590.877914] ? ksys_write+0x12d/0x260 [ 1590.878377] ? wait_for_completion_io+0x270/0x270 [ 1590.878976] ? rcu_read_lock_any_held+0x75/0xa0 [ 1590.879541] ? vfs_write+0x354/0xb10 [ 1590.880000] __x64_sys_recvmmsg+0x20f/0x260 [ 1590.880531] ? ksys_write+0x1a9/0x260 [ 1590.880984] ? __do_sys_socketcall+0x600/0x600 [ 1590.881538] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1590.882162] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1590.882803] do_syscall_64+0x33/0x40 [ 1590.883226] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1590.883836] RIP: 0033:0x7f2d4b68ab19 [ 1590.884255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1590.886309] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1590.887151] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1590.887948] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1590.888739] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1590.889533] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1590.890345] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1590.901770] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1590.910229] FAULT_INJECTION: forcing a failure. [ 1590.910229] name failslab, interval 1, probability 0, space 0, times 0 [ 1590.912687] CPU: 1 PID: 9998 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1590.914125] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1590.915891] Call Trace: [ 1590.916458] dump_stack+0x107/0x167 [ 1590.917223] should_fail.cold+0x5/0xa [ 1590.918046] ? create_object.isra.0+0x3a/0xa20 [ 1590.919019] should_failslab+0x5/0x20 [ 1590.919821] kmem_cache_alloc+0x5b/0x310 [ 1590.920686] create_object.isra.0+0x3a/0xa20 [ 1590.921605] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1590.922691] kmem_cache_alloc+0x159/0x310 [ 1590.923575] __d_alloc+0x2a/0x990 [ 1590.924312] ? find_held_lock+0x2c/0x110 [ 1590.925173] d_alloc_pseudo+0x19/0x70 [ 1590.925979] alloc_file_pseudo+0xce/0x250 [ 1590.926860] ? trace_hardirqs_on+0x5b/0x180 [ 1590.927764] ? alloc_file+0x5a0/0x5a0 [ 1590.928585] anon_inode_getfile+0xc8/0x1f0 [ 1590.929472] io_uring_setup+0x138b/0x2980 [ 1590.930359] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1590.931612] ? wait_for_completion_io+0x270/0x270 [ 1590.932822] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1590.934097] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1590.935199] do_syscall_64+0x33/0x40 [ 1590.935991] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1590.937073] RIP: 0033:0x7fddef796b19 [ 1590.937860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1590.941743] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1590.943356] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1590.944859] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1590.946373] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1590.947874] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1590.949383] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:44:10 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:44:10 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 23) 12:44:10 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 25) 12:44:10 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 23) 12:44:10 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r0, 0x29, 0x2c, &(0x7f0000000000)={0x3f, {{0xa, 0x4e22, 0x8ca2, @dev={0xfe, 0x80, '\x00', 0x2a}, 0x7ff}}, {{0xa, 0x4e20, 0x80, @private0={0xfc, 0x0, '\x00', 0x1}, 0xd154}}}, 0x108) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000000080), 0x4) getsockopt$IP6T_SO_GET_INFO(r2, 0x29, 0x40, &(0x7f0000000140)={'raw\x00', 0x0, [0x4, 0x14, 0x81, 0x9, 0x9]}, &(0x7f00000001c0)=0x54) 12:44:10 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r0, &(0x7f0000003700)=[{&(0x7f0000000200)=""/208, 0xd0}, {&(0x7f00000003c0)=""/115, 0x73}, {&(0x7f0000000300)=""/62, 0x3e}, {&(0x7f00000014c0)=""/148, 0x94}, {&(0x7f0000001740)=""/251, 0xfb}, {&(0x7f0000003640)=""/128, 0x80}, {&(0x7f0000000100)=""/51, 0x33}, {&(0x7f00000001c0)=""/36, 0x24}], 0x8) readv(0xffffffffffffffff, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4084, 0xff4}], 0x1) lseek(0xffffffffffffffff, 0x27b, 0x2) ioctl$BTRFS_IOC_DEFRAG_RANGE(r0, 0x40309410, &(0x7f0000000000)={0x0, 0x8, 0x2, 0x2, 0x2, [0x9, 0x6, 0x0, 0x101]}) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x9}, 0x4020, 0x0, 0x80}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000680)={0xffffffffffffffff}) getpeername$unix(r2, &(0x7f0000000380), &(0x7f0000000400)=0x6e) signalfd4(r2, &(0x7f0000000140)={[0x5]}, 0x8, 0x800) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r1, 0xf504, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) pwrite64(r3, &(0x7f00000000c0)='~', 0x53, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x0) socket$netlink(0x10, 0x3, 0xc) r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x40086607, 0xfffffffffffffffd) mkdirat(r5, &(0x7f0000000080)='./file0\x00', 0x143) 12:44:10 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x1, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1591.255686] loop7: detected capacity change from 0 to 2048 12:44:10 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e24, 0x6, @loopback, 0x400}, 0x1c) setsockopt$inet6_udp_int(r2, 0x11, 0x66, &(0x7f0000000040)=0x1, 0x4) r3 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x16, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) sendmmsg$inet6(r0, &(0x7f00000016c0)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000140)="9caa53524f3dc756dfa9e920b3108f0f5091", 0x12}, {&(0x7f00000005c0)="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", 0x1000}], 0x2, &(0x7f0000001e00)=[@flowinfo={{0x14, 0x29, 0xb, 0xfffffff9}}], 0x18}}, {{&(0x7f00000001c0)={0xa, 0x4e23, 0x2, @local, 0x4f}, 0x1c, &(0x7f00000004c0)=[{&(0x7f00000003c0)="e367775464838011374cf5e9544dda34a40b81d090e6c20479e2c133fd0e0d420af58150eb2b1d96e44736c8d9d492fbe862efc526c2ab1a334d4286c3022ae49c898504cf844dad7c7e0c420b1672d88635dbc52a2697fc117a866656180b7d10ea8dfcb0f73c77e85dac031a003c748bceb7abcb52743b28886c03497809b17ff6a6ba1b2afb3b7324a8f35c6ce34a801d08edddb81ab9a1af55a60c53ae412ebef4c71b1c959c5d3c77c42000d1b3de5e65d3f07905feb1107ba29c896a2f45c061158e6871808985ff6a8bb65f3f0cfaa336c2969e773446b41427fd815b3af09c13", 0xe4}], 0x1, &(0x7f00000015c0)=[@rthdr={{0x18, 0x29, 0x39, {0x0, 0x0, 0x0, 0xd0}}}, @pktinfo={{0x24, 0x29, 0x32, {@private0}}}, @dstopts={{0x20, 0x29, 0x37, {0x33, 0x0, '\x00', [@pad1]}}}, @pktinfo={{0x24, 0x29, 0x32, {@ipv4={'\x00', '\xff\xff', @multicast1}}}}, @rthdr_2292={{0x48, 0x29, 0x39, {0x4, 0x6, 0x0, 0x6, 0x0, [@dev={0xfe, 0x80, '\x00', 0x31}, @private1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}}}], 0xd0}}], 0x2, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d) sendmsg$nl_generic(r4, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000880)={0x28, 0x1a, 0x69844ea0a6ddcd11, 0x0, 0x0, {}, [@typed={0xe14, 0x0, 0x0, 0x0, @pid}, @nested={0xc, 0xf, 0x0, 0x1, [@typed={0x4, 0x0, 0x0, 0x0, @fd}]}]}, 0x28}}, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000080)=0x2, 0x4) [ 1591.284366] FAULT_INJECTION: forcing a failure. [ 1591.284366] name failslab, interval 1, probability 0, space 0, times 0 [ 1591.286907] CPU: 0 PID: 10015 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1591.288375] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1591.290140] Call Trace: [ 1591.290716] dump_stack+0x107/0x167 [ 1591.291499] should_fail.cold+0x5/0xa [ 1591.292306] ? __alloc_file+0x21/0x320 [ 1591.293126] should_failslab+0x5/0x20 [ 1591.293928] kmem_cache_alloc+0x5b/0x310 [ 1591.294791] __alloc_file+0x21/0x320 [ 1591.295576] alloc_empty_file+0x6d/0x170 [ 1591.296428] alloc_file+0x5e/0x5a0 [ 1591.297179] alloc_file_pseudo+0x16a/0x250 [ 1591.298081] ? alloc_file+0x5a0/0x5a0 [ 1591.298917] anon_inode_getfile+0xc8/0x1f0 [ 1591.299814] io_uring_setup+0x138b/0x2980 [ 1591.300697] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1591.301760] ? wait_for_completion_io+0x270/0x270 [ 1591.302810] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1591.303916] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1591.305009] do_syscall_64+0x33/0x40 [ 1591.305795] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1591.306883] RIP: 0033:0x7fddef796b19 [ 1591.307668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1591.311558] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1591.313166] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1591.314720] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1591.316226] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1591.317732] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1591.319240] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1591.326917] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1591.339110] FAULT_INJECTION: forcing a failure. [ 1591.339110] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1591.341636] CPU: 0 PID: 10018 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1591.343104] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1591.344852] Call Trace: [ 1591.345410] dump_stack+0x107/0x167 [ 1591.346183] should_fail.cold+0x5/0xa [ 1591.346995] _copy_from_user+0x2e/0x1b0 [ 1591.347847] __copy_msghdr_from_user+0x91/0x4b0 [ 1591.348835] ? __ia32_sys_shutdown+0x80/0x80 [ 1591.349769] ? __lock_acquire+0x1657/0x5b00 [ 1591.350710] ___sys_recvmsg+0xd5/0x200 [ 1591.351539] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1591.352571] ? __lockdep_reset_lock+0x180/0x180 [ 1591.353558] ? __fget_files+0x2cf/0x520 [ 1591.354403] ? lock_acquire+0x197/0x470 [ 1591.355232] ? find_held_lock+0x2c/0x110 [ 1591.356087] ? __might_fault+0xd3/0x180 [ 1591.356915] ? lock_downgrade+0x6d0/0x6d0 [ 1591.357819] do_recvmmsg+0x24c/0x6d0 [ 1591.358628] ? ___sys_recvmsg+0x200/0x200 [ 1591.359506] ? lock_downgrade+0x6d0/0x6d0 [ 1591.360395] ? ksys_write+0x12d/0x260 [ 1591.361208] ? wait_for_completion_io+0x270/0x270 [ 1591.362234] ? rcu_read_lock_any_held+0x75/0xa0 [ 1591.363217] ? vfs_write+0x354/0xb10 [ 1591.364006] __x64_sys_recvmmsg+0x20f/0x260 [ 1591.364913] ? ksys_write+0x1a9/0x260 [ 1591.365727] ? __do_sys_socketcall+0x600/0x600 [ 1591.366708] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1591.367826] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1591.368922] do_syscall_64+0x33/0x40 [ 1591.369709] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1591.370798] RIP: 0033:0x7f2d4b68ab19 [ 1591.371584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1591.375481] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1591.377091] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1591.378611] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1591.380114] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1591.381623] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1591.383137] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:44:10 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) [ 1591.399091] FAULT_INJECTION: forcing a failure. [ 1591.399091] name failslab, interval 1, probability 0, space 0, times 0 [ 1591.401535] CPU: 1 PID: 10019 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1591.403002] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1591.404760] Call Trace: [ 1591.405324] dump_stack+0x107/0x167 [ 1591.406098] should_fail.cold+0x5/0xa [ 1591.406918] ? __alloc_file+0x21/0x320 [ 1591.407736] should_failslab+0x5/0x20 [ 1591.408555] kmem_cache_alloc+0x5b/0x310 [ 1591.409424] __alloc_file+0x21/0x320 [ 1591.410220] alloc_empty_file+0x6d/0x170 [ 1591.411080] alloc_file+0x5e/0x5a0 [ 1591.411835] alloc_file_pseudo+0x16a/0x250 [ 1591.412741] ? alloc_file+0x5a0/0x5a0 [ 1591.413564] anon_inode_getfile+0xc8/0x1f0 [ 1591.414495] io_uring_setup+0x138b/0x2980 [ 1591.415394] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1591.416473] ? wait_for_completion_io+0x270/0x270 [ 1591.417535] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1591.418666] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1591.419775] do_syscall_64+0x33/0x40 [ 1591.420569] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1591.421666] RIP: 0033:0x7f5e2aecab19 [ 1591.422464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1591.426541] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1591.428154] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1591.429680] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1591.431205] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1591.432716] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1591.434230] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1591.480034] netlink: 'syz-executor.3': attribute type 22 has an invalid length. [ 1591.506966] netlink: 'syz-executor.3': attribute type 15 has an invalid length. [ 1591.508815] netlink: 'syz-executor.3': attribute type 15 has an invalid length. [ 1591.510549] netlink: 'syz-executor.3': attribute type 15 has an invalid length. [ 1591.557142] netlink: 'syz-executor.3': attribute type 22 has an invalid length. [ 1591.573560] netlink: 'syz-executor.3': attribute type 15 has an invalid length. [ 1591.575488] netlink: 'syz-executor.3': attribute type 15 has an invalid length. [ 1591.577192] netlink: 'syz-executor.3': attribute type 15 has an invalid length. [ 1591.658940] loop7: detected capacity change from 0 to 2048 [ 1591.686749] EXT4-fs (loop7): VFS: Can't find ext4 filesystem 12:44:26 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 24) 12:44:26 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 24) 12:44:26 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x1, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:44:26 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000), 0x0, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:44:26 executing program 2: ftruncate(0xffffffffffffffff, 0x0) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) statx(r0, &(0x7f0000000280)='./file1\x00', 0x2000, 0x100, &(0x7f0000000640)) lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)) lstat(&(0x7f0000000780)='./file1\x00', &(0x7f00000007c0)) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000004c0)={{{@in, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, &(0x7f0000000180)=0xdd) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x20002, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001c80)={0x20, 0x12, 0x1, 0x0, 0x0, {}, [@generic="8cbb4f357ef3cdd1d4"]}, 0x20}}, 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r3, 0x6612) openat(r1, &(0x7f0000000200)='./file1\x00', 0x642140, 0x100) lstat(&(0x7f0000000240)='./file0\x00', &(0x7f00000005c0)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x10, 0xffffffffffffffff, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000001c0), 0x2000000, &(0x7f0000000840)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@version_9p2000}, {@version_9p2000}, {@privport}], [{@dont_appraise}, {@audit}]}}) perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, @perf_config_ext, 0x0, 0x5, 0x400, 0x0, 0x0, 0x800000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 12:44:26 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000200)=ANY=[@ANYBLOB="0002042300000000208100e849a6d1f97a5084113baba0b280aff4000000000000000000000000017c6afd3336e9c77a2ff1061bfa3359f8a22c38e50a958f2cd0eb06d6bdbecf78d5c1bf5a370a75648f7b6435422d1618c11d2f3f455a52024585bad1ad"], 0x18) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x67, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x15) ioctl$SG_GET_RESERVED_SIZE(0xffffffffffffffff, 0x2272, 0x0) ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000280)=ANY=[], 0xfdef) fcntl$getflags(r2, 0xb) setsockopt$inet6_udp_int(r1, 0x11, 0xa, &(0x7f0000000080)=0xfffffc00, 0x4) r3 = syz_open_dev$vcsa(&(0x7f00000001c0), 0x9, 0x203) ioctl$BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r1, &(0x7f0000004d00), 0x40000000000012c, 0x4000850) 12:44:26 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r2, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) fcntl$dupfd(r2, 0x406, r0) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000003380)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000140)=""/153, 0x99}, {&(0x7f0000000240)=""/179, 0xb3}, {&(0x7f0000000480)=""/110, 0x6e}, {&(0x7f0000000500)=""/164, 0xa4}, {&(0x7f0000000900)=""/4096, 0x1000}, {&(0x7f00000005c0)=""/143, 0x8f}, {&(0x7f0000000300)=""/35, 0x23}], 0x7, &(0x7f00000007c0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x60}}, {{&(0x7f0000000840)=@abs, 0x6e, &(0x7f0000002bc0)=[{&(0x7f0000001900)=""/249, 0xf9}, {&(0x7f0000000400)=""/33, 0x21}, {&(0x7f0000001a00)=""/4096, 0x1000}, {&(0x7f0000002a00)=""/193, 0xc1}, {&(0x7f0000002b00)=""/152, 0x98}], 0x5, &(0x7f0000002c40)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb0}}, {{&(0x7f0000002d00), 0x6e, &(0x7f0000000740)=[{&(0x7f0000003680)=""/4096, 0x1000}, {&(0x7f0000002d80)=""/217, 0xd9}], 0x2, &(0x7f0000002e80)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x98}}, {{&(0x7f0000002f40), 0x6e, &(0x7f0000003280)=[{&(0x7f0000002fc0)=""/174, 0xae}, {&(0x7f0000003080)=""/19, 0x13}, {&(0x7f00000030c0)=""/47, 0x2f}, {&(0x7f0000003100)=""/103, 0x67}, {&(0x7f0000003180)=""/200, 0xc8}, {&(0x7f0000004680)=""/4096, 0x1000}], 0x6, &(0x7f0000003300)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x48}}], 0x4, 0x10060, &(0x7f0000003480)={0x0, 0x989680}) setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f00000034c0)={@private=0xa010101, @remote, @remote}, 0xc) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, &(0x7f0000003500), &(0x7f0000000000)='./file0\x00', 0x800, 0x400, 0x1}, 0x6) 12:44:26 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 26) [ 1607.491869] FAULT_INJECTION: forcing a failure. [ 1607.491869] name failslab, interval 1, probability 0, space 0, times 0 [ 1607.494345] CPU: 1 PID: 10050 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1607.496137] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1607.498068] Call Trace: [ 1607.498664] dump_stack+0x107/0x167 [ 1607.499469] should_fail.cold+0x5/0xa [ 1607.500299] ? create_object.isra.0+0x3a/0xa20 [ 1607.501430] should_failslab+0x5/0x20 [ 1607.502535] kmem_cache_alloc+0x5b/0x310 [ 1607.503415] create_object.isra.0+0x3a/0xa20 [ 1607.504353] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1607.505447] kmem_cache_alloc+0x159/0x310 [ 1607.506336] __alloc_file+0x21/0x320 [ 1607.507142] alloc_empty_file+0x6d/0x170 [ 1607.508006] alloc_file+0x5e/0x5a0 [ 1607.508912] alloc_file_pseudo+0x16a/0x250 [ 1607.510059] ? alloc_file+0x5a0/0x5a0 [ 1607.510909] anon_inode_getfile+0xc8/0x1f0 [ 1607.511820] io_uring_setup+0x138b/0x2980 [ 1607.512716] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1607.513804] ? wait_for_completion_io+0x270/0x270 [ 1607.514880] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1607.516129] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1607.517441] do_syscall_64+0x33/0x40 [ 1607.518246] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1607.519357] RIP: 0033:0x7fddef796b19 [ 1607.520162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1607.524144] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1607.525785] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1607.527325] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1607.528863] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1607.530406] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1607.531940] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1607.541595] FAULT_INJECTION: forcing a failure. [ 1607.541595] name failslab, interval 1, probability 0, space 0, times 0 [ 1607.544192] CPU: 1 PID: 10053 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1607.545952] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1607.548041] Call Trace: [ 1607.548727] dump_stack+0x107/0x167 [ 1607.549520] should_fail.cold+0x5/0xa [ 1607.550345] ? create_object.isra.0+0x3a/0xa20 [ 1607.551341] should_failslab+0x5/0x20 [ 1607.552162] kmem_cache_alloc+0x5b/0x310 [ 1607.553042] create_object.isra.0+0x3a/0xa20 [ 1607.553984] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1607.555088] kmem_cache_alloc+0x159/0x310 [ 1607.555982] __alloc_file+0x21/0x320 [ 1607.556782] alloc_empty_file+0x6d/0x170 [ 1607.557867] alloc_file+0x5e/0x5a0 [ 1607.558784] alloc_file_pseudo+0x16a/0x250 [ 1607.559870] ? alloc_file+0x5a0/0x5a0 [ 1607.560818] anon_inode_getfile+0xc8/0x1f0 [ 1607.561908] io_uring_setup+0x138b/0x2980 [ 1607.562923] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1607.564295] ? wait_for_completion_io+0x270/0x270 [ 1607.565479] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1607.566808] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1607.568173] do_syscall_64+0x33/0x40 [ 1607.569003] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1607.570380] RIP: 0033:0x7f5e2aecab19 [ 1607.571287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1607.575957] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1607.577771] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1607.579557] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1607.581087] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1607.582621] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1607.584117] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1607.587976] FAULT_INJECTION: forcing a failure. [ 1607.587976] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1607.590856] CPU: 1 PID: 10056 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1607.592303] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1607.594052] Call Trace: [ 1607.594619] dump_stack+0x107/0x167 [ 1607.595384] should_fail.cold+0x5/0xa [ 1607.596190] __alloc_pages_nodemask+0x182/0x600 [ 1607.597163] ? lock_chain_count+0x20/0x20 [ 1607.598036] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1607.599319] ? perf_trace_lock+0xac/0x490 [ 1607.600194] alloc_pages_vma+0xbb/0x410 [ 1607.601032] wp_page_copy+0xee7/0x1f00 [ 1607.601860] ? print_bad_pte+0x5a0/0x5a0 [ 1607.602718] ? lock_downgrade+0x6d0/0x6d0 [ 1607.603584] ? vm_normal_page+0x162/0x2e0 [ 1607.604467] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 1607.605578] do_wp_page+0x27b/0x1390 [ 1607.606386] handle_mm_fault+0x1cc7/0x3500 [ 1607.607275] ? simple_copy_to_iter+0x54/0x70 [ 1607.608200] ? __skb_datagram_iter+0x1aa/0x880 [ 1607.609155] ? __pmd_alloc+0x5e0/0x5e0 [ 1607.609982] ? vmacache_find+0x55/0x2a0 [ 1607.610834] do_user_addr_fault+0x56e/0xc60 [ 1607.611749] exc_page_fault+0xa2/0x1a0 [ 1607.612574] asm_exc_page_fault+0x1e/0x30 [ 1607.613444] RIP: 0010:__put_user_nocheck_4+0x3/0x11 [ 1607.614494] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca e9 f1 e9 1c 02 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca e9 d2 e9 1c 02 66 90 48 bb f9 ef ff ff ff 7f [ 1607.618355] RSP: 0018:ffff88804a1379c8 EFLAGS: 00050202 [ 1607.619482] RAX: 0000000000000020 RBX: ffffffff83117350 RCX: 0000000020002030 [ 1607.620972] RDX: 1ffff11009426fc3 RSI: ffffffff8310cf0a RDI: 0000000000000005 [ 1607.622612] RBP: ffff88804a137dc8 R08: 0000000000000001 R09: ffff88804c85cadf [ 1607.624300] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000020002030 [ 1607.625266] 9pnet: Insufficient options for proto=fd [ 1607.625788] R13: 0000000020002000 R14: 0000000000000062 R15: 0000000000000004 [ 1607.628052] ? sock_common_getsockopt+0xb0/0xb0 [ 1607.629041] ? ____sys_recvmsg+0x2aa/0x590 [ 1607.629937] ____sys_recvmsg+0x2dd/0x590 [ 1607.630807] ? kernel_recvmsg+0x80/0x80 [ 1607.631652] ? __import_iovec+0x458/0x590 [ 1607.632535] ? import_iovec+0x83/0xb0 [ 1607.633345] ___sys_recvmsg+0x127/0x200 [ 1607.634191] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1607.635230] ? __lockdep_reset_lock+0x180/0x180 [ 1607.636201] ? __fget_files+0x2cf/0x520 [ 1607.637044] ? lock_acquire+0x197/0x470 [ 1607.637882] ? find_held_lock+0x2c/0x110 [ 1607.638756] ? __might_fault+0xd3/0x180 [ 1607.639593] ? lock_downgrade+0x6d0/0x6d0 [ 1607.640617] do_recvmmsg+0x24c/0x6d0 [ 1607.641556] ? ___sys_recvmsg+0x200/0x200 [ 1607.642504] ? lock_downgrade+0x6d0/0x6d0 [ 1607.643501] ? ksys_write+0x12d/0x260 [ 1607.644532] ? wait_for_completion_io+0x270/0x270 [ 1607.645549] ? rcu_read_lock_any_held+0x75/0xa0 [ 1607.646539] ? vfs_write+0x354/0xb10 [ 1607.647330] __x64_sys_recvmmsg+0x20f/0x260 [ 1607.648238] ? ksys_write+0x1a9/0x260 [ 1607.649046] ? __do_sys_socketcall+0x600/0x600 [ 1607.650012] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1607.651125] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1607.652214] do_syscall_64+0x33/0x40 [ 1607.652994] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1607.654066] RIP: 0033:0x7f2d4b68ab19 [ 1607.654852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1607.658728] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1607.660329] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1607.661820] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1607.663333] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1607.664840] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1607.666340] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:44:26 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 25) [ 1607.685766] loop7: detected capacity change from 0 to 2048 [ 1607.702760] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1607.736380] 9pnet: Insufficient options for proto=fd [ 1607.767238] FAULT_INJECTION: forcing a failure. [ 1607.767238] name failslab, interval 1, probability 0, space 0, times 0 [ 1607.769919] CPU: 1 PID: 10067 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1607.771399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1607.773147] Call Trace: [ 1607.773718] dump_stack+0x107/0x167 [ 1607.774512] should_fail.cold+0x5/0xa [ 1607.775318] ? create_object.isra.0+0x3a/0xa20 [ 1607.776281] should_failslab+0x5/0x20 [ 1607.777078] kmem_cache_alloc+0x5b/0x310 [ 1607.777940] create_object.isra.0+0x3a/0xa20 [ 1607.778874] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1607.779942] kmem_cache_alloc+0x159/0x310 [ 1607.780817] __alloc_file+0x21/0x320 [ 1607.781602] alloc_empty_file+0x6d/0x170 [ 1607.782469] alloc_file+0x5e/0x5a0 [ 1607.783236] alloc_file_pseudo+0x16a/0x250 [ 1607.784124] ? alloc_file+0x5a0/0x5a0 [ 1607.784925] ? ihold+0x1a/0x50 [ 1607.785611] anon_inode_getfile+0xc8/0x1f0 [ 1607.786513] io_uring_setup+0x138b/0x2980 [ 1607.787397] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1607.788466] ? wait_for_completion_io+0x270/0x270 [ 1607.789508] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1607.790614] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1607.791703] do_syscall_64+0x33/0x40 [ 1607.792487] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1607.793569] RIP: 0033:0x7fddef796b19 [ 1607.794353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1607.798243] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1607.799843] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1607.801337] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1607.802847] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1607.804341] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1607.805851] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:44:26 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000), 0x0, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:44:27 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r2, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) getsockopt$sock_buf(r2, 0x1, 0x1c, &(0x7f0000000000)=""/127, &(0x7f0000000080)=0x7f) 12:44:27 executing program 2: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r1, 0x4b68, 0x0) fcntl$dupfd(r1, 0x406, r0) timer_settime(0x0, 0x0, 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) timer_create(0x6, &(0x7f0000000180)={0x0, 0x5, 0x4, @thr={&(0x7f0000000080)="41526a128f4b61d66ba4e26c64a53700e862979b8df19c5530e79da67c2e33fb086506673beebf7014c8d8c229d4cc96795099dc6a760b29008c2085e46291b5a8cf2a8a2c5957948d7a5e9ca8d174ee31d463ffc067487b6eb9271c9b", &(0x7f00000002c0)="df5dac7028346c13e5e00449fb63b5296ee8d97aca0cd1ad18203b2fb58bbac4269fce52467cc23a699de8186dab8253c42df49b816d52ceab2e96f148f646564bf647bde5431bdbed403187677378a0f9b588b33d4fc5bcc42100e00875edb8ae991ab565e7112dfe2dd01386de"}}, &(0x7f0000000240)=0x0) timer_gettime(r3, &(0x7f0000000340)) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001600010d000000800000e60000000000"], 0x14}}, 0x0) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000100)) timer_settime(0x0, 0x1, &(0x7f0000000400)={{}, {0x77359400}}, &(0x7f0000000440)) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 12:44:27 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 25) 12:44:27 executing program 3: ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x161000, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x100, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$BTRFS_IOC_SNAP_DESTROY(r2, 0x5000940f, &(0x7f0000000640)={{r1}, "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"}) connect$inet6(r2, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreqsrc(r3, 0x0, 0x27, &(0x7f0000000080)={@multicast2, @dev={0xac, 0x14, 0x14, 0x41}, @remote}, 0xc) connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e24, 0x65899913, @dev={0xfe, 0x80, '\x00', 0x43}, 0x7ffffffc}, 0xffffffffffffff2b) setsockopt$inet_group_source_req(r3, 0x0, 0x2f, &(0x7f0000000240)={0x3, {{0x2, 0x4e22, @broadcast}}, {{0x2, 0x4e20, @loopback}}}, 0x108) close(r3) getsockopt$IPT_SO_GET_INFO(r3, 0x0, 0x40, &(0x7f0000000140)={'nat\x00', 0x0, [0x5, 0x5, 0x0, 0x5, 0x94]}, &(0x7f00000001c0)=0x54) openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x22b80, 0x1b7) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) pipe(&(0x7f0000000040)) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000380)=0x3) ioprio_get$pid(0x3, 0x0) 12:44:27 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0}, 0x0]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:44:27 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 27) [ 1607.960772] loop7: detected capacity change from 0 to 2048 [ 1607.982684] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1608.032679] FAULT_INJECTION: forcing a failure. [ 1608.032679] name failslab, interval 1, probability 0, space 0, times 0 [ 1608.035044] CPU: 1 PID: 10085 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1608.036497] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1608.038244] Call Trace: [ 1608.038807] dump_stack+0x107/0x167 [ 1608.039567] should_fail.cold+0x5/0xa [ 1608.040360] ? security_file_alloc+0x34/0x170 [ 1608.041307] should_failslab+0x5/0x20 [ 1608.042097] kmem_cache_alloc+0x5b/0x310 [ 1608.042966] security_file_alloc+0x34/0x170 [ 1608.043873] __alloc_file+0xb7/0x320 [ 1608.044653] alloc_empty_file+0x6d/0x170 [ 1608.045500] alloc_file+0x5e/0x5a0 [ 1608.046252] alloc_file_pseudo+0x16a/0x250 [ 1608.047165] ? alloc_file+0x5a0/0x5a0 [ 1608.047980] anon_inode_getfile+0xc8/0x1f0 [ 1608.048871] io_uring_setup+0x138b/0x2980 [ 1608.049747] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1608.050812] ? wait_for_completion_io+0x270/0x270 [ 1608.051855] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1608.052958] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1608.054051] do_syscall_64+0x33/0x40 [ 1608.054844] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1608.055922] RIP: 0033:0x7f5e2aecab19 [ 1608.056706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1608.060581] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1608.062181] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1608.063687] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1608.065187] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1608.066715] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1608.068218] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1608.145142] FAULT_INJECTION: forcing a failure. [ 1608.145142] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1608.147701] CPU: 1 PID: 10093 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1608.149158] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1608.150900] Call Trace: [ 1608.151462] dump_stack+0x107/0x167 [ 1608.152221] should_fail.cold+0x5/0xa [ 1608.153024] _copy_from_user+0x2e/0x1b0 [ 1608.153866] __copy_msghdr_from_user+0x91/0x4b0 [ 1608.154858] ? __ia32_sys_shutdown+0x80/0x80 [ 1608.155779] ? __lock_acquire+0x1657/0x5b00 [ 1608.156705] ___sys_recvmsg+0xd5/0x200 [ 1608.157526] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1608.158563] ? __lockdep_reset_lock+0x180/0x180 [ 1608.159551] ? lock_acquire+0x197/0x470 [ 1608.160410] ? find_held_lock+0x2c/0x110 [ 1608.161270] ? __might_fault+0xd3/0x180 [ 1608.162105] ? lock_downgrade+0x6d0/0x6d0 [ 1608.163007] do_recvmmsg+0x24c/0x6d0 [ 1608.163803] ? ___sys_recvmsg+0x200/0x200 [ 1608.164672] ? lock_downgrade+0x6d0/0x6d0 [ 1608.165567] ? ksys_write+0x12d/0x260 [ 1608.166404] ? wait_for_completion_io+0x270/0x270 [ 1608.167440] ? rcu_read_lock_any_held+0x75/0xa0 [ 1608.168426] ? vfs_write+0x354/0xb10 [ 1608.169237] __x64_sys_recvmmsg+0x20f/0x260 [ 1608.170144] ? ksys_write+0x1a9/0x260 [ 1608.170960] ? __do_sys_socketcall+0x600/0x600 [ 1608.171922] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1608.173029] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1608.174121] do_syscall_64+0x33/0x40 [ 1608.174921] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1608.176007] RIP: 0033:0x7f2d4b68ab19 [ 1608.176794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1608.180688] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1608.182299] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1608.183824] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1608.185337] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1608.186852] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1608.188364] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:44:42 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 26) 12:44:42 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x6, 0xfffffffb) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'bond_slave_0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) setsockopt$inet6_int(r1, 0x29, 0x35, &(0x7f0000000000)=0x7, 0x4) 12:44:42 executing program 3: syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f0000000140)=0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000180)=@sco={0x1f, @fixed}}, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r3, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) syz_io_uring_submit(0x0, r1, &(0x7f0000000100)=@IORING_OP_CONNECT={0x10, 0x4, 0x0, r3, 0x80, &(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, r4, 0x0, 0x1, 0x4, 0x0, {0xa, 0x4e23, 0x800, @private0, 0x8}}}}, 0x17150f8e) socket$nl_netfilter(0x10, 0x3, 0xc) r5 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d) sendmsg$nl_generic(r5, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000880)={0x28, 0x1a, 0x69844ea0a6ddcd11, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @pid}, @nested={0xc, 0xf, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @uid}]}]}, 0x28}}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000001700)={0x1c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}]}, 0x1c}}, 0x0) 12:44:42 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 28) 12:44:42 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000), 0x0, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:44:42 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="14001d000087cd8394ccb8c8ac8d59041de066e3ef6e961bbd0bdfeaa7c250c62108121266fc1c1b55bc3ea8ca152f5a16ca0c87bed0221937e07a425ffb9f193f5f8ef393e0d64bee4171fd5e"], 0x14}}, 0x0) fsetxattr$trusted_overlay_nlink(r1, 0x0, 0x0, 0xfffffffffffffd69, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000500)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x5}}, './file0\x00'}) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wpan0\x00', 0x0}) syz_io_uring_setup(0x3876, &(0x7f0000000380)={0x0, 0x2, 0x4, 0x3, 0x2f9, 0x0, r0}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000005c0), &(0x7f0000000080)) sendmsg$NL802154_CMD_SET_LBT_MODE(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000000), 0xc, &(0x7f0000000280)={&(0x7f0000000780)=ANY=[@ANYBLOB="490000006d95e22f59e1113023d13e2a3e1edcf049c0a2ba1709f74d2c28d89d254d09239df42315fed63b9646507796dd4cd70f6e22cec42f6e418d60c718ed9a5d13f1f0d8485cce352ffbce89848c6c4f17819df709", @ANYRES16=r3, @ANYBLOB="00022dbd7000fddbdf25120000000c0006000300000013d1be240c0006000200000002000000050013000000000008000300f399880958d6025328d5e666cfab43648ccd68d10914f59039eea35778df50e5c6756ed36822d9d706dcc0bf4e48851d8facb65e537af9ca2c240dd85d3d10cf18907735701d8185c298ab67b99641ced0cadf2e02d07daaa6f13165bd40021bc012eb7db16dd4dcef033ac025e8647d37ca7bd50a5f123d82a3d29c563eb0eeae47c542c96315ec6160af4a94ab000b1cd8666fdd25a8c1b38d5d469c9d", @ANYRES32=r4, @ANYBLOB="0c0006000100000001000000"], 0x48}, 0x1, 0x0, 0x0, 0x20000089}, 0xc004) syz_io_uring_setup(0x7781, &(0x7f0000000400)={0x0, 0x69ec, 0x10, 0x0, 0x3aa}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000004c0)) r5 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r5, 0x11, 0x67, &(0x7f0000000240)=0x407e, 0x4) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) sendmsg$inet(r5, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}, 0x404c008) r6 = fcntl$dupfd(r5, 0x0, r5) sendmsg$inet6(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$inet6_udplite(0xa, 0x2, 0x88) unshare(0x48020200) 12:44:42 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 26) 12:44:42 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0}, 0x0]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1623.460484] FAULT_INJECTION: forcing a failure. [ 1623.460484] name failslab, interval 1, probability 0, space 0, times 0 [ 1623.462294] CPU: 0 PID: 10110 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1623.463244] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.464453] Call Trace: [ 1623.464809] dump_stack+0x107/0x167 [ 1623.465302] should_fail.cold+0x5/0xa [ 1623.465819] ? create_object.isra.0+0x3a/0xa20 [ 1623.466442] should_failslab+0x5/0x20 [ 1623.466957] kmem_cache_alloc+0x5b/0x310 [ 1623.467498] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1623.468241] create_object.isra.0+0x3a/0xa20 [ 1623.468837] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1623.469514] kmem_cache_alloc+0x159/0x310 [ 1623.470075] security_file_alloc+0x34/0x170 [ 1623.470655] __alloc_file+0xb7/0x320 [ 1623.471166] alloc_empty_file+0x6d/0x170 [ 1623.471707] alloc_file+0x5e/0x5a0 [ 1623.472182] alloc_file_pseudo+0x16a/0x250 [ 1623.472743] ? alloc_file+0x5a0/0x5a0 [ 1623.473275] anon_inode_getfile+0xc8/0x1f0 [ 1623.473843] io_uring_setup+0x138b/0x2980 [ 1623.474396] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1623.475073] ? wait_for_completion_io+0x270/0x270 [ 1623.475729] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.476429] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.477111] do_syscall_64+0x33/0x40 [ 1623.477600] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1623.478277] RIP: 0033:0x7fddef796b19 [ 1623.478794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.481242] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1623.482252] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1623.483206] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1623.484141] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 12:44:42 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x100) getsockopt$IP6T_SO_GET_INFO(r2, 0x29, 0x40, &(0x7f0000000040)={'nat\x00', 0x0, [0xa9cb, 0x3d287e2f, 0x3, 0x7, 0x1]}, &(0x7f00000000c0)=0x54) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) [ 1623.485084] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1623.486150] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1623.517446] loop7: detected capacity change from 0 to 2048 12:44:42 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 27) [ 1623.526593] FAULT_INJECTION: forcing a failure. [ 1623.526593] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1623.529356] CPU: 1 PID: 10116 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1623.530837] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.532586] Call Trace: [ 1623.533149] dump_stack+0x107/0x167 [ 1623.533684] FAULT_INJECTION: forcing a failure. [ 1623.533684] name failslab, interval 1, probability 0, space 0, times 0 [ 1623.533924] should_fail.cold+0x5/0xa [ 1623.536209] _copy_from_user+0x2e/0x1b0 [ 1623.537058] __copy_msghdr_from_user+0x91/0x4b0 [ 1623.538053] ? __ia32_sys_shutdown+0x80/0x80 [ 1623.539001] ? __lock_acquire+0x1657/0x5b00 [ 1623.539950] ___sys_recvmsg+0xd5/0x200 [ 1623.540778] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1623.541818] ? __lockdep_reset_lock+0x180/0x180 [ 1623.542815] ? __fget_files+0x2cf/0x520 [ 1623.543672] ? lock_acquire+0x197/0x470 [ 1623.544519] ? find_held_lock+0x2c/0x110 [ 1623.545399] ? __might_fault+0xd3/0x180 [ 1623.546249] ? lock_downgrade+0x6d0/0x6d0 [ 1623.547174] do_recvmmsg+0x24c/0x6d0 [ 1623.547981] ? ___sys_recvmsg+0x200/0x200 [ 1623.548865] ? lock_downgrade+0x6d0/0x6d0 [ 1623.549763] ? ksys_write+0x12d/0x260 [ 1623.550601] ? wait_for_completion_io+0x270/0x270 [ 1623.551634] ? rcu_read_lock_any_held+0x75/0xa0 [ 1623.552625] ? vfs_write+0x354/0xb10 [ 1623.553419] __x64_sys_recvmmsg+0x20f/0x260 [ 1623.554339] ? ksys_write+0x1a9/0x260 [ 1623.555165] ? __do_sys_socketcall+0x600/0x600 [ 1623.556147] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.557270] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.558375] do_syscall_64+0x33/0x40 [ 1623.559174] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1623.560269] RIP: 0033:0x7f2d4b68ab19 [ 1623.561062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.565006] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1623.566640] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1623.568152] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1623.569672] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1623.571199] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1623.572719] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1623.574274] CPU: 0 PID: 10117 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1623.575188] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.576266] Call Trace: [ 1623.576658] dump_stack+0x107/0x167 [ 1623.577252] should_fail.cold+0x5/0xa [ 1623.577759] ? create_object.isra.0+0x3a/0xa20 [ 1623.578357] should_failslab+0x5/0x20 [ 1623.578865] kmem_cache_alloc+0x5b/0x310 [ 1623.579392] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1623.580102] create_object.isra.0+0x3a/0xa20 [ 1623.580681] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1623.581342] kmem_cache_alloc+0x159/0x310 [ 1623.581882] security_file_alloc+0x34/0x170 [ 1623.582446] __alloc_file+0xb7/0x320 [ 1623.582941] alloc_empty_file+0x6d/0x170 [ 1623.583472] alloc_file+0x5e/0x5a0 [ 1623.583939] alloc_file_pseudo+0x16a/0x250 [ 1623.584493] ? alloc_file+0x5a0/0x5a0 [ 1623.585004] anon_inode_getfile+0xc8/0x1f0 [ 1623.585572] io_uring_setup+0x138b/0x2980 [ 1623.586116] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1623.586782] ? wait_for_completion_io+0x270/0x270 [ 1623.587440] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.588118] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.588802] do_syscall_64+0x33/0x40 [ 1623.589292] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1623.589953] RIP: 0033:0x7f5e2aecab19 [ 1623.590436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.592813] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1623.593803] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1623.594720] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1623.595631] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1623.596545] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1623.597467] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1623.612099] netlink: 'syz-executor.3': attribute type 15 has an invalid length. [ 1623.613172] netlink: 'syz-executor.3': attribute type 15 has an invalid length. [ 1623.614301] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1623.614455] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=10113 comm=syz-executor.3 12:44:42 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 29) [ 1623.638066] netlink: 'syz-executor.3': attribute type 15 has an invalid length. [ 1623.639802] netlink: 'syz-executor.3': attribute type 15 has an invalid length. [ 1623.650357] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=10122 comm=syz-executor.3 12:44:42 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000007c0)) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="6c917d5068143eb537a96c21228cd247", 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x2) r3 = inotify_init1(0x0) socket$inet6_udplite(0xa, 0x2, 0x88) socket$netlink(0x10, 0x3, 0x0) r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r4, 0xc018937e, &(0x7f0000000340)=ANY=[@ANYBLOB="e207436dff7d3ccb0a77af8a17badec1abf282b4c31ab2ae071d", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file1\x00']) newfstatat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', &(0x7f0000000180), 0x6d00) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000500)=ANY=[@ANYRES32, @ANYBLOB="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"]) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1/file0\x00', 0x5017c1, 0x6) write(0xffffffffffffffff, &(0x7f0000000240)="01", 0x1) inotify_add_watch(0xffffffffffffffff, &(0x7f0000000300)='./file1\x00', 0x4) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003dc0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000000c0)='6', 0x1}], 0x1}}, {{&(0x7f00000002c0)={0xa, 0x0, 0x0, @local}, 0x1c, &(0x7f0000001b00)=[{0x0}], 0x1}}], 0x2, 0x0) inotify_add_watch(r3, &(0x7f0000000040)='.\x00', 0x2000003) sendfile(r1, r2, 0x0, 0x100000001) 12:44:42 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 27) 12:44:42 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f465", 0x2f, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:44:42 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0}, 0x0]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1623.783872] FAULT_INJECTION: forcing a failure. [ 1623.783872] name failslab, interval 1, probability 0, space 0, times 0 [ 1623.786363] CPU: 1 PID: 10127 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1623.787869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.789661] Call Trace: [ 1623.790251] dump_stack+0x107/0x167 [ 1623.791055] should_fail.cold+0x5/0xa [ 1623.791878] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1623.792986] should_failslab+0x5/0x20 [ 1623.793800] kmem_cache_alloc_trace+0x55/0x320 [ 1623.794794] io_uring_alloc_task_context+0x99/0x6a0 [ 1623.795866] ? io_import_iovec+0x1120/0x1120 [ 1623.796809] ? lock_downgrade+0x6d0/0x6d0 [ 1623.797691] ? do_raw_spin_lock+0x121/0x260 [ 1623.798627] ? rwlock_bug.part.0+0x90/0x90 [ 1623.799539] __io_uring_add_tctx_node+0x2c6/0x520 [ 1623.800788] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1623.802069] ? alloc_fd+0x2e7/0x670 [ 1623.802871] io_uring_setup+0x1fbb/0x2980 [ 1623.803766] ? __do_sys_io_uring_enter+0x1890/0x1890 12:44:42 executing program 2: syz_open_procfs(0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r0, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) fcntl$getownex(r0, 0x10, &(0x7f0000000000)) [ 1623.804848] ? wait_for_completion_io+0x270/0x270 [ 1623.806014] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.807245] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.808593] do_syscall_64+0x33/0x40 [ 1623.809388] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1623.810502] RIP: 0033:0x7fddef796b19 [ 1623.811375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.815666] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1623.817281] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1623.818811] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1623.820406] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1623.822134] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1623.823657] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1623.851189] FAULT_INJECTION: forcing a failure. [ 1623.851189] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1623.854003] CPU: 1 PID: 10130 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1623.855491] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.857260] Call Trace: [ 1623.857844] dump_stack+0x107/0x167 [ 1623.858636] should_fail.cold+0x5/0xa [ 1623.859564] _copy_from_user+0x2e/0x1b0 [ 1623.860637] __copy_msghdr_from_user+0x91/0x4b0 [ 1623.861637] ? __ia32_sys_shutdown+0x80/0x80 [ 1623.862583] ? __lock_acquire+0x1657/0x5b00 [ 1623.863525] ___sys_recvmsg+0xd5/0x200 [ 1623.864353] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1623.865401] ? __lockdep_reset_lock+0x180/0x180 [ 1623.866596] ? __fget_files+0x2cf/0x520 [ 1623.867595] ? lock_acquire+0x197/0x470 [ 1623.868448] ? find_held_lock+0x2c/0x110 [ 1623.869316] ? __might_fault+0xd3/0x180 [ 1623.870163] ? lock_downgrade+0x6d0/0x6d0 [ 1623.871079] do_recvmmsg+0x24c/0x6d0 [ 1623.871982] ? ___sys_recvmsg+0x200/0x200 [ 1623.873068] ? lock_downgrade+0x6d0/0x6d0 [ 1623.874007] ? ksys_write+0x12d/0x260 [ 1623.874849] ? wait_for_completion_io+0x270/0x270 [ 1623.875885] ? rcu_read_lock_any_held+0x75/0xa0 [ 1623.876874] ? vfs_write+0x354/0xb10 [ 1623.877674] __x64_sys_recvmmsg+0x20f/0x260 [ 1623.878598] ? ksys_write+0x1a9/0x260 [ 1623.879410] ? __do_sys_socketcall+0x600/0x600 [ 1623.880385] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.881501] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.882617] do_syscall_64+0x33/0x40 [ 1623.883416] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1623.884507] RIP: 0033:0x7f2d4b68ab19 [ 1623.885544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.890083] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1623.891935] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1623.893629] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1623.895210] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1623.896780] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1623.898302] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1623.941633] loop7: detected capacity change from 0 to 2048 12:44:43 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 28) [ 1623.947997] FAULT_INJECTION: forcing a failure. [ 1623.947997] name failslab, interval 1, probability 0, space 0, times 0 [ 1623.949419] CPU: 0 PID: 10142 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1623.950238] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.951214] Call Trace: [ 1623.951549] dump_stack+0x107/0x167 [ 1623.951997] should_fail.cold+0x5/0xa [ 1623.952456] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1623.953061] should_failslab+0x5/0x20 [ 1623.953497] kmem_cache_alloc_trace+0x55/0x320 [ 1623.954025] io_uring_alloc_task_context+0x99/0x6a0 [ 1623.954602] ? io_import_iovec+0x1120/0x1120 [ 1623.955105] ? lock_downgrade+0x6d0/0x6d0 [ 1623.955575] ? do_raw_spin_lock+0x121/0x260 [ 1623.956072] ? rwlock_bug.part.0+0x90/0x90 [ 1623.956565] __io_uring_add_tctx_node+0x2c6/0x520 [ 1623.957122] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1623.957723] ? alloc_fd+0x2e7/0x670 [ 1623.958147] io_uring_setup+0x1fbb/0x2980 [ 1623.958630] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1623.959211] ? wait_for_completion_io+0x270/0x270 [ 1623.959779] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.960380] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.960970] do_syscall_64+0x33/0x40 [ 1623.961396] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1623.961989] RIP: 0033:0x7f5e2aecab19 [ 1623.962418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.964657] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1623.965529] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1623.966344] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1623.967170] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1623.967980] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1623.968797] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1623.987586] EXT4-fs (loop7): VFS: Can't find ext4 filesystem 12:44:43 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 28) 12:44:43 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 30) 12:44:43 executing program 2: ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) r1 = syz_io_uring_setup(0x3872, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000100)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r1, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x0, 0x10, r1, 0x8000000) r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x42000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) kcmp(r0, 0x0, 0x1, r1, r5) r6 = memfd_create(&(0x7f0000000340)='\x00', 0x6) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xb, 0x1d012, r6, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x38c}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140)) r9 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r9, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10, &(0x7f0000000700)=[{&(0x7f0000000040)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x1}}], 0x2, 0x8004) preadv(r9, &(0x7f0000000800)=[{&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f0000000380)=""/171, 0xab}, {&(0x7f0000000180)=""/23, 0x17}, {&(0x7f0000000500)=""/239, 0xef}, {&(0x7f0000000600)=""/176, 0xb0}, {&(0x7f00000006c0)=""/176, 0xb0}, {&(0x7f0000000780)=""/111, 0x6f}, {&(0x7f0000000280)=""/17, 0x11}], 0x8, 0x7, 0x8001) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r8, 0xa, 0x0, r10) syz_io_uring_submit(r4, r2, &(0x7f00000000c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000a40)="4795a8826c569da7de7fd4d6e96c5af9ef5d10f9109d401882548c0e33d0547add4cd244e13fa1236ad9a4fdef8ef58c0c103d6329b58dd925b634efdc4c3c40ed97acac5e4ddfb277fc15c113ac1c7dd30a42197cb1127f84550628378ae4cf8fa0aae871144f12f4c7f733910ea2340faca4551ed4f241dcdae0de71e77b382615aca7ef3852a97cdc8503130ba68a7a9c239bc39986dfdb6d03dd95a0347bc9e50964376096f476721b51ecf23ba3bb9f587b459499b2e38a383741e6e80ee8ae0c", 0xc3, 0x40010121, 0x1, {0x0, r3}}, 0x5) syz_io_uring_setup(0x762f, &(0x7f0000000900)={0x0, 0x7b17, 0x20, 0x3, 0x3b7}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000b7000/0x3000)=nil, &(0x7f0000000880), &(0x7f0000000980)) finit_module(r6, 0x0, 0x0) [ 1624.131352] FAULT_INJECTION: forcing a failure. [ 1624.131352] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1624.132713] CPU: 0 PID: 10150 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1624.133506] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1624.134455] Call Trace: [ 1624.134793] dump_stack+0x107/0x167 [ 1624.135222] should_fail.cold+0x5/0xa [ 1624.135664] _copy_from_user+0x2e/0x1b0 [ 1624.136128] __copy_msghdr_from_user+0x91/0x4b0 [ 1624.136666] ? __ia32_sys_shutdown+0x80/0x80 [ 1624.137179] ? __lock_acquire+0x1657/0x5b00 [ 1624.137686] ___sys_recvmsg+0xd5/0x200 [ 1624.138136] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1624.138712] ? __lockdep_reset_lock+0x180/0x180 [ 1624.139245] ? __fget_files+0x2cf/0x520 [ 1624.139707] ? lock_acquire+0x197/0x470 [ 1624.140165] ? find_held_lock+0x2c/0x110 [ 1624.140639] ? __might_fault+0xd3/0x180 [ 1624.141095] ? lock_downgrade+0x6d0/0x6d0 [ 1624.141583] do_recvmmsg+0x24c/0x6d0 [ 1624.142022] ? ___sys_recvmsg+0x200/0x200 [ 1624.142526] ? lock_downgrade+0x6d0/0x6d0 [ 1624.143012] ? ksys_write+0x12d/0x260 [ 1624.143454] ? wait_for_completion_io+0x270/0x270 [ 1624.144004] ? rcu_read_lock_any_held+0x75/0xa0 [ 1624.144556] ? vfs_write+0x354/0xb10 [ 1624.144987] __x64_sys_recvmmsg+0x20f/0x260 [ 1624.145483] ? ksys_write+0x1a9/0x260 [ 1624.145920] ? __do_sys_socketcall+0x600/0x600 [ 1624.146448] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1624.147051] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1624.147641] do_syscall_64+0x33/0x40 [ 1624.148067] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1624.148656] RIP: 0033:0x7f2d4b68ab19 [ 1624.149083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1624.151189] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1624.152072] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1624.152887] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1624.153704] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1624.154520] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1624.155338] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:44:43 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f465", 0x2f, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) [ 1624.173092] FAULT_INJECTION: forcing a failure. [ 1624.173092] name failslab, interval 1, probability 0, space 0, times 0 [ 1624.175587] CPU: 1 PID: 10152 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1624.177081] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1624.178876] Call Trace: [ 1624.179455] dump_stack+0x107/0x167 [ 1624.180253] should_fail.cold+0x5/0xa [ 1624.181068] ? create_object.isra.0+0x3a/0xa20 [ 1624.182048] should_failslab+0x5/0x20 [ 1624.182874] kmem_cache_alloc+0x5b/0x310 [ 1624.183760] create_object.isra.0+0x3a/0xa20 [ 1624.184718] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1624.185812] kmem_cache_alloc_trace+0x151/0x320 [ 1624.186858] io_uring_alloc_task_context+0x99/0x6a0 [ 1624.187915] ? io_import_iovec+0x1120/0x1120 [ 1624.188851] ? lock_downgrade+0x6d0/0x6d0 [ 1624.189728] ? do_raw_spin_lock+0x121/0x260 [ 1624.190673] ? rwlock_bug.part.0+0x90/0x90 [ 1624.191578] __io_uring_add_tctx_node+0x2c6/0x520 [ 1624.192601] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1624.193712] ? alloc_fd+0x2e7/0x670 [ 1624.194503] io_uring_setup+0x1fbb/0x2980 [ 1624.195399] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1624.196472] ? wait_for_completion_io+0x270/0x270 [ 1624.197521] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1624.198665] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1624.199771] do_syscall_64+0x33/0x40 [ 1624.200559] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1624.201638] RIP: 0033:0x7fddef796b19 [ 1624.202420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1624.206322] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1624.207955] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1624.209466] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1624.210998] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1624.212506] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1624.214005] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1624.241747] FAULT_INJECTION: forcing a failure. [ 1624.241747] name failslab, interval 1, probability 0, space 0, times 0 [ 1624.243188] CPU: 0 PID: 10154 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1624.244101] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1624.245054] Call Trace: [ 1624.245365] dump_stack+0x107/0x167 [ 1624.245785] should_fail.cold+0x5/0xa [ 1624.246225] ? create_object.isra.0+0x3a/0xa20 [ 1624.246759] should_failslab+0x5/0x20 [ 1624.247199] kmem_cache_alloc+0x5b/0x310 [ 1624.247667] create_object.isra.0+0x3a/0xa20 [ 1624.248171] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1624.248761] kmem_cache_alloc_trace+0x151/0x320 [ 1624.249305] io_uring_alloc_task_context+0x99/0x6a0 [ 1624.249882] ? io_import_iovec+0x1120/0x1120 [ 1624.250390] ? lock_downgrade+0x6d0/0x6d0 [ 1624.250870] ? do_raw_spin_lock+0x121/0x260 [ 1624.251365] ? rwlock_bug.part.0+0x90/0x90 [ 1624.251854] __io_uring_add_tctx_node+0x2c6/0x520 [ 1624.252410] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1624.253011] ? alloc_fd+0x2e7/0x670 [ 1624.253438] io_uring_setup+0x1fbb/0x2980 [ 1624.253919] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1624.254507] ? wait_for_completion_io+0x270/0x270 [ 1624.255079] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1624.255683] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1624.256276] do_syscall_64+0x33/0x40 [ 1624.256706] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1624.257296] RIP: 0033:0x7f5e2aecab19 [ 1624.257724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1624.259845] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1624.260718] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1624.261537] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1624.262355] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1624.263187] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1624.263998] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1624.387497] Module has invalid ELF structures [ 1624.488639] loop7: detected capacity change from 0 to 2048 [ 1624.499478] EXT4-fs (loop7): VFS: Can't find ext4 filesystem 12:44:58 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x1, &(0x7f0000000380)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:44:58 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) setsockopt$inet6_int(r0, 0x29, 0xc9, &(0x7f0000000000)=0x7, 0x4) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x13, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x8001) syz_io_uring_setup(0x132, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r3, &(0x7f0000002800)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)={0x28, r2, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @ETHTOOL_A_EEE_MODES_OURS={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x28}}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x2) r7 = socket$packet(0x11, 0x2, 0x300) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x0, 0x0) r9 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x418000, 0x0) poll(&(0x7f00000000c0)=[{r6, 0x4}, {r7, 0x2140}, {r8, 0x2}, {r9, 0x2d4}], 0x4, 0x1) 12:44:58 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 31) 12:44:58 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 29) 12:44:58 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 29) 12:44:58 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000010300003b000000", @ANYRES32=r0, @ANYBLOB="ed1ecfb68564c245a01b74ed554f61d6ee"]) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000001, 0x4010, r0, 0x53c6a000) perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x4, 0x0, 0x3, 0x81, 0x0, 0xffff, 0x41854, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xff, 0x4, @perf_config_ext={0x2, 0x2}, 0x200, 0x1, 0x0, 0x5, 0xd8, 0x101, 0x9, 0x0, 0x2497, 0x0, 0x2ce7}, 0xffffffffffffffff, 0x2, r2, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r3, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) ioctl$int_in(r3, 0x5452, &(0x7f0000000180)=0x2) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000000)) 12:44:58 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f465", 0x2f, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:44:58 executing program 3: listen(0xffffffffffffffff, 0x0) sendmsg$TIPC_NL_KEY_FLUSH(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x84}, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000600)={0x228, 0x34, 0x8, 0x70bd2b, 0x25dfdbff, {0x11}, [@nested={0x14f, 0x85, 0x0, 0x1, [@typed={0x8, 0xf, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x14, 0x15, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @generic="ae2f19694c6eddfb370c6af117d0daf20c7439d5f400485e53758cdc02949de3e208d65e0aeb5d7618c16ca9c280237180caabeb653e3b10a090197f8f37429afd13719142cdd5a88e2717e8598bf47911de9ae04507fd37c08b46210f5a3b434b81c6a60b545c2a03dc274c88bf", @generic="0ec41cd450f3e8c5ba4b7caf8cea1785e14669a0b577cdc0e7d61f9e40f1f3e6e0d2bb7058a157aa44e4997ff93677953696b82ebceb4d713249066775c13e60fa94700865fd2676fe2802b0c02696965a7d79c03923abb571c625ad66bd1d20557a82ffcdeb5b879e2e37f5d48f69e0c7cd291f3905b98e23af374654fa341c6d230eb6795dee4314c92695d058559d003613c53961d10c405869bbba51047e611bca83465da685c917d5d3730985145a", @typed={0x8, 0x76, 0x0, 0x0, @fd}, @typed={0x8, 0x31, 0x0, 0x0, @u32=0x5e0831bc}]}, @typed={0x8, 0x2, 0x0, 0x0, @u32=0x100}, @typed={0x8, 0x23, 0x0, 0x0, @str='5^+\x00'}, @generic="df40a3b9225571d2131ee25b352b4c67a7ed02fda68728a9f43a76e4b9b347359ee9324e34f8499de7bae30a49049b2ea96eaa4465f44649ddc6a537500fff9eb19c476258c6ffec3ccff564e42b00d3ad3771ff6087b28486080fa795e8c0775cf62f3e6069eb12cd6e0896f0718ac3247d75f47ac84006e6b8eb0faa6f74c2a25cb8daf885e8f576f801fb9bba6647223367453591886c20eeb5d5b7b4579f837663e28e22b71a2bb84f4db43d32828d"]}, 0x228}}, 0x24000000) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000200), 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0xfd}}, './file0\x00'}) pread64(r1, &(0x7f00000000c0)=""/77, 0x4d, 0x9) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wg0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f0000000300)={'sit0\x00', &(0x7f0000000200)={'ip6tnl0\x00', r4, 0x2f, 0x6, 0xf5, 0x295faaa0, 0x30, @remote, @empty, 0x0, 0x700, 0x3, 0xffffafaf}}) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r3, 0x89f2, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000340)={'erspan0\x00', r4, 0x10, 0x7, 0x400, 0x1000, {{0x15, 0x4, 0x2, 0x3, 0x54, 0x65, 0x0, 0x2, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local, {[@lsrr={0x83, 0x3, 0x97}, @noop, @cipso={0x86, 0x16, 0xffffffffffffffff, [{0x6, 0xc, "50bd6942d1db012416ec"}, {0x5, 0x4, "6df2"}]}, @end, @lsrr={0x83, 0x1f, 0xb8, [@local, @dev={0xac, 0x14, 0x14, 0x29}, @multicast2, @remote, @remote, @empty, @private=0xa010101]}, @end, @ra={0x94, 0x4}]}}}}}) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000580)=ANY=[@ANYBLOB="480000001d00210c00000000000000000400020014001180809801a7b0c7dba09475f251c743092f2000008008000000", @ANYRES32=r0, @ANYBLOB="14000000fe8000b615d07f60d259e0fe000000000000000000000000bb"], 0x48}}, 0x0) r5 = open(&(0x7f0000000140)='./file1\x00', 0x101000, 0x0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r5, 0x89f9, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000240)={'sit0\x00', 0x0, 0x2f, 0x2, 0x6a, 0x101, 0x10, @private1, @private2, 0x20, 0x0, 0x61, 0x6}}) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) write$9p(r5, &(0x7f00000004c0)="a208d3559c77603c3cc090d9ad63343ca673665eabe9bb038d9f8edd6ea21fb6aa86bd87b5e42c01db76ffb709aa696f6b2c3975ea009c2fa3fd8c400be94c95fb0941c881", 0x45) [ 1638.983329] FAULT_INJECTION: forcing a failure. [ 1638.983329] name failslab, interval 1, probability 0, space 0, times 0 [ 1638.985782] CPU: 1 PID: 10172 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1638.987293] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1638.989066] Call Trace: [ 1638.989653] dump_stack+0x107/0x167 [ 1638.990438] should_fail.cold+0x5/0xa [ 1638.991279] ? create_object.isra.0+0x3a/0xa20 [ 1638.992249] should_failslab+0x5/0x20 [ 1638.993059] kmem_cache_alloc+0x5b/0x310 [ 1638.993941] create_object.isra.0+0x3a/0xa20 [ 1638.994913] kmemleak_alloc_percpu+0xa0/0x100 [ 1638.995883] pcpu_alloc+0x4e2/0x1240 [ 1638.996696] __percpu_counter_init+0x10d/0x2d0 [ 1638.997672] io_uring_alloc_task_context+0xcc/0x6a0 [ 1638.999052] ? io_import_iovec+0x1120/0x1120 [ 1639.000076] ? lock_downgrade+0x6d0/0x6d0 [ 1639.000950] ? do_raw_spin_lock+0x121/0x260 [ 1639.002044] ? rwlock_bug.part.0+0x90/0x90 [ 1639.003134] __io_uring_add_tctx_node+0x2c6/0x520 [ 1639.004170] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1639.004987] FAULT_INJECTION: forcing a failure. [ 1639.004987] name failslab, interval 1, probability 0, space 0, times 0 [ 1639.005282] ? alloc_fd+0x2e7/0x670 [ 1639.005317] io_uring_setup+0x1fbb/0x2980 [ 1639.008240] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1639.009314] ? wait_for_completion_io+0x270/0x270 [ 1639.010356] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1639.011500] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1639.012600] do_syscall_64+0x33/0x40 [ 1639.013384] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1639.014465] RIP: 0033:0x7fddef796b19 [ 1639.015282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1639.019213] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1639.020823] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1639.022323] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1639.023854] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1639.025370] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1639.026921] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1639.028464] CPU: 0 PID: 10173 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1639.029262] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1639.030205] Call Trace: [ 1639.030513] dump_stack+0x107/0x167 [ 1639.030937] should_fail.cold+0x5/0xa [ 1639.031376] ? create_object.isra.0+0x3a/0xa20 [ 1639.031896] should_failslab+0x5/0x20 [ 1639.032338] kmem_cache_alloc+0x5b/0x310 [ 1639.032802] create_object.isra.0+0x3a/0xa20 [ 1639.033312] kmemleak_alloc_percpu+0xa0/0x100 [ 1639.033828] pcpu_alloc+0x4e2/0x1240 [ 1639.034265] __percpu_counter_init+0x10d/0x2d0 [ 1639.034797] io_uring_alloc_task_context+0xcc/0x6a0 [ 1639.035368] ? io_import_iovec+0x1120/0x1120 [ 1639.035872] ? lock_downgrade+0x6d0/0x6d0 [ 1639.036341] ? do_raw_spin_lock+0x121/0x260 [ 1639.036833] ? rwlock_bug.part.0+0x90/0x90 [ 1639.037319] __io_uring_add_tctx_node+0x2c6/0x520 [ 1639.037868] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1639.038466] ? alloc_fd+0x2e7/0x670 [ 1639.038896] io_uring_setup+0x1fbb/0x2980 [ 1639.039378] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1639.039953] ? wait_for_completion_io+0x270/0x270 [ 1639.040521] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1639.041118] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1639.041707] do_syscall_64+0x33/0x40 [ 1639.042132] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1639.042724] RIP: 0033:0x7f5e2aecab19 [ 1639.043149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1639.045246] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1639.046113] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1639.046940] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1639.047766] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1639.048582] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1639.049395] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1639.053373] FAULT_INJECTION: forcing a failure. [ 1639.053373] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1639.056169] CPU: 1 PID: 10174 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1639.057649] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1639.059740] Call Trace: [ 1639.060467] dump_stack+0x107/0x167 [ 1639.061345] should_fail.cold+0x5/0xa [ 1639.062284] _copy_from_user+0x2e/0x1b0 [ 1639.063374] __copy_msghdr_from_user+0x91/0x4b0 [ 1639.064456] ? __ia32_sys_shutdown+0x80/0x80 [ 1639.065685] ? __lock_acquire+0x1657/0x5b00 [ 1639.066711] ___sys_recvmsg+0xd5/0x200 [ 1639.067648] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1639.068912] ? __lockdep_reset_lock+0x180/0x180 [ 1639.070011] ? __fget_files+0x2cf/0x520 [ 1639.071138] ? lock_acquire+0x197/0x470 [ 1639.072090] ? find_held_lock+0x2c/0x110 [ 1639.073141] ? __might_fault+0xd3/0x180 [ 1639.074104] ? lock_downgrade+0x6d0/0x6d0 [ 1639.075018] do_recvmmsg+0x24c/0x6d0 [ 1639.075809] ? ___sys_recvmsg+0x200/0x200 [ 1639.076672] ? lock_downgrade+0x6d0/0x6d0 [ 1639.077551] ? ksys_write+0x12d/0x260 [ 1639.078361] ? wait_for_completion_io+0x270/0x270 [ 1639.079389] ? rcu_read_lock_any_held+0x75/0xa0 [ 1639.080344] ? vfs_write+0x354/0xb10 [ 1639.081129] __x64_sys_recvmmsg+0x20f/0x260 [ 1639.082031] ? ksys_write+0x1a9/0x260 [ 1639.082837] ? __do_sys_socketcall+0x600/0x600 [ 1639.083777] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1639.084872] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1639.085970] do_syscall_64+0x33/0x40 [ 1639.086761] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1639.087846] RIP: 0033:0x7f2d4b68ab19 [ 1639.088616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1639.092406] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1639.094005] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1639.095543] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1639.097053] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1639.098565] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1639.100103] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1639.106506] loop7: detected capacity change from 0 to 2048 [ 1639.134623] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1639.171967] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1639.174061] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1639.175600] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1639.177132] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1639.179192] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 17 prio class 0 [ 1639.182774] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1639.184089] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1639.186756] Buffer I/O error on dev sr0, logical block 0, async page read [ 1639.188962] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1639.190412] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1639.193091] Buffer I/O error on dev sr0, logical block 1, async page read [ 1639.195511] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1639.196886] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1639.199408] Buffer I/O error on dev sr0, logical block 2, async page read [ 1639.201493] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1639.202668] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1639.202995] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1639.204831] Buffer I/O error on dev sr0, logical block 3, async page read [ 1639.206656] CPU: 0 PID: 10186 Comm: syz-executor.3 Not tainted 5.10.236 #1 [ 1639.207453] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1639.208412] Call Trace: [ 1639.208718] dump_stack+0x107/0x167 [ 1639.209142] sysfs_warn_dup.cold+0x1c/0x29 [ 1639.209625] sysfs_do_create_link_sd+0x122/0x140 [ 1639.210167] sysfs_create_link+0x5f/0xc0 [ 1639.210638] device_add+0x703/0x1c50 [ 1639.211070] ? devlink_add_symlinks+0x970/0x970 [ 1639.211603] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1639.212208] wiphy_register+0x1da6/0x2850 [ 1639.212699] ? wiphy_unregister+0xb90/0xb90 [ 1639.213207] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1639.213820] ieee80211_register_hw+0x23c5/0x38b0 [ 1639.214380] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1639.214933] ? net_generic+0xdb/0x2b0 [ 1639.215377] ? lockdep_init_map_type+0x2c7/0x780 [ 1639.215919] ? memset+0x20/0x50 [ 1639.216304] ? __hrtimer_init+0x12c/0x270 [ 1639.216780] mac80211_hwsim_new_radio+0x1d04/0x4290 [ 1639.217370] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1639.217897] ? hwsim_new_radio_nl+0x967/0x1080 [ 1639.218418] ? memcpy+0x39/0x60 [ 1639.218813] hwsim_new_radio_nl+0x991/0x1080 [ 1639.219319] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1639.219916] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1639.220667] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1639.221432] genl_family_rcv_msg_doit+0x22d/0x330 [ 1639.221991] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1639.222879] ? cap_capable+0x1cd/0x230 [ 1639.223341] ? ns_capable+0xe2/0x110 [ 1639.223772] genl_rcv_msg+0x36a/0x5a0 [ 1639.224214] ? genl_get_cmd+0x480/0x480 [ 1639.224677] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1639.225278] ? lock_release+0x680/0x680 [ 1639.225735] ? __lockdep_reset_lock+0x180/0x180 [ 1639.226281] netlink_rcv_skb+0x14b/0x430 [ 1639.226755] ? genl_get_cmd+0x480/0x480 [ 1639.227217] ? netlink_ack+0xab0/0xab0 [ 1639.227672] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1639.228201] ? is_vmalloc_addr+0x7b/0xb0 [ 1639.228671] genl_rcv+0x24/0x40 [ 1639.229044] netlink_unicast+0x54e/0x800 [ 1639.229515] ? netlink_attachskb+0x870/0x870 [ 1639.230022] netlink_sendmsg+0x90f/0xe00 [ 1639.230493] ? netlink_unicast+0x800/0x800 [ 1639.230990] ? netlink_unicast+0x800/0x800 [ 1639.231484] __sock_sendmsg+0x154/0x190 [ 1639.231942] ____sys_sendmsg+0x70d/0x870 [ 1639.232412] ? sock_write_iter+0x3d0/0x3d0 [ 1639.232889] ? do_recvmmsg+0x6d0/0x6d0 [ 1639.233342] ? SOFTIRQ_verbose+0x10/0x10 [ 1639.233814] ? __lockdep_reset_lock+0x180/0x180 [ 1639.234353] ___sys_sendmsg+0xf3/0x170 [ 1639.234807] ? sendmsg_copy_msghdr+0x160/0x160 [ 1639.235341] ? __fget_files+0x2cf/0x520 [ 1639.235797] ? lock_downgrade+0x6d0/0x6d0 [ 1639.236277] ? finish_task_switch+0x126/0x5d0 [ 1639.236795] ? lock_downgrade+0x6d0/0x6d0 [ 1639.237278] ? __fget_files+0x2f8/0x520 [ 1639.237743] ? __fget_light+0xea/0x290 [ 1639.238195] __sys_sendmsg+0xe5/0x1b0 [ 1639.238637] ? __sys_sendmsg_sock+0x40/0x40 [ 1639.239139] ? io_schedule_timeout+0x140/0x140 [ 1639.239672] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1639.240273] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1639.240869] ? trace_hardirqs_on+0x5b/0x180 [ 1639.241367] do_syscall_64+0x33/0x40 [ 1639.241798] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1639.242388] RIP: 0033:0x7f5b9fcb8b19 [ 1639.242821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1639.244926] RSP: 002b:00007f5b9d20d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1639.245800] RAX: ffffffffffffffda RBX: 00007f5b9fdcc020 RCX: 00007f5b9fcb8b19 [ 1639.246616] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1639.247440] RBP: 00007f5b9fd12f6d R08: 0000000000000000 R09: 0000000000000000 [ 1639.248257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1639.249078] R13: 00007ffe8bed6cbf R14: 00007f5b9d20d300 R15: 0000000000022000 [ 1639.250478] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1639.251714] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1639.253820] Buffer I/O error on dev sr0, logical block 4, async page read [ 1639.255709] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1639.256910] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1639.259075] Buffer I/O error on dev sr0, logical block 5, async page read [ 1639.262548] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1639.263993] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1639.266549] Buffer I/O error on dev sr0, logical block 6, async page read [ 1639.274767] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1639.275973] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1639.278502] Buffer I/O error on dev sr0, logical block 7, async page read [ 1639.426358] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1639.428214] CPU: 0 PID: 10187 Comm: syz-executor.3 Not tainted 5.10.236 #1 [ 1639.429010] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1639.429957] Call Trace: [ 1639.430271] dump_stack+0x107/0x167 [ 1639.430700] sysfs_warn_dup.cold+0x1c/0x29 [ 1639.431195] sysfs_do_create_link_sd+0x122/0x140 [ 1639.431744] sysfs_create_link+0x5f/0xc0 [ 1639.432214] device_add+0x703/0x1c50 [ 1639.432649] ? devlink_add_symlinks+0x970/0x970 [ 1639.433192] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1639.433803] wiphy_register+0x1da6/0x2850 [ 1639.434293] ? wiphy_unregister+0xb90/0xb90 [ 1639.434807] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1639.435422] ieee80211_register_hw+0x23c5/0x38b0 [ 1639.435977] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1639.436533] ? net_generic+0xdb/0x2b0 [ 1639.436976] ? lockdep_init_map_type+0x2c7/0x780 [ 1639.437521] ? memset+0x20/0x50 [ 1639.437900] ? __hrtimer_init+0x12c/0x270 [ 1639.438379] mac80211_hwsim_new_radio+0x1d04/0x4290 [ 1639.439131] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1639.439667] ? hwsim_new_radio_nl+0x967/0x1080 [ 1639.440189] ? memcpy+0x39/0x60 [ 1639.440575] hwsim_new_radio_nl+0x991/0x1080 [ 1639.441080] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1639.441686] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1639.442435] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1639.443200] genl_family_rcv_msg_doit+0x22d/0x330 [ 1639.443757] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1639.444511] ? cap_capable+0x1cd/0x230 [ 1639.444966] ? ns_capable+0xe2/0x110 [ 1639.445397] genl_rcv_msg+0x36a/0x5a0 [ 1639.445840] ? genl_get_cmd+0x480/0x480 [ 1639.446298] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1639.446895] ? lock_release+0x680/0x680 [ 1639.447354] ? __lockdep_reset_lock+0x180/0x180 [ 1639.447886] netlink_rcv_skb+0x14b/0x430 [ 1639.448353] ? genl_get_cmd+0x480/0x480 [ 1639.448811] ? netlink_ack+0xab0/0xab0 [ 1639.449265] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1639.449791] ? is_vmalloc_addr+0x7b/0xb0 [ 1639.450261] genl_rcv+0x24/0x40 [ 1639.450642] netlink_unicast+0x54e/0x800 [ 1639.451113] ? netlink_attachskb+0x870/0x870 [ 1639.451625] netlink_sendmsg+0x90f/0xe00 [ 1639.452094] ? netlink_unicast+0x800/0x800 [ 1639.452586] ? netlink_unicast+0x800/0x800 [ 1639.453068] __sock_sendmsg+0x154/0x190 [ 1639.453523] ____sys_sendmsg+0x70d/0x870 [ 1639.453989] ? sock_write_iter+0x3d0/0x3d0 [ 1639.454472] ? do_recvmmsg+0x6d0/0x6d0 [ 1639.454924] ? SOFTIRQ_verbose+0x10/0x10 [ 1639.455390] ? __lockdep_reset_lock+0x180/0x180 [ 1639.455924] ___sys_sendmsg+0xf3/0x170 [ 1639.456371] ? sendmsg_copy_msghdr+0x160/0x160 [ 1639.456896] ? __fget_files+0x2cf/0x520 [ 1639.457354] ? lock_downgrade+0x6d0/0x6d0 [ 1639.457830] ? futex_exit_release+0x220/0x220 [ 1639.458350] ? __fget_files+0x2f8/0x520 [ 1639.458818] ? __fget_light+0xea/0x290 [ 1639.459270] __sys_sendmsg+0xe5/0x1b0 [ 1639.459708] ? __sys_sendmsg_sock+0x40/0x40 [ 1639.460200] ? __do_sys_futex+0x2bb/0x480 [ 1639.460685] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1639.461288] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1639.461880] ? trace_hardirqs_on+0x5b/0x180 [ 1639.462372] do_syscall_64+0x33/0x40 [ 1639.462804] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1639.463390] RIP: 0033:0x7f5b9fcb8b19 [ 1639.463822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1639.465932] RSP: 002b:00007f5b9d1ec188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1639.466811] RAX: ffffffffffffffda RBX: 00007f5b9fdcc0e0 RCX: 00007f5b9fcb8b19 [ 1639.467622] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1639.468432] RBP: 00007f5b9fd12f6d R08: 0000000000000000 R09: 0000000000000000 [ 1639.469244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1639.470061] R13: 00007ffe8bed6cbf R14: 00007f5b9d1ec300 R15: 0000000000022000 [ 1639.482600] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1639.484676] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1639.486129] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1639.487574] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1639.489188] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 26 prio class 0 12:45:12 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 30) 12:45:12 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x1, &(0x7f0000000380)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:45:12 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 32) 12:45:12 executing program 2: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, 0x0, 0x24040101) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040), 0xc, 0x0}, 0x40000) r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) setxattr$security_capability(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000200), 0x0, 0x0, 0x0) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000000), &(0x7f0000000080)='./file0/../file0\x00', 0x11, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r2}}, 0x6) fremovexattr(0xffffffffffffffff, &(0x7f0000000240)=@known='trusted.overlay.upper\x00') syz_io_uring_submit(0x0, 0x0, &(0x7f0000000380)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd_index=0x2, 0x0, 0x0, 0x8, 0x8, 0x1, {0x0, r2}}, 0x6) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x3, 0x6000, @fd=r1, 0xfffffffffffffffa, &(0x7f0000000100)=[{&(0x7f0000000180)=""/74, 0x4a}], 0x1, 0x12, 0x0, {0x0, r2}}, 0x1) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r2}}, 0x2) connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x26}}, 0x10) writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f0000000340)="ab26d3ed171a05e98380186629b3d2", 0xf}, {&(0x7f0000000280)="bf22f42bb2fc755bde3af882e30e907b866f6feeb2c383113430c446fc7fe871a85e09725b52c154cec1172371bca4876c73f2d1f6eda7950fc7b90000", 0x3d}, {&(0x7f00000005c0)="00000000000000048ec298281775d23b8b8d2b3002f0d3999127f18a1a12eaff6adbd0d17f9768a52e7dff966c9e7844b5101cf2385f1ff5a78851f368a37e0988f941bc033d96226386102d2b659a1c77a1ca0306dad99d988757a685d7b07b27bd41347934c9c3e2d2a8fce90425d680777f703b584c29812dc453348b45e40bda3f6a04287bb9f4a1f007d76c4aaba15d5b20c1485e56628c4f48387ade78b934180342e38a7c05b332cd8521567c043d448ed6a3f29774a1cc7fe0a5bd6b388ab3c40f380b5c144b29b6bc6f50dd6c6650d368bcff1f196de6fdc5e1a57340955044455b55a24e28d0ce0fc8", 0xee}, {&(0x7f0000000500)="ceab27f7208a1f1cf9d31b22c3e7e7e2ecf065fa95fcc27334ed6e726f71d9cce889bf03dfb7043fc44b23e17592cfaa56a45ca3468d5e81e93f935e2702ed2e37522527e9de2ca8c470d86b632cc339c9ac9bd6aeb58e71e5737bb484700b876cacb1b2ad853b6d3e563503bcb0145cc31a13e28626c0b6fe7f2e8fef15f4d76781a502d586816a16c3e7dc33f10322b33ccf7289914641de3d538b231c3e3504433720226b5445555e93", 0xab}], 0x4) setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000000c0)={{{@in6=@remote, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x1, 0x0, 0x6}}, 0xe8) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0xffe3) 12:45:12 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x2) 12:45:12 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f0000", 0x46, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:45:12 executing program 3: mount$9p_unix(&(0x7f0000001180)='./file0\x00', &(0x7f0000001240)='./file0\x00', &(0x7f0000001280), 0x20, &(0x7f0000001640)={'trans=unix,', {[{@posixacl}, {@afid={'afid', 0x3d, 0xfffffffffffff801}}, {@fscache}], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@smackfsdef={'smackfsdef', 0x3d, '\x00'}}, {@appraise_type}, {@pcr={'pcr', 0x3d, 0x19}}, {@euid_lt}, {@seclabel}]}}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001540)={{{@in=@multicast2, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001200)=0xe8) mount$9p_unix(&(0x7f0000001180)='./file0\x00', &(0x7f0000001240)='./file0\x00', &(0x7f0000001280), 0x20, &(0x7f0000001640)={'trans=unix,', {[{@posixacl}, {@afid={'afid', 0x3d, 0xfffffffffffff801}}, {@fscache}], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@smackfsdef={'smackfsdef', 0x3d, '\x00'}}, {@appraise_type}, {@pcr={'pcr', 0x3d, 0x19}}, {@euid_lt={'euid<', r0}}, {@seclabel}]}}) setxattr$system_posix_acl(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000240)='system.posix_acl_access\x00', &(0x7f0000000400)={{}, {0x1, 0x2}, [{0x2, 0x6}, {0x2, 0x2, 0xffffffffffffffff}, {0x2, 0x4}, {0x2, 0x0, 0xee00}, {0x2, 0x1, r0}], {}, [{0x8, 0x4, 0xee00}], {0x10, 0x4}, {0x20, 0xb}}, 0x54, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_bp={&(0x7f00000008c0), 0x8}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) sendmsg$inet(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0xfffffffffffffde1}, 0x404c008) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) write(r2, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61) syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00') syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000440)=ANY=[]) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) unshare(0x48020200) perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x9, 0x3f, 0xfc, 0xf8, 0x0, 0x5, 0x80000, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x4, @perf_config_ext={0x40, 0xfffffffffffffffc}, 0x0, 0x3ff, 0xffff, 0x86cc1f77e07f285a, 0xff, 0x401, 0x1, 0x0, 0x6, 0x0, 0x9}, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x1) 12:45:12 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 30) [ 1652.975891] loop7: detected capacity change from 0 to 2048 [ 1652.987484] FAULT_INJECTION: forcing a failure. [ 1652.987484] name failslab, interval 1, probability 0, space 0, times 0 [ 1652.990284] CPU: 1 PID: 10208 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1652.991871] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1652.993746] Call Trace: [ 1652.994359] dump_stack+0x107/0x167 [ 1652.995201] should_fail.cold+0x5/0xa [ 1652.996077] ? create_object.isra.0+0x3a/0xa20 [ 1652.997121] should_failslab+0x5/0x20 [ 1652.997987] kmem_cache_alloc+0x5b/0x310 [ 1652.998946] create_object.isra.0+0x3a/0xa20 [ 1652.999960] kmemleak_alloc_percpu+0xa0/0x100 [ 1653.000991] pcpu_alloc+0x4e2/0x1240 [ 1653.001857] __percpu_counter_init+0x10d/0x2d0 [ 1653.002907] io_uring_alloc_task_context+0xcc/0x6a0 [ 1653.004055] ? io_import_iovec+0x1120/0x1120 [ 1653.005063] ? lock_downgrade+0x6d0/0x6d0 [ 1653.006008] ? do_raw_spin_lock+0x121/0x260 [ 1653.006999] ? rwlock_bug.part.0+0x90/0x90 [ 1653.007977] __io_uring_add_tctx_node+0x2c6/0x520 [ 1653.009078] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.010277] ? alloc_fd+0x2e7/0x670 [ 1653.011140] io_uring_setup+0x1fbb/0x2980 [ 1653.012102] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.013254] ? wait_for_completion_io+0x270/0x270 [ 1653.014384] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.015670] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.017059] do_syscall_64+0x33/0x40 [ 1653.018102] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.019545] RIP: 0033:0x7f5e2aecab19 [ 1653.020390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.024577] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.026318] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1653.027963] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1653.029590] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1653.031212] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1653.032835] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1653.038275] FAULT_INJECTION: forcing a failure. [ 1653.038275] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1653.040942] CPU: 1 PID: 10214 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1653.042511] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.044546] Call Trace: [ 1653.045248] dump_stack+0x107/0x167 [ 1653.046081] should_fail.cold+0x5/0xa [ 1653.046960] _copy_from_user+0x2e/0x1b0 [ 1653.047865] __copy_msghdr_from_user+0x91/0x4b0 [ 1653.048989] ? __ia32_sys_shutdown+0x80/0x80 [ 1653.050165] ? __lock_acquire+0x1657/0x5b00 [ 1653.051181] ___sys_recvmsg+0xd5/0x200 [ 1653.052061] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1653.053166] ? __lockdep_reset_lock+0x180/0x180 [ 1653.054228] ? __fget_files+0x2cf/0x520 [ 1653.055330] ? lock_acquire+0x197/0x470 [ 1653.056357] ? find_held_lock+0x2c/0x110 [ 1653.057416] ? __might_fault+0xd3/0x180 [ 1653.058432] ? lock_downgrade+0x6d0/0x6d0 [ 1653.059522] do_recvmmsg+0x24c/0x6d0 [ 1653.060332] ? ___sys_recvmsg+0x200/0x200 [ 1653.061215] ? lock_downgrade+0x6d0/0x6d0 [ 1653.062103] ? ksys_write+0x12d/0x260 [ 1653.062938] ? wait_for_completion_io+0x270/0x270 [ 1653.063972] ? rcu_read_lock_any_held+0x75/0xa0 [ 1653.064967] ? vfs_write+0x354/0xb10 [ 1653.065773] __x64_sys_recvmmsg+0x20f/0x260 [ 1653.066693] ? ksys_write+0x1a9/0x260 [ 1653.067515] ? __do_sys_socketcall+0x600/0x600 [ 1653.068498] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.069632] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.070735] do_syscall_64+0x33/0x40 [ 1653.071542] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.072642] RIP: 0033:0x7f2d4b68ab19 [ 1653.073444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.077402] RSP: 002b:00007f2d48bdf188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1653.079042] RAX: ffffffffffffffda RBX: 00007f2d4b79e020 RCX: 00007f2d4b68ab19 [ 1653.080564] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1653.082073] RBP: 00007f2d48bdf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1653.083594] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1653.085116] R13: 00007fff957937ff R14: 00007f2d48bdf300 R15: 0000000000022000 [ 1653.087513] EXT4-fs (loop7): Unrecognized mount option "hash" or missing value [ 1653.094636] FAULT_INJECTION: forcing a failure. [ 1653.094636] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.097383] CPU: 1 PID: 10215 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1653.098874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.100657] Call Trace: [ 1653.101222] dump_stack+0x107/0x167 [ 1653.102000] should_fail.cold+0x5/0xa [ 1653.102812] ? create_object.isra.0+0x3a/0xa20 [ 1653.103795] should_failslab+0x5/0x20 [ 1653.104603] kmem_cache_alloc+0x5b/0x310 [ 1653.105475] create_object.isra.0+0x3a/0xa20 [ 1653.106416] kmemleak_alloc_percpu+0xa0/0x100 [ 1653.107382] pcpu_alloc+0x4e2/0x1240 [ 1653.108195] __percpu_counter_init+0x10d/0x2d0 [ 1653.109174] io_uring_alloc_task_context+0xcc/0x6a0 [ 1653.110234] ? io_import_iovec+0x1120/0x1120 [ 1653.111178] ? lock_downgrade+0x6d0/0x6d0 [ 1653.112057] ? do_raw_spin_lock+0x121/0x260 [ 1653.112981] ? rwlock_bug.part.0+0x90/0x90 [ 1653.113888] __io_uring_add_tctx_node+0x2c6/0x520 [ 1653.114928] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.116038] ? alloc_fd+0x2e7/0x670 [ 1653.116827] io_uring_setup+0x1fbb/0x2980 [ 1653.117719] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.118797] ? wait_for_completion_io+0x270/0x270 [ 1653.119860] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.120976] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.122078] do_syscall_64+0x33/0x40 [ 1653.122879] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.123972] RIP: 0033:0x7fddef796b19 [ 1653.124759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.128683] RSP: 002b:00007fddecceb108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.130300] RAX: ffffffffffffffda RBX: 00007fddef8aa020 RCX: 00007fddef796b19 [ 1653.131822] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1653.133335] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1653.134865] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1653.136386] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:45:12 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f465", 0x2f, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:45:12 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x4, 0x7) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'nr0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 12:45:12 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 31) 12:45:12 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x1, &(0x7f0000000380)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:45:12 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x41908, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)=ANY=[]) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000800)=ANY=[]) r1 = socket$netlink(0x10, 0x3, 0x0) fallocate(r0, 0x30, 0xffffffffffffff75, 0x10001) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000940)=ANY=[@ANYBLOB="95b50000018fd33a76f1d2328800000018000000", @ANYRES32=r0, @ANYBLOB="04a500006ccf5e00a30878ffff75db00808ebf8b85b5363cdf1595a0bee6cc6ec57b594af05d2bcaace304ab11b2f0de03bff4371a9012ef1c32b4b5c6366f172a140b3c90f6de5877ef5a6a3a26844c4bc8c82413041c010b22156a4c9a107723a5f2df0884ac7b2d8cf48af5dc01fc3d1d08a58cc865e3f2f712e1a4eabdc0986bd04ce4c790d9de030b3ca0239c52c979afa3e6e8c80f01000eba254f7d13aa0b68306d66d92477fe946e898db0c1"]) r3 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x200000, 0x0) openat(r3, &(0x7f0000000400)='./file1\x00', 0x0, 0x114) faccessat(r1, &(0x7f0000000000)='./file1\x00', 0xb0) read(r2, &(0x7f00000006c0)=""/135, 0x87) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) preadv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) r4 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x4, 0x0, 0x8, 0x3f, 0x0, 0x2, 0x14140, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x2, @perf_config_ext={0xf8af, 0xffffffff00000000}, 0x4, 0x100000000, 0x6, 0x7, 0x5402, 0x8, 0x7ff, 0x0, 0x6}, 0x0, 0x5, r4, 0x3) 12:45:12 executing program 3: mknod$loop(&(0x7f0000000080)='./file0\x00', 0x2000, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x149442, 0x0) shutdown(r0, 0x0) [ 1653.383712] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1653.386274] loop7: detected capacity change from 0 to 2048 12:45:12 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 33) 12:45:12 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 31) [ 1653.397002] FAULT_INJECTION: forcing a failure. [ 1653.397002] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.398578] CPU: 0 PID: 10225 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1653.399377] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.400335] Call Trace: [ 1653.400643] dump_stack+0x107/0x167 [ 1653.401060] should_fail.cold+0x5/0xa [ 1653.401497] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 1653.402097] should_failslab+0x5/0x20 [ 1653.402531] kmem_cache_alloc_trace+0x55/0x320 [ 1653.403067] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1653.403648] ? io_import_iovec+0x1120/0x1120 [ 1653.404158] ? lock_downgrade+0x6d0/0x6d0 [ 1653.404631] ? do_raw_spin_lock+0x121/0x260 [ 1653.405125] ? rwlock_bug.part.0+0x90/0x90 [ 1653.405619] __io_uring_add_tctx_node+0x2c6/0x520 [ 1653.406174] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.406772] ? alloc_fd+0x2e7/0x670 [ 1653.407199] io_uring_setup+0x1fbb/0x2980 [ 1653.407678] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.408254] ? wait_for_completion_io+0x270/0x270 [ 1653.408827] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.409429] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.410019] do_syscall_64+0x33/0x40 [ 1653.410443] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.411036] RIP: 0033:0x7f5e2aecab19 [ 1653.411465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.413563] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.414431] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1653.415247] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1653.416057] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1653.416869] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1653.417678] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1653.431529] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1653.469167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1653.470014] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1653.471022] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1653.531002] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 12:45:12 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x1, 0x201) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 12:45:12 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 32) 12:45:12 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f465", 0x2f, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:45:12 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet(0x2, 0x0, 0x300) r1 = socket$inet(0x2, 0x3, 0x6) connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10) ioctl$sock_inet_SIOCGARP(r1, 0x8954, &(0x7f0000000000)={{0x2, 0x4e21, @multicast2}, {0x1, @broadcast}, 0x30, {0x2, 0x4e21, @remote}, 'veth0_virt_wifi\x00'}) sendmmsg$inet(r1, &(0x7f0000000000), 0x400000d, 0x200000000000000) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000080)='\\@&z)\x00') [ 1653.585876] FAULT_INJECTION: forcing a failure. [ 1653.585876] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.587260] CPU: 0 PID: 10242 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1653.588051] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.589006] Call Trace: [ 1653.589320] dump_stack+0x107/0x167 [ 1653.589739] should_fail.cold+0x5/0xa [ 1653.590178] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 1653.590779] should_failslab+0x5/0x20 [ 1653.591221] kmem_cache_alloc_trace+0x55/0x320 [ 1653.591747] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1653.592342] ? io_import_iovec+0x1120/0x1120 [ 1653.592846] ? lock_downgrade+0x6d0/0x6d0 [ 1653.593324] ? do_raw_spin_lock+0x121/0x260 [ 1653.593823] ? rwlock_bug.part.0+0x90/0x90 [ 1653.594314] __io_uring_add_tctx_node+0x2c6/0x520 [ 1653.594871] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.595472] ? alloc_fd+0x2e7/0x670 [ 1653.595896] io_uring_setup+0x1fbb/0x2980 [ 1653.596376] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.596955] ? wait_for_completion_io+0x270/0x270 [ 1653.597522] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.598121] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.598716] do_syscall_64+0x33/0x40 [ 1653.599157] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.599744] RIP: 0033:0x7fddef796b19 [ 1653.600167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.602268] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.603141] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1653.603961] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1653.604776] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1653.605596] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1653.606409] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1653.619508] FAULT_INJECTION: forcing a failure. [ 1653.619508] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1653.621072] CPU: 0 PID: 10244 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1653.621978] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.622936] Call Trace: [ 1653.623245] dump_stack+0x107/0x167 [ 1653.623662] should_fail.cold+0x5/0xa [ 1653.624100] _copy_from_user+0x2e/0x1b0 [ 1653.624564] __copy_msghdr_from_user+0x91/0x4b0 [ 1653.625097] ? __ia32_sys_shutdown+0x80/0x80 [ 1653.625599] ? __lock_acquire+0x1657/0x5b00 [ 1653.626101] ___sys_recvmsg+0xd5/0x200 [ 1653.626549] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1653.627117] ? __lockdep_reset_lock+0x180/0x180 [ 1653.627651] ? __fget_files+0x2cf/0x520 [ 1653.628108] ? lock_acquire+0x197/0x470 [ 1653.628567] ? find_held_lock+0x2c/0x110 [ 1653.629036] ? __might_fault+0xd3/0x180 [ 1653.629492] ? lock_downgrade+0x6d0/0x6d0 [ 1653.629982] do_recvmmsg+0x24c/0x6d0 [ 1653.630412] ? ___sys_recvmsg+0x200/0x200 [ 1653.630893] ? lock_downgrade+0x6d0/0x6d0 [ 1653.631376] ? ksys_write+0x12d/0x260 [ 1653.631816] ? wait_for_completion_io+0x270/0x270 [ 1653.632368] ? rcu_read_lock_any_held+0x75/0xa0 [ 1653.632895] ? vfs_write+0x354/0xb10 [ 1653.633329] __x64_sys_recvmmsg+0x20f/0x260 [ 1653.633824] ? ksys_write+0x1a9/0x260 [ 1653.634262] ? __do_sys_socketcall+0x600/0x600 [ 1653.634787] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.635392] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.635981] do_syscall_64+0x33/0x40 [ 1653.636409] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.636993] RIP: 0033:0x7f2d4b68ab19 [ 1653.637418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.639522] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1653.640389] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1653.641201] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1653.642013] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1653.642827] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1653.643649] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1653.669914] audit: type=1326 audit(1744893912.788:95): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10240 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b9fcb8b19 code=0x7ffc0000 [ 1653.672996] audit: type=1326 audit(1744893912.788:96): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10240 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b9fcb8b19 code=0x7ffc0000 [ 1653.680108] audit: type=1326 audit(1744893912.791:97): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10240 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f5b9fcb8b19 code=0x7ffc0000 [ 1653.691863] audit: type=1326 audit(1744893912.791:98): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10240 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b9fcb8b19 code=0x7ffc0000 [ 1653.697718] audit: type=1326 audit(1744893912.791:99): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10240 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b9fcb8b19 code=0x7ffc0000 [ 1653.709419] audit: type=1326 audit(1744893912.795:100): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10240 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5b9fcb8b19 code=0x7ffc0000 [ 1653.717517] audit: type=1326 audit(1744893912.797:101): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10240 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b9fcb8b19 code=0x7ffc0000 [ 1653.721701] audit: type=1326 audit(1744893912.797:102): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10240 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b9fcb8b19 code=0x7ffc0000 [ 1653.737836] audit: type=1326 audit(1744893912.798:103): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10240 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f5b9fcb8b19 code=0x7ffc0000 [ 1653.740926] audit: type=1326 audit(1744893912.798:104): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10240 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b9fcb8b19 code=0x7ffc0000 [ 1653.780488] FAULT_INJECTION: forcing a failure. [ 1653.780488] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.781851] CPU: 0 PID: 10254 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1653.782652] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.783605] Call Trace: [ 1653.783913] dump_stack+0x107/0x167 [ 1653.784333] should_fail.cold+0x5/0xa [ 1653.784770] ? create_object.isra.0+0x3a/0xa20 [ 1653.785297] should_failslab+0x5/0x20 [ 1653.785745] kmem_cache_alloc+0x5b/0x310 [ 1653.786213] create_object.isra.0+0x3a/0xa20 [ 1653.786719] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1653.787308] kmem_cache_alloc_trace+0x151/0x320 [ 1653.787849] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1653.788428] ? io_import_iovec+0x1120/0x1120 [ 1653.788932] ? lock_downgrade+0x6d0/0x6d0 [ 1653.789403] ? do_raw_spin_lock+0x121/0x260 [ 1653.789900] ? rwlock_bug.part.0+0x90/0x90 [ 1653.790391] __io_uring_add_tctx_node+0x2c6/0x520 [ 1653.790982] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.791589] ? alloc_fd+0x2e7/0x670 [ 1653.792014] io_uring_setup+0x1fbb/0x2980 [ 1653.792496] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.793076] ? wait_for_completion_io+0x270/0x270 [ 1653.793643] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.794242] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.794833] do_syscall_64+0x33/0x40 [ 1653.795267] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.795855] RIP: 0033:0x7f5e2aecab19 [ 1653.796287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.798392] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.799323] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1653.800140] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1653.800954] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1653.801769] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1653.802583] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1653.843472] loop7: detected capacity change from 0 to 2048 [ 1653.860780] EXT4-fs (loop7): VFS: Can't find ext4 filesystem 12:45:27 executing program 2: syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0xffffffffffffffb2, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='debugfs\x00', 0x2284029, 0x0) chroot(&(0x7f0000000000)='./file0\x00') 12:45:27 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:45:27 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f465", 0x2f, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:45:27 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x5, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(0x0, 0x0) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), 0xffffffffffffffff) connect$inet6(0xffffffffffffffff, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, '\x00', 0x10}}, 0x1c) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x8000}, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmmsg$inet(r1, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r3], 0x38}}], 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x5}, 0x10040, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYRESHEX, @ANYRESDEC, @ANYBLOB="110d0000000000000000700000000ca85873922b64ba470086d6995a47285b02048ee9bc0bcb14cdeabd4374c71e749f2f17279e53055732bc8c6cfab7637af899c076b0eb2971533775fd01d5d7838f8f722053e563da347d05997b823a305a64206b3706ba28ac0f840db94ca11c8a541ae4ad62259488bff2cc1cc792128b5423c50c55c953817535ffbd4b221bf9d7f8b6efa8de9cc1af988357c31800748e253e059840daa3facab609beeb590e81beefdbc6e8c7327b7797653623bc23d6ecf5708b89"], 0x20}, 0x1, 0x0, 0x0, 0xc801}, 0x40000) socket$nl_generic(0x10, 0x3, 0x10) 12:45:27 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 32) 12:45:27 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 34) 12:45:27 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00', 0x0}) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)={0x7f4, r3, 0x4, 0x70bd25, 0x25dfdbfb, {}, [@ETHTOOL_A_FEATURES_HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}, @ETHTOOL_A_FEATURES_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_FEATURES_WANTED={0x250, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x85, 0x4, "b3ec88b8645543df52701b2c9abc84f8951addc54f1cb6e1c65986c5b771c23f5c3d0696cf9be0b2fc56cec10754b12210edfaf270bbbe134f81b900eabc1f9322a5762066f09a4197ef7a84d496c45404cf6d84ce9cbeabeda1cc8e632ec418a85fa675d81874ead99d16c485818faf8d5555d40e1d3c5459564671e8c8bfd444"}, @ETHTOOL_A_BITSET_MASK={0xfc, 0x5, "fc0526e5cffded4fbf3885233efe3781546e6d301603644e1bd285e5eb99b3aca53294dcbbe564bc751bfeb802bf1c7dfd2b8ca65c7c2c04f5594bd2376d98b473c4795b22a92f7c9290f828ee4c7c406f8dea63bb916f88f1b178c3dad1c124588af77cdd866454a8edbf469d54a98eb4e213de9a81b56e5642d115103dbe4203ef784f843e6d6437211ffa3fae3798f06db3bdbd374451c87b7fe718f1b2356a4bd655fb94e106f97e06979b81c1e7e047c8ebd20608324c6114362562f3318cea39452c018efcbed08f64fcdee7f43a8755eac55af9ba2a69d587eeb4cf1e7da8283a54e919ff9dfcebb05476c04ff90612442b4e1eff"}, @ETHTOOL_A_BITSET_BITS={0xc8, 0x3, 0x0, 0x1, [{0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '\xb9\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '*\x9c],)\x96\n$^\\)^\x00'}]}, {0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xb76}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '^@],/\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3f}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '\'..\xec]!\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '}\\}{:@\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_WANTED={0x308, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}]}]}, @ETHTOOL_A_BITSET_VALUE={0xb9, 0x4, "c0e2ace7dd5fea06062a72ed04f2481d5b98653712dbb1cda6dcc8e8de10dcfbf5fbd7b889a83cd7b9eb6c8f28a9ddc24662023d6ad8c93918c4fc095b13d4533bf7bb62c777534a1549eb79c246156d96e2b6129f0b88bcab4b267894cb34487830a05f63b9837b75ed33b290977f454cf94995ab7d42a7a5d6ff6ba4c8df659139d2a8b9c66c86781cdbf25828d880735a71a42ea4666a47ad71e79b96e6fbae413a794c8cb9ba51f63348eda5b5eaafd98a044b"}, @ETHTOOL_A_BITSET_BITS={0xa0, 0x3, 0x0, 0x1, [{0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1ff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x10000}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '.^!\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x10000000}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x44, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}]}]}, @ETHTOOL_A_BITSET_BITS={0xd4, 0x3, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '@-\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x769}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x570b47df}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xff}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x10000}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}]}, {0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\':.\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}]}, @ETHTOOL_A_BITSET_VALUE={0x11, 0x4, "59db728f166adb1e6d69e8c8c4"}, @ETHTOOL_A_BITSET_VALUE={0x3e, 0x4, "9ad57518cc9e235dabfaf26a8288a4ef0c2779db1ff6fae44b4cb203205d0380934026ce8d501b219e97ba29210682234b932116fa67daa83874"}, @ETHTOOL_A_BITSET_MASK={0x24, 0x5, "94ece93f76cda167fff7a6dc942861ef4d5aaf4aa09ea25bbb34230c349b1c87"}]}, @ETHTOOL_A_FEATURES_WANTED={0x100, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0xe8, 0x3, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7e9c7bc1}]}, {0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '\xe8@'}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x727b}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x10000}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}]}, {0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x47}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'erspan0\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_MASK={0x11, 0x5, "f33c46f3b4ee69a9c1c40ceb64"}]}, @ETHTOOL_A_FEATURES_HEADER={0x78, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}]}, @ETHTOOL_A_FEATURES_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x7f4}}, 0x2000d000) close_range(r0, 0xffffffffffffffff, 0x0) 12:45:27 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 33) [ 1668.394775] FAULT_INJECTION: forcing a failure. [ 1668.394775] name failslab, interval 1, probability 0, space 0, times 0 [ 1668.397787] CPU: 1 PID: 10269 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1668.399182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1668.400858] Call Trace: [ 1668.401381] dump_stack+0x107/0x167 [ 1668.402133] should_fail.cold+0x5/0xa [ 1668.402885] ? create_object.isra.0+0x3a/0xa20 [ 1668.403807] should_failslab+0x5/0x20 [ 1668.404749] kmem_cache_alloc+0x5b/0x310 [ 1668.405669] create_object.isra.0+0x3a/0xa20 [ 1668.406779] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1668.407813] kmem_cache_alloc_trace+0x151/0x320 [ 1668.408750] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1668.409758] ? io_import_iovec+0x1120/0x1120 [ 1668.410641] ? lock_downgrade+0x6d0/0x6d0 [ 1668.411469] ? do_raw_spin_lock+0x121/0x260 [ 1668.412315] ? rwlock_bug.part.0+0x90/0x90 [ 1668.413358] __io_uring_add_tctx_node+0x2c6/0x520 [ 1668.414461] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1668.415675] ? alloc_fd+0x2e7/0x670 [ 1668.416402] io_uring_setup+0x1fbb/0x2980 [ 1668.417402] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1668.418649] ? wait_for_completion_io+0x270/0x270 [ 1668.419737] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1668.420803] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1668.421848] do_syscall_64+0x33/0x40 [ 1668.422598] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1668.423815] RIP: 0033:0x7fddef796b19 [ 1668.424800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1668.428580] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1668.430104] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1668.431541] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1668.433195] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1668.434964] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1668.436420] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1668.441525] FAULT_INJECTION: forcing a failure. [ 1668.441525] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1668.444009] CPU: 1 PID: 10271 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1668.445429] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1668.447129] Call Trace: [ 1668.447667] dump_stack+0x107/0x167 [ 1668.448412] should_fail.cold+0x5/0xa [ 1668.449202] _copy_from_user+0x2e/0x1b0 [ 1668.450022] __copy_msghdr_from_user+0x91/0x4b0 [ 1668.450980] ? __ia32_sys_shutdown+0x80/0x80 [ 1668.451893] ? __lock_acquire+0x1657/0x5b00 [ 1668.452790] ___sys_recvmsg+0xd5/0x200 [ 1668.453585] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1668.454591] ? __lockdep_reset_lock+0x180/0x180 [ 1668.455572] ? lock_acquire+0x197/0x470 [ 1668.455740] FAULT_INJECTION: forcing a failure. [ 1668.455740] name failslab, interval 1, probability 0, space 0, times 0 [ 1668.456393] ? find_held_lock+0x2c/0x110 [ 1668.456425] ? __might_fault+0xd3/0x180 [ 1668.460431] ? lock_downgrade+0x6d0/0x6d0 [ 1668.461303] do_recvmmsg+0x24c/0x6d0 [ 1668.462085] ? ___sys_recvmsg+0x200/0x200 [ 1668.462926] ? lock_downgrade+0x6d0/0x6d0 [ 1668.463821] ? ksys_write+0x12d/0x260 [ 1668.464622] ? wait_for_completion_io+0x270/0x270 [ 1668.465624] ? rcu_read_lock_any_held+0x75/0xa0 [ 1668.466578] ? vfs_write+0x354/0xb10 [ 1668.467359] __x64_sys_recvmmsg+0x20f/0x260 [ 1668.468251] ? ksys_write+0x1a9/0x260 [ 1668.469030] ? __do_sys_socketcall+0x600/0x600 [ 1668.469970] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1668.471045] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1668.472100] do_syscall_64+0x33/0x40 [ 1668.472864] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1668.473924] RIP: 0033:0x7f2d4b68ab19 [ 1668.474691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1668.478546] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1668.480143] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1668.481622] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1668.483116] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1668.484596] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1668.486066] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1668.487592] CPU: 0 PID: 10275 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1668.489104] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1668.490898] Call Trace: [ 1668.491485] dump_stack+0x107/0x167 [ 1668.492277] should_fail.cold+0x5/0xa [ 1668.493109] ? io_wq_create+0xeb/0xc00 [ 1668.493959] should_failslab+0x5/0x20 [ 1668.494782] __kmalloc+0x72/0x390 [ 1668.495541] io_wq_create+0xeb/0xc00 [ 1668.496359] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1668.497453] ? io_import_iovec+0x1120/0x1120 [ 1668.498403] ? io_apoll_task_func+0x2d0/0x2d0 [ 1668.499361] ? __io_req_find_next+0x300/0x300 [ 1668.500331] ? do_raw_spin_lock+0x121/0x260 [ 1668.501260] ? rwlock_bug.part.0+0x90/0x90 [ 1668.502159] __io_uring_add_tctx_node+0x2c6/0x520 [ 1668.503199] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1668.504334] ? alloc_fd+0x2e7/0x670 [ 1668.505125] io_uring_setup+0x1fbb/0x2980 [ 1668.506030] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1668.507137] ? wait_for_completion_io+0x270/0x270 [ 1668.508207] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1668.509341] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1668.510452] do_syscall_64+0x33/0x40 [ 1668.511259] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1668.512361] RIP: 0033:0x7f5e2aecab19 [ 1668.513158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1668.517094] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1668.518723] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1668.520276] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1668.521825] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1668.523359] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1668.524880] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1668.532339] loop7: detected capacity change from 0 to 2048 [ 1668.552255] EXT4-fs (loop7): VFS: Can't find ext4 filesystem 12:45:27 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x543, 0x0) close(r0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r1, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x8010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x12051, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0xffffffff, 0x0, 0x9}, 0x0, 0x0, r2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000040)={r2, 0x1000000000, 0x3fe1, 0xdb1}) r3 = epoll_create1(0x0) mount$9p_fd(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000300), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r3}}) 12:45:27 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 33) [ 1668.851140] FAULT_INJECTION: forcing a failure. [ 1668.851140] name failslab, interval 1, probability 0, space 0, times 0 [ 1668.853617] CPU: 1 PID: 10291 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1668.855079] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1668.856820] Call Trace: [ 1668.857391] dump_stack+0x107/0x167 [ 1668.858169] should_fail.cold+0x5/0xa [ 1668.858965] ? io_wq_create+0xeb/0xc00 [ 1668.859789] should_failslab+0x5/0x20 [ 1668.860584] __kmalloc+0x72/0x390 [ 1668.861311] io_wq_create+0xeb/0xc00 [ 1668.862103] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1668.863161] ? io_import_iovec+0x1120/0x1120 [ 1668.864083] ? io_apoll_task_func+0x2d0/0x2d0 [ 1668.865025] ? __io_req_find_next+0x300/0x300 [ 1668.865972] ? do_raw_spin_lock+0x121/0x260 [ 1668.866862] ? rwlock_bug.part.0+0x90/0x90 [ 1668.867786] __io_uring_add_tctx_node+0x2c6/0x520 [ 1668.868808] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1668.869911] ? alloc_fd+0x2e7/0x670 [ 1668.870685] io_uring_setup+0x1fbb/0x2980 [ 1668.871575] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1668.872630] ? wait_for_completion_io+0x270/0x270 [ 1668.873675] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1668.874778] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1668.875864] do_syscall_64+0x33/0x40 [ 1668.876645] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1668.877720] RIP: 0033:0x7fddef796b19 [ 1668.878504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1668.882320] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1668.883912] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1668.885384] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1668.886863] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1668.888323] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1668.889785] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:45:44 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 34) 12:45:44 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 34) 12:45:44 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = openat$cgroup_subtree(r1, &(0x7f0000000000), 0x2, 0x0) ioctl$FITRIM(r3, 0xc0185879, &(0x7f0000000040)={0x5, 0x4, 0xfffffffffffffffa}) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x6000008, 0x2010, r1, 0x8000000) syz_io_uring_setup(0x5479, &(0x7f0000000200)={0x0, 0x3791, 0x2, 0x1, 0x37d, 0x0, r2}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000140), &(0x7f0000000280)=0x0) r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000002c0), 0x48200, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000300)=@IORING_OP_WRITE_FIXED={0x5, 0x1, 0x4004, @fd=r6, 0x3, 0x81, 0x80, 0x9, 0x0, {0x2}}, 0x3) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000800)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_u}, {@access_client}]}}) 12:45:44 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:45:45 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 35) 12:45:45 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef01", 0x3b, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:45:45 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00', 0x0}) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r3, 0x29, 0x16, &(0x7f0000000080), 0x4) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000040)={'syztnl1\x00', &(0x7f0000000000)={'gretap0\x00', r2, 0x80, 0x8, 0xee5, 0xf0, {{0x7, 0x4, 0x2, 0x2c, 0x1c, 0x68, 0x0, 0xbd, 0x2f, 0x0, @multicast1, @broadcast, {[@ra={0x94, 0x4, 0x1}, @end]}}}}}) setsockopt$inet6_mreq(r3, 0x29, 0x14, &(0x7f0000000080)={@dev={0xfe, 0x80, '\x00', 0x14}, r4}, 0x14) close_range(r0, 0xffffffffffffffff, 0x0) 12:45:45 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x100, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000005c0)=ANY=[]) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000280), 0x4, &(0x7f0000000900)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',afid=0x0000000000000100,posixacl,hash,fsmagic=0x0000000000000005,euid=', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f757365723d776c616e31002c001065636d76c4c9b56eb0028756763288db70ca54b955bd6bd8f71a884718b18121310dc8bbd384a3aa9f069ec21fc4af1c8c9255520e6804787f72d7afe0145cc12c4df6ac277bf03d07540e4a42810b98c1fa273cf4790f2b112de87aa9aff0b1383452029b9e5411b514b061683032153afe5964eefff5155aa9868fc9ee2bef05a386d9cf2de5a18436f781c3829ea69b654872c7c224f18d36575fb804417e28cfdf1c134909ae0309bb8bc51f9692fe1ea1aac42acf1c9fdbb784eff17424bcdbf8d5fb36668372edc4e1df1945b92fa9254f8708ca"]) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000680)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=0xffffffffffffffff, @ANYBLOB="02000000000000002e2f66696c653000b48ea56a6b493cb8634727dc7cbbe2dc472ef0d9c090c9991e26be1c3d9fd079f793efc66a713271a2855e89970c24f4262c065543f19143269ee8cc1d3c9c8ac475bc7a3024f713bff13f673937bcaddba5642c92dbdc0d80482b54030ece38e1cf1876d51809826143d8f8776c74fdc425daae2db1d89475e19a8dc9a5933ce331dd68d8eeeb6d4a08efc281862c2579bb81fdb2ff74d6899145972778e23f9e9d8112162745ef852cae5ff53975b308ab5ef28c64c5f7845fa08631689c33b1980a1f73323e439d2a87e3f33e71cc66"]) sendmsg$AUDIT_GET_FEATURE(r2, &(0x7f0000000500)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x5008c00c}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x3fb, 0x10, 0x70bd2b, 0x25dfdbfc, "", ["", "", "", "", "", ""]}, 0x10}}, 0x8804) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = dup(r3) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x15, &(0x7f0000000400), &(0x7f0000000440)=0x10) accept4$bt_l2cap(r4, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000640)=0xe, 0x100000) openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x80202, 0x100) openat(r4, &(0x7f00000002c0)='./file0\x00', 0x92180, 0x1) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000540)={0x8, 'veth0_macvtap\x00', {'dummy0\x00'}, 0xfff9}) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) [ 1685.929792] FAULT_INJECTION: forcing a failure. [ 1685.929792] name failslab, interval 1, probability 0, space 0, times 0 [ 1685.932564] CPU: 1 PID: 10307 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1685.934069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1685.935846] Call Trace: [ 1685.936422] dump_stack+0x107/0x167 [ 1685.937206] should_fail.cold+0x5/0xa [ 1685.938026] ? create_object.isra.0+0x3a/0xa20 [ 1685.939006] should_failslab+0x5/0x20 [ 1685.939822] kmem_cache_alloc+0x5b/0x310 [ 1685.940709] create_object.isra.0+0x3a/0xa20 [ 1685.941657] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1685.942748] __kmalloc+0x16e/0x390 [ 1685.943532] io_wq_create+0xeb/0xc00 [ 1685.944349] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1685.945438] ? io_import_iovec+0x1120/0x1120 [ 1685.946377] ? io_apoll_task_func+0x2d0/0x2d0 [ 1685.947332] ? __io_req_find_next+0x300/0x300 [ 1685.948288] ? do_raw_spin_lock+0x121/0x260 [ 1685.949213] ? rwlock_bug.part.0+0x90/0x90 [ 1685.950123] __io_uring_add_tctx_node+0x2c6/0x520 [ 1685.951156] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1685.952306] ? alloc_fd+0x2e7/0x670 [ 1685.953094] io_uring_setup+0x1fbb/0x2980 [ 1685.953985] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1685.955060] ? wait_for_completion_io+0x270/0x270 [ 1685.956113] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1685.957227] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1685.958319] do_syscall_64+0x33/0x40 [ 1685.959108] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1685.960211] RIP: 0033:0x7f5e2aecab19 [ 1685.960994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1685.964948] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1685.966579] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1685.968087] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1685.969579] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1685.971085] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1685.972594] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1685.996604] loop7: detected capacity change from 0 to 2048 [ 1686.016576] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1686.022520] FAULT_INJECTION: forcing a failure. [ 1686.022520] name failslab, interval 1, probability 0, space 0, times 0 [ 1686.024930] CPU: 1 PID: 10316 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1686.026351] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1686.026503] EXT4-fs (loop7): Unrecognized mount option "hash" or missing value [ 1686.028067] Call Trace: [ 1686.028091] dump_stack+0x107/0x167 [ 1686.028113] should_fail.cold+0x5/0xa [ 1686.028133] ? create_object.isra.0+0x3a/0xa20 [ 1686.028154] should_failslab+0x5/0x20 [ 1686.028180] kmem_cache_alloc+0x5b/0x310 [ 1686.034231] create_object.isra.0+0x3a/0xa20 [ 1686.035136] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1686.036194] __kmalloc+0x16e/0x390 [ 1686.036939] io_wq_create+0xeb/0xc00 [ 1686.037724] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1686.038771] ? io_import_iovec+0x1120/0x1120 [ 1686.039687] ? io_apoll_task_func+0x2d0/0x2d0 [ 1686.040610] ? __io_req_find_next+0x300/0x300 [ 1686.041538] ? do_raw_spin_lock+0x121/0x260 [ 1686.042425] ? rwlock_bug.part.0+0x90/0x90 [ 1686.043314] __io_uring_add_tctx_node+0x2c6/0x520 [ 1686.044305] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1686.045386] ? alloc_fd+0x2e7/0x670 [ 1686.046142] io_uring_setup+0x1fbb/0x2980 [ 1686.046994] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1686.048039] ? wait_for_completion_io+0x270/0x270 [ 1686.049067] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1686.050141] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1686.051195] do_syscall_64+0x33/0x40 [ 1686.051973] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1686.053011] RIP: 0033:0x7fddef796b19 [ 1686.053782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1686.057540] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1686.059087] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1686.060544] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1686.061989] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1686.063440] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1686.064903] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1686.075682] FAULT_INJECTION: forcing a failure. [ 1686.075682] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1686.078166] CPU: 1 PID: 10315 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1686.079574] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1686.081252] Call Trace: [ 1686.081796] dump_stack+0x107/0x167 [ 1686.082531] should_fail.cold+0x5/0xa [ 1686.083308] _copy_from_user+0x2e/0x1b0 [ 1686.084118] __copy_msghdr_from_user+0x91/0x4b0 [ 1686.085065] ? __ia32_sys_shutdown+0x80/0x80 [ 1686.085963] ? __lock_acquire+0x1657/0x5b00 [ 1686.086864] ___sys_recvmsg+0xd5/0x200 [ 1686.087658] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1686.088667] ? __lockdep_reset_lock+0x180/0x180 [ 1686.089632] ? lock_acquire+0x197/0x470 [ 1686.090430] ? find_held_lock+0x2c/0x110 [ 1686.091268] ? __might_fault+0xd3/0x180 [ 1686.092072] ? lock_downgrade+0x6d0/0x6d0 [ 1686.092946] do_recvmmsg+0x24c/0x6d0 [ 1686.093706] ? ___sys_recvmsg+0x200/0x200 [ 1686.094556] ? lock_downgrade+0x6d0/0x6d0 [ 1686.095410] ? ksys_write+0x12d/0x260 [ 1686.096199] ? wait_for_completion_io+0x270/0x270 [ 1686.097184] ? rcu_read_lock_any_held+0x75/0xa0 [ 1686.098111] ? vfs_write+0x354/0xb10 [ 1686.098869] __x64_sys_recvmmsg+0x20f/0x260 [ 1686.099740] ? ksys_write+0x1a9/0x260 [ 1686.100504] ? __do_sys_socketcall+0x600/0x600 [ 1686.101429] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1686.102490] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1686.103543] do_syscall_64+0x33/0x40 [ 1686.104293] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1686.105322] RIP: 0033:0x7f2d4b68ab19 [ 1686.106062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1686.109736] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1686.111267] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1686.112694] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1686.114120] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1686.115549] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1686.116990] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1686.124047] kauditd_printk_skb: 15 callbacks suppressed [ 1686.124068] audit: type=1400 audit(1744893945.242:120): avc: denied { map } for pid=10301 comm="syz-executor.2" path="pipe:[37471]" dev="pipefs" ino=37471 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1 [ 1686.222705] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1686.225083] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1686.227754] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 12:45:45 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 35) 12:45:45 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 36) 12:45:45 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655f", 0x30, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) [ 1686.259586] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1686.306199] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1686.307831] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1686.309697] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1686.374899] FAULT_INJECTION: forcing a failure. [ 1686.374899] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1686.377543] CPU: 0 PID: 10334 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1686.379157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1686.380955] Call Trace: [ 1686.381634] dump_stack+0x107/0x167 [ 1686.382432] should_fail.cold+0x5/0xa [ 1686.383289] _copy_from_user+0x2e/0x1b0 [ 1686.384190] __copy_msghdr_from_user+0x91/0x4b0 [ 1686.385221] ? __ia32_sys_shutdown+0x80/0x80 [ 1686.386179] ? __lock_acquire+0x1657/0x5b00 [ 1686.387135] ___sys_recvmsg+0xd5/0x200 [ 1686.388083] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1686.389188] ? __lockdep_reset_lock+0x180/0x180 [ 1686.390211] ? __fget_files+0x2cf/0x520 [ 1686.391082] ? lock_acquire+0x197/0x470 [ 1686.392046] ? find_held_lock+0x2c/0x110 [ 1686.393094] ? __might_fault+0xd3/0x180 [ 1686.393991] ? lock_downgrade+0x6d0/0x6d0 [ 1686.394909] do_recvmmsg+0x24c/0x6d0 [ 1686.395742] ? ___sys_recvmsg+0x200/0x200 [ 1686.396641] ? lock_downgrade+0x6d0/0x6d0 [ 1686.397545] ? ksys_write+0x12d/0x260 [ 1686.398381] ? wait_for_completion_io+0x270/0x270 [ 1686.399434] ? rcu_read_lock_any_held+0x75/0xa0 [ 1686.400488] ? vfs_write+0x354/0xb10 [ 1686.401327] __x64_sys_recvmmsg+0x20f/0x260 [ 1686.402253] ? ksys_write+0x1a9/0x260 [ 1686.403073] ? __do_sys_socketcall+0x600/0x600 [ 1686.404077] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1686.405417] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1686.406646] do_syscall_64+0x33/0x40 [ 1686.407454] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1686.408574] RIP: 0033:0x7f2d4b68ab19 [ 1686.409388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1686.413816] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1686.415505] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1686.417033] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1686.418561] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1686.420102] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1686.421666] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:45:45 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1686.443023] FAULT_INJECTION: forcing a failure. [ 1686.443023] name failslab, interval 1, probability 0, space 0, times 0 [ 1686.445693] CPU: 0 PID: 10341 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1686.447453] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1686.449570] Call Trace: [ 1686.450133] dump_stack+0x107/0x167 [ 1686.450929] should_fail.cold+0x5/0xa [ 1686.451761] ? io_wq_create+0x6ef/0xc00 [ 1686.452645] should_failslab+0x5/0x20 [ 1686.453475] kmem_cache_alloc_node_trace+0x59/0x340 [ 1686.454575] io_wq_create+0x6ef/0xc00 [ 1686.455414] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1686.456539] ? io_import_iovec+0x1120/0x1120 [ 1686.457634] ? io_apoll_task_func+0x2d0/0x2d0 [ 1686.458589] ? __io_req_find_next+0x300/0x300 [ 1686.459569] ? do_raw_spin_lock+0x121/0x260 [ 1686.460518] ? rwlock_bug.part.0+0x90/0x90 [ 1686.461466] __io_uring_add_tctx_node+0x2c6/0x520 [ 1686.462612] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1686.463892] ? alloc_fd+0x2e7/0x670 [ 1686.464694] io_uring_setup+0x1fbb/0x2980 [ 1686.465686] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1686.466826] ? wait_for_completion_io+0x270/0x270 [ 1686.468020] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1686.469196] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1686.470508] do_syscall_64+0x33/0x40 [ 1686.471312] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1686.472380] RIP: 0033:0x7f5e2aecab19 [ 1686.473150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1686.477010] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1686.478594] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1686.480149] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1686.481703] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1686.483195] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1686.484719] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1686.504360] loop7: detected capacity change from 0 to 2048 12:45:45 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 37) [ 1686.559018] EXT4-fs (loop7): VFS: Can't find ext4 filesystem 12:45:45 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 35) 12:45:45 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r2}}, 0x6) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x3, 0x6000, @fd=r1, 0xfffffffffffffffa, &(0x7f0000000100)=[{&(0x7f0000000180)=""/74, 0x4a}], 0x1, 0x12, 0x0, {0x0, r2}}, 0x1) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r2}}, 0x2) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000)={0x90000000}, r0, 0x1, 0x0, 0x1, {0x0, r2}}, 0x81) r3 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 12:45:45 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 36) 12:45:45 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x8000) r1 = epoll_create(0x8000) r2 = socket$inet_udp(0x2, 0x2, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r2, &(0x7f00000000c0)={0x20000300}) dup3(r0, r2, 0x0) r3 = epoll_create1(0x0) r4 = epoll_create1(0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r5, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000140)) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r6, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x8}) 12:45:45 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655f", 0x30, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:45:45 executing program 2: syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)=0x0) fsmount(0xffffffffffffffff, 0x0, 0xa) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB="cefb9671e786816c2ac7ed730708b2f2eebe569cf9284a493ff386fe1fedad", @ANYRESHEX=r2, @ANYBLOB=',he=none,\x00'/24]) [ 1686.728467] FAULT_INJECTION: forcing a failure. [ 1686.728467] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1686.730091] CPU: 1 PID: 10360 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1686.731027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1686.732151] Call Trace: [ 1686.732512] dump_stack+0x107/0x167 [ 1686.733004] should_fail.cold+0x5/0xa [ 1686.733528] _copy_from_user+0x2e/0x1b0 [ 1686.734067] __copy_msghdr_from_user+0x91/0x4b0 [ 1686.734700] ? __ia32_sys_shutdown+0x80/0x80 [ 1686.735289] ? __lock_acquire+0x1657/0x5b00 [ 1686.735888] ___sys_recvmsg+0xd5/0x200 [ 1686.736406] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1686.737056] ? __lockdep_reset_lock+0x180/0x180 [ 1686.737686] ? __fget_files+0x2cf/0x520 [ 1686.738221] ? lock_acquire+0x197/0x470 [ 1686.738754] ? find_held_lock+0x2c/0x110 [ 1686.739302] ? __might_fault+0xd3/0x180 [ 1686.739824] ? lock_downgrade+0x6d0/0x6d0 [ 1686.740404] do_recvmmsg+0x24c/0x6d0 [ 1686.740902] ? ___sys_recvmsg+0x200/0x200 [ 1686.741454] ? lock_downgrade+0x6d0/0x6d0 [ 1686.742017] ? ksys_write+0x12d/0x260 [ 1686.742532] ? wait_for_completion_io+0x270/0x270 [ 1686.743170] ? rcu_read_lock_any_held+0x75/0xa0 [ 1686.743787] ? vfs_write+0x354/0xb10 [ 1686.744282] __x64_sys_recvmmsg+0x20f/0x260 [ 1686.744871] ? ksys_write+0x1a9/0x260 [ 1686.745391] ? __do_sys_socketcall+0x600/0x600 [ 1686.745992] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1686.746679] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1686.747358] do_syscall_64+0x33/0x40 [ 1686.747846] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1686.748515] RIP: 0033:0x7f2d4b68ab19 [ 1686.749003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1686.751454] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1686.752449] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1686.753383] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1686.754316] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1686.755269] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1686.756201] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1686.766722] FAULT_INJECTION: forcing a failure. [ 1686.766722] name failslab, interval 1, probability 0, space 0, times 0 [ 1686.769410] CPU: 0 PID: 10362 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1686.771224] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1686.773016] Call Trace: [ 1686.773599] dump_stack+0x107/0x167 [ 1686.774548] should_fail.cold+0x5/0xa [ 1686.775429] ? create_object.isra.0+0x3a/0xa20 [ 1686.776424] should_failslab+0x5/0x20 [ 1686.777252] kmem_cache_alloc+0x5b/0x310 [ 1686.778128] ? io_wq_create+0x114/0xc00 [ 1686.778964] create_object.isra.0+0x3a/0xa20 [ 1686.779923] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1686.781224] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1686.782315] io_wq_create+0x6ef/0xc00 [ 1686.783324] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1686.784412] ? io_import_iovec+0x1120/0x1120 [ 1686.785532] ? io_apoll_task_func+0x2d0/0x2d0 [ 1686.786623] ? __io_req_find_next+0x300/0x300 [ 1686.787608] ? do_raw_spin_lock+0x121/0x260 [ 1686.788678] ? rwlock_bug.part.0+0x90/0x90 [ 1686.789598] __io_uring_add_tctx_node+0x2c6/0x520 [ 1686.790631] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1686.791768] ? alloc_fd+0x2e7/0x670 [ 1686.792568] io_uring_setup+0x1fbb/0x2980 [ 1686.793536] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1686.794632] ? wait_for_completion_io+0x270/0x270 [ 1686.795758] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1686.795938] FAULT_INJECTION: forcing a failure. [ 1686.795938] name failslab, interval 1, probability 0, space 0, times 0 [ 1686.796999] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1686.797030] do_syscall_64+0x33/0x40 [ 1686.800315] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1686.801419] RIP: 0033:0x7f5e2aecab19 [ 1686.802209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1686.806091] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1686.807695] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1686.809214] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1686.810892] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1686.812674] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1686.814346] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1686.816201] CPU: 1 PID: 10361 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1686.817133] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1686.818199] Call Trace: [ 1686.818544] dump_stack+0x107/0x167 [ 1686.819024] should_fail.cold+0x5/0xa [ 1686.819523] ? io_wq_create+0x6ef/0xc00 [ 1686.820032] should_failslab+0x5/0x20 [ 1686.820525] kmem_cache_alloc_node_trace+0x59/0x340 [ 1686.821168] io_wq_create+0x6ef/0xc00 [ 1686.821666] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1686.822314] ? io_import_iovec+0x1120/0x1120 [ 1686.822873] ? io_apoll_task_func+0x2d0/0x2d0 [ 1686.823455] ? __io_req_find_next+0x300/0x300 [ 1686.824022] ? do_raw_spin_lock+0x121/0x260 [ 1686.824574] ? rwlock_bug.part.0+0x90/0x90 [ 1686.825111] __io_uring_add_tctx_node+0x2c6/0x520 [ 1686.825730] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1686.826391] ? alloc_fd+0x2e7/0x670 [ 1686.826856] io_uring_setup+0x1fbb/0x2980 [ 1686.827397] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1686.828038] ? wait_for_completion_io+0x270/0x270 [ 1686.828666] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1686.829332] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1686.829983] do_syscall_64+0x33/0x40 [ 1686.830468] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1686.831118] RIP: 0033:0x7fddef796b19 [ 1686.831603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1686.833952] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1686.834921] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1686.835835] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1686.836731] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1686.837628] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1686.838518] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1686.954532] loop7: detected capacity change from 0 to 2048 [ 1686.986120] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1687.002582] 9pnet: Insufficient options for proto=fd [ 1687.028838] 9pnet: Insufficient options for proto=fd 12:46:01 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 36) 12:46:01 executing program 2: ftruncate(0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000140)='./file1\x00', 0x101000, 0x0) statx(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) r2 = inotify_init1(0x0) inotify_add_watch(r2, &(0x7f0000000000)='./file0\x00', 0x43) dup3(0xffffffffffffffff, r2, 0x0) io_cancel(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x427, r2, &(0x7f0000000080)}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r1, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000200), 0x200000, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000b00)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000a40)=[{0x0}, {&(0x7f0000000080)=""/33, 0x21}, {&(0x7f0000000880)=""/218, 0xda}, {&(0x7f0000000980)=""/161, 0xa1}, {0x0}, {0x0}], 0x6}, 0x0, 0x0, 0x0, {0x3}}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$FIONCLEX(0xffffffffffffffff, 0x5450) 12:46:01 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655f", 0x30, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:46:01 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 38) 12:46:01 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 37) 12:46:01 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:46:01 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x13, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000000001000028020000028400001b8000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e39333832373135313800"/192, 0xc0, 0x400}, {&(0x7f0000010100)="0000000000000000000000001f4ebd2e6bb144ba8e000d53fbc5896c010000000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000003500000000000000", 0x40, 0x540}, {&(0x7f0000010300)="02000000030000000400000032000f000300040000000000000000000f002f7c", 0x20, 0x1000}, {&(0x7f0000010400)="ff3f000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/8224, 0x2020, 0x2000}, {&(0x7f0000012500)="ed41000000100000e0f4655fe1f4655fe1f4655f00000000000004000800000000000000050000000600"/64, 0x40, 0x4100}, {&(0x7f0000000040)="20000000dc5271addc5271ad00000000e0f4655f00"/32, 0x20, 0x4180}, {&(0x7f0000012700)="c041000000300000e0f4655fe0f4655fe0f4655f000000000000020018000000000000000000000007000000080000000900"/64, 0x40, 0x4a00}, {&(0x7f0000012800)="20000000000000000000000000000000e0f4655f000000000000000000000000000002ea00"/64, 0x40, 0x4a80}, {&(0x7f0000012900)="ed4100003c000000e1f4655fe1f4655fe1f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000f736dadd00000000000000000000000000000000000000000000000020000000dc5271addc5271addc5271ade1f4655fdc5271ad0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x4b00}, {&(0x7f0000012a00)="ed8100001a040000e1f4655fe1f4655fe1f4655f00000000000001000800000000000000010000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f024aad600000000000000000000000000000000000000000000000020000000dc5271addc5271addc5271ade1f4655fdc5271ad0000000000000000", 0xa0, 0x4c00}, {&(0x7f0000012b00)="ffa1000026000000e1f4655fe1f4655fe1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3933383237313531382f66696c65302f66696c653000000000000000000000000000000000000000000000543a54af00000000000000000000000000000000000000000000000020000000dc5271addc5271addc5271ade1f4655fdc5271ad0000000000000000", 0xa0, 0x4d00}, {&(0x7f0000012c00)="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", 0x1a0, 0x4e00}, {&(0x7f0000012e00)="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", 0x100, 0x5000}, {&(0x7f0000012f00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c653300000011000000940f090166696c652e636f6c64000000", 0x80, 0x6000}, {&(0x7f0000013000)="0b0000000c0001022e000000020000000c0002022e2e000000000000e80f0000", 0x20, 0x7000}, {&(0x7f0000013100)="00000000001000"/32, 0x20, 0x8000}, {&(0x7f0000013200)="00000000001000"/32, 0x20, 0x9000}, {&(0x7f0000000400)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0xa000}], 0x0, &(0x7f0000013800)) 12:46:01 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) pipe(&(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) [ 1702.198053] FAULT_INJECTION: forcing a failure. [ 1702.198053] name failslab, interval 1, probability 0, space 0, times 0 [ 1702.200812] CPU: 1 PID: 10394 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1702.202313] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1702.204119] Call Trace: [ 1702.204704] dump_stack+0x107/0x167 [ 1702.205497] should_fail.cold+0x5/0xa [ 1702.206319] ? create_object.isra.0+0x3a/0xa20 [ 1702.207294] should_failslab+0x5/0x20 [ 1702.208113] kmem_cache_alloc+0x5b/0x310 [ 1702.208982] ? io_wq_create+0x114/0xc00 [ 1702.209836] create_object.isra.0+0x3a/0xa20 [ 1702.210775] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1702.211878] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1702.212986] io_wq_create+0x6ef/0xc00 [ 1702.213813] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1702.214894] ? io_import_iovec+0x1120/0x1120 [ 1702.215847] ? io_apoll_task_func+0x2d0/0x2d0 [ 1702.216827] ? __io_req_find_next+0x300/0x300 [ 1702.217777] ? do_raw_spin_lock+0x121/0x260 [ 1702.218699] ? rwlock_bug.part.0+0x90/0x90 [ 1702.219613] __io_uring_add_tctx_node+0x2c6/0x520 [ 1702.220648] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1702.221781] ? alloc_fd+0x2e7/0x670 [ 1702.222588] io_uring_setup+0x1fbb/0x2980 [ 1702.223489] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1702.224577] ? wait_for_completion_io+0x270/0x270 [ 1702.225657] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1702.226795] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1702.227917] do_syscall_64+0x33/0x40 [ 1702.228717] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1702.229822] RIP: 0033:0x7fddef796b19 [ 1702.230615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1702.234530] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1702.236157] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1702.237692] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1702.239216] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1702.240757] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1702.242278] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1702.244585] loop7: detected capacity change from 0 to 2048 [ 1702.251886] FAULT_INJECTION: forcing a failure. [ 1702.251886] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1702.254612] CPU: 1 PID: 10400 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1702.256081] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1702.257860] Call Trace: [ 1702.258422] dump_stack+0x107/0x167 [ 1702.259193] should_fail.cold+0x5/0xa [ 1702.260021] _copy_from_user+0x2e/0x1b0 [ 1702.260882] __copy_msghdr_from_user+0x91/0x4b0 [ 1702.261886] ? __ia32_sys_shutdown+0x80/0x80 [ 1702.262825] ? __lock_acquire+0x1657/0x5b00 [ 1702.263772] ___sys_recvmsg+0xd5/0x200 [ 1702.264611] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1702.265665] ? __lockdep_reset_lock+0x180/0x180 [ 1702.266647] ? __fget_files+0x2cf/0x520 [ 1702.267509] ? lock_acquire+0x197/0x470 [ 1702.268352] ? find_held_lock+0x2c/0x110 [ 1702.269219] ? __might_fault+0xd3/0x180 [ 1702.270063] ? lock_downgrade+0x6d0/0x6d0 [ 1702.270980] do_recvmmsg+0x24c/0x6d0 [ 1702.271792] ? ___sys_recvmsg+0x200/0x200 [ 1702.272684] ? lock_downgrade+0x6d0/0x6d0 [ 1702.273573] ? ksys_write+0x12d/0x260 [ 1702.274402] ? wait_for_completion_io+0x270/0x270 [ 1702.275433] ? rcu_read_lock_any_held+0x75/0xa0 [ 1702.276431] ? vfs_write+0x354/0xb10 [ 1702.277235] __x64_sys_recvmmsg+0x20f/0x260 [ 1702.278154] ? ksys_write+0x1a9/0x260 [ 1702.278969] ? __do_sys_socketcall+0x600/0x600 [ 1702.279967] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1702.281086] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1702.282195] do_syscall_64+0x33/0x40 [ 1702.282989] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1702.284095] RIP: 0033:0x7f2d4b68ab19 [ 1702.284884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1702.288809] RSP: 002b:00007f2d48bdf188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1702.290450] RAX: ffffffffffffffda RBX: 00007f2d4b79e020 RCX: 00007f2d4b68ab19 [ 1702.291956] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1702.293489] RBP: 00007f2d48bdf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1702.295023] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1702.296545] R13: 00007fff957937ff R14: 00007f2d48bdf300 R15: 0000000000022000 [ 1702.299929] FAULT_INJECTION: forcing a failure. [ 1702.299929] name failslab, interval 1, probability 0, space 0, times 0 [ 1702.302618] CPU: 1 PID: 10391 Comm: syz-executor.4 Not tainted 5.10.236 #1 12:46:01 executing program 3: memfd_create(&(0x7f0000000140)='\x13\x97\x02\xd8 \xea\xc8\xf3\xad\xd9\x02\rp*\xb3\x9a\xbc\xc1\xb0\xba\x1eo\xfd1\xa3\x8e\x1c\x03Iq\xdcf{\xd8\xc1e\xcd\xc3`\x9b\x8b\xc9\xe2\xd2\xd5\xb9\xdd\x85w\xed\x92\xbf\xb6\x1c\xa7\x8b\x1f.\xd1\x16\xeb\f#\x83\xce\xa3\xcb`\xdb\\\x01\v!\xbb\x1aR\x11/\xef\xb0\xecL\xd3\x99{\x81\xc6N9\x00\x00\x00\x00\x00\x00\x00\x00', 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x7, 0x0, 0x0, 0x99}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x30, 0x1e, 0xc21, 0x0, 0x0, {0x7}, [@typed={0x8, 0x0, 0x0, 0x0, @pid}, @typed={0x14, 0x8, 0x0, 0x0, @ipv6=@private2}]}, 0x30}}, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000100)={0x0, r2, 0xff, 0xd8, 0x9, 0x5}) socket$inet_udplite(0x2, 0x2, 0x88) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x34, 0x1e, 0xc21, 0x0, 0x0, {0x2}, [@nested={0xc, 0x4d, 0x0, 0x1, [@typed={0x8, 0x77, 0x0, 0x0, @ipv4=@remote}]}, @typed={0x14, 0x8, 0x0, 0x0, @ipv6=@remote}]}, 0x34}}, 0x0) r5 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) fork() 12:46:01 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 37) [ 1702.304238] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1702.306232] Call Trace: [ 1702.306795] dump_stack+0x107/0x167 [ 1702.307584] should_fail.cold+0x5/0xa [ 1702.308414] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1702.309485] should_failslab+0x5/0x20 [ 1702.310298] kmem_cache_alloc_trace+0x55/0x320 [ 1702.311401] __io_uring_add_tctx_node+0x15c/0x520 [ 1702.312696] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1702.313914] ? alloc_fd+0x2e7/0x670 [ 1702.314707] io_uring_setup+0x1fbb/0x2980 [ 1702.315612] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1702.316840] ? wait_for_completion_io+0x270/0x270 [ 1702.318060] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1702.319434] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1702.320819] do_syscall_64+0x33/0x40 [ 1702.321626] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1702.322838] RIP: 0033:0x7f5e2aecab19 [ 1702.323834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1702.328022] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1702.329994] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1702.331556] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1702.333379] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1702.334980] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1702.336514] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1702.355680] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1702.412641] netlink: 'syz-executor.3': attribute type 8 has an invalid length. 12:46:01 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 38) 12:46:01 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100", 0x36, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:46:01 executing program 6: socket$inet6_udplite(0xa, 0x2, 0x88) r0 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'erspan0\x00', 0x0}) socketpair(0x8, 0x1, 0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r0) close_range(r3, r2, 0x2) r4 = syz_open_dev$vcsa(&(0x7f0000000000), 0x9, 0x10800) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_io_uring_submit(0x0, 0x0, &(0x7f00000018c0)=@IORING_OP_RECVMSG={0xa, 0x3, 0x0, r4, 0x0, &(0x7f0000001880)={&(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f00000017c0)=[{&(0x7f0000000140)=""/56, 0x38}, {&(0x7f0000000240)=""/147, 0x93}, {&(0x7f0000000180)=""/27, 0x1b}, {&(0x7f0000000300)=""/223, 0xdf}, {&(0x7f0000000400)=""/193, 0xc1}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/221, 0xdd}, {&(0x7f0000001600)=""/240, 0xf0}, {&(0x7f0000001700)=""/191, 0xbf}], 0x9, &(0x7f00000001c0)=""/19, 0x13}, 0x0, 0x40, 0x1, {0x3}}, 0xe7) setsockopt$inet6_int(r5, 0x29, 0x16, &(0x7f0000000080), 0x4) ioctl$sock_inet6_SIOCSIFDSTADDR(r5, 0x8918, &(0x7f0000000080)={@mcast1, 0x22, r1}) [ 1702.512840] netlink: 'syz-executor.3': attribute type 8 has an invalid length. 12:46:01 executing program 2: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='uid_map\x00') sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x40000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) ftruncate(0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000240001000000000000000000000000000600041ef7000500"], 0x1c}}, 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r2, 0xf501, 0x0) openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x2c4800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) fstat(r1, 0x0) sendfile(r1, r3, 0x0, 0x100000001) socketpair(0xf, 0xbeab89542eadc76e, 0xffff, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) mmap(&(0x7f0000ff9000/0x5000)=nil, 0x5000, 0x2000000, 0x1010, r4, 0xe7169000) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) 12:46:01 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 39) 12:46:01 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1702.619733] FAULT_INJECTION: forcing a failure. [ 1702.619733] name failslab, interval 1, probability 0, space 0, times 0 [ 1702.621146] CPU: 0 PID: 10417 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1702.621993] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1702.623010] Call Trace: [ 1702.623343] dump_stack+0x107/0x167 [ 1702.623798] should_fail.cold+0x5/0xa [ 1702.624263] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1702.624874] should_failslab+0x5/0x20 [ 1702.625332] kmem_cache_alloc_trace+0x55/0x320 [ 1702.625893] __io_uring_add_tctx_node+0x15c/0x520 [ 1702.626480] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1702.627112] ? alloc_fd+0x2e7/0x670 [ 1702.627571] io_uring_setup+0x1fbb/0x2980 [ 1702.628080] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1702.628709] ? wait_for_completion_io+0x270/0x270 [ 1702.629309] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1702.629949] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1702.630570] do_syscall_64+0x33/0x40 [ 1702.631029] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1702.631663] RIP: 0033:0x7fddef796b19 [ 1702.632112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1702.634349] RSP: 002b:00007fddecceb108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1702.635275] RAX: ffffffffffffffda RBX: 00007fddef8aa020 RCX: 00007fddef796b19 [ 1702.636144] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1702.637007] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1702.637861] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1702.638725] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1702.652595] loop7: detected capacity change from 0 to 2048 [ 1702.662746] EXT4-fs (loop7): VFS: Can't find ext4 filesystem 12:46:01 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r2, 0x0, 0x100000001) [ 1702.674572] FAULT_INJECTION: forcing a failure. [ 1702.674572] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1702.676063] CPU: 0 PID: 10428 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1702.676904] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1702.677889] Call Trace: [ 1702.678208] dump_stack+0x107/0x167 [ 1702.678646] should_fail.cold+0x5/0xa [ 1702.679096] _copy_from_user+0x2e/0x1b0 [ 1702.679575] __copy_msghdr_from_user+0x91/0x4b0 [ 1702.680125] ? __ia32_sys_shutdown+0x80/0x80 [ 1702.680652] ? __lock_acquire+0x1657/0x5b00 [ 1702.681180] ___sys_recvmsg+0xd5/0x200 [ 1702.681650] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1702.682232] ? __lockdep_reset_lock+0x180/0x180 [ 1702.682790] ? __fget_files+0x2cf/0x520 [ 1702.683264] ? lock_acquire+0x197/0x470 [ 1702.683745] ? find_held_lock+0x2c/0x110 [ 1702.684234] ? __might_fault+0xd3/0x180 [ 1702.684712] ? lock_downgrade+0x6d0/0x6d0 [ 1702.685224] do_recvmmsg+0x24c/0x6d0 [ 1702.685673] ? ___sys_recvmsg+0x200/0x200 [ 1702.686172] ? lock_downgrade+0x6d0/0x6d0 [ 1702.686667] ? ksys_write+0x12d/0x260 [ 1702.687123] ? wait_for_completion_io+0x270/0x270 [ 1702.687705] ? rcu_read_lock_any_held+0x75/0xa0 [ 1702.688252] ? vfs_write+0x354/0xb10 [ 1702.688696] __x64_sys_recvmmsg+0x20f/0x260 [ 1702.689211] ? ksys_write+0x1a9/0x260 [ 1702.689668] ? __do_sys_socketcall+0x600/0x600 [ 1702.690210] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1702.690846] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1702.691465] do_syscall_64+0x33/0x40 [ 1702.691905] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1702.692508] RIP: 0033:0x7f2d4b68ab19 [ 1702.692951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1702.695132] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1702.696040] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1702.696888] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1702.697726] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1702.698550] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1702.699397] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1702.720499] FAULT_INJECTION: forcing a failure. [ 1702.720499] name failslab, interval 1, probability 0, space 0, times 0 [ 1702.723329] CPU: 1 PID: 10432 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1702.725106] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1702.726891] Call Trace: [ 1702.727583] dump_stack+0x107/0x167 [ 1702.728567] should_fail.cold+0x5/0xa [ 1702.729381] ? create_object.isra.0+0x3a/0xa20 [ 1702.730442] should_failslab+0x5/0x20 [ 1702.731417] kmem_cache_alloc+0x5b/0x310 [ 1702.732363] create_object.isra.0+0x3a/0xa20 [ 1702.733305] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1702.734402] kmem_cache_alloc_trace+0x151/0x320 [ 1702.735417] __io_uring_add_tctx_node+0x15c/0x520 [ 1702.736443] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1702.737762] ? alloc_fd+0x2e7/0x670 [ 1702.738788] io_uring_setup+0x1fbb/0x2980 [ 1702.739700] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1702.740768] ? wait_for_completion_io+0x270/0x270 [ 1702.741818] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1702.742942] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1702.744053] do_syscall_64+0x33/0x40 [ 1702.744855] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1702.745952] RIP: 0033:0x7f5e2aecab19 [ 1702.746746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1702.750725] RSP: 002b:00007f5e2841f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1702.752363] RAX: ffffffffffffffda RBX: 00007f5e2afde020 RCX: 00007f5e2aecab19 [ 1702.753898] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1702.755420] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1702.756961] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1702.758480] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:46:01 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 40) 12:46:01 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100", 0x36, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:46:01 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 38) 12:46:02 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1702.941895] loop7: detected capacity change from 0 to 2048 [ 1702.965090] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1702.982509] FAULT_INJECTION: forcing a failure. [ 1702.982509] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1702.984053] CPU: 0 PID: 10447 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1702.984849] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1702.985793] Call Trace: [ 1702.986101] dump_stack+0x107/0x167 [ 1702.986523] should_fail.cold+0x5/0xa [ 1702.986963] _copy_from_user+0x2e/0x1b0 [ 1702.987433] __copy_msghdr_from_user+0x91/0x4b0 [ 1702.987970] ? __ia32_sys_shutdown+0x80/0x80 [ 1702.988477] ? __lock_acquire+0x1657/0x5b00 [ 1702.988985] ___sys_recvmsg+0xd5/0x200 [ 1702.989431] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1702.989993] ? __lockdep_reset_lock+0x180/0x180 [ 1702.990529] ? __fget_files+0x2cf/0x520 [ 1702.990998] ? lock_acquire+0x197/0x470 [ 1702.991454] ? find_held_lock+0x2c/0x110 [ 1702.991929] ? __might_fault+0xd3/0x180 [ 1702.992380] ? lock_downgrade+0x6d0/0x6d0 [ 1702.992870] do_recvmmsg+0x24c/0x6d0 [ 1702.993308] ? ___sys_recvmsg+0x200/0x200 [ 1702.993781] ? lock_downgrade+0x6d0/0x6d0 [ 1702.994260] ? ksys_write+0x12d/0x260 [ 1702.994698] ? wait_for_completion_io+0x270/0x270 [ 1702.995247] ? rcu_read_lock_any_held+0x75/0xa0 [ 1702.995806] ? vfs_write+0x354/0xb10 [ 1702.996232] __x64_sys_recvmmsg+0x20f/0x260 [ 1702.996726] ? ksys_write+0x1a9/0x260 [ 1702.997165] ? __do_sys_socketcall+0x600/0x600 [ 1702.997693] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1702.998287] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1702.998872] do_syscall_64+0x33/0x40 [ 1702.999305] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1702.999886] RIP: 0033:0x7f2d4b68ab19 [ 1703.000311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1703.002398] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1703.003279] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1703.004085] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1703.004898] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1703.005707] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1703.006515] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1703.027378] FAULT_INJECTION: forcing a failure. [ 1703.027378] name failslab, interval 1, probability 0, space 0, times 0 [ 1703.028726] CPU: 0 PID: 10448 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1703.029512] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1703.030458] Call Trace: [ 1703.030763] dump_stack+0x107/0x167 [ 1703.031199] should_fail.cold+0x5/0xa [ 1703.031645] ? create_object.isra.0+0x3a/0xa20 [ 1703.032192] should_failslab+0x5/0x20 [ 1703.032622] kmem_cache_alloc+0x5b/0x310 [ 1703.033091] create_object.isra.0+0x3a/0xa20 [ 1703.033587] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1703.034170] kmem_cache_alloc_trace+0x151/0x320 [ 1703.034710] __io_uring_add_tctx_node+0x15c/0x520 [ 1703.035268] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1703.035877] ? alloc_fd+0x2e7/0x670 [ 1703.036307] io_uring_setup+0x1fbb/0x2980 [ 1703.036781] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1703.037369] ? wait_for_completion_io+0x270/0x270 [ 1703.037928] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1703.038522] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1703.039107] do_syscall_64+0x33/0x40 [ 1703.039541] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1703.040117] RIP: 0033:0x7fddef796b19 [ 1703.040539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1703.042657] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1703.043663] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1703.044477] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1703.045298] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1703.046121] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1703.046939] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:46:02 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 12:46:02 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100", 0x36, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:46:02 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 39) [ 1703.276224] loop7: detected capacity change from 0 to 2048 [ 1703.292260] FAULT_INJECTION: forcing a failure. [ 1703.292260] name failslab, interval 1, probability 0, space 0, times 0 [ 1703.294097] CPU: 0 PID: 10461 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1703.294928] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1703.295929] Call Trace: [ 1703.296246] dump_stack+0x107/0x167 [ 1703.296683] should_fail.cold+0x5/0xa [ 1703.297134] ? xas_alloc+0x336/0x440 [ 1703.297576] should_failslab+0x5/0x20 [ 1703.298028] kmem_cache_alloc+0x5b/0x310 [ 1703.298521] ? stack_trace_consume_entry+0x160/0x160 [ 1703.299138] xas_alloc+0x336/0x440 [ 1703.299576] xas_create+0x34a/0x10d0 [ 1703.300029] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1703.300671] xas_store+0x8c/0x1c40 [ 1703.301113] __xa_store+0x164/0x2d0 [ 1703.301557] ? xa_delete_node+0x280/0x280 [ 1703.302049] ? trace_hardirqs_on+0x5b/0x180 [ 1703.302562] xa_store+0x31/0x50 [ 1703.302956] __io_uring_add_tctx_node+0x1cf/0x520 [ 1703.303532] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1703.304174] ? alloc_fd+0x2e7/0x670 [ 1703.304619] io_uring_setup+0x1fbb/0x2980 [ 1703.305116] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1703.305710] ? wait_for_completion_io+0x270/0x270 [ 1703.306313] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1703.306933] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1703.307551] do_syscall_64+0x33/0x40 [ 1703.307998] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1703.308613] RIP: 0033:0x7fddef796b19 [ 1703.309055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1703.311209] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1703.312107] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1703.312953] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1703.313803] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1703.314633] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1703.315497] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1703.327623] EXT4-fs (loop7): VFS: Can't find ext4 filesystem 12:46:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 39) 12:46:19 executing program 2: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, &(0x7f0000000300)) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000009c0)=ANY=[@ANYBLOB="01210a000000001000000001", @ANYRES32=0xffffffffffffffff, @ANYRES32=0xee00, @ANYRES32=0xee00, @ANYBLOB="2e2f66296c653000b741fd331d80abf9563299a455570597944fcb6fb200136a878175ad6154358c810b652bdd2d59774608723806bfa2b88ed515b880a593f44a75fdcdae71dd6478c59f6d414ef8b838cd29a1f2c04711a267258cafd89fdb44fdb91512788314bda4dff799e48af0eb9123a47050e7e4eda36b06eae1d806f695205c682dcc4568f122b649f892e5d6bfc62288de09b4ca295f9bfaf7f59fee54bf47cf883753155535d972a9ef2532d5fec68d48ee76533d5d38621dcf0e1b2f5b64811421e330af4f4944ae529fb35025f1ba1c821723f9f19a8373c80ff628b869b078c8b7bc1032d593b5f43ce4c5786a5ddf7b81cb"]) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000700)=ANY=[@ANYBLOB="01000000dbd77e7d3db3ab95fcb205d739a2cd7a39b396d8b9b95c8c845ce9651afaffc92e998f6f05a7eb24ab5a4188254959d76bb3ce7b25c4b3afc8aab7c6037ce34bbd86c9459d9c84f13f916419f5121ca831170f53760f0a7b165e8962a349203bfa1be79e2be61656a03d619ec066355741383d91fd0069d6999562923986252642ddec418979048b78d95fcc63d2671b1404e8f6532378c41d8ad56ef8d23154a1146cf5aea1816d55e6554d40eeee", @ANYRES32, @ANYRES32, @ANYBLOB="2e2f66696c652fe1451d4e7b754bc7f05f0ff404807bf64d176a29993195992c14f39ee8328796f81d1886f6cb48f1ed71a941835b5840190114208ef9dda4756eab00fcd38d0a302906ffc3e8f25260ef7b4e28db855ed9e895bd4b0fbdedef955ad6d54b0934c59ddf4161dc9347ef97623a3ebf9ca8933a81653dd955d769a9be40fbed0519a0fe8fb2bb1420fa5a24997c0cf4682c742e0569d44c267b10cfd7565652376257be8c2ef9d94e9ad1d44011543b4d0e0a77577a1157a58a7edab4a0981d3549776f00"/216]) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)={0x3000000a}) r3 = dup(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00'}) fsconfig$FSCONFIG_SET_FD(r3, 0x5, &(0x7f00000005c0)='!\x00', 0x0, 0xffffffffffffffff) preadv(r3, &(0x7f0000000200), 0x0, 0xffff57e9, 0x4) recvfrom(0xffffffffffffffff, &(0x7f0000000280)=""/24, 0x18, 0x40002160, &(0x7f0000000400)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80) socket$inet_udplite(0x2, 0x2, 0x88) openat(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x4200, 0x0) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) r4 = timerfd_create(0x0, 0x80800) getresuid(&(0x7f0000000240), &(0x7f00000002c0), &(0x7f0000000340)=0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f00000003c0)=ANY=[@ANYBLOB="e9ffffff0100000018000000", @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="2e0200000000000000"]) 12:46:19 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCXONC(r0, 0x540a, 0x3) r1 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38) statx(0xffffffffffffffff, &(0x7f0000001640)='./file1\x00', 0x100, 0x1, &(0x7f0000001300)) setxattr$trusted_overlay_opaque(&(0x7f0000001240)='./file1\x00', &(0x7f0000001280), &(0x7f00000012c0), 0x2, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) ioctl$NS_GET_OWNER_UID(r2, 0xb704, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000000) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_test', 0x122902, 0x0) writev(r3, &(0x7f00000006c0)=[{&(0x7f0000000180)="647732419e007299a0529351dc4964376692665510d40d35b770fd8d702d121d0600c90d08763cc1ed88fa0f438cb17d600a", 0x6441f794d5997d40}], 0x1) r4 = syz_open_procfs(0x0, &(0x7f0000000080)='maps\x00') pread64(r4, &(0x7f00000001c0)=""/4107, 0x100b, 0x0) move_mount(r3, &(0x7f0000000100)='./file1\x00', r4, &(0x7f0000000380)='./file1\x00', 0x4) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001200)={'wlan1\x00'}) r5 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f00000000c0)={{{@in6=@remote, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{@in6=@empty}, 0x0, @in6=@loopback}}, 0xe8) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 12:46:19 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 40) 12:46:19 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(0x0, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:46:19 executing program 6: ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x47a}}, './file0\x00'}) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)=@expire={0x520, 0x18, 0x20, 0x70bd25, 0x25dfdbfc, {{{@in=@rand_addr=0x64010101, @in=@remote, 0x4e24, 0x8000, 0x4e21, 0x0, 0x2, 0xa0, 0xa0, 0x84, 0x0, 0xffffffffffffffff}, {@in=@rand_addr=0x64010101, 0x4d5, 0x32}, @in6=@rand_addr=' \x01\x00', {0xfffffffffffffff8, 0x3f, 0x8, 0x5, 0xffffffffed3b56bc, 0x9, 0x7, 0x5}, {0x10001, 0x0, 0x9, 0x7}, {0x2, 0xffffffff, 0xfffffffb}, 0x70bd29, 0x3505, 0x2, 0x3, 0x8, 0xd6}, 0x4}, [@mark={0xc, 0x15, {0x35075b, 0x8698}}, @mark={0xc, 0x15, {0x35075a, 0x7}}, @sec_ctx={0xee, 0x8, {0xea, 0x8, 0x0, 0x9, 0xe2, "3d0d208cc0b4cd6613a930ae6742f99bf6a106f41765102cd5fbadd0275a071b2b6a2887d8031fb54884f7948d120a70e2a80856f6a4aabb3e7f12f9da10e2516c930097c2a56c429798ac38d5f3564a1a68f024454a3c48c8e9d48ccf0095393d894a39ddbf32098428cd6e8e7549c70403a45e11db08cb3960cc33fb4461868994cfb7d454d12df52847f167e48e49adb9be95ca51b0da96e5887a16a67dbddc93491896bb5e78537c95d8f85e8df80c97887a498b5568b54e105aeef5a2120f98dca7f61e75fbb21dc26f3034281ef00045befb46dff93e3738c09f0ac2520e61"}}, @tmpl={0x184, 0x5, [{{@in=@dev={0xac, 0x14, 0x14, 0x2f}, 0x4d2, 0xff}, 0xa, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x3504, 0x1, 0x0, 0x0, 0x9, 0xffffffff, 0x2}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4d6, 0x2b}, 0x5, @in6=@ipv4={'\x00', '\xff\xff', @local}, 0x3507, 0x4, 0x0, 0x5, 0x7fff, 0x0, 0x80000000}, {{@in6=@private0, 0x4d3, 0x2b}, 0x2, @in=@remote, 0x0, 0x0, 0x3, 0x3, 0x475, 0x0, 0xffffffff}, {{@in=@rand_addr=0x64010101, 0x4d6, 0x2b}, 0x2, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x3507, 0x3, 0x2, 0xea, 0x5, 0x5, 0x3}, {{@in6=@dev={0xfe, 0x80, '\x00', 0xe}, 0x4d3, 0x32}, 0x2, @in=@private=0xa010101, 0x3501, 0x1, 0x3, 0x6, 0x8, 0x6, 0x4}, {{@in6=@remote, 0x4d6}, 0xa, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x3504, 0x1, 0x1, 0x8, 0x6, 0x1, 0xffffff80}]}, @replay_thresh={0x8, 0xb, 0xffff}, @algo_comp={0xfc, 0x3, {{'lzs\x00'}, 0x5a0, "0ea881fee078f9b4b215d36ef26d49b1e54c85952798faeac88227887d6abb89309210b3f4c1c9987c9e45e3cdf2377706183c1cf34a59a995150c947c6c25a171fbc0504b8dddc5e0e90395f6626c00e42d8706788b8320504912e61bffd1a88cd09cd336c690837184214813210985ad90bc6b145ed63ec9b15fd4cad794af351c97d70ad263a100a895ecd22a8f3cdfeec7ea59925d10c8b6603c255c3a96a2815c6a481322a4b2361fdb017de97ebeb8ba85"}}, @offload={0xc, 0x1c, {0x0, 0x2}}, @algo_aead={0x8b, 0x12, {{'rfc4309(morus1280-sse2)\x00'}, 0x1f8, 0x100, "3576c6b05cef475a82fb1e36fb3f0b7677c7ea66043c849c50f4ef5a866fc2caf3e4f511a9846625feed4bfe269d941f5e2c0de29507572a7ea43fedfab56a"}}]}, 0x520}, 0x1, 0x0, 0x0, 0x20040080}, 0x4800) r2 = dup2(r0, 0xffffffffffffffff) stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) statx(r0, &(0x7f00000001c0)='./file0\x00', 0x1800, 0x80, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0xa00810, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@nodevmap}, {@access_client}, {@mmap}, {@cachetag={'cachetag', 0x3d, '\x00'}}, {@cache_mmap}, {@dfltgid={'dfltgid', 0x3d, r3}}], [{@euid_eq={'euid', 0x3d, r4}}, {@fsname={'fsname', 0x3d, '*/^'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'erspan0\x00'}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}]}}) setsockopt$inet6_group_source_req(r0, 0x29, 0x2c, &(0x7f0000000780)={0x2, {{0xa, 0x4e24, 0x400, @mcast1}}, {{0xa, 0x4e24, 0x2, @empty, 0x3f}}}, 0x108) creat(&(0x7f0000000b40)='./file0\x00', 0x8) r5 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r1, 0xffffffffffffffff, 0x0) 12:46:19 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53", 0x39, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:46:19 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 41) [ 1720.513956] FAULT_INJECTION: forcing a failure. [ 1720.513956] name failslab, interval 1, probability 0, space 0, times 0 [ 1720.515928] CPU: 0 PID: 10478 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1720.517095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1720.518476] Call Trace: [ 1720.518922] dump_stack+0x107/0x167 [ 1720.519534] should_fail.cold+0x5/0xa [ 1720.520170] ? xas_alloc+0x336/0x440 [ 1720.520783] should_failslab+0x5/0x20 [ 1720.521406] kmem_cache_alloc+0x5b/0x310 [ 1720.522062] ? stack_trace_consume_entry+0x160/0x160 [ 1720.522901] xas_alloc+0x336/0x440 [ 1720.523481] xas_create+0x34a/0x10d0 [ 1720.524140] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1720.525001] xas_store+0x8c/0x1c40 [ 1720.525596] __xa_store+0x164/0x2d0 [ 1720.526191] ? xa_delete_node+0x280/0x280 [ 1720.526868] ? trace_hardirqs_on+0x5b/0x180 [ 1720.527592] xa_store+0x31/0x50 [ 1720.528143] __io_uring_add_tctx_node+0x1cf/0x520 [ 1720.528929] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1720.529777] ? alloc_fd+0x2e7/0x670 [ 1720.530374] io_uring_setup+0x1fbb/0x2980 [ 1720.531072] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1720.531925] ? wait_for_completion_io+0x270/0x270 [ 1720.532734] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1720.533602] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.534451] do_syscall_64+0x33/0x40 [ 1720.535065] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1720.535902] RIP: 0033:0x7f5e2aecab19 [ 1720.536525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1720.539540] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1720.540808] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1720.541984] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1720.543132] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1720.544292] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1720.545457] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1720.566734] FAULT_INJECTION: forcing a failure. [ 1720.566734] name failslab, interval 1, probability 0, space 0, times 0 [ 1720.568831] CPU: 0 PID: 10481 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1720.570016] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1720.571333] Call Trace: [ 1720.571779] dump_stack+0x107/0x167 [ 1720.572364] should_fail.cold+0x5/0xa [ 1720.572974] ? ___slab_alloc+0x155/0x700 [ 1720.573622] ? create_object.isra.0+0x3a/0xa20 [ 1720.574349] should_failslab+0x5/0x20 [ 1720.574969] kmem_cache_alloc+0x5b/0x310 [ 1720.575627] create_object.isra.0+0x3a/0xa20 [ 1720.576321] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1720.577137] kmem_cache_alloc+0x159/0x310 [ 1720.577811] xas_alloc+0x336/0x440 [ 1720.578378] xas_create+0x34a/0x10d0 [ 1720.578978] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1720.579828] xas_store+0x8c/0x1c40 [ 1720.580415] __xa_store+0x164/0x2d0 [ 1720.580988] ? xa_delete_node+0x280/0x280 [ 1720.581663] ? trace_hardirqs_on+0x5b/0x180 [ 1720.582362] xa_store+0x31/0x50 [ 1720.582877] __io_uring_add_tctx_node+0x1cf/0x520 [ 1720.583660] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1720.584497] ? alloc_fd+0x2e7/0x670 [ 1720.585085] io_uring_setup+0x1fbb/0x2980 [ 1720.585759] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1720.586569] ? wait_for_completion_io+0x270/0x270 [ 1720.587372] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1720.588213] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.589046] do_syscall_64+0x33/0x40 [ 1720.589641] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1720.590454] RIP: 0033:0x7fddef796b19 [ 1720.591048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1720.593937] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1720.595123] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1720.596271] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1720.597386] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1720.598514] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1720.599647] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1720.604204] FAULT_INJECTION: forcing a failure. [ 1720.604204] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1720.606104] CPU: 0 PID: 10483 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1720.607247] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1720.608627] Call Trace: [ 1720.609062] dump_stack+0x107/0x167 [ 1720.609643] should_fail.cold+0x5/0xa [ 1720.610246] _copy_from_user+0x2e/0x1b0 [ 1720.610906] __copy_msghdr_from_user+0x91/0x4b0 [ 1720.611665] ? __ia32_sys_shutdown+0x80/0x80 [ 1720.612347] ? __lock_acquire+0x1657/0x5b00 [ 1720.613061] ___sys_recvmsg+0xd5/0x200 [ 1720.613654] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1720.614440] ? __lockdep_reset_lock+0x180/0x180 [ 1720.615175] ? __fget_files+0x2cf/0x520 [ 1720.615820] ? lock_acquire+0x197/0x470 [ 1720.616451] ? find_held_lock+0x2c/0x110 [ 1720.617095] ? __might_fault+0xd3/0x180 [ 1720.617728] ? lock_downgrade+0x6d0/0x6d0 [ 1720.618399] do_recvmmsg+0x24c/0x6d0 [ 1720.619002] ? ___sys_recvmsg+0x200/0x200 [ 1720.619665] ? lock_downgrade+0x6d0/0x6d0 [ 1720.620326] ? ksys_write+0x12d/0x260 [ 1720.620940] ? wait_for_completion_io+0x270/0x270 [ 1720.621689] ? rcu_read_lock_any_held+0x75/0xa0 [ 1720.622422] ? vfs_write+0x354/0xb10 [ 1720.623010] __x64_sys_recvmmsg+0x20f/0x260 [ 1720.623701] ? ksys_write+0x1a9/0x260 [ 1720.624304] ? __do_sys_socketcall+0x600/0x600 [ 1720.625038] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1720.625851] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.626678] do_syscall_64+0x33/0x40 [ 1720.627275] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1720.628105] RIP: 0033:0x7f2d4b68ab19 [ 1720.628716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1720.631629] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1720.632768] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1720.633827] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1720.634929] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1720.636024] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1720.637087] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:46:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 40) [ 1720.645554] loop7: detected capacity change from 0 to 2048 [ 1720.649128] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1720.662044] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1720.663710] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1720.665543] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1720.679159] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1720.699507] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1720.709343] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1720.710931] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1720.712860] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1720.737663] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1720.739962] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1720.741448] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1720.742853] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1720.744482] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1720.747106] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1720.747962] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1720.749554] Buffer I/O error on dev sr0, logical block 0, async page read [ 1720.750931] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1720.751839] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1720.753462] Buffer I/O error on dev sr0, logical block 1, async page read [ 1720.754746] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1720.755561] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1720.757615] Buffer I/O error on dev sr0, logical block 2, async page read [ 1720.759350] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1720.760216] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1720.761599] Buffer I/O error on dev sr0, logical block 3, async page read [ 1720.762832] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1720.763649] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1720.765097] Buffer I/O error on dev sr0, logical block 4, async page read [ 1720.766441] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1720.767359] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1720.769029] Buffer I/O error on dev sr0, logical block 5, async page read [ 1720.770432] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1720.771245] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1720.772650] Buffer I/O error on dev sr0, logical block 6, async page read [ 1720.773955] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1720.774747] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1720.776170] Buffer I/O error on dev sr0, logical block 7, async page read [ 1720.794062] 9pnet: Insufficient options for proto=fd [ 1720.888725] FAULT_INJECTION: forcing a failure. [ 1720.888725] name failslab, interval 1, probability 0, space 0, times 0 [ 1720.890352] CPU: 0 PID: 10498 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1720.891261] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1720.892368] Call Trace: [ 1720.892739] dump_stack+0x107/0x167 [ 1720.893221] should_fail.cold+0x5/0xa [ 1720.893738] ? create_object.isra.0+0x3a/0xa20 [ 1720.894340] should_failslab+0x5/0x20 [ 1720.894834] kmem_cache_alloc+0x5b/0x310 [ 1720.895372] create_object.isra.0+0x3a/0xa20 [ 1720.895963] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1720.896631] kmem_cache_alloc+0x159/0x310 [ 1720.897182] xas_alloc+0x336/0x440 [ 1720.897655] xas_create+0x34a/0x10d0 [ 1720.898158] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1720.898848] xas_store+0x8c/0x1c40 [ 1720.899319] __xa_store+0x164/0x2d0 [ 1720.899809] ? xa_delete_node+0x280/0x280 [ 1720.900370] ? trace_hardirqs_on+0x5b/0x180 [ 1720.900945] xa_store+0x31/0x50 [ 1720.901376] __io_uring_add_tctx_node+0x1cf/0x520 [ 1720.902006] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1720.902693] ? alloc_fd+0x2e7/0x670 [ 1720.903178] io_uring_setup+0x1fbb/0x2980 [ 1720.903746] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1720.904421] ? wait_for_completion_io+0x270/0x270 [ 1720.905060] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1720.905757] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.906440] do_syscall_64+0x33/0x40 [ 1720.906924] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1720.907605] RIP: 0033:0x7f5e2aecab19 [ 1720.908119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1720.910503] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1720.911505] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1720.912438] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1720.913352] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1720.914270] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1720.915185] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:46:34 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 41) 12:46:34 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wg0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f0000000300)={'sit0\x00', &(0x7f0000000200)={'ip6tnl0\x00', r2, 0x2f, 0x6, 0xf5, 0x295faaa0, 0x30, @remote, @empty, 0x0, 0x700, 0x3, 0xffffafaf}}) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000080)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl1\x00', r2, 0x29, 0x20, 0x9, 0x8, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7, 0x7800, 0x4, 0xac0}}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 12:46:34 executing program 2: r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x1000a4, 0x0) syz_mount_image$nfs4(0x0, &(0x7f00000010c0)='./file0\x00', 0xa8a, 0x0, 0x0, 0x6c810, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0xa0) faccessat2(r0, &(0x7f0000000040)='mnt/encrypted_dir/../file0\x00', 0x80, 0x3e4fcec92923ce05) perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0xf94}, 0x4448, 0x0, 0x81, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) rename(&(0x7f0000000180)='mnt/encrypted_dir\x00', &(0x7f0000000640)='./file0\x00') lgetxattr(&(0x7f0000000000)='mnt/encrypted_dir\x00', &(0x7f00000001c0)=@random={'osx.', '\x00'}, &(0x7f0000000200)=""/161, 0xa1) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000080)={@remote}, 0x14) socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x96, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) dup2(r1, r1) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000c80)=@IORING_OP_READV=@pass_iovec={0x1, 0x5, 0x6000, @fd_index, 0x997, &(0x7f0000000bc0)=[{&(0x7f0000000680)=""/251, 0xfb}, {&(0x7f0000000780)=""/151, 0x97}, {&(0x7f00000005c0)}, {&(0x7f0000000840)=""/82, 0x52}, {&(0x7f0000000600)}, {&(0x7f00000008c0)=""/26, 0x1a}, {&(0x7f0000000900)=""/243, 0xf3}, {&(0x7f0000000a00)=""/190, 0xbe}, {&(0x7f0000000ac0)=""/214, 0xd6}], 0x9, 0x0, 0x1}, 0x0) mkdirat(r0, &(0x7f0000000140)='./file0\x00', 0x95) 12:46:34 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 42) 12:46:34 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53", 0x39, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:46:34 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 41) 12:46:34 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(0x0, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:46:34 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x47e2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat$autofs(0xffffffffffffff9c, 0x0, 0x101000, 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0x6612) ftruncate(r0, 0x1000003) dup2(r0, r1) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x3, 0x0, 0x0, 0x8}) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2, 0x14, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_script(r1, &(0x7f0000000300)={'#! ', './file0'}, 0xb) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)=0x0) capset(&(0x7f0000000240)={0x0, r3}, &(0x7f0000000300)={0x800, 0x3, 0x7, 0xd7, 0x8000, 0x6}) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000100)=0x0) r5 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', &(0x7f00000001c0)={0x12000, 0x0, 0x14}, 0x18) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r6, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) kcmp$KCMP_EPOLL_TFD(r3, r4, 0x7, r5, &(0x7f0000000240)={r0, r6, 0xa}) socket$netlink(0x10, 0x3, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000200)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8003}}, './file1\x00'}) fcntl$getown(0xffffffffffffffff, 0x9) [ 1735.919657] loop7: detected capacity change from 0 to 2048 [ 1735.927757] FAULT_INJECTION: forcing a failure. [ 1735.927757] name failslab, interval 1, probability 0, space 0, times 0 [ 1735.930227] CPU: 0 PID: 10515 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1735.931705] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1735.933466] Call Trace: [ 1735.934033] dump_stack+0x107/0x167 [ 1735.934812] should_fail.cold+0x5/0xa [ 1735.935619] ? xas_alloc+0x336/0x440 [ 1735.936432] should_failslab+0x5/0x20 [ 1735.937234] kmem_cache_alloc+0x5b/0x310 [ 1735.938109] xas_alloc+0x336/0x440 [ 1735.938865] xas_create+0x34a/0x10d0 [ 1735.939679] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1735.940819] xas_store+0x8c/0x1c40 [ 1735.941603] __xa_store+0x164/0x2d0 [ 1735.942401] ? xa_delete_node+0x280/0x280 [ 1735.943303] ? trace_hardirqs_on+0x5b/0x180 [ 1735.944255] xa_store+0x31/0x50 [ 1735.944984] __io_uring_add_tctx_node+0x1cf/0x520 [ 1735.946053] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1735.947211] ? alloc_fd+0x2e7/0x670 [ 1735.948034] io_uring_setup+0x1fbb/0x2980 [ 1735.948954] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1735.950074] ? wait_for_completion_io+0x270/0x270 [ 1735.951166] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1735.952332] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1735.953476] do_syscall_64+0x33/0x40 [ 1735.954291] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1735.955423] RIP: 0033:0x7fddef796b19 [ 1735.956245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1735.960304] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1735.961984] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1735.963555] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1735.965128] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1735.966255] FAULT_INJECTION: forcing a failure. [ 1735.966255] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1735.966697] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1735.970831] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1735.972456] CPU: 1 PID: 10510 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1735.973996] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1735.976013] Call Trace: [ 1735.976596] dump_stack+0x107/0x167 [ 1735.977396] should_fail.cold+0x5/0xa [ 1735.978238] _copy_from_user+0x2e/0x1b0 [ 1735.979117] __copy_msghdr_from_user+0x91/0x4b0 [ 1735.980369] ? __ia32_sys_shutdown+0x80/0x80 [ 1735.981437] ? __lock_acquire+0x1657/0x5b00 [ 1735.982404] ___sys_recvmsg+0xd5/0x200 [ 1735.983263] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1735.984508] ? __lockdep_reset_lock+0x180/0x180 [ 1735.985809] ? __fget_files+0x2cf/0x520 [ 1735.986764] ? lock_acquire+0x197/0x470 [ 1735.987633] ? find_held_lock+0x2c/0x110 [ 1735.988558] ? __might_fault+0xd3/0x180 [ 1735.989550] ? lock_downgrade+0x6d0/0x6d0 [ 1735.990485] do_recvmmsg+0x24c/0x6d0 [ 1735.991307] ? ___sys_recvmsg+0x200/0x200 [ 1735.992228] ? lock_downgrade+0x6d0/0x6d0 [ 1735.993138] ? ksys_write+0x12d/0x260 [ 1735.994167] ? wait_for_completion_io+0x270/0x270 [ 1735.995482] ? rcu_read_lock_any_held+0x75/0xa0 [ 1735.996608] ? vfs_write+0x354/0xb10 [ 1735.997423] __x64_sys_recvmmsg+0x20f/0x260 [ 1735.998445] ? ksys_write+0x1a9/0x260 [ 1735.999277] ? __do_sys_socketcall+0x600/0x600 [ 1736.000408] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1736.001550] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1736.002679] do_syscall_64+0x33/0x40 [ 1736.003487] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1736.004854] RIP: 0033:0x7f2d4b68ab19 [ 1736.005921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1736.009946] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1736.011609] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1736.013353] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1736.014903] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1736.016456] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1736.018003] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1736.026807] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1736.033997] FAULT_INJECTION: forcing a failure. [ 1736.033997] name failslab, interval 1, probability 0, space 0, times 0 [ 1736.036684] CPU: 0 PID: 10520 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1736.038217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1736.040051] Call Trace: [ 1736.040639] dump_stack+0x107/0x167 [ 1736.041443] should_fail.cold+0x5/0xa [ 1736.042285] ? xas_alloc+0x336/0x440 [ 1736.043113] should_failslab+0x5/0x20 [ 1736.043963] kmem_cache_alloc+0x5b/0x310 [ 1736.044861] xas_alloc+0x336/0x440 [ 1736.045647] xas_create+0x34a/0x10d0 [ 1736.046482] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1736.047644] xas_store+0x8c/0x1c40 [ 1736.048465] __xa_store+0x164/0x2d0 [ 1736.049308] ? xa_delete_node+0x280/0x280 [ 1736.050299] ? trace_hardirqs_on+0x5b/0x180 [ 1736.051270] xa_store+0x31/0x50 [ 1736.052017] __io_uring_add_tctx_node+0x1cf/0x520 [ 1736.053085] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1736.054231] ? alloc_fd+0x2e7/0x670 [ 1736.055051] io_uring_setup+0x1fbb/0x2980 [ 1736.055979] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1736.057097] ? wait_for_completion_io+0x270/0x270 [ 1736.058189] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1736.059338] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1736.060489] do_syscall_64+0x33/0x40 [ 1736.061306] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1736.062423] RIP: 0033:0x7f5e2aecab19 [ 1736.063235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1736.067273] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1736.068935] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1736.070479] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1736.072046] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1736.073602] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1736.075161] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:46:35 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 43) [ 1736.218424] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1736.220919] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1736.222406] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1736.223838] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1736.225499] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1736.228101] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1736.229339] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 12:46:35 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 42) 12:46:35 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 42) 12:46:35 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53", 0x39, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) [ 1736.231433] Buffer I/O error on dev sr0, logical block 0, async page read [ 1736.235011] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1736.236216] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1736.238297] Buffer I/O error on dev sr0, logical block 1, async page read [ 1736.239958] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1736.242095] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1736.244176] Buffer I/O error on dev sr0, logical block 2, async page read [ 1736.247519] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1736.248911] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1736.250966] Buffer I/O error on dev sr0, logical block 3, async page read 12:46:35 executing program 2: io_destroy(0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000180021"], 0x1c}}, 0x0) recvmsg$unix(r2, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r3, 0x0) r4 = syz_open_dev$hiddev(&(0x7f0000000100), 0x1, 0x4000) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000180021"], 0x1c}}, 0x0) recvmsg$unix(r6, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0) io_submit(0x0, 0x3, &(0x7f0000000440)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x1, r0, &(0x7f0000000200)="d3a9cffdb07717b0944420a56a386be3ab883149ea54cc38513b976f5a9fe3f5c88d6458dbf85d0f7f2153407f53c30d28fd9f0608e7edae7b5739d271ad47cb371a9556786405485fe03e56dcd7879561f774f0353ec977a7f5750e8cc71b43f48bfaeff4d9e387690afe94834f0f15c23518c6100ccc4eee6c9d63a072a120b5aa9d36aa46914b94f4ee17b56f37da3da4553401559373568dbba3f3c7b463ceacf9dfedf4ef0cac1d5485acc76425abff48d1acbf152ebf69ffc2bb6ac3c2fa872bec2fba2c15e6a050ecaf56a6611a5ec7641797796aedea809c9fd1de9896d09ee95b65e1ec5142a4a941f4d2fec79f408973", 0xf5, 0x1, 0x0, 0x2, r2}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x7ff, r3, &(0x7f0000000300)="8696e5624168ebe13e720e2d97e04214a1e4a493c03599ec43bcbcfe36682a5160000dc27246a3051ee819ea731e15f06cc29d4830bacd9ee517d9586604ebf3679a719b116fb58f6b85804a8875ad55dcfdefc489bc8e0b6cfbc50eb36f573de91e23be414a8163668ab9996539eee9560290e8843420b4839dce6277a309ae808f6fcbabab0cbfcac5a70afc52ba2df5d49689703df80b8008efa7d6819e96246a8c362beb52a2d48bb322b0bf5ed81488ec822d4a7b3031df358f8d2cee951c1c75815f546204fce9fa1e06a9", 0xce, 0x2, 0x0, 0x1}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x5d76706e7819feff, 0x2, r4, &(0x7f00000005c0)="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", 0x1000, 0x7, 0x0, 0x1, r6}]) r7 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000015c0)=ANY=[@ANYBLOB="24000000100001200000000100000000000000001a00000000000000050200804800000017a026ed4d28946a3ebe151864f31369e996080b6c296aa93b3d2eab8163b743e5abfb3382906c44e5acd4bd737d9677e912f0692610a0e4259a01e09c2bf3e1573f74f18191ae2ede75eb9401019c2eaec2a655197145320011271f72490c7c3066bebb1fd993a736aabc071206af974b37ca7901892b04cd24e7a974fab6e5f8ff11754e82184fec947c6bd11f6d86b1c7fccc9c7a9a117da8c7066d078685936c4718db36119854b13564e8ce81027ad2299f08af3bb38567f6b6ee48b8c9898923435926c4e819e4c1484ead3fffd201900d4e"], 0x24}}, 0x0) recvmsg$unix(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0) 12:46:35 executing program 3: ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000080)) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r0, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r0, 0x8983, &(0x7f00000000c0)={0x7, 'vcan0\x00', {}, 0x3}) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010600)="0243443030310100004c0049004e0055005800200020002000200020002000200020002000200020004300440052004f004d0020002000200020002000200020002000200020002000000000000000002800000000000028252f", 0x5a, 0x8800}], 0x0, &(0x7f00000001c0)={[{@nojoliet}]}) [ 1736.269426] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1736.271426] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1736.272910] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1736.274329] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 01 00 00 01 00 [ 1736.276083] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 0 [ 1736.278347] Buffer I/O error on dev sr0, logical block 4, async page read [ 1736.280195] Buffer I/O error on dev sr0, logical block 5, async page read [ 1736.281999] Buffer I/O error on dev sr0, logical block 6, async page read [ 1736.283664] Buffer I/O error on dev sr0, logical block 7, async page read [ 1736.296618] FAULT_INJECTION: forcing a failure. [ 1736.296618] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1736.300330] CPU: 0 PID: 10535 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1736.301725] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1736.303396] Call Trace: [ 1736.303935] dump_stack+0x107/0x167 [ 1736.304663] should_fail.cold+0x5/0xa [ 1736.305431] _copy_from_user+0x2e/0x1b0 [ 1736.306232] __copy_msghdr_from_user+0x91/0x4b0 [ 1736.307164] ? __ia32_sys_shutdown+0x80/0x80 [ 1736.308052] ? __lock_acquire+0x1657/0x5b00 [ 1736.308943] ___sys_recvmsg+0xd5/0x200 [ 1736.309725] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1736.310705] ? __lockdep_reset_lock+0x180/0x180 [ 1736.311644] ? __fget_files+0x2cf/0x520 [ 1736.312458] ? lock_acquire+0x197/0x470 [ 1736.313260] ? find_held_lock+0x2c/0x110 [ 1736.314082] ? __might_fault+0xd3/0x180 [ 1736.314885] ? lock_downgrade+0x6d0/0x6d0 [ 1736.315751] do_recvmmsg+0x24c/0x6d0 [ 1736.316513] ? ___sys_recvmsg+0x200/0x200 [ 1736.317353] ? lock_downgrade+0x6d0/0x6d0 [ 1736.318185] ? ksys_write+0x12d/0x260 [ 1736.318960] ? wait_for_completion_io+0x270/0x270 [ 1736.319933] ? rcu_read_lock_any_held+0x75/0xa0 [ 1736.320858] ? vfs_write+0x354/0xb10 [ 1736.321611] __x64_sys_recvmmsg+0x20f/0x260 [ 1736.322474] ? ksys_write+0x1a9/0x260 [ 1736.323232] ? __do_sys_socketcall+0x600/0x600 [ 1736.324157] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1736.325204] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1736.326234] do_syscall_64+0x33/0x40 [ 1736.326978] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1736.328004] RIP: 0033:0x7f2d4b68ab19 [ 1736.328743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1736.332422] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1736.333929] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1736.335338] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1736.336762] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1736.338186] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1736.339607] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:46:35 executing program 6: socket$inet6_udplite(0xa, 0x2, 0x88) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x3200, 0x0, 0x0, 0x7, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, 0x0, 0x14050884) r1 = syz_io_uring_setup(0x1433, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x3c2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000002e00)=""/4109, 0x100d}], 0x2) syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x62, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={&(0x7f0000000000), 0x1}, 0x602, 0x7f, 0xffffffff, 0x0, 0x0, 0x10000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmctl$SHM_LOCK(0xffffffffffffffff, 0xb) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x200002, 0x0) shmctl$SHM_INFO(0x0, 0xe, &(0x7f0000001400)=""/226) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000012c0)='./cgroup.cpu/syz0\x00', 0x1ff) shmget$private(0x0, 0x1000, 0x54000000, &(0x7f0000fff000/0x1000)=nil) 12:46:35 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 44) [ 1736.540845] FAULT_INJECTION: forcing a failure. [ 1736.540845] name failslab, interval 1, probability 0, space 0, times 0 [ 1736.543031] CPU: 0 PID: 10547 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1736.544245] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1736.545685] Call Trace: [ 1736.546156] dump_stack+0x107/0x167 [ 1736.546797] should_fail.cold+0x5/0xa [ 1736.547449] ? create_object.isra.0+0x3a/0xa20 [ 1736.548235] should_failslab+0x5/0x20 [ 1736.548888] kmem_cache_alloc+0x5b/0x310 [ 1736.549580] ? mark_held_locks+0x9e/0xe0 [ 1736.550273] create_object.isra.0+0x3a/0xa20 [ 1736.551019] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1736.551894] kmem_cache_alloc+0x159/0x310 [ 1736.552610] xas_alloc+0x336/0x440 [ 1736.553216] xas_create+0x34a/0x10d0 [ 1736.553856] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1736.554750] xas_store+0x8c/0x1c40 [ 1736.555379] __xa_store+0x164/0x2d0 [ 1736.556005] ? xa_delete_node+0x280/0x280 [ 1736.556718] ? trace_hardirqs_on+0x5b/0x180 [ 1736.557459] xa_store+0x31/0x50 [ 1736.558016] __io_uring_add_tctx_node+0x1cf/0x520 [ 1736.558830] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1736.559716] ? alloc_fd+0x2e7/0x670 [ 1736.560345] io_uring_setup+0x1fbb/0x2980 [ 1736.561049] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1736.561901] ? wait_for_completion_io+0x270/0x270 [ 1736.562731] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1736.563611] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1736.564482] do_syscall_64+0x33/0x40 [ 1736.565105] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1736.565960] RIP: 0033:0x7f5e2aecab19 [ 1736.566598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1736.569673] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1736.570946] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1736.572147] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1736.573334] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1736.574513] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1736.575691] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1736.581960] FAULT_INJECTION: forcing a failure. [ 1736.581960] name failslab, interval 1, probability 0, space 0, times 0 [ 1736.583922] CPU: 0 PID: 10548 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1736.585273] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1736.586653] Call Trace: [ 1736.587091] dump_stack+0x107/0x167 [ 1736.587699] should_fail.cold+0x5/0xa [ 1736.588341] ? ___slab_alloc+0x155/0x700 [ 1736.589160] ? create_object.isra.0+0x3a/0xa20 [ 1736.589912] should_failslab+0x5/0x20 [ 1736.590537] kmem_cache_alloc+0x5b/0x310 [ 1736.591211] create_object.isra.0+0x3a/0xa20 [ 1736.591937] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1736.592776] kmem_cache_alloc+0x159/0x310 [ 1736.593466] xas_alloc+0x336/0x440 [ 1736.594055] xas_create+0x34a/0x10d0 [ 1736.594681] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1736.595548] xas_store+0x8c/0x1c40 [ 1736.596154] __xa_store+0x164/0x2d0 [ 1736.596755] ? xa_delete_node+0x280/0x280 [ 1736.597443] ? trace_hardirqs_on+0x5b/0x180 [ 1736.598156] xa_store+0x31/0x50 [ 1736.598702] __io_uring_add_tctx_node+0x1cf/0x520 [ 1736.599507] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1736.600370] ? alloc_fd+0x2e7/0x670 [ 1736.600983] io_uring_setup+0x1fbb/0x2980 [ 1736.601671] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1736.602495] ? wait_for_completion_io+0x270/0x270 [ 1736.603311] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1736.604175] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1736.605014] do_syscall_64+0x33/0x40 [ 1736.605622] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1736.606454] RIP: 0033:0x7fddef796b19 [ 1736.607064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1736.610051] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1736.611293] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1736.612464] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1736.613635] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1736.614792] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1736.615958] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1736.625409] loop7: detected capacity change from 0 to 2048 [ 1736.642749] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1736.651920] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 12:46:35 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) r1 = openat(r0, &(0x7f0000000200)='./file1\x00', 0x206000, 0x18) chdir(&(0x7f0000000040)='./file0\x00') r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000240)={{0x1, 0x1, 0x18, r2, {0x8001, 0xfffffff9}}, './file0\x00'}) write$P9_RREADLINK(r3, &(0x7f0000000280)={0x10, 0x17, 0x1, {0x7, './file1'}}, 0x10) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r4, 0x4) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xb, 0x13, r4, 0x0) pipe2(&(0x7f0000000100), 0x4000) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)) io_uring_enter(r2, 0x569a, 0xe295, 0x2, &(0x7f00000001c0)={[0x1]}, 0x8) [ 1736.666842] FAULT_INJECTION: forcing a failure. [ 1736.666842] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1736.669401] CPU: 1 PID: 10554 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1736.670860] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1736.672610] Call Trace: [ 1736.673174] dump_stack+0x107/0x167 [ 1736.673945] should_fail.cold+0x5/0xa [ 1736.674755] _copy_from_user+0x2e/0x1b0 [ 1736.675606] __copy_msghdr_from_user+0x91/0x4b0 [ 1736.676599] ? __ia32_sys_shutdown+0x80/0x80 [ 1736.677527] ? __lock_acquire+0x1657/0x5b00 [ 1736.678456] ___sys_recvmsg+0xd5/0x200 [ 1736.679288] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1736.680399] ? __lockdep_reset_lock+0x180/0x180 [ 1736.681385] ? __fget_files+0x2cf/0x520 [ 1736.682209] ? lock_acquire+0x197/0x470 [ 1736.683048] ? find_held_lock+0x2c/0x110 [ 1736.683908] ? __might_fault+0xd3/0x180 [ 1736.684743] ? lock_downgrade+0x6d0/0x6d0 [ 1736.685636] do_recvmmsg+0x24c/0x6d0 [ 1736.686431] ? ___sys_recvmsg+0x200/0x200 [ 1736.687301] ? lock_downgrade+0x6d0/0x6d0 [ 1736.688187] ? ksys_write+0x12d/0x260 [ 1736.689001] ? wait_for_completion_io+0x270/0x270 [ 1736.690022] ? rcu_read_lock_any_held+0x75/0xa0 [ 1736.690997] ? vfs_write+0x354/0xb10 [ 1736.691775] __x64_sys_recvmmsg+0x20f/0x260 [ 1736.692679] ? ksys_write+0x1a9/0x260 [ 1736.693475] ? __do_sys_socketcall+0x600/0x600 [ 1736.694443] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1736.695514] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1736.696615] do_syscall_64+0x33/0x40 [ 1736.697382] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1736.698459] RIP: 0033:0x7f2d4b68ab19 [ 1736.699224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1736.703032] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1736.704593] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1736.706074] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1736.707551] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1736.709034] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1736.710506] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:46:35 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) [ 1736.745521] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1736.863437] loop7: detected capacity change from 0 to 2048 [ 1736.881360] EXT4-fs (loop7): Unrecognized mount option "hash" or missing value 12:46:50 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 43) 12:46:50 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(0x0, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:46:50 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 43) 12:46:50 executing program 3: syz_emit_ethernet(0x76, &(0x7f00000000c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x68, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x3}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x14, 0x0, 0x0, 0x0, 0x0, {[@nop, @exp_smc={0xfe, 0x6}, @timestamp={0x8, 0xa, 0x2, 0x2}, @timestamp={0x8, 0xa, 0x10001, 0x5}, @md5sig={0x13, 0x12, "e3df238726706de9f29385d6806a6b5e"}, @sack={0x5, 0xe, [0x9, 0x7, 0xffffffff]}]}}}}}}}, 0x0) 12:46:50 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53", 0x39, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:46:50 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f0000000140)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @fixed}}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0) r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x2010, 0xffffffffffffffff, 0x10000000) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wg0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f0000000300)={'sit0\x00', &(0x7f0000000200)={'ip6tnl0\x00', r5, 0x2f, 0x6, 0xf5, 0x295faaa0, 0x30, @remote, @empty, 0x0, 0x700, 0x3, 0xffffafaf}}) syz_io_uring_submit(r1, r4, &(0x7f0000000580)=@IORING_OP_SENDMSG={0x9, 0x3, 0x0, r0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=@ll={0x11, 0xe6, r5}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000100)="7cf3c5ace4e0afceb2446ccc48571e916c24ab258da020e5cabf7a41d66ff8c051c05629860b7a42239450ef941f8f7c7cd361669a80e9165287c6ad2b2b5b00d7159adf44b612d70d403e05a237861abf52e3606f3726bbaa6e28d7a769ff3b7b9483eb99159df75568ad56e724b94fd7a265fabccb1fad51e750e6965b2f4265078cae8b64e0101a5e65b6ad3b617857c206b81e5483bb9447ee176d8a8be255756bdb183a8e66744e71c1daaff159ad10e2afa25d7bccf51c0bbab8935837626c", 0xc2}, {&(0x7f0000000200)="a0acf620d76be0979eed31fa33cdceba1cf95512812c5456fe863a87ca", 0x1d}, {&(0x7f0000000240)="13b8753ee42dc02c8c543950e4d1f37a51a02a5f9f023142c0614ef4cd7666039661cf2cad0b285915275379bb6bf5a9a4ffcae264396a45792b23f904e7254b2aa734ea4c7aff7b02a5264a0cc73b7609cecf711a028db19e099de2ebc7b552642e34cb85fe83e5361baae2ae7de98ecafe82fa75d290b470dbc716369a41d82faef5b6cfa153e5ef3472196eb7df2380b7191fe0be0e5a2179d56a3850998089566e866ac16c180e1b826697cc77af0d097c28523cebb294de593da8aab06d", 0xc0}, {&(0x7f0000000480)="0ec7aea74a0155c97835db393f8120751debe03f0b1b4f4075812d7d988fd17ba00b6a887df4b1cab3697fde49c4314408b263535f34f8b98777d57e025525e714099c3cdfcf503733deb53ccfed53fcedec3b48ddefd6a410ac4a66003e6f8308673187624bd1387fbb01ad64dd", 0x6e}], 0x4, &(0x7f0000000500)=[{0x68, 0x32c, 0x5, "467320e765d7076695c229a9df878810df4e5d6f0da489d5d2af8a90f7d838aed0a189b7260dcbd23c7276f8989ea75a61c93e99b0c766411ae7d20147ebc15c28e2f91479b4301177c2deb086326f983e"}], 0x68}, 0x0, 0x4, 0x1}, 0x9) socket$inet6(0xa, 0x3, 0x40) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r6, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x3f, 0x0, 0x81, 0x40, 0x0, 0x40, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0xb91a, 0x2a}, 0x9409, 0x6, 0x80000000, 0x2, 0x8, 0x100, 0x71a, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x2) close_range(r6, r0, 0x2) 12:46:50 executing program 2: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r0, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) mmap$perf(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000002, 0x810, r1, 0x1f) r2 = syz_io_uring_setup(0x132, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x100000b, 0x12, r2, 0x8000000) syz_io_uring_submit(r4, r3, &(0x7f0000000100)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) fork() r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r5, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) write$binfmt_script(r5, &(0x7f0000000000)={'#! ', './file0', [{}, {0x20, '*'}, {}], 0xa, "fb35b9ed05b2805135b0835f3763d64add6b0c606adde2cbdbc8688b30e930d9f630d47482b0d344c16ba33cd4400ada4994230d035b3712b0fdc4e2231cb313486468bbeaee283fa69e21f3c0a71099af102d6e0901fcc7869a6c61689bbbb31f95f250162c20cbe9d9bd8ddb2fdc3a74a72cf21084bed93d3ad082e3064468547c5982a3200c0311eda01c378a8c3e5149f0543bac5c305cb4308bd298d279d886f056e75e59e90a0bacbdf6f5"}, 0xbd) 12:46:50 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 45) [ 1751.558350] FAULT_INJECTION: forcing a failure. [ 1751.558350] name failslab, interval 1, probability 0, space 0, times 0 [ 1751.560194] CPU: 0 PID: 10579 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1751.561286] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1751.562468] Call Trace: [ 1751.562853] dump_stack+0x107/0x167 [ 1751.563374] should_fail.cold+0x5/0xa [ 1751.563924] ? xas_alloc+0x336/0x440 [ 1751.564462] should_failslab+0x5/0x20 [ 1751.565011] kmem_cache_alloc+0x5b/0x310 [ 1751.565600] xas_alloc+0x336/0x440 [ 1751.566111] xas_create+0x34a/0x10d0 [ 1751.566657] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1751.567408] xas_store+0x8c/0x1c40 [ 1751.567945] __xa_store+0x164/0x2d0 [ 1751.568471] ? xa_delete_node+0x280/0x280 [ 1751.569079] ? trace_hardirqs_on+0x5b/0x180 [ 1751.569698] xa_store+0x31/0x50 [ 1751.570168] __io_uring_add_tctx_node+0x1cf/0x520 [ 1751.570854] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1751.571588] ? alloc_fd+0x2e7/0x670 [ 1751.572122] io_uring_setup+0x1fbb/0x2980 [ 1751.572713] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1751.573428] ? wait_for_completion_io+0x270/0x270 [ 1751.574126] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1751.574860] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.575596] do_syscall_64+0x33/0x40 [ 1751.576129] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1751.576849] RIP: 0033:0x7f5e2aecab19 [ 1751.577374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1751.579957] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1751.581026] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1751.582047] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1751.583054] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1751.584060] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1751.585065] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1751.613255] FAULT_INJECTION: forcing a failure. [ 1751.613255] name failslab, interval 1, probability 0, space 0, times 0 [ 1751.614877] CPU: 0 PID: 10581 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1751.615857] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1751.617031] Call Trace: [ 1751.617416] dump_stack+0x107/0x167 [ 1751.617950] should_fail.cold+0x5/0xa [ 1751.618482] ? xas_alloc+0x336/0x440 [ 1751.619001] should_failslab+0x5/0x20 [ 1751.619542] kmem_cache_alloc+0x5b/0x310 [ 1751.620137] xas_alloc+0x336/0x440 [ 1751.620634] xas_create+0x34a/0x10d0 [ 1751.621158] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1751.621883] xas_store+0x8c/0x1c40 [ 1751.622401] __xa_store+0x164/0x2d0 [ 1751.622915] ? xa_delete_node+0x280/0x280 [ 1751.623496] ? trace_hardirqs_on+0x5b/0x180 [ 1751.624113] xa_store+0x31/0x50 [ 1751.624580] __io_uring_add_tctx_node+0x1cf/0x520 [ 1751.625251] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1751.625987] ? alloc_fd+0x2e7/0x670 [ 1751.626505] io_uring_setup+0x1fbb/0x2980 [ 1751.627085] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1751.627783] ? wait_for_completion_io+0x270/0x270 [ 1751.628476] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1751.629203] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.629919] do_syscall_64+0x33/0x40 [ 1751.630445] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1751.631159] RIP: 0033:0x7fddef796b19 [ 1751.631673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1751.634224] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1751.635283] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1751.636282] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1751.637268] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1751.638261] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1751.639239] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:46:50 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 44) [ 1751.654862] loop7: detected capacity change from 0 to 2048 [ 1751.668839] FAULT_INJECTION: forcing a failure. [ 1751.668839] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1751.671336] CPU: 1 PID: 10586 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1751.672801] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1751.674534] Call Trace: [ 1751.675249] dump_stack+0x107/0x167 [ 1751.676027] should_fail.cold+0x5/0xa [ 1751.676833] _copy_from_user+0x2e/0x1b0 [ 1751.677678] __copy_msghdr_from_user+0x91/0x4b0 [ 1751.678662] ? __ia32_sys_shutdown+0x80/0x80 [ 1751.679589] ? __lock_acquire+0x1657/0x5b00 [ 1751.680519] ___sys_recvmsg+0xd5/0x200 [ 1751.681337] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1751.682362] ? __lockdep_reset_lock+0x180/0x180 [ 1751.683343] ? __fget_files+0x2cf/0x520 [ 1751.684195] ? lock_acquire+0x197/0x470 [ 1751.685032] ? find_held_lock+0x2c/0x110 [ 1751.685898] ? __might_fault+0xd3/0x180 [ 1751.686728] ? lock_downgrade+0x6d0/0x6d0 [ 1751.687626] do_recvmmsg+0x24c/0x6d0 [ 1751.688422] ? ___sys_recvmsg+0x200/0x200 [ 1751.689289] ? lock_downgrade+0x6d0/0x6d0 [ 1751.690175] ? ksys_write+0x12d/0x260 [ 1751.690990] ? wait_for_completion_io+0x270/0x270 [ 1751.692016] ? rcu_read_lock_any_held+0x75/0xa0 [ 1751.692993] ? vfs_write+0x354/0xb10 [ 1751.693784] __x64_sys_recvmmsg+0x20f/0x260 [ 1751.694691] ? ksys_write+0x1a9/0x260 [ 1751.695490] ? __do_sys_socketcall+0x600/0x600 [ 1751.696462] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1751.697558] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.698657] do_syscall_64+0x33/0x40 [ 1751.699440] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1751.700527] RIP: 0033:0x7f2d4b68ab19 [ 1751.701313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1751.705187] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1751.706777] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1751.708280] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1751.709778] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1751.711275] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1751.712773] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:46:50 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 44) 12:46:50 executing program 3: ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000000)={0x0, 0x1, 0xfffffffffffffffc, 0x6}) ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000040)={0x0, 0x100, 0x0, 0x1, 0x7, 0x401}) ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, &(0x7f0000000080)={0x4, 0x3, 0x7}) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2000000}}, './file0\x00'}) sendmmsg$unix(r0, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000001100)=[{&(0x7f0000000100)="e5b605d5407ff23d152310193e49783bfca7298536512ea76ea7f8e0beb141bc0ecd087973a20e9a79c5d0eec8e94ebc7265244a637eb9f070da4e342624a4a4f97770051affae62eca05e4d1900cb2a37250278097ffaa25171f9efe304b10a424a32dbd312f795d7250f096d869618dfa2d6ce9a3cf0ebb6766f31ddf3514d273be5a9bc33c327c81a86d5b392a93bef1b27bb41379af36a83b181573a2c1436f8e092a99469c0fc4d1f393061142baaf921c93700426b2da00828d42c2deeb31a443d2b0a8092a29129aa53a3f5a1a989c08aa9ab65cd0cc4784e89ba52e32ce581ebcefcda085f931370b89279e5145e74fdc7705808b9971decfafa767c98f395c5f467ffd06c64ac6f9fa377caecd37f82e45428cc3355656425748080022472eaffe5a48bf86afcdbe8972d7b17e00d058b3bccf0b2c7b53a1fb4b1678e24e37ceee23340b97fa46b0bb57a5b125070c6a4fe6b3075fce88adb71b69e4353ebdc88ea05bf7fc2cce41f6357da1c6080432602c2d07b73d62d9dae61f74c21d17a2b0a949dd6027cbfa108c40a830e925585f1bfb8adfe531fc984155dcb2f73b615177956662b80b8d26b028a72156283d554692d762730fe5cb787859894ecb54f0e81add78b2129f06e064e0162e1086dc27c44834d49a87136727cf59991f98424196cd3a9dba9b5389788ee3527bc6c20e0eb7bb9f06b75ceb01dfd9870bfd069adaa0ac9a6a9d70b0593bdae077191868b03ea0743d653289d3b53b89af9d777758c6dfd3d2217928198dd52749c197855ce7145686b20c91ad487216e427a4d88c327f523096a9c1f5f33a97f9bab8596abb3d49cc05e9fff5f121825b045963c8054851627d453adb3466dd9222eb792746778a38b96601f66a824daf4e5349c3c964c619e17eb6bd45d706c35f8e4fb05782436a2e346adbe81f314ad553353ac580b4b6c2094ae4d83cea77d360fb9cbc75f1a64bd837644d4a5f03696cdea415385319e84f3d066286e6287f13ff9372347bcff1d41bb2e8ae60b9d3b31ea455e0a23fc3b1b7262971c54d3311f1783f0852a33e3e24cce81cec8d051d5e0dd389af220cd89f95b161f62a8c013d4da4a12f17ad505f9b8ad01eb327b11192e9513b2977a48ca47c4144343a43c458250e64cc6dc6a75ad7d5f3e4298f380b56284b621fe99ae2e32fb1e35b2d355425b44e21d03e118b753c96f7402aa5603105f433b64d669eb33919a0a056e6370d6bae93b9b54d3b0d7b958d807d3438ade64548b23c4db3746b62a652fb2254f034c868053c853f9f840ed5a172c25b4851c9042575ea1c00ef2bab8acc064c8a8419627ded733f2a06faa30683ccf398d94433ac7155e92a554e81738599d65b429b3ce4ce6ea1c88fae88e9186ddcf3a9f065e08e14c3f3c1c3c918efbe99843b229ec8151793d910bd36aeaaa757eaf713dfd9fe56dbfe3e4519d25bb03570569994fd8540f91ef03d4b1b641c0ac656c3be1e9db53fa1b8e0a59f5f8569c7cdfbc23cdecc5bfe0560dc868bda9182b2c8f01ff74f363e3a41caa6279defc6e52ef2befafb7acc7a3bbee9e5f7d600b01edb9290974d6655a3a00fb8eae400b533597640111bda4cd8b72817afad16d13dc01ce1decb1024b5571515da2b4d046cf74543d986358b5f8a5b2b8754c442655f11d732786a278dc98dfaed7d88821ddefe157beb4d834a3ff4fe841b84dbe686a7b8b8a79607a91d9e8fab036b2301fda9ae77b06b77f49ce4bd49534b116c8cabab8bb478df42fe1728c8b55f47142eaa4b59fce3350c991c4e2a742a38f1e49812f9efc0b3889097aa4753dddcad5fa81152a4164d41ae86a0ffd56dd36071e42a8bb3700528ac6f1b079e3f3226c5823a509dee1272c458adf3eb5a69fdcf83f3f4e5cdb35293fe880419a9d565f72e44b427431ab756d80435617966073bdb5e90acdcb294b7b017339c772fc7bc3be22c222d8518db61214bc4454bdebafdf2f48d5d1e8112fafc6fd4ab7b9dab86b43cb6a10418eee65d21204388667ce0e036bca5f77ebaa7808fad091274459d2362a7b5011eddf4336b2e738cc5d41c54b42f146733ea86eb259177237fa04be4f3c6133b85298ad2c858f9a06bc429e761ec2bce2e478807123988037971b920db1b4887a4e470d9841117184b399484676adc0ed09755228aa50833ab7fd21b4223f6bb669f14549dd03d121049d0fdfa8cf964cec52410874b27f900554052dc54331e9e01c4cce7fb383f981743a70e446fa1eb8ba4174778267d08b5d49b97ddf68afa013e95efff10cdb54ff58510a265883499a29849a5c8130b04b11c47bfad1a0db02bdc11f9f34aedd659f121dddb1e2ab82ae68b1382310e1b89ba4ee292bdfb07aed58df297746bbd92c5fa7ae0e2cecf06744ce815628b2577dc6af326d1a658a09f56806d17ee16d62470c90d68a12e86df176bd3b6d63c242d708e7bed1e5c0236883c72b4e39c821ab003ead882aa3f54fe055d56a7b108036d97777b4879731f6be68bfd529b58eba94542d64132ef5e571c9334e7494f007fa4ee264ed585e93e1f80feba43289ab2e82b9fc9052ebf6809033f0fc9f858be65f4edf1a3727d63c26c8485bc00cc175523860ca53a9d8237425c5e4252ad93e1797c4af7d9de8b61b11861a0d8de7b68918f2b81ab75f9bdcbbe2d6d51482936efb726cb3a926da7893884ff2f4cdfc7b4c5b66ccb236a512c2a007010aa9f0fe05dd283562ed1d58d7ff0820f8ea01ca5f541e99fb2ff37d7fd7b8a0256fd3d95a849a6c34be5b65e2c9e5674088947b5cb99567fd43bddb024d41a08f2469e5e2634024fd2a35ca7a271d42f18aacdacfd001948720b33a810607a50cec15117f3b768f76085319dc3d398a14ec0138ef625effa02cc74f90042ffbebb936e4661b435664a8cda995909039df33f840c2200c5b0ab7ab533009f06381c50d613a0b953d7e71851b96f0339a15a44da24133589ba94a6fbd5d6064eecdbe76fdcc87a8d8ebeae995f9d85f2d6ba087ff04a03a02a648383956c9833bc2af27214082e3fe6495636cfec080e6b5bd522abae7c5adbc1ed85a0898dd551fb9112d652d77b29b32ea280c43144171eeefeb1cbe9869aada6f8428635d52da75c96a79ff6808f7fa200059d4d611f22f962c5da31ec4f0cf1adc969215f72cbb82651b37bb52291de3f18ae0b2e1b3ac021bc78de6ef8cae6259db5cdfb9e7e0b4d8b9804aeeed66492b803ddf3404b49b243e6b2cded34489aa428e94b650c41f6f5354ec68f5083299ce72719143f84a0c6f7803b147db650917f853d211e81ab712a7e02fc48e7fd7a26ad2110e8204baea64af8b8c5ec65b861100b4d1ef1bc457c9cb8a9168b32f938715f3a96213a362dfb69dbd5db31ce46d6d4f3466ef6963f2f8989587414725fafb0ce7f032e01ed0d4cff4e525965dfa5f05719b1da109d51fec84f944a1a26459ea16940b498e2f80208abfa60feef1683f1baf0686afcc3b355160f6810b4371ea3990ffe25c32191f6892d6dce22fa9ea94869e919fc957c7ebcb47ae65e58409c42837cfc081046d89ce30a59191e1bc8aa4ab07f8efc349dcaa063a59e47cd8a3e9aa132dd819451de1e4c90239dd05a3d88ef5a8d9d8619c2ea96c7328f5d53ee4407b29e8bceaacb2e435e6101201b6addd2d6fb09d00db7ca6e030353b445dbec2e987133c675078c800ddaa0fdffe249484f661f42693e078a298bf9b15a0d2270a27b6c86bb658b74433c28201acdf4679bea6351b468b0749ad74a74c822da7b18a704d035041db7151155e7dd1f4526decb40e52407a00bb86919575a9bf3e5fd46270c937f3b6a202065226a88c92d8d136086c0a74559fe84d1fd4e0a3af0b26e9cee17d8a9a4c4a8e7e339a60b23f6440307eb5cbffd59c62155fa8e6b05979647613e5c4255046433aa4c3d5559cfc38349fa074f73de9a6d352ab798fc8c591596e234b2f2f9eb636574e6d53241295e1103f3ee13d9dd84bd0343a04eb99c69ec930b70b40fe891f2290c1495bb3e43be5088fa36e1599f1c5aeb8c8a5bb569f29af3ed6813c10ee232411967c6ad20229ce9aa3493dbdde14949949d3f0233fc76a1d8aba302d76ebdabf427b5f141ebd73e9f186b6a454c6faf7ebb6f2c2587df6ab941f420047b8359de4b9596ba01191cf187edc24276dffd5af3cd29c3f9ab006d587cd87456664c58395289fed0131ea224a2917f9fb89bb2ff5b887d4c5cabe903a0d559c533bcf0d13fd1f826468bfd2bf47459a6523cc41d110380f2563da625ccffc6887fac588b92e9850fa0c2a65c8b49f2d5038cf1fe4cc7d58bf5f4684e52e52e5ef02b2003f9400c6aace1acd3a720fa170e74d4fb0572cb54aa3161ac36d47c3df56d2cba3b5f08e8a94786571258393e44ac8900addb852c5b438343500f6567b6a59bfc1947f9f7cd4b5782f65b9e8920dcf24c4558317200ab263a5831bc282ec228ef1adc884dbf61489fde22602b5d01a3b6b631cfeca70581ed896c8a50a73d8245b668fc333fa9c8cc4547e44a476f7876ccc95d2f08a5ad0f528eb032591935aa69dc6c2d37a29a96e47699de6398cd0ab4bf00aa45ae92f550cac19a6dad035ee9ceea21a50d1083eafb4a21f80e28197844b23d2a5443024d5a5c26c5a76392d851e8a4f9f6496e9ee6471114638245d1c9f6287eec3cc68ce07c6d6ddcba8f01ad4e96333b4e66c324d26c592b2bd272863e24435686617c8f1423bd1998db3f087aa6a15a2ebb72682a66bc6062c45072b04744eb9c9abb4602856baa0648d421258f239ab761edcd34902f5fa218552ededc3c803e517e69c1036ff60f4365a3694575eebf0017dceecf7bcf10d27b84b92b59202548887024893761976ef509f01075a14c63471888e54c23c7ddfb105b97272d01dc9d442a269b50d74f13ecebfa18b2da40db3060097beda674ac9dc8d2cf004e4da9bbd5577a67b0730bf6aae7e8d4b6fe5fa6172149dc68628b0f46b98c6e5f04a3ff66dd7bd659bda02245db5a2bec20c48fd12c24209b20bcac5b93b5675eb637134cbd6d7cacd4cfd09a19372100df57fc8034f920dc06078ee99b322c4eef4c1cfa16295a0c5bb47aac74b030828ad5d63566607126a9debffad0e4578ffbbb48e09a1304ec05ade5826119eb4827e4be2b06026da84300b9bd1b739bd91a470c2c34cb4f539b6861998bbdd953d5726870cf8844e114b631080386d78af5d4940ae42ca8894c21847d5262ef7737a0c1ae7925b072353a7a264b53f8f4ac62bc704f9ad82fd125e50828d28ebff8382bdd5af38d9d2c97555eeca54efd227297588edba4dcc14134eb884417a02c6009e722591e1e76b4cbe351fd6ac2406aea06be6ecc221ecb87428653552a944c9849ae4ce44d16770d515e70f72b3eaf84c23a4569cb050d18c98346400e333cd0e1a0462a875193d08adfb7da1661aa2996fde1fc7fb5c4e1a09ea852b029da863ef2244173749066a7d6d8f342cfe5320cfb1dc4140f0bc764f4d72db61ed2026a050d954abddf940df15d46b1c518512b88e2ccecb9f04f4ff046c1f2ac3f2968855fe711d6219685dce2343ad064869c2dd92110101d30d7a96db5830d6e0f0ab7449f6cd9cee1cbb23e0f7a328da3471a233c0956565ff959e61b5ad269a74caf9f3cf0850004b144b900d02e51f93f4d4102d102c000aac4cb645f04ff6156d45dec875855fa5034a8696028ac94831e93e07d137", 0x1000}], 0x1, 0x0, 0x0, 0x840}}, {{&(0x7f0000001140)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001680)=[{&(0x7f00000011c0)="1c7e876bed50f142350f362f76a014b48067f0f9e4e27fbde7792d5fb9883948da7ff02286c08069d83584ec863b47ec87607b14ad0da4a5efac51bab3cfcf75754294163aac87dff13a6e631f202b514175fb", 0x53}, {&(0x7f0000001240)="ba8f4c0ab575b1a6c25e3fd222ebfc781aa7", 0x12}, {&(0x7f0000001280)="9bd45126e2619c1988624a9bec2f438d9ea821c85a13eb9393f81df5c42c640ce1b461d64cf10a699fcfcaf0fdafed01801cc00eda14e464ea91dbc20950abf4152d5ad86275ef0a8a95977cb8f0a00037b7ce5bf25a1de85dc17eef2c868e699907f1e1ce65286d2c8b78222178733c814219c565a23a90a45837cd738a8dcc35cc3242f9100ea4b1db8df0625b78da6e03051e7d640c5d9236a1b1207c002374ff108535d79e3b5c1a262ac30cab6524f9cb8fe7dca9dd79e69e2f4cd1fac7e5e3fb023c0fda1d634717a268d425f3b90b5de76bf33500e7fb9acfc592a721791fe92279ba", 0xe6}, {&(0x7f0000001380)="fa09f05947620f834a2f92df3c39c11e0a39ae6be01e974eaa16a6a5910ce13cf05e208fc1dfb0949651f38cfc0335", 0x2f}, {&(0x7f00000013c0)="1296497d5e97892e4ccbf8bc4f82b63d342d0e33ce8a4e4395024a442b3950ac0b30ed6b6351cd8f9b6fc8340b053a6b306ee64aecd42b02c6f4b3fa01c319c1654857f595ff3b23ee86b64db470b3bff00c8e9ff7c7672b358ed4ae9230091d8a24234b81b7171e72f63b832a3b19a12d9b1079a98859ac29e522ea4215530f4d85", 0x82}, {&(0x7f0000001480)="6f0d64bbcba3ff81278c2971b9707d4c37c0901e881bf6322f312a533af00cb51171b0108036d2bf4abfc566a4d1319fcb30699105c6d9234f4c861f739fdf73b9493ffbc8018272f4151d04729884190814553c3ef742aab47fec4c26687d9186245fe313462c33a6008af696e40d7d51d7e35e8125822e", 0x78}, {&(0x7f0000001500)="c8f9c445cb37d0de3e7aed7718e3960b2802439a38126659a4c20d8dd38a2e3e1d26677d96eeaa7995d67846aa0d4b0b3c573ba3e115f890eddb42ea1f077d5412d217cde5c02651e42791cd83640eb4ae948ce5933d21047e027249e1ac8ea9841d719b80ac283e7726993e4d61fafa1a", 0x71}, {&(0x7f0000001580)="cc9e7725f887dba06dbb17dbab7e46048fd7e2310f9ed52d75d7add0c73e25c8f82f3d6857", 0x25}, {&(0x7f00000015c0)="5c42a57c55f748d9165429a15e83b08823bda8534bcbae2d8df82b3715b3bac77717818c38f1329d666cfd7263a1136b8affdd3de87aec794e77bf67bc5fd45f14a996c63e8172bcf919189a8a13dd339fc5daa9b058d1cea28b52b446bfbd23a6194430d6c790acf2614cda206e5b42e6767f9fd99d1eb8ffd795b74a31afee5e137d66d1baaa641457fc88", 0x8c}], 0x9, 0x0, 0x0, 0x200440c4}}], 0x2, 0x4000000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001800)=@IORING_OP_LINK_TIMEOUT={0xf, 0x0, 0x0, 0x0, 0x0, &(0x7f00000017c0)={0x77359400}, 0x1, 0x0, 0x1}, 0x5036b271) ioctl$GIO_FONT(r0, 0x4b60, &(0x7f0000001840)=""/117) syz_io_uring_submit(0x0, 0x0, &(0x7f00000018c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x1, 0x0, 0x0, 0x0, 0x23456}, 0x10001) lstat(&(0x7f0000002100)='./file0/file0\x00', &(0x7f0000002140)={0x0, 0x0, 0x0, 0x0, 0x0}) r2 = syz_mount_image$ext4(&(0x7f0000001900)='ext3\x00', &(0x7f0000001940)='./file0\x00', 0x0, 0xa, &(0x7f0000002000)=[{&(0x7f0000001980)="b82cdb33786f1730e4a4169e2d5136e50290b8af27486bdc25bf182758868b5680de0e2bc2b03c64e95bdb7b33605e5686a1d20880aefebff3b9a93622a60a0f63d0", 0x42, 0x2}, {&(0x7f0000001a00)="133b62347d927c6d65deabd5a7f8307822cbdddfe6487e9232fc9e13797c9172481691804bb322e3743181d8693ec36d29ac38c7caa1ac883bb9e14500e21afe254001509efe43df653f3d905b29f324c9708a205b02168b24812f97a9197cff325b4f93cc5843aaedf60e228e924afde2761031de04924cfad507e93e10e62ed0488595b90816d2c3a94a5d66ac878a6f2a1aeed8acdbee23fc391a615faff3ff0cbed0b7911d3bff4247a8a404c7f8ea38d02f615644498bb986b3fa7f18ecc9bcf785c8717fa4b326f66d8a94e4ce5cca0f2508f2a3a01a6c632d6e4dfb", 0xdf, 0x5}, {&(0x7f0000001b00)="002e2eaed569e878349327c432911cecbb982c1d28ffc88815141d5a08b9d32e2dcc0c243bfa93cdf2800b4a5115ef440993eff2179d07455f9c76952e7ef351d27d6f70e51900f3ca0931b0d2f155aac8cb7a3b6f024b2537dd85c4374ca4fd407163e5693917ce84a650d986c00dc2a55d2496150421071c5470a390f87b9de88d0bc45bccb662185495eaa58043bab7562854c7c9ccf3a7a2f96b486e33b2c060e01a6d6c72b611c84c0ea056a5f26dcb19", 0xb3, 0x5}, {&(0x7f0000001bc0)="b50e609ad6fcd3eb54c2e00dcb29c22b0518eb9f", 0x14, 0x10001}, {&(0x7f0000001c00)="8f80e564580847ee2222dc344e911a033aa5e7db87feb9f08de91cb2b951fe13ff0b7ffb6f60d1e0ef984bc762b6f5f7a227b68db117ec6004a48ec741c6f49da34168e653b340f5b9e9cc9ac2a60c97082993937c893beb16e75aa83f9caa11c3b29797aa78a34cd447994c9e1a6008e36a1eb59dedb50a4ad2b08c9a33955564dc26e5ace33350ab31699e82bb1d010b19f086bbe7dd57b361116191c90a9f9fae98e2b30d04528a300b3bd06bbdfd51803f1f4e837640fa30", 0xba, 0x899a}, {&(0x7f0000001cc0)="6bf134669e2c88aa2c31079060d14e32331310df3bfc1ac1606d4e8db536084d5f3f55e9d2d2", 0x26, 0x323ec230}, {&(0x7f0000001d00)="ec88f86d83598a264828f48654acb7f83e29d5fe31431cd1058c635b7489e64b816f1db23b38d02aea69762f611cb7c2065facc6fd17b8ab9a8a7aa9165d397ebcddbc48017d1755a69526c34c81cf7d7d3fa4d10ee96bf8659c2ba0b6821496390375862176a18caff4f3508b0152ad6abb9b819eac263ff6910e62a7cf8095ef756105b0cc89ae0397730fde641a680a78005f61041b0e89f803ea", 0x9c, 0x2}, {&(0x7f0000001dc0)="87c68284a6161f374b8f75ba0c85806d359c8b5cd89220b9e334c9fc485b1d1ffd536d72025cedf6d44ecc76c813789f8b6ec3d8c7135106103d17c09bfc321867f7ad78563f6de695867fd71151519ee184fb773cd334050f8f0e6c01fa", 0x5e, 0x4}, {&(0x7f0000001e40)="ac1ccf0a1438aa5a857993bdc8500fec3e9cbede2cd5f072b0955229c5fa101079a786cfa4e3bc990ce14f371fa8ab863bb2b684d0b7c2aa2fd27869e663ebf249af3f890ab1333651a7327e290e494017d29a3eaeeb7c4e658562c45f4da4fa784a0184a8fe7137b91637c3173b79dc3296d07a4e44f2df96876e54d39dbf254a758d", 0x83, 0x20}, {&(0x7f0000001f00)="bca6c32bd5ba242427cac41f0d993f422656a1bf4ff1de569d5833b909d7df212ed3198ccfa9b3b3d5cb61d1f4e028acd1479d1f8a29b7635bd715d08ff56abe17b375566c7ba394c204d6c09bc4043abe04193ca33a36b2f470676ccd66d09b2215ae837030f4a17c63d78b7262b22faa8e9a17ea6c16b91d9460f7310582c7d4de59c003ec3c1d8e8b79a58aa0033d959d9957c09f07e4491d095611dc1dfc56f601a0704af6b902b7f49cd408fb11988df7383b71bb03e30f0cac7d02ddcfb861f3b3", 0xc4, 0x43a}], 0x4c082, &(0x7f00000021c0)={[{@i_version}], [{@euid_gt={'euid>', r1}}, {@pcr={'pcr', 0x3d, 0x31}}, {@fowner_lt={'fowner<', 0xee01}}]}) copy_file_range(r2, &(0x7f0000002240)=0x8, r2, &(0x7f0000002280)=0x5, 0x3ff, 0x0) ioctl$TIOCMGET(r0, 0x5415, &(0x7f00000022c0)) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000002300)={{0x1, 0x1, 0x18, r2, {0x21}}, './file0/file0\x00'}) sendmsg$nl_generic(r3, &(0x7f0000002480)={&(0x7f0000002340)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000002440)={&(0x7f0000002380)={0xc0, 0x22, 0x100, 0x70bd29, 0x25dfdbfc, {0x1d}, [@typed={0x8, 0x51, 0x0, 0x0, @fd=r0}, @nested={0x97, 0x27, 0x0, 0x1, [@generic="ea04548d1d2a2c72016d64ada9c6b044fc0ab90688294414aace4d410e56e07d38dac845ed72e97f0c10c9cb6c41814b11501107f3746afe2a27e4a0cf20bb48b86220d39a5207dd06e7a0732f28ea85c4dbd89450c964498d178b99510dab4a59ca2856d3f50ee71ba76da216fb2d97e95ab036cbb7ac34cf577e9109ef4e29540f3249147f69ad4c8b14", @typed={0x8, 0x4d, 0x0, 0x0, @u32=0x9}, @generic]}, @typed={0xc, 0x28, 0x0, 0x0, @u64=0x800}]}, 0xc0}}, 0x0) r4 = dup3(r0, r0, 0x80000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xe, 0x13, r4, 0x0) ioctl$VT_GETSTATE(0xffffffffffffffff, 0x5603, &(0x7f00000024c0)={0x7, 0x9988, 0x2}) ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x541c, &(0x7f0000002500)) fchmod(0xffffffffffffffff, 0x4) [ 1751.729153] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1751.796340] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1751.798633] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1751.800076] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1751.801663] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1751.803371] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1751.807559] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1751.808955] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1751.811064] Buffer I/O error on dev sr0, logical block 0, async page read [ 1751.813991] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1751.815563] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1751.817672] Buffer I/O error on dev sr0, logical block 1, async page read [ 1751.827430] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1751.828963] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1751.831058] Buffer I/O error on dev sr0, logical block 2, async page read [ 1751.832950] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1751.834522] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1751.836677] Buffer I/O error on dev sr0, logical block 3, async page read [ 1751.839730] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1751.841038] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1751.843160] Buffer I/O error on dev sr0, logical block 4, async page read [ 1751.851418] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1751.852169] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1751.853440] Buffer I/O error on dev sr0, logical block 5, async page read [ 1751.860034] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1751.860748] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1751.862004] Buffer I/O error on dev sr0, logical block 6, async page read [ 1751.867042] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1751.868278] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1751.869502] Buffer I/O error on dev sr0, logical block 7, async page read [ 1751.872665] FAULT_INJECTION: forcing a failure. [ 1751.872665] name failslab, interval 1, probability 0, space 0, times 0 [ 1751.874127] CPU: 0 PID: 10599 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1751.875007] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1751.876078] Call Trace: [ 1751.876434] dump_stack+0x107/0x167 [ 1751.876915] should_fail.cold+0x5/0xa [ 1751.877410] ? create_object.isra.0+0x3a/0xa20 [ 1751.877971] should_failslab+0x5/0x20 [ 1751.878439] kmem_cache_alloc+0x5b/0x310 [ 1751.878944] ? mark_held_locks+0x9e/0xe0 [ 1751.879448] create_object.isra.0+0x3a/0xa20 [ 1751.879993] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1751.880627] kmem_cache_alloc+0x159/0x310 [ 1751.881143] xas_alloc+0x336/0x440 [ 1751.881581] xas_create+0x34a/0x10d0 [ 1751.882046] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 1751.882670] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1751.883323] xas_store+0x8c/0x1c40 [ 1751.883773] __xa_store+0x164/0x2d0 [ 1751.884231] ? xa_delete_node+0x280/0x280 [ 1751.884755] ? trace_hardirqs_on+0x5b/0x180 [ 1751.885291] xa_store+0x31/0x50 [ 1751.885699] __io_uring_add_tctx_node+0x1cf/0x520 [ 1751.886292] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1751.886940] ? alloc_fd+0x2e7/0x670 [ 1751.887404] io_uring_setup+0x1fbb/0x2980 [ 1751.887927] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1751.888558] ? wait_for_completion_io+0x270/0x270 [ 1751.889166] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1751.889808] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.890445] do_syscall_64+0x33/0x40 [ 1751.890911] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1751.891545] RIP: 0033:0x7fddef796b19 [ 1751.892009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1751.894277] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1751.895206] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1751.896087] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1751.896969] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1751.897848] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1751.898724] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1751.953374] FAULT_INJECTION: forcing a failure. [ 1751.953374] name failslab, interval 1, probability 0, space 0, times 0 [ 1751.955796] CPU: 1 PID: 10603 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1751.957394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1751.959362] Call Trace: [ 1751.959937] dump_stack+0x107/0x167 [ 1751.960704] should_fail.cold+0x5/0xa [ 1751.961502] ? ___slab_alloc+0x155/0x700 [ 1751.962356] ? create_object.isra.0+0x3a/0xa20 [ 1751.963319] should_failslab+0x5/0x20 [ 1751.964139] kmem_cache_alloc+0x5b/0x310 [ 1751.965125] create_object.isra.0+0x3a/0xa20 [ 1751.966040] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1751.967312] kmem_cache_alloc+0x159/0x310 [ 1751.968204] xas_alloc+0x336/0x440 [ 1751.969001] xas_create+0x34a/0x10d0 [ 1751.969819] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1751.970930] xas_store+0x8c/0x1c40 [ 1751.971703] __xa_store+0x164/0x2d0 [ 1751.972484] ? xa_delete_node+0x280/0x280 [ 1751.973485] ? trace_hardirqs_on+0x5b/0x180 [ 1751.974614] xa_store+0x31/0x50 [ 1751.975309] __io_uring_add_tctx_node+0x1cf/0x520 [ 1751.976323] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1751.977419] ? alloc_fd+0x2e7/0x670 [ 1751.978244] io_uring_setup+0x1fbb/0x2980 [ 1751.979371] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1751.980541] ? wait_for_completion_io+0x270/0x270 [ 1751.981577] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1751.982674] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.983772] do_syscall_64+0x33/0x40 [ 1751.984632] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1751.985995] RIP: 0033:0x7f5e2aecab19 [ 1751.986784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1751.990647] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1751.992630] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1751.994138] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1751.995630] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1751.997191] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1751.999064] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:47:05 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 46) 12:47:05 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 45) 12:47:05 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:47:05 executing program 2: r0 = syz_mount_image$nfs(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x1f, 0x4, &(0x7f0000000b40)=[{&(0x7f0000000480)="58bc3245e739161560a89d4f2ecff7197705466e6ccf46b2d83e4a5f33381ffabb0dc2b765602c5b7a95b439b0bdc8ac8b854f31f9a8b121bf0566d3d086f2a69db7d4372be55fd16900ab9cec2deb16da9f6ecc780f5cb9e6b75a9278c68d2278d9c771a9996cbf174f04b33ad893afddf91960194e4a3e10bffe33", 0x7c, 0x8001}, {&(0x7f0000000a40)="d7c8b194a03cad0579a6258a7051b88451190a5c038eee95376a97514d38f03e9d3d84de2a6324162c5b8bda3765e0a8c082b58d5b499c5f2a0de1407d5afa1e5c740f12e7a11e3f20fde85ae0ca683b543f540360c641d5cf59514263810644431b4245910d5faa99720138d691587d290ea2d9d3db2a3480bf77f9ba5a02580c8950cba756eec56251b12635f3fba2fd03f4a1c7fdda03d26b6ccf1226cb1254ece2c81a7ca42db80afabea870ea58f1ce19b50fb57c912d3d217d32c5f2b207aa8c7a45afb73c62f28b9f00227823b1cf9a7cde3a12d193", 0xd9, 0x1a}, {&(0x7f0000000500)="9ed177d58efa4c86d78c268fa983ec528ebacf87c30b5f2e2d9e89c91bccddd1ca0ae2d85fbe3210d44e0b28f7e5acb23e341ba7c5fc2c8caf7d5e7ea66d899bf5c5d1e9216809e6ef8d98a46f8333e643e92afad3e00b90eb37d1e0199fd092fb20d9944d739e1a1c1c16a09fb0ab2b23aa4151f275856e885e8a60925ce0915514cc82c023", 0x86, 0xfffffffffffffbed}, {&(0x7f00000007c0)="b1c52d92422f21ea0cb2fa7714024b0388b63acc1e499daee7b6a149a5549a9c268dbee844a122f0065323082848cd1fe37a75cb326ec6abecc3f663f9b2eeda37ff980539db947b7ad334fcb75d100ace3011", 0x53, 0x3}], 0x200000, &(0x7f0000000bc0)={[{'.'}], [{@fsmagic={'fsmagic', 0x3d, 0xfff}}, {@smackfsroot={'smackfsroot', 0x3d, ']$-\x00'}}, {@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}, {@smackfsdef={'smackfsdef', 0x3d, 'tmpfs\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}]}) ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f0000000180)={0x0, 0x7}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='tracefs\x00', 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x20020, &(0x7f0000000880)=ANY=[@ANYBLOB="67696494c1aea9805448375a1cb01e78383d65bcda9f7f621b0e4dfbd60c1b12522dcbd7fc0bdf4c02ee8c6e4bd149a575f7132a91a423ebce06f9d2ac236e9e880fcafef88babac9beed298fe97c62c6bbc73fbec3c8e1b2726728e873483c5c932e7a3378ab8ea90bd88972e0c9f", @ANYRESHEX=0x0, @ANYBLOB="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"]) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000c80)=ANY=[@ANYRES32, @ANYBLOB="4882f537067b075b40a5512ae8bac74ffabde9510fe3403c17e0f51ceeb7da9ff247f2301a5622884432000dbf22b2d630da07af18fcc66a0be63cc40cd47de00e13545c1ea57da8459ac4c46c247250c21d1a24044b6abae4b32235a04a5693331eeed0f839d2b63f07a83739ca62491c5f4fc3ec29368e4f32253944a3b06082e5a31ba47ac45c28d87863ee7d", @ANYRESHEX]) syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x9b7a, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0), &(0x7f0000000340)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) execveat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000440)=[&(0x7f0000000400)=']$-\x00'], 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) ftruncate(r1, 0x1000003) socket$inet6_udp(0xa, 0x2, 0x0) r2 = openat$full(0xffffffffffffff9c, 0x0, 0x101000, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x73, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockopt$inet6_IPV6_IPSEC_POLICY(r4, 0x29, 0x50, 0x0, &(0x7f0000000340)) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000640)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r2, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="2e2f66696c6531006d80b461697d2d55e3655b9d34e9d485b7cbe1934e87fa968c75bb1b1a08516062e843d899b33bf7acbadf7212d503ea0b34b84c2559782160df82bab29cdd7817ef9e0214a6e0e2c5f1cb5f82153a6a606694bb7d811b369095a12761d3477cef2dc6008133521c09c45d087a3857978869a618d385edef8ecfb2088ac28edd6595af7567819489f65bbd658c421740a5ddd3c96c25e1895d7a626378747ce434dc7b5b52262585b5d711f742ad1556bd", @ANYRESDEC=r3, @ANYBLOB="cb18652cdce5e9978a8d0e5773f2bf5a16293df35068dfb16dd0f3a3e34ad9fa4e8e8261c106b784d7d739861e5a9dc8fd780bdf6ae53c639ac9695c5efc503109c3ff92b4631fe22a5ae6652feb44a1caa86035e8067c28e0b0470029899e230bea1dd8629e00000000", @ANYRESHEX=r2, @ANYRES32=r2, @ANYRES32=r2]) getsockopt$bt_BT_CHANNEL_POLICY(r5, 0x112, 0xa, &(0x7f0000000100)=0x7fffffff, &(0x7f0000000140)=0x4) pidfd_send_signal(r1, 0x30, &(0x7f00000005c0)={0x2f, 0x3ff, 0x70}, 0x0) 12:47:05 executing program 6: setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x2, &(0x7f0000000000)=0x5, 0x4) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 12:47:05 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53", 0x39, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:47:05 executing program 3: ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0) socket$nl_generic(0x10, 0x3, 0x10) pipe2(&(0x7f00000000c0), 0x80000) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x2) ftruncate(r0, 0x1000003) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000180)='net/netlink\x00') read(r2, &(0x7f00000002c0)=""/225, 0xe1) socket$nl_route(0x10, 0x3, 0x0) r3 = dup2(r1, r1) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r5 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r2, r3, r1, r4, 0xffffffffffffffff, r5, r1], 0x7) fcntl$addseals(r2, 0x409, 0x8) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x85, 0x0, 0x8000000, 0x0, 0x5}) ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, &(0x7f0000000100)={{0xffffffffffffffff, 0x3, 0x39, 0x3, 0x8}}) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) 12:47:05 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 45) [ 1766.435126] FAULT_INJECTION: forcing a failure. [ 1766.435126] name failslab, interval 1, probability 0, space 0, times 0 [ 1766.437607] CPU: 0 PID: 10619 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1766.439182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1766.440959] Call Trace: [ 1766.441525] dump_stack+0x107/0x167 [ 1766.442307] should_fail.cold+0x5/0xa [ 1766.443119] ? create_object.isra.0+0x3a/0xa20 [ 1766.444105] should_failslab+0x5/0x20 [ 1766.444920] kmem_cache_alloc+0x5b/0x310 [ 1766.445781] ? mark_held_locks+0x9e/0xe0 [ 1766.446649] create_object.isra.0+0x3a/0xa20 [ 1766.447576] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1766.448681] kmem_cache_alloc+0x159/0x310 [ 1766.449582] xas_alloc+0x336/0x440 [ 1766.450334] xas_create+0x34a/0x10d0 [ 1766.451133] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1766.452255] xas_store+0x8c/0x1c40 [ 1766.453025] __xa_store+0x164/0x2d0 [ 1766.453796] ? xa_delete_node+0x280/0x280 [ 1766.454679] ? trace_hardirqs_on+0x5b/0x180 [ 1766.455598] xa_store+0x31/0x50 [ 1766.456304] __io_uring_add_tctx_node+0x1cf/0x520 [ 1766.457326] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1766.458429] ? alloc_fd+0x2e7/0x670 [ 1766.459211] io_uring_setup+0x1fbb/0x2980 [ 1766.460107] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1766.461175] ? wait_for_completion_io+0x270/0x270 [ 1766.462225] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1766.463328] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1766.464228] FAULT_INJECTION: forcing a failure. [ 1766.464228] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1766.464427] do_syscall_64+0x33/0x40 [ 1766.467642] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1766.468736] RIP: 0033:0x7f5e2aecab19 [ 1766.469518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1766.473417] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1766.475024] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1766.476545] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1766.478054] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1766.479560] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1766.481071] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1766.482612] CPU: 1 PID: 10617 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1766.484143] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1766.484758] loop7: detected capacity change from 0 to 2048 [ 1766.485914] Call Trace: [ 1766.485935] dump_stack+0x107/0x167 [ 1766.485957] should_fail.cold+0x5/0xa [ 1766.485982] _copy_from_user+0x2e/0x1b0 [ 1766.486009] __copy_msghdr_from_user+0x91/0x4b0 [ 1766.486036] ? __ia32_sys_shutdown+0x80/0x80 [ 1766.492008] ? __lock_acquire+0x1657/0x5b00 [ 1766.492955] ___sys_recvmsg+0xd5/0x200 [ 1766.493786] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1766.494827] ? __lockdep_reset_lock+0x180/0x180 [ 1766.494863] FAULT_INJECTION: forcing a failure. [ 1766.494863] name failslab, interval 1, probability 0, space 0, times 0 [ 1766.495803] ? __fget_files+0x2cf/0x520 [ 1766.495830] ? lock_acquire+0x197/0x470 [ 1766.495847] ? find_held_lock+0x2c/0x110 [ 1766.495872] ? __might_fault+0xd3/0x180 [ 1766.501531] ? lock_downgrade+0x6d0/0x6d0 [ 1766.502437] do_recvmmsg+0x24c/0x6d0 [ 1766.503246] ? ___sys_recvmsg+0x200/0x200 [ 1766.504138] ? lock_downgrade+0x6d0/0x6d0 [ 1766.505029] ? ksys_write+0x12d/0x260 [ 1766.505855] ? wait_for_completion_io+0x270/0x270 [ 1766.506884] ? rcu_read_lock_any_held+0x75/0xa0 [ 1766.507872] ? vfs_write+0x354/0xb10 [ 1766.508678] __x64_sys_recvmmsg+0x20f/0x260 [ 1766.509599] ? ksys_write+0x1a9/0x260 [ 1766.510413] ? __do_sys_socketcall+0x600/0x600 [ 1766.511389] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1766.512508] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1766.513608] do_syscall_64+0x33/0x40 [ 1766.514402] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1766.515495] RIP: 0033:0x7f2d4b68ab19 [ 1766.516296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1766.520211] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1766.521830] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1766.523343] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1766.524872] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1766.526394] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1766.527913] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1766.529474] CPU: 0 PID: 10618 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1766.530961] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1766.532816] Call Trace: [ 1766.533377] dump_stack+0x107/0x167 [ 1766.534155] should_fail.cold+0x5/0xa [ 1766.534964] ? xas_alloc+0x336/0x440 [ 1766.535757] should_failslab+0x5/0x20 [ 1766.536588] kmem_cache_alloc+0x5b/0x310 [ 1766.537462] xas_alloc+0x336/0x440 [ 1766.538218] xas_create+0x34a/0x10d0 [ 1766.539014] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1766.540135] xas_store+0x8c/0x1c40 [ 1766.540910] __xa_store+0x164/0x2d0 [ 1766.541687] ? xa_delete_node+0x280/0x280 [ 1766.542580] ? trace_hardirqs_on+0x5b/0x180 [ 1766.543513] xa_store+0x31/0x50 [ 1766.544225] __io_uring_add_tctx_node+0x1cf/0x520 [ 1766.545251] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1766.546368] ? alloc_fd+0x2e7/0x670 [ 1766.547156] io_uring_setup+0x1fbb/0x2980 [ 1766.548045] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1766.549124] ? wait_for_completion_io+0x270/0x270 [ 1766.550174] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1766.551251] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1766.552362] do_syscall_64+0x33/0x40 [ 1766.553151] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1766.554240] RIP: 0033:0x7fddef796b19 [ 1766.555027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1766.558947] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1766.560581] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1766.562091] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1766.563603] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1766.565121] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1766.566640] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:47:05 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 47) [ 1766.595522] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1766.640112] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1766.642231] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1766.643675] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1766.645087] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1766.646708] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 24 prio class 0 [ 1766.649429] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1766.651063] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1766.653308] Buffer I/O error on dev sr0, logical block 0, async page read [ 1766.655332] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1766.656770] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1766.659057] Buffer I/O error on dev sr0, logical block 1, async page read [ 1766.661782] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1766.663755] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1766.666088] Buffer I/O error on dev sr0, logical block 2, async page read [ 1766.667985] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1766.669359] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1766.671585] Buffer I/O error on dev sr0, logical block 3, async page read [ 1766.673512] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1766.674710] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1766.676876] Buffer I/O error on dev sr0, logical block 4, async page read [ 1766.678516] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1766.679729] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1766.682001] Buffer I/O error on dev sr0, logical block 5, async page read [ 1766.683635] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1766.684854] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1766.687010] Buffer I/O error on dev sr0, logical block 6, async page read [ 1766.697781] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1766.699027] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1766.701385] Buffer I/O error on dev sr0, logical block 7, async page read 12:47:05 executing program 3: ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0) socket$nl_generic(0x10, 0x3, 0x10) pipe2(&(0x7f00000000c0), 0x80000) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x2) ftruncate(r0, 0x1000003) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000180)='net/netlink\x00') read(r2, &(0x7f00000002c0)=""/225, 0xe1) socket$nl_route(0x10, 0x3, 0x0) r3 = dup2(r1, r1) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r5 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r2, r3, r1, r4, 0xffffffffffffffff, r5, r1], 0x7) fcntl$addseals(r2, 0x409, 0x8) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x85, 0x0, 0x8000000, 0x0, 0x5}) ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, &(0x7f0000000100)={{0xffffffffffffffff, 0x3, 0x39, 0x3, 0x8}}) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) 12:47:05 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1766.780919] FAULT_INJECTION: forcing a failure. [ 1766.780919] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1766.783570] CPU: 1 PID: 10637 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1766.785054] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1766.786836] Call Trace: [ 1766.787404] dump_stack+0x107/0x167 [ 1766.788190] should_fail.cold+0x5/0xa [ 1766.789014] _copy_from_user+0x2e/0x1b0 [ 1766.789875] __copy_msghdr_from_user+0x91/0x4b0 [ 1766.790873] ? __ia32_sys_shutdown+0x80/0x80 [ 1766.791815] ? __lock_acquire+0x1657/0x5b00 [ 1766.792771] ___sys_recvmsg+0xd5/0x200 [ 1766.793607] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1766.794656] ? __lockdep_reset_lock+0x180/0x180 [ 1766.795657] ? __fget_files+0x2cf/0x520 [ 1766.796536] ? lock_acquire+0x197/0x470 [ 1766.797385] ? find_held_lock+0x2c/0x110 [ 1766.798263] ? __might_fault+0xd3/0x180 [ 1766.799115] ? lock_downgrade+0x6d0/0x6d0 [ 1766.800030] do_recvmmsg+0x24c/0x6d0 [ 1766.800858] ? ___sys_recvmsg+0x200/0x200 [ 1766.801746] ? lock_downgrade+0x6d0/0x6d0 [ 1766.802648] ? ksys_write+0x12d/0x260 [ 1766.803485] ? wait_for_completion_io+0x270/0x270 [ 1766.804527] ? rcu_read_lock_any_held+0x75/0xa0 [ 1766.805527] ? vfs_write+0x354/0xb10 [ 1766.806336] __x64_sys_recvmmsg+0x20f/0x260 [ 1766.807251] ? ksys_write+0x1a9/0x260 [ 1766.808079] ? __do_sys_socketcall+0x600/0x600 [ 1766.809063] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1766.810185] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1766.811292] do_syscall_64+0x33/0x40 [ 1766.812101] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1766.813196] RIP: 0033:0x7f2d4b68ab19 [ 1766.813992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1766.817919] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1766.819550] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1766.821080] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1766.822626] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1766.824157] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1766.825682] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:47:05 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53", 0x39, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:47:05 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 46) 12:47:06 executing program 2: syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x900020, &(0x7f0000000900)=ANY=[]) setfsgid(0xee01) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xb052) syz_io_uring_submit(0x0, 0x0, 0x0, 0x4) chdir(&(0x7f0000000040)='./file0\x00') r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r1}}, 0x10000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x40000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x2004, @fd_index=0x1, 0x3f, 0x0}, 0x4) unlinkat(r0, &(0x7f00000004c0)='./file0\x00', 0x200) ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getdents64(r0, &(0x7f0000000500)=""/4096, 0x1000) r3 = open(&(0x7f0000000180)='./file0\x00', 0x240880, 0x0) mkdirat(r3, &(0x7f0000000200)='./file0\x00', 0x86) 12:47:06 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 46) 12:47:06 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 48) 12:47:06 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f0000000140)=0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000180)=@sco={0x1f, @fixed}}, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000300)={0x0, 0xfffffffc, 0x20}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000140)=0x0) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r4, &(0x7f00000003c0)={0x1f, 0x6, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x8000, 0x1}, 0xe) syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000180)=@sco={0x1f, @fixed}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r8}}, 0x6) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x3, 0x4000, @fd_index=0x7, 0x401, &(0x7f0000000100)=[{&(0x7f0000000400)=""/61, 0x3d}], 0x1, 0x12}, 0x1) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}}, 0x2) syz_io_uring_submit(r5, r6, &(0x7f0000000100)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, 0xffffffffffffff9c, &(0x7f00000000c0)={0x82602, 0xa8, 0x12}, &(0x7f0000000380)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r8}}, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r6, &(0x7f0000000040)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x31713}, 0x9) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) [ 1767.055805] loop7: detected capacity change from 0 to 2048 [ 1767.067963] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1767.081143] FAULT_INJECTION: forcing a failure. [ 1767.081143] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1767.083687] CPU: 0 PID: 10652 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1767.085181] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1767.086957] Call Trace: [ 1767.087541] dump_stack+0x107/0x167 [ 1767.088348] should_fail.cold+0x5/0xa [ 1767.089164] __alloc_pages_nodemask+0x182/0x600 [ 1767.090158] ? stack_trace_save+0x8c/0xc0 [ 1767.091040] ? stack_trace_consume_entry+0x160/0x160 [ 1767.092128] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1767.093431] ? kmem_cache_alloc+0x301/0x310 [ 1767.094356] alloc_pages_current+0x187/0x280 [ 1767.095304] allocate_slab+0x26f/0x380 [ 1767.096146] ___slab_alloc+0x470/0x700 [ 1767.096978] ? lock_acquire+0x197/0x470 [ 1767.097835] ? create_object.isra.0+0x3a/0xa20 [ 1767.098801] ? lock_release+0x680/0x680 [ 1767.099649] ? find_held_lock+0x2c/0x110 [ 1767.100533] ? create_object.isra.0+0x3a/0xa20 [ 1767.101523] ? kmem_cache_alloc+0x301/0x310 [ 1767.102440] ? create_object.isra.0+0x3a/0xa20 [ 1767.103417] kmem_cache_alloc+0x301/0x310 [ 1767.104325] create_object.isra.0+0x3a/0xa20 [ 1767.105259] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1767.106342] kmem_cache_alloc+0x159/0x310 [ 1767.107236] xas_alloc+0x336/0x440 [ 1767.108000] xas_create+0x34a/0x10d0 [ 1767.108822] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1767.109949] xas_store+0x8c/0x1c40 [ 1767.110722] __xa_store+0x164/0x2d0 [ 1767.111499] ? xa_delete_node+0x280/0x280 [ 1767.112401] ? trace_hardirqs_on+0x5b/0x180 [ 1767.113325] xa_store+0x31/0x50 [ 1767.114032] __io_uring_add_tctx_node+0x1cf/0x520 [ 1767.115069] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1767.116198] ? alloc_fd+0x2e7/0x670 [ 1767.116992] io_uring_setup+0x1fbb/0x2980 [ 1767.117886] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1767.118966] ? wait_for_completion_io+0x270/0x270 [ 1767.120029] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1767.121156] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1767.122262] do_syscall_64+0x33/0x40 [ 1767.123055] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1767.124156] RIP: 0033:0x7f5e2aecab19 [ 1767.124952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1767.128875] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1767.130510] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1767.132027] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1767.133566] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1767.135090] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1767.136624] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1767.170455] FAULT_INJECTION: forcing a failure. [ 1767.170455] name failslab, interval 1, probability 0, space 0, times 0 [ 1767.173108] CPU: 1 PID: 10656 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1767.174635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1767.176580] Call Trace: [ 1767.177319] dump_stack+0x107/0x167 [ 1767.178235] should_fail.cold+0x5/0xa [ 1767.179196] ? xas_alloc+0x336/0x440 [ 1767.180001] should_failslab+0x5/0x20 [ 1767.180820] kmem_cache_alloc+0x5b/0x310 [ 1767.181693] xas_alloc+0x336/0x440 [ 1767.182453] xas_create+0x34a/0x10d0 [ 1767.183269] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1767.184410] xas_store+0x8c/0x1c40 [ 1767.185195] __xa_store+0x164/0x2d0 [ 1767.185984] ? xa_delete_node+0x280/0x280 [ 1767.186881] ? trace_hardirqs_on+0x5b/0x180 [ 1767.187809] xa_store+0x31/0x50 [ 1767.188535] __io_uring_add_tctx_node+0x1cf/0x520 [ 1767.189561] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1767.190674] ? alloc_fd+0x2e7/0x670 [ 1767.191617] io_uring_setup+0x1fbb/0x2980 [ 1767.192793] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1767.193878] ? wait_for_completion_io+0x270/0x270 [ 1767.195091] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1767.196496] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1767.197688] do_syscall_64+0x33/0x40 [ 1767.198622] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1767.199929] RIP: 0033:0x7fddef796b19 [ 1767.200739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1767.204662] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1767.206541] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1767.208270] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1767.209786] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1767.211449] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1767.212982] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1767.229489] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1767.231887] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1767.233403] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1767.234803] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1767.236473] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 5 prio class 0 [ 1767.241739] FAULT_INJECTION: forcing a failure. [ 1767.241739] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1767.244526] CPU: 1 PID: 10658 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1767.246163] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1767.248132] Call Trace: [ 1767.248700] dump_stack+0x107/0x167 [ 1767.249698] should_fail.cold+0x5/0xa [ 1767.250572] _copy_from_user+0x2e/0x1b0 [ 1767.251428] __copy_msghdr_from_user+0x91/0x4b0 [ 1767.252518] ? __ia32_sys_shutdown+0x80/0x80 [ 1767.253690] ? __lock_acquire+0x1657/0x5b00 [ 1767.254792] ___sys_recvmsg+0xd5/0x200 [ 1767.255787] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1767.257091] ? __lockdep_reset_lock+0x180/0x180 [ 1767.258145] ? __fget_files+0x2cf/0x520 [ 1767.259196] ? lock_acquire+0x197/0x470 [ 1767.260261] ? find_held_lock+0x2c/0x110 [ 1767.261199] ? __might_fault+0xd3/0x180 [ 1767.262217] ? lock_downgrade+0x6d0/0x6d0 [ 1767.263330] do_recvmmsg+0x24c/0x6d0 [ 1767.264316] ? ___sys_recvmsg+0x200/0x200 [ 1767.265447] ? lock_downgrade+0x6d0/0x6d0 [ 1767.266401] ? ksys_write+0x12d/0x260 [ 1767.267373] ? wait_for_completion_io+0x270/0x270 [ 1767.268740] ? rcu_read_lock_any_held+0x75/0xa0 [ 1767.269727] ? vfs_write+0x354/0xb10 12:47:06 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) [ 1767.270675] __x64_sys_recvmmsg+0x20f/0x260 [ 1767.271923] ? ksys_write+0x1a9/0x260 [ 1767.272931] ? __do_sys_socketcall+0x600/0x600 [ 1767.273910] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1767.275183] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1767.276541] do_syscall_64+0x33/0x40 [ 1767.277389] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1767.278480] RIP: 0033:0x7f2d4b68ab19 [ 1767.279273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1767.283189] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1767.284814] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1767.286342] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1767.287866] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1767.289391] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1767.290907] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1767.300601] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1767.301855] Buffer I/O error on dev sr0, logical block 0, async page read [ 1767.304518] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1767.305876] Buffer I/O error on dev sr0, logical block 1, async page read 12:47:06 executing program 3: ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x227b, &(0x7f0000000080)=0x1) syz_emit_ethernet(0x19, &(0x7f0000000040)={@multicast, @multicast, @val={@val={0x9100, 0x7, 0x0, 0x4}, {0x8100, 0x0, 0x1, 0x3}}, {@x25={0x805, {0x0, 0x6, 0xf3}}}}, 0x0) syz_extract_tcp_res$synack(&(0x7f0000000000), 0x1, 0x0) [ 1767.313559] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1767.319197] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1767.326441] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1767.331493] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1767.336910] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1767.338828] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1767.391251] EXT4-fs (loop7): VFS: Can't find ext4 filesystem 12:47:23 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 47) 12:47:23 executing program 6: io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r0, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) ioctl$VT_RELDISP(r1, 0x5605) r2 = open_tree(r1, &(0x7f0000000100)='./file0\x00', 0x901) openat$cgroup_int(r2, &(0x7f0000000240)='hugetlb.1GB.failcnt\x00', 0x2, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = socket$inet6(0xa, 0x3, 0x1e106d51) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r3, 0xffffffffffffffff, 0x0) r5 = open(&(0x7f0000000040)='./file0\x00', 0x2, 0x100) getsockopt$inet6_mreq(r4, 0x29, 0x15, &(0x7f00000001c0)={@private2, 0x0}, &(0x7f00000002c0)=0x14) ioctl$sock_inet6_SIOCDIFADDR(r5, 0x8936, &(0x7f0000000300)={@local, 0x5a, r6}) 12:47:23 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 49) 12:47:23 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:47:23 executing program 3: perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x4, @perf_config_ext={0x4, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002700)='/proc/stat\x00', 0x0, 0x0) r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) creat(&(0x7f0000000000)='./file0\x00', 0x4) r3 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) connect$inet(r3, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4) sendto$inet(r3, &(0x7f0000000600)="a1", 0x1, 0x0, 0x0, 0x0) sendto$inet(r3, &(0x7f0000000180)='\\', 0xfffffdef, 0x0, 0x0, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) connect$inet(r4, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4) sendto$inet(r4, &(0x7f0000000600)="a1", 0x1, 0x0, 0x0, 0x0) sendto$inet(r4, &(0x7f0000000180)='\\', 0xfffffdef, 0x0, 0x0, 0x0) ioctl$sock_bt_hci(r2, 0x800448d7, &(0x7f0000000100)="10858e3383e7ca458bee67bd6d2fffc06bfefed536a73f3f7cbde65136007f186619f0720d83a0d1f4e86ddcdfcaee40c51ca1af") ioctl$BTRFS_IOC_SNAP_CREATE(r3, 0x50009401, &(0x7f0000000480)={{r4}, "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"}) 12:47:23 executing program 2: unshare(0x2c060e00) r0 = semget$private(0x0, 0x4, 0x100) semop(r0, &(0x7f00000000c0)=[{0x4, 0x20, 0x800}, {0x4, 0x4, 0x1000}, {0x3, 0xdc, 0x1000}, {0x4, 0x9, 0x1800}, {0x1, 0x8}, {0x2, 0x200}, {0x0, 0x8, 0x1000}, {0x1, 0x7, 0x1000}], 0x8) r1 = semget$private(0x0, 0x6, 0x0) semctl$IPC_SET(r1, 0x0, 0x1, 0x0) clock_gettime(0x0, &(0x7f0000000140)) unshare(0x800) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x4c03, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8377ccd0, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) unshare(0x48020200) 12:47:23 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:47:23 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 47) [ 1784.047389] FAULT_INJECTION: forcing a failure. [ 1784.047389] name failslab, interval 1, probability 0, space 0, times 0 [ 1784.049905] CPU: 0 PID: 10681 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1784.051408] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1784.053214] Call Trace: [ 1784.053786] dump_stack+0x107/0x167 [ 1784.054574] should_fail.cold+0x5/0xa [ 1784.055388] ? xas_alloc+0x336/0x440 [ 1784.056187] should_failslab+0x5/0x20 [ 1784.057008] kmem_cache_alloc+0x5b/0x310 [ 1784.057907] xas_alloc+0x336/0x440 [ 1784.058685] xas_create+0x34a/0x10d0 [ 1784.059514] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1784.060669] xas_store+0x8c/0x1c40 [ 1784.061452] __xa_store+0x164/0x2d0 [ 1784.062232] ? xa_delete_node+0x280/0x280 [ 1784.063136] ? trace_hardirqs_on+0x5b/0x180 [ 1784.064062] xa_store+0x31/0x50 [ 1784.064777] __io_uring_add_tctx_node+0x1cf/0x520 [ 1784.065837] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1784.066994] ? alloc_fd+0x2e7/0x670 [ 1784.067807] io_uring_setup+0x1fbb/0x2980 [ 1784.068739] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1784.069845] ? wait_for_completion_io+0x270/0x270 [ 1784.070920] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1784.072073] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1784.073213] do_syscall_64+0x33/0x40 [ 1784.074021] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1784.075158] RIP: 0033:0x7fddef796b19 [ 1784.076070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1784.080062] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1784.081723] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1784.083282] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1784.084831] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1784.086369] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1784.087923] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1784.095379] FAULT_INJECTION: forcing a failure. [ 1784.095379] name failslab, interval 1, probability 0, space 0, times 0 [ 1784.097798] CPU: 0 PID: 10682 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1784.099276] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1784.101073] Call Trace: [ 1784.101646] dump_stack+0x107/0x167 [ 1784.102439] should_fail.cold+0x5/0xa [ 1784.103262] ? xas_alloc+0x336/0x440 [ 1784.104061] should_failslab+0x5/0x20 [ 1784.104901] kmem_cache_alloc+0x5b/0x310 [ 1784.105786] xas_alloc+0x336/0x440 [ 1784.106565] xas_create+0x34a/0x10d0 [ 1784.107368] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1784.108511] xas_store+0x8c/0x1c40 [ 1784.109288] __xa_store+0x164/0x2d0 [ 1784.110063] ? xa_delete_node+0x280/0x280 [ 1784.110975] ? trace_hardirqs_on+0x5b/0x180 [ 1784.111913] xa_store+0x31/0x50 [ 1784.112629] __io_uring_add_tctx_node+0x1cf/0x520 [ 1784.113660] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1784.114773] ? alloc_fd+0x2e7/0x670 [ 1784.115568] io_uring_setup+0x1fbb/0x2980 [ 1784.116477] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1784.117556] ? wait_for_completion_io+0x270/0x270 [ 1784.118625] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1784.119760] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1784.120891] do_syscall_64+0x33/0x40 [ 1784.121700] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1784.122812] RIP: 0033:0x7f5e2aecab19 [ 1784.123613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1784.127595] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1784.129252] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1784.130783] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1784.132345] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1784.133876] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1784.135408] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1784.159488] FAULT_INJECTION: forcing a failure. [ 1784.159488] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1784.161279] CPU: 1 PID: 10688 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1784.162337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1784.163603] Call Trace: [ 1784.164017] dump_stack+0x107/0x167 [ 1784.164582] should_fail.cold+0x5/0xa [ 1784.165189] _copy_from_user+0x2e/0x1b0 [ 1784.165942] __copy_msghdr_from_user+0x91/0x4b0 [ 1784.166660] ? __ia32_sys_shutdown+0x80/0x80 [ 1784.167348] ? __lock_acquire+0x1657/0x5b00 [ 1784.167999] ___sys_recvmsg+0xd5/0x200 [ 1784.168591] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1784.169319] ? __lockdep_reset_lock+0x180/0x180 [ 1784.170046] ? lock_acquire+0x197/0x470 [ 1784.170652] ? find_held_lock+0x2c/0x110 [ 1784.171275] ? __might_fault+0xd3/0x180 [ 1784.171879] ? lock_downgrade+0x6d0/0x6d0 [ 1784.172531] do_recvmmsg+0x24c/0x6d0 [ 1784.173085] ? ___sys_recvmsg+0x200/0x200 [ 1784.173720] ? lock_downgrade+0x6d0/0x6d0 [ 1784.174366] ? ksys_write+0x12d/0x260 [ 1784.174955] ? wait_for_completion_io+0x270/0x270 [ 1784.175688] ? rcu_read_lock_any_held+0x75/0xa0 [ 1784.176393] ? vfs_write+0x354/0xb10 [ 1784.176948] __x64_sys_recvmmsg+0x20f/0x260 [ 1784.177588] ? ksys_write+0x1a9/0x260 [ 1784.178169] ? __do_sys_socketcall+0x600/0x600 [ 1784.178860] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1784.179642] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1784.180427] do_syscall_64+0x33/0x40 [ 1784.180976] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1784.181763] RIP: 0033:0x7f2d4b68ab19 [ 1784.182316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1784.185019] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1784.186152] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1784.187236] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1784.188297] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1784.189419] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1784.190455] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:47:23 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 48) 12:47:23 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 48) [ 1784.217998] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1784.230090] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1784.231665] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1784.232727] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1784.233702] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1784.234848] print_req_error: 8 callbacks suppressed [ 1784.234862] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1784.237567] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.238992] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1784.241363] buffer_io_error: 6 callbacks suppressed [ 1784.241375] Buffer I/O error on dev sr0, logical block 0, async page read [ 1784.245688] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.246911] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1784.249694] Buffer I/O error on dev sr0, logical block 1, async page read [ 1784.251321] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.252530] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 6 prio class 0 [ 1784.254662] Buffer I/O error on dev sr0, logical block 2, async page read [ 1784.256331] Buffer I/O error on dev sr0, logical block 3, async page read [ 1784.257850] Buffer I/O error on dev sr0, logical block 4, async page read [ 1784.259383] Buffer I/O error on dev sr0, logical block 5, async page read [ 1784.260949] Buffer I/O error on dev sr0, logical block 6, async page read [ 1784.262537] Buffer I/O error on dev sr0, logical block 7, async page read 12:47:23 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 50) 12:47:23 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="626c6f636b5f76616c69646974792c7573726a71756f74613d2e2c686173682c646f6e745f6d6561737572652c7375626a5f757365723d65787434002c7065726d69745f646972656374696f2c7375626a5f757365723d32262b2c00126c59aeb77081f69016fc569c3cf70df00714be05eb0ef8603c1a676e00415d7233aeda7ca438013c2aa6e61f74f8aa5e23663de87666ec6ffc379dd92b75cbcca93b7d6db80f6f25e2c9cf7afd000000000000"]) 12:47:23 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e21, 0x1000, @empty, 0xff}, 0x1c) close_range(r0, 0xffffffffffffffff, 0x0) [ 1784.358754] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1784.360176] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1784.361171] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1784.362072] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1784.363127] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1784.369668] FAULT_INJECTION: forcing a failure. [ 1784.369668] name failslab, interval 1, probability 0, space 0, times 0 [ 1784.371257] CPU: 1 PID: 10696 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1784.372219] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1784.373410] Call Trace: [ 1784.373777] dump_stack+0x107/0x167 [ 1784.374306] should_fail.cold+0x5/0xa [ 1784.374843] ? xas_alloc+0x336/0x440 [ 1784.375372] should_failslab+0x5/0x20 [ 1784.375903] kmem_cache_alloc+0x5b/0x310 [ 1784.376601] xas_alloc+0x336/0x440 [ 1784.377145] xas_create+0x34a/0x10d0 [ 1784.377892] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1784.378621] xas_store+0x8c/0x1c40 [ 1784.379129] __xa_store+0x164/0x2d0 [ 1784.379635] ? xa_delete_node+0x280/0x280 [ 1784.380221] ? trace_hardirqs_on+0x5b/0x180 [ 1784.380958] xa_store+0x31/0x50 [ 1784.381471] __io_uring_add_tctx_node+0x1cf/0x520 [ 1784.382272] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1784.383294] ? alloc_fd+0x2e7/0x670 [ 1784.383891] io_uring_setup+0x1fbb/0x2980 [ 1784.384570] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1784.385414] ? wait_for_completion_io+0x270/0x270 [ 1784.386141] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1784.387025] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1784.387875] do_syscall_64+0x33/0x40 [ 1784.388520] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1784.389378] RIP: 0033:0x7fddef796b19 [ 1784.389998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1784.392718] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1784.393764] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1784.394745] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1784.395720] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1784.396712] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1784.397696] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1784.402508] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.403294] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1784.404739] Buffer I/O error on dev sr0, logical block 0, async page read [ 1784.406887] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.407663] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1784.409045] Buffer I/O error on dev sr0, logical block 1, async page read [ 1784.417831] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.418609] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1784.421152] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.421913] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1784.423737] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.424739] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 12:47:23 executing program 3: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1784.430772] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.431747] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.432992] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.447738] FAULT_INJECTION: forcing a failure. [ 1784.447738] name failslab, interval 1, probability 0, space 0, times 0 [ 1784.450223] CPU: 0 PID: 10700 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1784.451694] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1784.453471] Call Trace: [ 1784.454042] dump_stack+0x107/0x167 [ 1784.454819] should_fail.cold+0x5/0xa [ 1784.455641] ? xas_alloc+0x336/0x440 [ 1784.456444] should_failslab+0x5/0x20 [ 1784.457261] kmem_cache_alloc+0x5b/0x310 [ 1784.458142] xas_alloc+0x336/0x440 [ 1784.458909] xas_create+0x34a/0x10d0 [ 1784.459716] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1784.460844] xas_store+0x8c/0x1c40 [ 1784.461633] __xa_store+0x164/0x2d0 [ 1784.462410] ? xa_delete_node+0x280/0x280 [ 1784.463328] ? trace_hardirqs_on+0x5b/0x180 [ 1784.464303] xa_store+0x31/0x50 [ 1784.465015] __io_uring_add_tctx_node+0x1cf/0x520 [ 1784.466061] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1784.467180] ? alloc_fd+0x2e7/0x670 [ 1784.467975] io_uring_setup+0x1fbb/0x2980 [ 1784.468877] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1784.469959] ? wait_for_completion_io+0x270/0x270 [ 1784.471017] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1784.472167] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1784.473304] do_syscall_64+0x33/0x40 [ 1784.474122] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1784.475235] RIP: 0033:0x7f5e2aecab19 [ 1784.476034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1784.480004] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1784.481639] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1784.483172] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1784.484693] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1784.486247] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1784.487789] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:47:23 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 49) [ 1784.574846] FAULT_INJECTION: forcing a failure. [ 1784.574846] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1784.576811] CPU: 1 PID: 10707 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1784.577753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1784.578900] Call Trace: [ 1784.579426] dump_stack+0x107/0x167 [ 1784.579982] should_fail.cold+0x5/0xa [ 1784.580586] _copy_from_user+0x2e/0x1b0 [ 1784.581207] __copy_msghdr_from_user+0x91/0x4b0 [ 1784.581929] ? __ia32_sys_shutdown+0x80/0x80 [ 1784.582611] ? __lock_acquire+0x1657/0x5b00 [ 1784.583282] ___sys_recvmsg+0xd5/0x200 [ 1784.583837] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1784.584474] ? __lockdep_reset_lock+0x180/0x180 [ 1784.585085] ? lock_acquire+0x197/0x470 [ 1784.585593] ? find_held_lock+0x2c/0x110 [ 1784.586217] ? __might_fault+0xd3/0x180 [ 1784.586788] ? lock_downgrade+0x6d0/0x6d0 [ 1784.587432] do_recvmmsg+0x24c/0x6d0 [ 1784.587912] ? ___sys_recvmsg+0x200/0x200 [ 1784.588544] ? lock_downgrade+0x6d0/0x6d0 [ 1784.589188] ? ksys_write+0x12d/0x260 [ 1784.589774] ? wait_for_completion_io+0x270/0x270 [ 1784.590508] ? rcu_read_lock_any_held+0x75/0xa0 [ 1784.591118] ? vfs_write+0x354/0xb10 [ 1784.591588] __x64_sys_recvmmsg+0x20f/0x260 [ 1784.592124] ? ksys_write+0x1a9/0x260 [ 1784.592607] ? __do_sys_socketcall+0x600/0x600 [ 1784.593188] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1784.594008] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1784.594793] do_syscall_64+0x33/0x40 [ 1784.595354] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1784.596137] RIP: 0033:0x7f2d4b68ab19 [ 1784.596717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1784.599466] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1784.600627] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1784.601528] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1784.602615] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1784.603682] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1784.604752] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1784.612581] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 1784.677514] FAULT_INJECTION: forcing a failure. [ 1784.677514] name failslab, interval 1, probability 0, space 0, times 0 [ 1784.679051] CPU: 1 PID: 10713 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1784.680053] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1784.681236] Call Trace: [ 1784.681622] dump_stack+0x107/0x167 [ 1784.682054] should_fail.cold+0x5/0xa [ 1784.682527] ? xas_alloc+0x336/0x440 [ 1784.682972] should_failslab+0x5/0x20 [ 1784.683431] kmem_cache_alloc+0x5b/0x310 [ 1784.683915] xas_alloc+0x336/0x440 [ 1784.684354] xas_create+0x34a/0x10d0 [ 1784.684814] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1784.685563] xas_store+0x8c/0x1c40 [ 1784.686040] __xa_store+0x164/0x2d0 [ 1784.686493] ? xa_delete_node+0x280/0x280 [ 1784.686987] ? trace_hardirqs_on+0x5b/0x180 [ 1784.687513] xa_store+0x31/0x50 [ 1784.687996] __io_uring_add_tctx_node+0x1cf/0x520 [ 1784.688644] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1784.689268] ? alloc_fd+0x2e7/0x670 [ 1784.689810] io_uring_setup+0x1fbb/0x2980 [ 1784.690325] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1784.690945] ? wait_for_completion_io+0x270/0x270 [ 1784.691529] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1784.692152] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1784.692778] do_syscall_64+0x33/0x40 [ 1784.693243] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1784.693858] RIP: 0033:0x7fddef796b19 [ 1784.694390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1784.697043] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1784.698038] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1784.699040] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1784.700062] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1784.701055] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1784.701913] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1784.779298] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1784.780747] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1784.781858] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1784.782771] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1784.785725] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.787959] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.789968] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.791301] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.792625] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.793957] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.795579] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1784.797026] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:47:39 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 49) 12:47:39 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)=ANY=[]) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000800)=ANY=[]) r1 = socket$netlink(0x10, 0x3, 0x0) fallocate(r0, 0x30, 0xffffffffffffff75, 0x10001) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000940)=ANY=[@ANYBLOB="95b50000018fd33a0000000000000000180000", @ANYRES32=r0, @ANYBLOB="04a500006ccf5e00a30878ffff75db00808ebf8b85b5363cdf1595a0bee6cc6ec57b594af05d2bcaace304ab11b2f0de03bff4371a9012ef1c32b4b5c6366f172a140b3c90f6de5877ef5a6a3a26844c4bc8c82413041c010b22156a4c9a107723a5f2df0884ac7b2d8cf48af5dc01fc3d1d08a58cc865e3f2f712e1a4eabdc0986bd04ce4c790d9de030b3ca0239c52c979afa3e6e8c80f01000eba254f7d13aa0b68306d66d92477fe946e898db0c1"]) r3 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x200000, 0x0) openat(r3, &(0x7f0000000400)='./file1\x00', 0x0, 0x114) faccessat(r1, &(0x7f0000000000)='./file1\x00', 0xb0) read(r2, &(0x7f00000006c0)=""/135, 0x87) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x8e1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) sendmsg$NLBL_CALIPSO_C_LISTALL(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)={0x54, 0x0, 0x900, 0x70bd2c, 0x25dfdbfd, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x4008090) preadv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4) r4 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3f}, 0x0, 0x0, 0x9, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x220998a32b054e1b, 0x80, 0x0, 0x1, 0x5, 0x9, 0x0, 0x0, 0x68, 0x8, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2dd, 0x2, @perf_bp={0x0}, 0x210, 0x80000000, 0x8, 0x0, 0x0, 0x9, 0x1, 0x0, 0x81, 0x0, 0xbe}, 0x0, 0x0, r4, 0x0) sendfile(r4, 0xffffffffffffffff, &(0x7f0000000240)=0xb81, 0x9) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) 12:47:39 executing program 6: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r0, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000001c0)={0x5c, 0x0, &(0x7f0000000100)=[@reply_sg={0x40486312, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000080)={@flat=@weak_handle={0x77682a85, 0x10a, 0x3}, @fd, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000000)={0x0, 0x18, 0x30}}, 0x40}, @dead_binder_done, @register_looper], 0xa, 0x0, &(0x7f0000000180)="1b352280e4eb424b31e6"}) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) r2 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'veth1_to_bond\x00'}) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r3, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'vxcan1\x00'}) close_range(r1, 0xffffffffffffffff, 0x0) 12:47:39 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x0, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:47:39 executing program 2: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = getpgrp(0x0) pidfd_open(r3, 0x0) fcntl$lock(r2, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x6, 0xff, r3}) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000fffffdfd01000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006b1300000000000000000000000000000000000000000000ffffffffffffffff00000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000400"/256]) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'macsec0\x00', &(0x7f0000000180)=ANY=[@ANYBLOB="3c0000000100000003000000030000000220000001000100060000000700000001000080"]}) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1) r4 = dup(0xffffffffffffffff) ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6) syz_io_uring_setup(0x4d4f, &(0x7f0000000480), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000240)=0x0, &(0x7f00000002c0)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000500)=""/142, 0x8e}], 0x1}, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r6, &(0x7f0000000280)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000ac0)={&(0x7f0000000380)=@in6={0xa, 0x0, 0x0, @private2}, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000b00)=""/221, 0xdd}, {&(0x7f00000007c0)=""/207, 0xcf}, {&(0x7f00000006c0)=""/156, 0x9c}, {&(0x7f0000000400)=""/10, 0xa}, {&(0x7f0000000900)=""/123, 0x7b}, {&(0x7f00000005c0)=""/163, 0xa3}], 0x6, &(0x7f0000000440)=""/8, 0x8}, 0x0, 0x43, 0x1, {0x3}}, 0x8) unshare(0x48020200) 12:47:39 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 50) 12:47:39 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 51) 12:47:39 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, 0x0) [ 1800.333874] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1800.350970] loop7: detected capacity change from 0 to 2048 [ 1800.354859] FAULT_INJECTION: forcing a failure. [ 1800.354859] name failslab, interval 1, probability 0, space 0, times 0 [ 1800.358492] CPU: 0 PID: 10733 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1800.360716] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1800.362883] Call Trace: [ 1800.363565] dump_stack+0x107/0x167 [ 1800.364525] should_fail.cold+0x5/0xa [ 1800.365500] ? xas_alloc+0x336/0x440 [ 1800.366458] should_failslab+0x5/0x20 [ 1800.367421] kmem_cache_alloc+0x5b/0x310 [ 1800.368484] xas_alloc+0x336/0x440 [ 1800.369396] xas_create+0x34a/0x10d0 [ 1800.370374] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1800.371491] xas_store+0x8c/0x1c40 [ 1800.372425] __xa_store+0x164/0x2d0 [ 1800.373372] ? xa_delete_node+0x280/0x280 [ 1800.374442] ? trace_hardirqs_on+0x5b/0x180 [ 1800.375566] xa_store+0x31/0x50 [ 1800.376453] __io_uring_add_tctx_node+0x1cf/0x520 [ 1800.377683] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1800.379027] ? alloc_fd+0x2e7/0x670 [ 1800.379974] io_uring_setup+0x1fbb/0x2980 [ 1800.381075] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1800.382380] ? wait_for_completion_io+0x270/0x270 [ 1800.383639] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1800.384994] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1800.386335] do_syscall_64+0x33/0x40 [ 1800.386451] FAULT_INJECTION: forcing a failure. [ 1800.386451] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1800.387283] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1800.387302] RIP: 0033:0x7f5e2aecab19 [ 1800.387327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1800.395831] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1800.397783] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1800.399610] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1800.401448] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1800.403015] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1800.404490] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1800.406006] CPU: 1 PID: 10734 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1800.406989] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1800.408132] Call Trace: [ 1800.408517] dump_stack+0x107/0x167 [ 1800.409094] should_fail.cold+0x5/0xa [ 1800.409725] _copy_from_user+0x2e/0x1b0 [ 1800.410269] __copy_msghdr_from_user+0x91/0x4b0 [ 1800.410919] ? __ia32_sys_shutdown+0x80/0x80 [ 1800.411517] ? __lock_acquire+0x1657/0x5b00 [ 1800.412117] ___sys_recvmsg+0xd5/0x200 [ 1800.412659] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1800.413333] ? __lockdep_reset_lock+0x180/0x180 [ 1800.413961] ? __fget_files+0x2cf/0x520 [ 1800.414506] ? lock_acquire+0x197/0x470 [ 1800.414583] FAULT_INJECTION: forcing a failure. [ 1800.414583] name failslab, interval 1, probability 0, space 0, times 0 [ 1800.415041] ? find_held_lock+0x2c/0x110 [ 1800.415064] ? __might_fault+0xd3/0x180 [ 1800.418402] ? lock_downgrade+0x6d0/0x6d0 [ 1800.418979] do_recvmmsg+0x24c/0x6d0 [ 1800.419493] ? ___sys_recvmsg+0x200/0x200 [ 1800.420064] ? lock_downgrade+0x6d0/0x6d0 [ 1800.420634] ? ksys_write+0x12d/0x260 [ 1800.421163] ? wait_for_completion_io+0x270/0x270 [ 1800.421824] ? rcu_read_lock_any_held+0x75/0xa0 [ 1800.422454] ? vfs_write+0x354/0xb10 [ 1800.422993] __x64_sys_recvmmsg+0x20f/0x260 [ 1800.423576] ? ksys_write+0x1a9/0x260 [ 1800.424099] ? __do_sys_socketcall+0x600/0x600 [ 1800.424729] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1800.425439] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1800.426140] do_syscall_64+0x33/0x40 [ 1800.426651] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1800.427342] RIP: 0033:0x7f2d4b68ab19 [ 1800.427867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1800.430349] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1800.431378] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1800.432329] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1800.433331] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1800.434284] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1800.435265] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1800.436255] CPU: 0 PID: 10738 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1800.437803] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1800.439551] Call Trace: [ 1800.440105] dump_stack+0x107/0x167 [ 1800.440895] should_fail.cold+0x5/0xa [ 1800.441714] ? create_object.isra.0+0x3a/0xa20 [ 1800.442677] should_failslab+0x5/0x20 [ 1800.443474] kmem_cache_alloc+0x5b/0x310 [ 1800.444361] ? mark_held_locks+0x9e/0xe0 [ 1800.445246] create_object.isra.0+0x3a/0xa20 [ 1800.446164] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1800.447238] kmem_cache_alloc+0x159/0x310 [ 1800.448109] xas_alloc+0x336/0x440 [ 1800.448864] xas_create+0x34a/0x10d0 [ 1800.449661] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1800.450752] xas_store+0x8c/0x1c40 [ 1800.451520] __xa_store+0x164/0x2d0 [ 1800.452297] ? xa_delete_node+0x280/0x280 [ 1800.453189] ? trace_hardirqs_on+0x5b/0x180 [ 1800.454108] xa_store+0x31/0x50 [ 1800.454813] __io_uring_add_tctx_node+0x1cf/0x520 [ 1800.455827] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1800.456934] ? alloc_fd+0x2e7/0x670 [ 1800.457720] io_uring_setup+0x1fbb/0x2980 12:47:39 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 52) [ 1800.458612] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1800.459860] ? wait_for_completion_io+0x270/0x270 [ 1800.460922] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1800.462033] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1800.463136] do_syscall_64+0x33/0x40 [ 1800.463935] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1800.465021] RIP: 0033:0x7fddef796b19 [ 1800.465816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1800.469692] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1800.471319] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1800.472835] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1800.474328] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1800.475815] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1800.477327] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:47:39 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 50) [ 1800.528655] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1800.530659] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1800.535963] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 12:47:39 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, 0x0) [ 1800.552311] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1800.586628] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1800.587876] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1800.588751] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1800.589582] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1800.590535] print_req_error: 12 callbacks suppressed [ 1800.590546] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1800.593091] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1800.594381] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1800.596696] buffer_io_error: 14 callbacks suppressed [ 1800.596707] Buffer I/O error on dev sr0, logical block 0, async page read [ 1800.600197] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1800.602038] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1800.604160] Buffer I/O error on dev sr0, logical block 1, async page read [ 1800.608011] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1800.609643] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1800.611905] Buffer I/O error on dev sr0, logical block 2, async page read [ 1800.613628] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1800.614974] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 5 prio class 0 [ 1800.617205] Buffer I/O error on dev sr0, logical block 3, async page read [ 1800.618705] Buffer I/O error on dev sr0, logical block 4, async page read [ 1800.620197] Buffer I/O error on dev sr0, logical block 5, async page read [ 1800.621698] Buffer I/O error on dev sr0, logical block 6, async page read [ 1800.623188] Buffer I/O error on dev sr0, logical block 7, async page read 12:47:39 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 51) 12:47:39 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) poll(&(0x7f0000000300)=[{r1, 0x2200}], 0x1, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108) setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f00000003c0)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108) setsockopt$inet6_MCAST_MSFILTER(r2, 0x29, 0x30, &(0x7f0000000300)=ANY=[], 0x190) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000000)={r5, 0x5, 0x6, @local}, 0x10) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000240)={'ip6tnl0\x00', &(0x7f00000001c0)={'syztnl2\x00', r5, 0x2d, 0x4, 0x1, 0x7ff, 0x0, @local, @private1, 0x8000, 0x20, 0x1f}}) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000040)={@ipv4={'\x00', '\xff\xff', @dev}, 0x7, r5}) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@local, @in6=@loopback, 0x4e24, 0xfff8, 0x4e21, 0x4, 0xd43817e05afa7a13, 0x20, 0x80, 0x4, r5, 0xee00}, {0x100, 0x80000000, 0x3, 0x6, 0x2, 0x9032, 0xfff, 0xfffffffffffffffc}, {0x2, 0x6, 0x0, 0xfffffffffffffffc}, 0x8, 0x6e6baf, 0x0, 0x0, 0x2}, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x4d4, 0x3c}, 0x2, @in=@broadcast, 0x3500, 0x0, 0x2, 0x80, 0x5be1, 0x1, 0x1}}, 0x119) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, 0x0, 0x0) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) [ 1800.723629] FAULT_INJECTION: forcing a failure. [ 1800.723629] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1800.726274] CPU: 0 PID: 10760 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1800.727810] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1800.729537] Call Trace: [ 1800.730136] dump_stack+0x107/0x167 [ 1800.730893] should_fail.cold+0x5/0xa [ 1800.731688] _copy_from_user+0x2e/0x1b0 [ 1800.732582] __copy_msghdr_from_user+0x91/0x4b0 [ 1800.733579] ? __ia32_sys_shutdown+0x80/0x80 [ 1800.734487] ? __lock_acquire+0x1657/0x5b00 [ 1800.735401] ___sys_recvmsg+0xd5/0x200 [ 1800.736229] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1800.737282] ? __lockdep_reset_lock+0x180/0x180 [ 1800.738263] ? lock_acquire+0x197/0x470 [ 1800.739119] ? find_held_lock+0x2c/0x110 [ 1800.739989] ? __might_fault+0xd3/0x180 [ 1800.740845] ? lock_downgrade+0x6d0/0x6d0 [ 1800.741719] do_recvmmsg+0x24c/0x6d0 [ 1800.742506] ? ___sys_recvmsg+0x200/0x200 [ 1800.743382] ? lock_downgrade+0x6d0/0x6d0 [ 1800.744289] ? ksys_write+0x12d/0x260 [ 1800.745119] ? wait_for_completion_io+0x270/0x270 [ 1800.746167] ? rcu_read_lock_any_held+0x75/0xa0 [ 1800.747138] ? vfs_write+0x354/0xb10 [ 1800.747914] __x64_sys_recvmmsg+0x20f/0x260 [ 1800.748822] ? ksys_write+0x1a9/0x260 [ 1800.749603] ? __do_sys_socketcall+0x600/0x600 [ 1800.750552] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1800.751637] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1800.752722] do_syscall_64+0x33/0x40 [ 1800.753504] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1800.754597] RIP: 0033:0x7f2d4b68ab19 [ 1800.755378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1800.759204] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1800.760791] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1800.762271] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1800.763785] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1800.765299] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1800.766759] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1800.775688] loop7: detected capacity change from 0 to 2048 [ 1800.793415] FAULT_INJECTION: forcing a failure. [ 1800.793415] name failslab, interval 1, probability 0, space 0, times 0 [ 1800.794725] CPU: 1 PID: 10761 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1800.795518] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1800.796468] Call Trace: [ 1800.796790] dump_stack+0x107/0x167 [ 1800.797208] should_fail.cold+0x5/0xa [ 1800.797644] ? ___slab_alloc+0x360/0x700 [ 1800.798109] ? create_object.isra.0+0x3a/0xa20 [ 1800.798632] should_failslab+0x5/0x20 [ 1800.799071] kmem_cache_alloc+0x5b/0x310 [ 1800.799539] create_object.isra.0+0x3a/0xa20 [ 1800.800041] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1800.800724] kmem_cache_alloc+0x159/0x310 [ 1800.801244] xas_alloc+0x336/0x440 [ 1800.801654] xas_create+0x34a/0x10d0 [ 1800.802088] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1800.802686] xas_store+0x8c/0x1c40 [ 1800.803109] __xa_store+0x164/0x2d0 [ 1800.803528] ? xa_delete_node+0x280/0x280 [ 1800.804012] ? trace_hardirqs_on+0x5b/0x180 [ 1800.804516] xa_store+0x31/0x50 [ 1800.804899] __io_uring_add_tctx_node+0x1cf/0x520 [ 1800.805451] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1800.806049] ? alloc_fd+0x2e7/0x670 [ 1800.806469] io_uring_setup+0x1fbb/0x2980 [ 1800.806944] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1800.807519] ? wait_for_completion_io+0x270/0x270 [ 1800.808085] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1800.808690] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1800.809283] do_syscall_64+0x33/0x40 [ 1800.809710] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1800.810293] RIP: 0033:0x7f5e2aecab19 [ 1800.810717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1800.812798] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1800.813656] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1800.814463] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1800.815269] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1800.816072] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1800.816884] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:47:39 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) r2 = syz_open_dev$mouse(&(0x7f0000000040), 0xffffffff, 0x511602) ioctl$AUTOFS_IOC_CATATONIC(r2, 0x9362, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x101}}, './file0\x00'}) r4 = dup3(r3, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8936, &(0x7f00000000c0)={@dev={0xfe, 0x80, '\x00', 0x2e}, 0x3f}) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r5, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) ioctl$BTRFS_IOC_DEFRAG_RANGE(r5, 0x40309410, &(0x7f0000000080)={0xfffffffffffffff7, 0x6, 0x0, 0x0, 0x3, [0x2, 0x9, 0x8991, 0x80000000]}) close_range(r0, 0xffffffffffffffff, 0x0) 12:47:39 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x0, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1800.911775] FAULT_INJECTION: forcing a failure. [ 1800.911775] name failslab, interval 1, probability 0, space 0, times 0 [ 1800.915486] CPU: 0 PID: 10765 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1800.917003] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1800.918761] Call Trace: [ 1800.919319] dump_stack+0x107/0x167 [ 1800.920091] should_fail.cold+0x5/0xa [ 1800.920906] ? xas_alloc+0x336/0x440 [ 1800.921694] should_failslab+0x5/0x20 [ 1800.922496] kmem_cache_alloc+0x5b/0x310 [ 1800.923359] xas_alloc+0x336/0x440 [ 1800.924113] xas_create+0x34a/0x10d0 [ 1800.924938] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1800.926070] xas_store+0x8c/0x1c40 [ 1800.926852] __xa_store+0x164/0x2d0 [ 1800.927624] ? xa_delete_node+0x280/0x280 [ 1800.928549] ? trace_hardirqs_on+0x5b/0x180 [ 1800.929479] xa_store+0x31/0x50 [ 1800.930175] __io_uring_add_tctx_node+0x1cf/0x520 [ 1800.931195] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1800.932323] ? alloc_fd+0x2e7/0x670 [ 1800.933134] io_uring_setup+0x1fbb/0x2980 [ 1800.934046] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1800.935138] ? wait_for_completion_io+0x270/0x270 [ 1800.936218] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1800.937368] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1800.938481] do_syscall_64+0x33/0x40 [ 1800.939290] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1800.940361] RIP: 0033:0x7fddef796b19 [ 1800.941152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1800.945069] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1800.946717] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1800.948250] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1800.949769] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1800.951271] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1800.952750] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1801.212937] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1801.214106] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1801.214897] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1801.215663] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1801.216535] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 31 prio class 0 [ 1801.218100] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1801.220640] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1801.222615] Buffer I/O error on dev sr0, logical block 0, async page read [ 1801.226111] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1801.227450] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1801.229606] Buffer I/O error on dev sr0, logical block 1, async page read [ 1801.231342] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1801.232530] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 6 prio class 0 12:47:57 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 53) 12:47:57 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x0, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:47:57 executing program 6: socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) ftruncate(0xffffffffffffffff, 0x0) statx(0xffffffffffffffff, &(0x7f0000000280)='./file1\x00', 0x2000, 0x400, &(0x7f0000000640)) lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(0x0, &(0x7f00000007c0)) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000004c0)={{{@in, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, &(0x7f0000000180)=0xfffffffffffffd93) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f0000000840)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB="0f2c", @ANYRESHEX, @ANYBLOB=',dfltgid=', @ANYRESHEX=0x0, @ANYBLOB=',posixacl,access=any,version=9p2000.u,dfltgid=', @ANYRESHEX=r0, @ANYBLOB=',version=9p2000,fowner=', @ANYRESDEC=0x0, @ANYBLOB=',dont_hash,defcontext=unconfined_u,measure,smackfshat=\',\'A,seclabel,pcr=00000000000000000051,defcontext=user_u,appraise,\x00']) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0xc, &(0x7f0000000100)=0x3f, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001c80)={0x20, 0x12, 0x1, 0x0, 0x0, {}, [@generic="8cbb4f357ef3cdd1d4"]}, 0x20}}, 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x10, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, @perf_config_ext, 0x0, 0x5, 0x400, 0x0, 0x0, 0x800000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001d00210c0000000000ee9775ab2b51c590000c0000000000"], 0x1c}}, 0x0) 12:47:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 51) 12:47:57 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 52) 12:47:57 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x4) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4100, 0x0) r2 = syz_open_dev$mouse(&(0x7f0000000040), 0xffffffffffffff01, 0x20c81) ioctl$KDSIGACCEPT(r2, 0x4b4e, 0x27) sendfile(r0, r1, 0x0, 0xa1) lsetxattr$system_posix_acl(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)='system.posix_acl_access\x00', &(0x7f00000004c0), 0x24, 0x0) 12:47:57 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x65) write$bt_hci(r0, 0x0, 0x6) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001540)={{{@in=@multicast2, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001200)=0xe8) mount$9p_unix(&(0x7f0000001180)='./file0\x00', &(0x7f0000001240)='./file0\x00', &(0x7f0000001280), 0x20, &(0x7f0000001640)={'trans=unix,', {[{@posixacl}, {@afid={'afid', 0x3d, 0xfffffffffffff801}}, {@fscache}], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@smackfsdef={'smackfsdef', 0x3d, '\x00'}}, {@appraise_type}, {@pcr={'pcr', 0x3d, 0x19}}, {@euid_lt={'euid<', r1}}, {@seclabel}]}}) statx(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x100, 0x8, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', r2, r3, 0x1000) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {r1, r3}}, './file0\x00'}) 12:47:57 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, 0x0) [ 1818.660675] FAULT_INJECTION: forcing a failure. [ 1818.660675] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1818.663354] CPU: 1 PID: 10788 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1818.665133] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1818.666965] Call Trace: [ 1818.667531] dump_stack+0x107/0x167 [ 1818.668305] should_fail.cold+0x5/0xa [ 1818.669138] _copy_from_user+0x2e/0x1b0 [ 1818.670005] __copy_msghdr_from_user+0x91/0x4b0 [ 1818.671007] ? __ia32_sys_shutdown+0x80/0x80 [ 1818.671950] ? __lock_acquire+0x1657/0x5b00 [ 1818.673086] ___sys_recvmsg+0xd5/0x200 [ 1818.673927] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1818.675067] ? __lockdep_reset_lock+0x180/0x180 [ 1818.676222] ? lock_acquire+0x197/0x470 [ 1818.677187] ? find_held_lock+0x2c/0x110 [ 1818.678065] ? __might_fault+0xd3/0x180 [ 1818.678919] ? lock_downgrade+0x6d0/0x6d0 [ 1818.679835] do_recvmmsg+0x24c/0x6d0 [ 1818.680658] ? ___sys_recvmsg+0x200/0x200 [ 1818.681555] ? lock_downgrade+0x6d0/0x6d0 [ 1818.682458] ? ksys_write+0x12d/0x260 [ 1818.683351] ? wait_for_completion_io+0x270/0x270 [ 1818.684534] ? rcu_read_lock_any_held+0x75/0xa0 [ 1818.685726] ? vfs_write+0x354/0xb10 [ 1818.686607] __x64_sys_recvmmsg+0x20f/0x260 [ 1818.687529] ? ksys_write+0x1a9/0x260 [ 1818.688345] ? __do_sys_socketcall+0x600/0x600 [ 1818.689339] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1818.690463] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1818.691568] do_syscall_64+0x33/0x40 [ 1818.692366] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1818.693476] RIP: 0033:0x7f2d4b68ab19 [ 1818.694269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1818.698176] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1818.699796] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1818.701323] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1818.702842] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1818.704369] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1818.705906] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1818.724241] FAULT_INJECTION: forcing a failure. [ 1818.724241] name failslab, interval 1, probability 0, space 0, times 0 [ 1818.726693] CPU: 1 PID: 10795 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1818.728181] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1818.729968] Call Trace: [ 1818.730534] dump_stack+0x107/0x167 [ 1818.731319] should_fail.cold+0x5/0xa [ 1818.732133] ? create_object.isra.0+0x3a/0xa20 [ 1818.733123] should_failslab+0x5/0x20 [ 1818.733944] kmem_cache_alloc+0x5b/0x310 [ 1818.734814] ? mark_held_locks+0x9e/0xe0 [ 1818.735689] create_object.isra.0+0x3a/0xa20 [ 1818.736627] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1818.737734] kmem_cache_alloc+0x159/0x310 [ 1818.738632] xas_alloc+0x336/0x440 [ 1818.739399] xas_create+0x34a/0x10d0 [ 1818.740215] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1818.741350] xas_store+0x8c/0x1c40 [ 1818.742130] __xa_store+0x164/0x2d0 [ 1818.742917] ? xa_delete_node+0x280/0x280 [ 1818.743816] ? trace_hardirqs_on+0x5b/0x180 [ 1818.744760] xa_store+0x31/0x50 [ 1818.745473] __io_uring_add_tctx_node+0x1cf/0x520 [ 1818.746508] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1818.747630] ? alloc_fd+0x2e7/0x670 [ 1818.748425] io_uring_setup+0x1fbb/0x2980 [ 1818.749332] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1818.750413] ? wait_for_completion_io+0x270/0x270 [ 1818.751471] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1818.752600] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1818.753715] do_syscall_64+0x33/0x40 [ 1818.754514] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1818.755614] RIP: 0033:0x7f5e2aecab19 [ 1818.756403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1818.760351] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1818.762007] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1818.763526] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1818.765064] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1818.766589] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1818.768108] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1818.771215] FAULT_INJECTION: forcing a failure. [ 1818.771215] name failslab, interval 1, probability 0, space 0, times 0 [ 1818.773686] CPU: 1 PID: 10789 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1818.775177] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1818.777153] Call Trace: [ 1818.777724] dump_stack+0x107/0x167 [ 1818.778516] should_fail.cold+0x5/0xa [ 1818.779333] ? xas_alloc+0x336/0x440 [ 1818.780396] should_failslab+0x5/0x20 [ 1818.781312] kmem_cache_alloc+0x5b/0x310 [ 1818.782187] xas_alloc+0x336/0x440 [ 1818.782953] xas_create+0x34a/0x10d0 [ 1818.783760] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1818.784910] xas_store+0x8c/0x1c40 [ 1818.785691] __xa_store+0x164/0x2d0 [ 1818.786471] ? xa_delete_node+0x280/0x280 [ 1818.787369] ? trace_hardirqs_on+0x5b/0x180 [ 1818.788307] xa_store+0x31/0x50 [ 1818.789032] __io_uring_add_tctx_node+0x1cf/0x520 [ 1818.790067] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1818.791193] ? alloc_fd+0x2e7/0x670 [ 1818.791991] io_uring_setup+0x1fbb/0x2980 [ 1818.792898] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1818.793975] ? wait_for_completion_io+0x270/0x270 [ 1818.795165] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1818.796370] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1818.797499] do_syscall_64+0x33/0x40 [ 1818.798296] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1818.799393] RIP: 0033:0x7fddef796b19 [ 1818.800194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1818.804134] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1818.805766] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1818.807277] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 12:47:57 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 54) [ 1818.808804] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1818.810540] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1818.812049] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1818.825355] loop7: detected capacity change from 0 to 2048 [ 1818.827050] SELinux: duplicate or incompatible mount options 12:47:58 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[]) 12:47:58 executing program 2: ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608) ioctl$PIO_UNIMAP(0xffffffffffffffff, 0x4b67, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r0, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f0000000100)={0xa, &(0x7f00000000c0)=[{0x4, 0x800}, {0xae46, 0x5}, {0x6, 0x7}, {0x1000, 0xb}, {0x9, 0x3f}, {0xe84, 0x1f}, {0x1, 0x5400}, {0x1000, 0x5}, {0x100, 0x2}, {0x1ff, 0x1f}]}) syz_open_pts(0xffffffffffffffff, 0x210042) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x6, 0x400}, 0x0, 0x6, 0xffffffffffffffff, 0x9) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001640)=ANY=[@ANYBLOB="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"], 0x20}}, 0x0) r3 = dup(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(r3, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xffffffffffffffb1, 0x800) syz_open_pts(0xffffffffffffffff, 0x200000) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$BTRFS_IOC_SNAP_DESTROY(0xffffffffffffffff, 0x5000940f, &(0x7f0000000500)={{r4}, "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"}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) connect$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs={0x1, 0x0, 0x4e21}, 0x6e) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000340)=ANY=[@ANYRES64, @ANYRES32, @ANYRESOCT]) 12:47:58 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x4) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4100, 0x0) r2 = syz_open_dev$mouse(&(0x7f0000000040), 0xffffffffffffff01, 0x20c81) ioctl$KDSIGACCEPT(r2, 0x4b4e, 0x27) sendfile(r0, r1, 0x0, 0xa1) lsetxattr$system_posix_acl(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)='system.posix_acl_access\x00', &(0x7f00000004c0), 0x24, 0x0) [ 1818.961678] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1818.964099] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1818.965614] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1818.967040] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1818.968702] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 30 prio class 0 [ 1818.973977] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1818.975534] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1818.977686] buffer_io_error: 6 callbacks suppressed [ 1818.977697] Buffer I/O error on dev sr0, logical block 0, async page read [ 1818.981333] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1818.982650] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1818.984822] Buffer I/O error on dev sr0, logical block 1, async page read [ 1818.987284] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1818.988873] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1818.990988] Buffer I/O error on dev sr0, logical block 2, async page read [ 1818.992681] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1818.993948] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1818.996708] Buffer I/O error on dev sr0, logical block 3, async page read 12:47:58 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 52) [ 1819.000747] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1819.002470] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1819.004627] Buffer I/O error on dev sr0, logical block 4, async page read [ 1819.009331] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1819.010785] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1819.013160] Buffer I/O error on dev sr0, logical block 5, async page read [ 1819.021764] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1819.023084] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1819.025958] Buffer I/O error on dev sr0, logical block 6, async page read [ 1819.030899] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1819.032168] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1819.034293] Buffer I/O error on dev sr0, logical block 7, async page read [ 1819.042825] FAULT_INJECTION: forcing a failure. [ 1819.042825] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1819.045322] CPU: 0 PID: 10807 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1819.046791] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1819.048544] Call Trace: [ 1819.049120] dump_stack+0x107/0x167 [ 1819.049893] should_fail.cold+0x5/0xa [ 1819.050789] _copy_from_user+0x2e/0x1b0 [ 1819.051650] __copy_msghdr_from_user+0x91/0x4b0 [ 1819.052669] ? __ia32_sys_shutdown+0x80/0x80 [ 1819.053614] ? __lock_acquire+0x1657/0x5b00 [ 1819.054561] ___sys_recvmsg+0xd5/0x200 [ 1819.055410] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1819.056469] ? __lockdep_reset_lock+0x180/0x180 [ 1819.057470] ? lock_acquire+0x197/0x470 [ 1819.058309] ? find_held_lock+0x2c/0x110 [ 1819.059179] ? __might_fault+0xd3/0x180 [ 1819.060025] ? lock_downgrade+0x6d0/0x6d0 [ 1819.060932] do_recvmmsg+0x24c/0x6d0 [ 1819.061731] ? ___sys_recvmsg+0x200/0x200 [ 1819.062607] ? lock_downgrade+0x6d0/0x6d0 [ 1819.063501] ? ksys_write+0x12d/0x260 [ 1819.064318] ? wait_for_completion_io+0x270/0x270 [ 1819.065341] ? rcu_read_lock_any_held+0x75/0xa0 [ 1819.066318] ? vfs_write+0x354/0xb10 [ 1819.067107] __x64_sys_recvmmsg+0x20f/0x260 [ 1819.068014] ? ksys_write+0x1a9/0x260 [ 1819.068826] ? __do_sys_socketcall+0x600/0x600 [ 1819.069795] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1819.071034] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1819.072128] do_syscall_64+0x33/0x40 [ 1819.072931] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1819.074007] RIP: 0033:0x7f2d4b68ab19 12:47:58 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 53) [ 1819.074792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1819.078773] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1819.080369] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1819.081887] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1819.083381] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1819.084888] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1819.086384] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:47:58 executing program 6: socket$inet6_udplite(0xa, 0x2, 0x88) r0 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000000)='syz0\x00', 0x200002, 0x0) close_range(r1, 0xffffffffffffffff, 0x2) 12:47:58 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 55) 12:47:58 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x0, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1819.204094] loop7: detected capacity change from 0 to 2048 [ 1819.231221] EXT4-fs (loop7): Can't read superblock on 2nd try 12:47:58 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) r3 = openat$incfs(0xffffffffffffffff, &(0x7f0000000600)='.pending_reads\x00', 0x400082, 0x151) ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f0000000680)={0x2, &(0x7f0000000640)=[{0x4, 0x6}, {0x4, 0xffff}]}) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) sendmsg$nl_generic(r1, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1423ac00210000092cbd686b46f6470cb3a2ec0c77468efe5886d81b6ba804cdb4a5fbdb7875fba8d15b5ac6e68a732725035c47bb9f6eef0108f479e52f05e3aedb7819b38664d3be6ad16bdb1f05e6d3df1bc5d13400df3c6dd4c59b12065a606dccd7473488d708f59a463567236abda1ddf0894ab552bd59ea9d309472fdafad9501", @ANYRESOCT], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20040000) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000200)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r1}}, './file0\x00'}) ioctl$KIOCSOUND(r5, 0x4b2f, 0xff) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000340)={'syz', 0x1}, 0x0, 0x0, 0x0) r6 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f00000006c0)=ANY=[@ANYBLOB="9e0d7545b343b9bfc9100417be6c4c367a246c2f05e114cb", @ANYRES32=r5, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='./file0\x00']) fcntl$F_SET_RW_HINT(r7, 0x40c, &(0x7f0000000500)=0x7) sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c000000030000000900001b00000000c955e73a0be4c465bcf8612f397a06d4abe6524a", @ANYRES16=0x0, @ANYRES32=r1], 0x3c}, 0x1, 0x0, 0x0, 0x870}, 0x240049c1) keyctl$restrict_keyring(0x1d, r6, 0x0, 0x0) unshare(0x48020200) [ 1819.299695] FAULT_INJECTION: forcing a failure. [ 1819.299695] name failslab, interval 1, probability 0, space 0, times 0 [ 1819.302183] CPU: 0 PID: 10817 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1819.303647] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1819.305420] Call Trace: [ 1819.305986] dump_stack+0x107/0x167 [ 1819.306762] should_fail.cold+0x5/0xa [ 1819.307573] ? ___slab_alloc+0x155/0x700 [ 1819.308436] ? create_object.isra.0+0x3a/0xa20 [ 1819.309415] should_failslab+0x5/0x20 [ 1819.310228] kmem_cache_alloc+0x5b/0x310 [ 1819.311102] create_object.isra.0+0x3a/0xa20 [ 1819.312029] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1819.313125] kmem_cache_alloc+0x159/0x310 [ 1819.314011] xas_alloc+0x336/0x440 [ 1819.314770] xas_create+0x34a/0x10d0 [ 1819.315592] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1819.316714] xas_store+0x8c/0x1c40 [ 1819.317487] __xa_store+0x164/0x2d0 [ 1819.318262] ? xa_delete_node+0x280/0x280 [ 1819.319156] ? trace_hardirqs_on+0x5b/0x180 [ 1819.320081] xa_store+0x31/0x50 [ 1819.320798] __io_uring_add_tctx_node+0x1cf/0x520 [ 1819.321828] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1819.322932] ? alloc_fd+0x2e7/0x670 [ 1819.323719] io_uring_setup+0x1fbb/0x2980 [ 1819.324611] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1819.325696] ? wait_for_completion_io+0x270/0x270 [ 1819.326744] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1819.327871] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1819.328974] do_syscall_64+0x33/0x40 [ 1819.329766] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1819.330854] RIP: 0033:0x7f5e2aecab19 [ 1819.331645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1819.335555] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1819.337177] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1819.338692] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1819.340202] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1819.341726] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1819.343237] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:47:58 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[]) [ 1819.407919] FAULT_INJECTION: forcing a failure. [ 1819.407919] name failslab, interval 1, probability 0, space 0, times 0 [ 1819.410329] CPU: 1 PID: 10824 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1819.411755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1819.413467] Call Trace: [ 1819.414022] dump_stack+0x107/0x167 [ 1819.414791] should_fail.cold+0x5/0xa [ 1819.415589] ? xas_alloc+0x336/0x440 [ 1819.416364] should_failslab+0x5/0x20 [ 1819.417167] kmem_cache_alloc+0x5b/0x310 [ 1819.418012] xas_alloc+0x336/0x440 [ 1819.418759] xas_create+0x34a/0x10d0 [ 1819.419560] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1819.420661] xas_store+0x8c/0x1c40 [ 1819.421417] __xa_store+0x164/0x2d0 [ 1819.422168] ? xa_delete_node+0x280/0x280 [ 1819.423040] ? trace_hardirqs_on+0x5b/0x180 [ 1819.423959] xa_store+0x31/0x50 [ 1819.424654] __io_uring_add_tctx_node+0x1cf/0x520 [ 1819.425652] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1819.426738] ? alloc_fd+0x2e7/0x670 [ 1819.427507] io_uring_setup+0x1fbb/0x2980 [ 1819.428382] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1819.429436] ? wait_for_completion_io+0x270/0x270 [ 1819.430455] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1819.431535] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1819.432613] do_syscall_64+0x33/0x40 [ 1819.433386] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1819.434442] RIP: 0033:0x7fddef796b19 [ 1819.435213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1819.438986] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1819.440557] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1819.442022] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1819.443474] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1819.444935] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1819.446393] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1819.457474] FAULT_INJECTION: forcing a failure. [ 1819.457474] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1819.460245] CPU: 1 PID: 10828 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1819.461938] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1819.463986] Call Trace: [ 1819.464612] dump_stack+0x107/0x167 [ 1819.465362] should_fail.cold+0x5/0xa [ 1819.466140] _copy_from_user+0x2e/0x1b0 [ 1819.466958] __copy_msghdr_from_user+0x91/0x4b0 [ 1819.467898] ? __ia32_sys_shutdown+0x80/0x80 [ 1819.468796] ? __lock_acquire+0x1657/0x5b00 [ 1819.469751] ___sys_recvmsg+0xd5/0x200 [ 1819.470654] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1819.471988] ? __lockdep_reset_lock+0x180/0x180 [ 1819.472931] ? __fget_files+0x2cf/0x520 [ 1819.473740] ? lock_acquire+0x197/0x470 [ 1819.474537] ? find_held_lock+0x2c/0x110 [ 1819.475371] ? __might_fault+0xd3/0x180 [ 1819.476172] ? lock_downgrade+0x6d0/0x6d0 [ 1819.477102] do_recvmmsg+0x24c/0x6d0 [ 1819.477962] ? ___sys_recvmsg+0x200/0x200 [ 1819.479070] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1819.480217] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1819.481122] ? trace_hardirqs_on+0x5b/0x180 [ 1819.481987] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1819.482883] ? finish_task_switch+0x126/0x5d0 [ 1819.483787] ? finish_task_switch+0xef/0x5d0 [ 1819.484704] __x64_sys_recvmmsg+0x20f/0x260 [ 1819.485745] ? ksys_write+0x1a9/0x260 [ 1819.486661] ? __do_sys_socketcall+0x600/0x600 [ 1819.487773] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1819.488834] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1819.489877] do_syscall_64+0x33/0x40 [ 1819.490617] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1819.491642] RIP: 0033:0x7f2d4b68ab19 [ 1819.492387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1819.496583] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1819.498285] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1819.500050] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1819.501502] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1819.502929] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1819.504367] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1819.574854] loop7: detected capacity change from 0 to 2048 [ 1819.591536] EXT4-fs (loop7): Can't read superblock on 2nd try [ 1819.638268] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1819.640481] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1819.641768] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1819.642996] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1819.644411] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1819.648062] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1819.649498] Buffer I/O error on dev sr0, logical block 0, async page read [ 1819.655684] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1819.657080] Buffer I/O error on dev sr0, logical block 1, async page read [ 1819.663021] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1819.664614] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1819.666466] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1819.668264] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1819.671585] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1819.673828] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:48:12 executing program 2: getresuid(&(0x7f0000000380)=0x0, &(0x7f00000003c0), &(0x7f0000000400)) syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x1, 0x3, &(0x7f0000000300)=[{&(0x7f0000000200)="23d2aba899dd7b6a745efbfc3d2f7e562d5677530cbd3f423376", 0x1a, 0x40a}, {&(0x7f0000000240)="c97279169f0b5fb468d53ad5835bcc3914a4f0a1c0091892965b5b000ec9a3f4d6d0572d9a8b5413e2d09c300344af9f8b11e153615c37235011f8a0f2877041519ef21d058c4533b9f5aa682b6d52c24f07b6e3ab533c0c3ae12685b07cdd441e0f159a9e4a93", 0x67, 0x8}, {&(0x7f00000002c0)="5a6420912337abb9876fb7", 0xb, 0x40}], 0x2a00000, &(0x7f0000000440)=ANY=[@ANYBLOB='utf8=0,shortname=winnt,shortname=win95,shortname=lower,utf8=0,rodir,iocharset=macinuit,nfs=nostale_ro,uni_xlate=0,shortname=win95,fowner>', @ANYRESDEC=r0, @ANYBLOB="327610"]) syz_mount_image$vfat(0x0, &(0x7f0000000600)='./file0\x00', 0x8, 0x5, &(0x7f0000000180)=[{&(0x7f0000000500)="f496011c1d9c4e1dba1d4c83d258c2781b5c218ed49a3483783b0fca56ab491c1a2fe9c35e3dd67da05eb49e36e9eff29bd7de74121a306d1b33dbe214e45016be3a398a5699a536e65041dc557fd65f44f94a26fcb6d5328965e583bf6763f7b8a00a328cb5d20d8c1264536cf513df4ba359e6370238dda8a04d9283ea3f5c837d8dacc742a099beec469d5df1611694cd283aa839749b29292dd98ad4352c920148371d8210e97d33239576dcb5b239a3dbef3168e84d5e5aab62a53939fee84cf6cd83d58ea1", 0xc8, 0x3b}, {0x0, 0x0, 0xecb}, {&(0x7f0000000000)="a200ffd2d74cfdd2b68e098632e06eeea9e250cea46cdd82a79184ee8e136e0456e20258b35fcffd8ee901eebe664f34406ccb0284e863a28936a5694982963a74fbbcf2eac91a3f1507b542b48dadfc55f887b2252e0626d9aa2e84611b2ae94dadab3a40cd8741dc303ab16aeee14d1dfe25eca262e128ef59293212c0", 0x7e, 0x3}, {&(0x7f0000000080)="704f6f562c529a9006143bae985096662006e633b76198428253", 0x1a, 0x7}, {&(0x7f0000000640)="6a20bac5121bde846a006082c95338b566062e80cec8a6a7492d65bff25dbd3f89ac015aa105c6ae2307f4ef50522c3b789d0fb44efca2aa8f28c84e207d95413b4cb26f794306c81ffcc7c7651cf4bebc4554a3a71491e6f3bf5ba64850775c231332f560b6686c", 0x68, 0x101}], 0x140052, 0x0) 12:48:12 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCETHTOOL(r0, 0x8970, &(0x7f00000000c0)={'syz_tun\x00', 0x0}) r1 = accept(r0, &(0x7f0000000000)=@nfc, &(0x7f0000000080)=0x80) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000580)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7}}, './file0\x00'}) recvmsg$unix(r1, &(0x7f0000000740)={&(0x7f00000005c0)=@abs, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000640)=""/52, 0x34}], 0x1, &(0x7f00000006c0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x58}, 0x40000000) recvmmsg$unix(r1, &(0x7f0000002480)=[{{&(0x7f0000000780)=@abs, 0x6e, &(0x7f0000000880)=[{&(0x7f0000000800)=""/115, 0x73}], 0x1, &(0x7f00000008c0)}}, {{&(0x7f0000000900)=@abs, 0x6e, &(0x7f0000001ac0)=[{&(0x7f0000000980)=""/65, 0x41}, {&(0x7f0000000a00)=""/4096, 0x1000}, {&(0x7f0000001a00)=""/133, 0x85}], 0x3, &(0x7f0000001b00)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}}, {{&(0x7f0000001b40), 0x6e, &(0x7f0000001d40)=[{&(0x7f0000001bc0)=""/44, 0x2c}, {&(0x7f0000001c00)=""/63, 0x3f}, {&(0x7f0000001c40)=""/87, 0x57}, {&(0x7f0000001cc0)=""/119, 0x77}], 0x4, &(0x7f0000001d80)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}], 0xe8}}, {{&(0x7f0000001e80)=@abs, 0x6e, &(0x7f0000002380)=[{&(0x7f0000001f00)}, {&(0x7f0000001f40)=""/4, 0x4}, {&(0x7f0000001f80)=""/83, 0x53}, {&(0x7f0000002000)=""/138, 0x8a}, {&(0x7f00000020c0)=""/71, 0x47}, {&(0x7f0000002140)}, {&(0x7f0000002180)=""/172, 0xac}, {&(0x7f0000002240)=""/71, 0x47}, {&(0x7f00000022c0)=""/123, 0x7b}, {&(0x7f0000002340)=""/18, 0x12}], 0xa, &(0x7f0000002440)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38}}], 0x4, 0x2000, &(0x7f0000002580)) r5 = getgid() r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r6, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r7, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r8 = syz_open_dev$tty20(0xc, 0x4, 0x0) r9 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r9, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r10 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000025c0), 0x400000, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)=0x0) capset(&(0x7f0000000240)={0x0, r11}, &(0x7f0000000300)={0x800, 0x3, 0x7, 0xd7, 0x8000, 0x6}) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000002600)={{{@in6=@private1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@private2}}, &(0x7f0000002700)=0xe8) getresgid(&(0x7f0000002740), &(0x7f0000002780), &(0x7f00000027c0)=0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f0000002900)={&(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000500)=[{&(0x7f00000001c0)="ca1de4357637ee5f06cc3ae2101f9515b47193bc775166470a29c49163fd90438ccdfa85ed9697f573169c65d832091e535ebdc4ed9afee5c4063ab3", 0x3c}, {&(0x7f0000000200)="60520e7e738052f66f398e51db9fad65855cd178d324a858b7359ecb40be0d56ddd5ac8ac5baa135f17ac4ae9f8f968bab02dd9e8abc4f23f28a3e1d58aeaff3cabe03fecfc037a9bdf2a89c5928a3b2a0bc9cd607b90f331271e4b0de3f2364e617f436182c6c397d0126735e5bce409b2b31917f0919622319c995f494250dbebdfa3583f8095ad6f5074d693965cfa11034bfd762f7a60615352bc2e4023d3b0823953563abb63a233b932f1c9a5ceffce566b134390e42b68d41ddddeceed7a1421b951a96285ba3187fff00e93cf0ba9be53c0a578dcec3ae403a6fd48d6bce69afc56f9a1e36f2c009954a", 0xee}, {&(0x7f0000000300)="d3270e433a17a91634cef04132437c996c27e79051b39b1af45a2a19a0d4086fe6ec046d82818f4ab3f6928ac280af9129f866387b4a9c9affca67576843dc2c2f448ecca5d6e783f4602a76f05088915ec20811e7c65dff5cbea0af932355d55dd7c7e432013f4b0fe141dc5ad78963f3b2e9516c0613289d2ff833a0a4d72e7fc9ed28ef128a8ddbaba741d19f51dfbd3584c88b3df32fc0d7431c488698d8ac0dfce16b214df6aa6b3671", 0xac}, {&(0x7f00000003c0)="97c1a7760e5a242e8d925fc8247d1180b02a9c6bb27fb978adc3d61027ecb062ac", 0x21}, {&(0x7f0000000400)="8aa8b747e12cf534e1ff7c3282708833fe1d0344901ca143ce0567922b6c13e2bbd66461374bcb635472f46155b3e2078edaae591238018b5354004cb9adbbb73971fc4cf7175a5cd8a194a02a372873f85d8ba82dc72439feb7fa10d28ccb227ba570e19516eed9a3a958956303bcb5dd8ae292a6c3c45ccb55f88768fa29c97b623ccb5a9990c603a9fa6edbf01c87f6abe5ac2105977229288183a8e4db4a4836287079da61bde189bf5ce6356c850ef9c5be48c76870b641f681adda0a8fa7ca24040452894a36d85d4b54bd5bbf4117ae307e6dde2ff2cc3b5056dbabddbd1815de3f9e47c55e1448e4de3398ae2f1d8d37a071423d07", 0xf9}], 0x5, &(0x7f0000002800)=[@rights={{0x18, 0x1, 0x1, [r0, r2]}}, @rights={{0x20, 0x1, 0x1, [r1, r3, r1, r1]}}, @cred={{0x1c, 0x1, 0x2, {r4, 0xffffffffffffffff, r5}}}, @rights={{0x24, 0x1, 0x1, [r0, r6, r1, r7, r1]}}, @rights={{0x1c, 0x1, 0x1, [r8, r9, r10]}}, @cred={{0x1c, 0x1, 0x2, {r11, r12, r13}}}, @rights={{0x18, 0x1, 0x1, [r1, r1]}}], 0xd8, 0x4}, 0x24041080) 12:48:12 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r2, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) fsetxattr$security_selinux(r2, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:initrc_exec_t:s0\x00', 0x23, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 12:48:12 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 54) 12:48:12 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 53) 12:48:12 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[]) 12:48:12 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 56) 12:48:12 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x0, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1833.735878] loop7: detected capacity change from 0 to 2048 [ 1833.742334] FAULT_INJECTION: forcing a failure. [ 1833.742334] name failslab, interval 1, probability 0, space 0, times 0 [ 1833.743923] CPU: 1 PID: 10859 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1833.744895] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1833.746076] Call Trace: [ 1833.746451] dump_stack+0x107/0x167 [ 1833.747014] should_fail.cold+0x5/0xa [ 1833.747030] ? xas_alloc+0x336/0x440 [ 1833.747046] should_failslab+0x5/0x20 [ 1833.747060] kmem_cache_alloc+0x5b/0x310 [ 1833.747077] xas_alloc+0x336/0x440 [ 1833.747092] xas_create+0x34a/0x10d0 [ 1833.747117] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1833.747131] xas_store+0x8c/0x1c40 [ 1833.747157] __xa_store+0x164/0x2d0 [ 1833.747172] ? xa_delete_node+0x280/0x280 [ 1833.747192] ? trace_hardirqs_on+0x5b/0x180 [ 1833.747211] xa_store+0x31/0x50 [ 1833.747226] __io_uring_add_tctx_node+0x1cf/0x520 [ 1833.747240] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1833.747252] ? alloc_fd+0x2e7/0x670 [ 1833.747274] io_uring_setup+0x1fbb/0x2980 [ 1833.747294] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1833.747305] ? wait_for_completion_io+0x270/0x270 [ 1833.747337] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1833.747351] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1833.747366] do_syscall_64+0x33/0x40 [ 1833.747379] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1833.747388] RIP: 0033:0x7f5e2aecab19 [ 1833.747401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1833.747408] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1833.747422] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1833.747430] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1833.747438] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1833.747445] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1833.747453] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1833.749633] audit: type=1400 audit(1744894092.868:121): avc: denied { relabelto } for pid=10845 comm="syz-executor.6" name="RAW" dev="sockfs" ino=39457 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:initrc_exec_t:s0 tclass=rawip_socket permissive=1 [ 1833.750062] FAULT_INJECTION: forcing a failure. [ 1833.750062] name failslab, interval 1, probability 0, space 0, times 0 [ 1833.777652] EXT4-fs (loop7): Can't read superblock on 2nd try [ 1833.778401] CPU: 1 PID: 10854 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1833.778410] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1833.778415] Call Trace: [ 1833.778429] dump_stack+0x107/0x167 [ 1833.778449] should_fail.cold+0x5/0xa [ 1833.783569] ? ___slab_alloc+0x155/0x700 [ 1833.784125] ? create_object.isra.0+0x3a/0xa20 [ 1833.784884] should_failslab+0x5/0x20 [ 1833.785539] kmem_cache_alloc+0x5b/0x310 [ 1833.786300] create_object.isra.0+0x3a/0xa20 [ 1833.786897] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1833.787599] kmem_cache_alloc+0x159/0x310 [ 1833.788168] xas_alloc+0x336/0x440 [ 1833.788660] xas_create+0x34a/0x10d0 [ 1833.789281] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1833.790058] xas_store+0x8c/0x1c40 [ 1833.790556] __xa_store+0x164/0x2d0 [ 1833.791060] ? xa_delete_node+0x280/0x280 [ 1833.791630] ? trace_hardirqs_on+0x5b/0x180 [ 1833.792226] xa_store+0x31/0x50 [ 1833.792684] __io_uring_add_tctx_node+0x1cf/0x520 [ 1833.793356] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1833.794064] ? alloc_fd+0x2e7/0x670 [ 1833.794575] io_uring_setup+0x1fbb/0x2980 [ 1833.795148] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1833.795981] ? wait_for_completion_io+0x270/0x270 [ 1833.796847] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1833.797668] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1833.798429] do_syscall_64+0x33/0x40 [ 1833.799010] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1833.799950] RIP: 0033:0x7fddef796b19 [ 1833.800486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1833.803284] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1833.804603] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1833.805620] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1833.806771] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1833.807925] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1833.808915] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1833.815596] FAULT_INJECTION: forcing a failure. [ 1833.815596] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1833.817217] CPU: 1 PID: 10863 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1833.818162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1833.819376] Call Trace: [ 1833.819784] dump_stack+0x107/0x167 [ 1833.820368] should_fail.cold+0x5/0xa [ 1833.821059] _copy_from_user+0x2e/0x1b0 [ 1833.821613] __copy_msghdr_from_user+0x91/0x4b0 [ 1833.822372] ? __ia32_sys_shutdown+0x80/0x80 [ 1833.822975] ? __lock_acquire+0x1657/0x5b00 [ 1833.823689] ___sys_recvmsg+0xd5/0x200 [ 1833.824321] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1833.825210] ? __lockdep_reset_lock+0x180/0x180 [ 1833.825852] ? __fget_files+0x2cf/0x520 [ 1833.826553] ? lock_acquire+0x197/0x470 [ 1833.827185] ? find_held_lock+0x2c/0x110 [ 1833.827917] ? __might_fault+0xd3/0x180 [ 1833.828590] ? lock_downgrade+0x6d0/0x6d0 [ 1833.829178] do_recvmmsg+0x24c/0x6d0 [ 1833.829746] ? ___sys_recvmsg+0x200/0x200 [ 1833.830417] ? lock_downgrade+0x6d0/0x6d0 [ 1833.831144] ? ksys_write+0x12d/0x260 [ 1833.831820] ? wait_for_completion_io+0x270/0x270 [ 1833.832484] ? rcu_read_lock_any_held+0x75/0xa0 [ 1833.833138] ? vfs_write+0x354/0xb10 [ 1833.833768] __x64_sys_recvmmsg+0x20f/0x260 [ 1833.834394] ? ksys_write+0x1a9/0x260 [ 1833.835115] ? __do_sys_socketcall+0x600/0x600 [ 1833.835835] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1833.836560] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1833.837277] do_syscall_64+0x33/0x40 [ 1833.837777] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1833.838495] RIP: 0033:0x7f2d4b68ab19 [ 1833.839098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1833.841872] RSP: 002b:00007f2d48bdf188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1833.842898] RAX: ffffffffffffffda RBX: 00007f2d4b79e020 RCX: 00007f2d4b68ab19 [ 1833.843851] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1833.844943] RBP: 00007f2d48bdf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1833.845930] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1833.847066] R13: 00007fff957937ff R14: 00007f2d48bdf300 R15: 0000000000022000 12:48:12 executing program 2: mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='incremental-fs\x00', 0x360020, &(0x7f00000000c0)='@\x00') r0 = accept4(0xffffffffffffffff, 0x0, &(0x7f0000000100), 0x80800) fcntl$setstatus(r0, 0x4, 0x2000) mount(&(0x7f0000000140)=@filename='./file0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devpts\x00', 0x1080011, &(0x7f0000000200)='@\x00') r1 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x100000000, 0x4, &(0x7f00000015c0)=[{&(0x7f00000002c0)="cc8dce2f850aba22f58ba95f82b4a8073aaacda601a4568cef1b1687bc1ceadad40bdc1b7a9c8252276c6ce75d3617338cce8fba77d936d0d47a60e7588853a07744b40cf2ec3f9fcaa46f264ff5ca9fe44ef3b00673298f52ca24c9667d63705871057d934c97affb287ea3e864ecc162ea0d0c0fac6338a85a1753c00d68edcb5ad3afb0c3318f422b9497931686318bb989b5d20bdbcff527acf1146ae29b674cd6bc76dfc13be3730bfd04c23c78c560099d7ab829403e64344e105e041dd8900b1156d054564751ee4f82b40069d1f7b6", 0xd3, 0x9}, {&(0x7f00000003c0)="2b505eaffca27642234165df66e4a6a99dd92c4d46ca1815386d73836911976594d26c7159eb5117e9271a3eb8c57f2c1cf7c27ec7f7a1f5c77768f9a6e44b22653433b8e13a0883e2eb29118ed3c012b08d6472ce237eaffb0d8362e9e1acd2ce12209634ff80829c1390067b06cb1a862ff6cbf9a94a56b8c62722595a06d88831b051a32f39d15aed9e67f5f2e38a7f8bd094fe3240390a7b7a35f626d7c4769f207da5280d1459864f157583356f227c6fb4cc243220fe7ac341aa254f9ed2dce70b72a945bdaeea6b3a778a1dbf74e4344c31519107435ff8b47332dc8c1a73514a5b2cf1c3d4", 0xe9, 0x200}, {&(0x7f00000004c0)="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", 0x1000, 0xffffffffffff7fff}, {&(0x7f00000014c0)="022d2c674c266f2b042e5d33791f2d94e653f05bfcf308a8f64e507c056599531058d5c382c7b3fb3597f2f5c4af2735e6b2dde99eb616e50af6233f9040b0b06a04f017ce6cfbc8a9aeda45c87ed6c7200e5ce8da7d11a1076c864372ca1f1f2f1e743263ba5328754b1f4edff87ad17ffe61d991250f9860e7521648c7a4ac3ecf879a62edd754daa5c930687b0afa50421d24b463030d9b43a7ff63fd73256279261762c3d2cecd046827ad27f60edda4e88e81d34095bff9388d688518444a2a55aaf638f51c8d", 0xc9, 0x6}], 0x100408, &(0x7f0000001640)={[{@uni_xlate}, {@uni_xlate}, {@nonumtail}, {@rodir}, {@utf8}, {@uni_xlate}], [{@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@fsuuid={'fsuuid', 0x3d, {[0x31, 0x61, 0x37, 0x38, 0x57, 0x35, 0x32, 0x64], 0x2d, [0x39, 0x63, 0x39, 0x36], 0x2d, [0x0, 0x34, 0x64, 0x34], 0x2d, [0x30, 0x63, 0x64, 0x65], 0x2d, [0x62, 0x62, 0x37, 0x6, 0x38, 0x36, 0x31, 0x33]}}}, {@dont_appraise}, {@measure}]}) mkdirat(0xffffffffffffff9c, &(0x7f0000001700)='./file0\x00', 0x180) r2 = accept$unix(r0, &(0x7f0000001740), &(0x7f00000017c0)=0x6e) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001ec0), 0x400, 0x0) r4 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000002240), 0x280880, 0x0) r6 = syz_open_dev$hiddev(&(0x7f00000022c0), 0x0, 0x8000) pipe2$9p(&(0x7f0000003340)={0xffffffffffffffff}, 0x80c00) io_submit(0x0, 0x7, &(0x7f0000003440)=[&(0x7f0000001f40)={0x0, 0x0, 0x0, 0x5, 0x5fa, r3, &(0x7f0000001f00)="65ffefbc2d2f8ef17c584073d65329de5d6f7c399361e9d8dfb10794d04638f31e4c1dfc25", 0x25, 0x6b0b}, &(0x7f0000002000)={0x0, 0x0, 0x0, 0x8, 0xfffa, r4, &(0x7f0000001f80)="3152ab1ddadec4035a0e1e283b190058f2011728cac49108597de04791daa30a8448f757dbf8f6d86406739357e7ed2118863442cd23b39ffaec01832f9c21f055e37814798d09e38eb00735efda49b2d48029d7f89b7fc2c8037903f6", 0x5d, 0x0, 0x0, 0x6}, &(0x7f00000020c0)={0x0, 0x0, 0x0, 0x0, 0x6, r0, &(0x7f0000002040)="8efd7ba81590e66b88efe75536afd71b7d0f2936c91ba893af1dafbd5868a64048e72e08358f63aaf370905599b36524aa7efa40ab20dec82237c9b6a7bc9a949825a58eea2d1125645be8301eccd38b27b2", 0x52, 0x1}, &(0x7f0000002140)={0x0, 0x0, 0x0, 0x2, 0xaa1, r1, &(0x7f0000002100)="2ef9ed04994760c77415c0b43f2a7bb58d2a047e75970e96542ac21f0cf8bd46c3786fe96c5d3fc00471", 0x2a, 0x2983, 0x0, 0x3}, &(0x7f0000002280)={0x0, 0x0, 0x0, 0x8, 0x2, r2, &(0x7f0000002180)="72a4a7f98dc67efb94fc9b155368df138fcd9be830df7e55b26c2a67bbe45c71cc8eedf7bd5302f41821752618eaf25f0ab0616202a149aa24dba5a1b258a4541a542c1cc87841aa660e719551ff23e8fcc1204572702f4537a94cbdd9d070590d2fd8677ac39f3b2a7ad849f73dfccb9a3bd176e3909f93937a3543687c15b0f65434db6a6407fc3d96a87d5d825dcad971a7f9e0397a4b93e92c8bc1b6eca7dbf3a73dd9618ae0f234", 0xaa, 0x0, 0x0, 0x1, r5}, &(0x7f0000003300)={0x0, 0x0, 0x0, 0x913f8bae1976ed47, 0x8, r6, &(0x7f0000002300)="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", 0x1000, 0x0, 0x0, 0x2}, &(0x7f0000003400)={0x0, 0x0, 0x0, 0x6, 0x8, r7, &(0x7f0000003380)="0e03dab9995001813a9f769d46f22c22bfbd659f371fd4c7e1c2a9b93d28cfa14eeb83b1bce883fe8139c4ef8b547bd69ad1f149cd8ca4495acc7a9118e1df529186c73e26ff", 0x46, 0x2000, 0x0, 0x4}]) r8 = open_tree(r3, &(0x7f0000003480)='./file0\x00', 0x88900) sendmsg$IPCTNL_MSG_EXP_DELETE(r8, &(0x7f0000003580)={&(0x7f00000034c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000003540)={&(0x7f0000003500)={0x1c, 0x2, 0x2, 0x101, 0x0, 0x0, {0x3, 0x0, 0x9}, [@CTA_EXPECT_CLASS={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48000}, 0x4) read$hiddev(r6, &(0x7f00000035c0)=""/76, 0x4c) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000003640)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x5, 0x6000, @fd=r3, 0x2, 0x0, 0x0, 0x6, 0x1, {0x1, r9}}, 0x101) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r5, 0xc0189378, &(0x7f0000003680)={{0x1, 0x1, 0x18, r8, {r4}}, './file0\x00'}) signalfd4(r10, &(0x7f00000036c0)={[0x1]}, 0x8, 0x800) 12:48:13 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FITRIM(r4, 0xc0185879, &(0x7f0000000000)={0x5, 0x9, 0x4}) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000080)=0x29eb, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000100), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r1, &(0x7f0000004d00), 0x2f, 0x0) [ 1833.910859] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1833.912787] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1833.913740] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1833.914613] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1833.915616] print_req_error: 8 callbacks suppressed [ 1833.915629] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1833.918038] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1833.918791] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1833.920472] buffer_io_error: 6 callbacks suppressed [ 1833.920479] Buffer I/O error on dev sr0, logical block 0, async page read [ 1833.922389] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1833.923110] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1833.924605] Buffer I/O error on dev sr0, logical block 1, async page read [ 1833.925889] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1833.926650] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1833.927990] Buffer I/O error on dev sr0, logical block 2, async page read [ 1833.929319] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1833.930034] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1833.931390] Buffer I/O error on dev sr0, logical block 3, async page read [ 1833.932570] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1833.933338] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1833.934647] Buffer I/O error on dev sr0, logical block 4, async page read [ 1833.935792] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1833.936535] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1833.937858] Buffer I/O error on dev sr0, logical block 5, async page read [ 1833.939004] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1833.939745] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1833.941077] Buffer I/O error on dev sr0, logical block 6, async page read [ 1833.942337] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1833.943039] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1833.944364] Buffer I/O error on dev sr0, logical block 7, async page read 12:48:13 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB]) 12:48:13 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 54) 12:48:13 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 57) 12:48:13 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 55) 12:48:13 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x0, 0x2, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1834.132776] FAULT_INJECTION: forcing a failure. [ 1834.132776] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1834.134244] CPU: 1 PID: 10882 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1834.135057] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1834.136021] Call Trace: [ 1834.136348] dump_stack+0x107/0x167 [ 1834.136781] should_fail.cold+0x5/0xa [ 1834.137401] _copy_from_user+0x2e/0x1b0 [ 1834.137888] __copy_msghdr_from_user+0x91/0x4b0 [ 1834.138627] ? __ia32_sys_shutdown+0x80/0x80 [ 1834.139347] ? __lock_acquire+0x1657/0x5b00 [ 1834.139868] ___sys_recvmsg+0xd5/0x200 [ 1834.140327] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1834.140908] ? __lockdep_reset_lock+0x180/0x180 [ 1834.141457] ? __fget_files+0x2cf/0x520 [ 1834.141923] ? lock_acquire+0x197/0x470 [ 1834.142386] ? find_held_lock+0x2c/0x110 [ 1834.142861] ? __might_fault+0xd3/0x180 [ 1834.143325] ? lock_downgrade+0x6d0/0x6d0 [ 1834.143818] do_recvmmsg+0x24c/0x6d0 [ 1834.144409] ? ___sys_recvmsg+0x200/0x200 [ 1834.144931] ? lock_downgrade+0x6d0/0x6d0 [ 1834.145604] ? ksys_write+0x12d/0x260 [ 1834.146241] ? wait_for_completion_io+0x270/0x270 [ 1834.146811] ? rcu_read_lock_any_held+0x75/0xa0 [ 1834.147351] ? vfs_write+0x354/0xb10 [ 1834.147947] __x64_sys_recvmmsg+0x20f/0x260 [ 1834.148552] ? ksys_write+0x1a9/0x260 [ 1834.149148] ? __do_sys_socketcall+0x600/0x600 [ 1834.149808] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1834.150421] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1834.151121] do_syscall_64+0x33/0x40 [ 1834.151637] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1834.152235] RIP: 0033:0x7f2d4b68ab19 [ 1834.152774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1834.155191] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1834.156251] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1834.157347] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1834.158306] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1834.159130] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1834.159953] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1834.164197] FAULT_INJECTION: forcing a failure. [ 1834.164197] name failslab, interval 1, probability 0, space 0, times 0 [ 1834.165561] CPU: 1 PID: 10881 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1834.166358] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1834.167317] Call Trace: [ 1834.167628] dump_stack+0x107/0x167 [ 1834.168050] should_fail.cold+0x5/0xa [ 1834.168487] ? create_object.isra.0+0x3a/0xa20 [ 1834.169024] should_failslab+0x5/0x20 [ 1834.169467] kmem_cache_alloc+0x5b/0x310 [ 1834.169936] ? mark_held_locks+0x9e/0xe0 [ 1834.170408] create_object.isra.0+0x3a/0xa20 [ 1834.170914] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1834.171508] kmem_cache_alloc+0x159/0x310 [ 1834.171996] xas_alloc+0x336/0x440 [ 1834.172413] xas_create+0x34a/0x10d0 [ 1834.172862] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1834.173467] xas_store+0x8c/0x1c40 [ 1834.173887] __xa_store+0x164/0x2d0 [ 1834.174311] ? xa_delete_node+0x280/0x280 [ 1834.174799] ? trace_hardirqs_on+0x5b/0x180 [ 1834.175300] xa_store+0x31/0x50 [ 1834.175683] __io_uring_add_tctx_node+0x1cf/0x520 [ 1834.176242] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1834.176850] ? alloc_fd+0x2e7/0x670 [ 1834.177284] io_uring_setup+0x1fbb/0x2980 [ 1834.177767] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1834.178353] ? wait_for_completion_io+0x270/0x270 [ 1834.178932] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1834.179542] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1834.180140] do_syscall_64+0x33/0x40 [ 1834.180571] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1834.181171] RIP: 0033:0x7f5e2aecab19 [ 1834.181600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1834.183725] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1834.184606] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1834.185441] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1834.186264] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1834.187088] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1834.187911] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1834.191215] FAULT_INJECTION: forcing a failure. [ 1834.191215] name failslab, interval 1, probability 0, space 0, times 0 [ 1834.192748] CPU: 1 PID: 10883 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1834.193560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1834.194515] Call Trace: [ 1834.194821] dump_stack+0x107/0x167 [ 1834.195243] should_fail.cold+0x5/0xa [ 1834.195684] ? xas_alloc+0x336/0x440 [ 1834.196114] should_failslab+0x5/0x20 [ 1834.196553] kmem_cache_alloc+0x5b/0x310 [ 1834.197036] xas_alloc+0x336/0x440 [ 1834.197447] xas_create+0x34a/0x10d0 [ 1834.197883] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1834.198491] xas_store+0x8c/0x1c40 [ 1834.198915] __xa_store+0x164/0x2d0 [ 1834.199339] ? xa_delete_node+0x280/0x280 [ 1834.199824] ? trace_hardirqs_on+0x5b/0x180 [ 1834.200333] xa_store+0x31/0x50 [ 1834.200719] __io_uring_add_tctx_node+0x1cf/0x520 [ 1834.201289] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1834.201899] ? alloc_fd+0x2e7/0x670 [ 1834.202334] io_uring_setup+0x1fbb/0x2980 [ 1834.202822] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1834.203405] ? wait_for_completion_io+0x270/0x270 [ 1834.203978] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1834.204584] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1834.205193] do_syscall_64+0x33/0x40 [ 1834.205628] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1834.206221] RIP: 0033:0x7fddef796b19 [ 1834.206647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1834.208777] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1834.209664] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1834.210489] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1834.211317] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1834.212139] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1834.212974] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1834.217539] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1834.218651] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1834.219550] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1834.220486] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1834.221547] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1834.224422] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.225154] Buffer I/O error on dev sr0, logical block 0, async page read [ 1834.226285] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.226909] Buffer I/O error on dev sr0, logical block 1, async page read [ 1834.227897] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.228647] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.229569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.230283] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.231091] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.231864] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.239110] loop7: detected capacity change from 0 to 2048 [ 1834.264922] EXT4-fs (loop7): Can't read superblock on 2nd try [ 1834.314377] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.315605] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.316677] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.317895] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.318937] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.321431] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.322472] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1834.323608] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:48:27 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FITRIM(r4, 0xc0185879, &(0x7f0000000000)={0x5, 0x9, 0x4}) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000080)=0x29eb, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000100), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r1, &(0x7f0000004d00), 0x2f, 0x0) 12:48:27 executing program 2: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000002e40)=ANY=[@ANYBLOB="80010000100001000000000000000000ac1e0001000000000000000000000000fe8000000000000000000000000000aa00000000fffd00"/64, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="fe8800000000000000000000000000010000000032000000fc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000008700000000000000480002006362632861657329000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000480001006469676573745f6e756c6c00"/305], 0x180}}, 0x0) 12:48:27 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x0, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:48:27 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 58) 12:48:27 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) socket$inet6(0xa, 0x3, 0x40) r1 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00'}) recvmmsg(r0, &(0x7f0000003b80)=[{{&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/115, 0x73}, {&(0x7f0000000100)=""/168, 0xa8}], 0x2}, 0xff}, {{&(0x7f0000000240)=@x25, 0x80, &(0x7f00000002c0), 0x0, &(0x7f0000000300)=""/100, 0x64}, 0x10000}, {{&(0x7f0000000380)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000400)=""/229, 0xe5}, {&(0x7f0000000500)=""/120, 0x78}], 0x2, &(0x7f00000005c0)=""/216, 0xd8}, 0x1ff}, {{&(0x7f00000006c0)=@xdp, 0x80, &(0x7f0000001ac0)=[{&(0x7f0000000740)=""/192, 0xc0}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/6, 0x6}, {&(0x7f0000001840)=""/56, 0x38}, {&(0x7f0000001880)=""/132, 0x84}, {&(0x7f0000001940)=""/125, 0x7d}, {&(0x7f00000019c0)=""/98, 0x62}, {&(0x7f0000001a40)=""/15, 0xf}, {&(0x7f0000001a80)=""/32, 0x20}], 0x9}, 0xfffffe00}, {{&(0x7f0000001b80)=@tipc, 0x80, &(0x7f00000020c0)=[{&(0x7f0000001c00)=""/159, 0x9f}, {&(0x7f0000001cc0)=""/4, 0x4}, {&(0x7f0000001d00)=""/235, 0xeb}, {&(0x7f0000001e00)=""/163, 0xa3}, {&(0x7f0000001ec0)=""/210, 0xd2}, {&(0x7f0000001fc0)=""/232, 0xe8}], 0x6, &(0x7f0000002140)=""/202, 0xca}, 0x100000}, {{&(0x7f0000002240)=@can, 0x80, &(0x7f0000002380)=[{&(0x7f00000022c0)=""/154, 0x9a}], 0x1, &(0x7f00000023c0)=""/66, 0x42}, 0x10001}, {{&(0x7f0000002440)=@vsock={0x28, 0x0, 0x0, @my}, 0x80, &(0x7f0000003a00)=[{&(0x7f00000024c0)=""/249, 0xf9}, {&(0x7f00000025c0)=""/28, 0x1c}, {&(0x7f0000002600)=""/240, 0xf0}, {&(0x7f0000002700)=""/9, 0x9}, {&(0x7f0000002740)=""/153, 0x99}, {&(0x7f0000002800)=""/212, 0xd4}, {&(0x7f0000002900)=""/4096, 0x1000}, {&(0x7f0000003900)=""/146, 0x92}, {&(0x7f00000039c0)=""/48, 0x30}], 0x9, &(0x7f0000003ac0)=""/141, 0x8d}, 0x61a9}], 0x7, 0x100, &(0x7f0000003d40)={0x77359400}) sendmsg$AUDIT_USER_AVC(r2, &(0x7f0000003ec0)={&(0x7f0000003d80), 0xc, &(0x7f0000003e80)={&(0x7f0000003dc0)={0xbc, 0x453, 0x800, 0x70bd2b, 0x25dfdbfc, "f1bf5ce3f1f28596eec111696a2c7e9a6d3e43bd7055b3e8f6c70e2f9746184e899f2b9fa1b16b73bc0e980264b656fd7456a70296283a40b5f8ccbdd56964892430485bfeda8a44fa3579d055f55b1849002150d3e1fe5d0d2952823c510a11e986008522461975efe340cee1c04e473a10fcd5be176b6c338d32ad0d0e7c61c10ea5eb1933eb926b137b8f3652a1dc9c908a3c6ba69235ab93d115030811a5eebdd2ffb97d94615bd082", ["", "", "", "", ""]}, 0xbc}, 0x1, 0x0, 0x0, 0x40}, 0x20004041) close_range(r0, 0xffffffffffffffff, 0x0) 12:48:27 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 55) 12:48:27 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 56) 12:48:27 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB]) [ 1848.258253] FAULT_INJECTION: forcing a failure. [ 1848.258253] name failslab, interval 1, probability 0, space 0, times 0 [ 1848.260749] CPU: 1 PID: 10902 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1848.262217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1848.263972] Call Trace: [ 1848.264535] dump_stack+0x107/0x167 [ 1848.265320] should_fail.cold+0x5/0xa [ 1848.266132] ? create_object.isra.0+0x3a/0xa20 [ 1848.267102] should_failslab+0x5/0x20 [ 1848.267908] kmem_cache_alloc+0x5b/0x310 [ 1848.268768] ? mark_held_locks+0x9e/0xe0 [ 1848.269641] create_object.isra.0+0x3a/0xa20 [ 1848.270571] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1848.271650] kmem_cache_alloc+0x159/0x310 [ 1848.272539] xas_alloc+0x336/0x440 [ 1848.273307] xas_create+0x34a/0x10d0 [ 1848.274118] xas_store+0x8c/0x1c40 [ 1848.274890] __xa_store+0x164/0x2d0 [ 1848.275671] ? xa_delete_node+0x280/0x280 [ 1848.276587] xa_store+0x31/0x50 [ 1848.277298] __io_uring_add_tctx_node+0x1cf/0x520 [ 1848.278324] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1848.279432] ? alloc_fd+0x2e7/0x670 [ 1848.280216] io_uring_setup+0x1fbb/0x2980 [ 1848.281110] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1848.282181] ? wait_for_completion_io+0x270/0x270 [ 1848.283229] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1848.284343] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1848.285448] do_syscall_64+0x33/0x40 [ 1848.286241] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1848.287324] RIP: 0033:0x7fddef796b19 [ 1848.288108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1848.292010] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1848.293631] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1848.295129] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1848.296632] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1848.298144] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1848.299650] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1848.315009] FAULT_INJECTION: forcing a failure. [ 1848.315009] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1848.316742] CPU: 0 PID: 10908 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1848.317675] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1848.318915] Call Trace: [ 1848.319282] dump_stack+0x107/0x167 [ 1848.319774] should_fail.cold+0x5/0xa [ 1848.320295] _copy_from_user+0x2e/0x1b0 [ 1848.320853] __copy_msghdr_from_user+0x91/0x4b0 [ 1848.321487] ? __ia32_sys_shutdown+0x80/0x80 [ 1848.322085] ? __lock_acquire+0x1657/0x5b00 [ 1848.322675] ___sys_recvmsg+0xd5/0x200 [ 1848.323204] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1848.323860] ? __lockdep_reset_lock+0x180/0x180 [ 1848.324479] ? __fget_files+0x2cf/0x520 [ 1848.325027] ? lock_acquire+0x197/0x470 [ 1848.325562] ? find_held_lock+0x2c/0x110 [ 1848.326112] ? __might_fault+0xd3/0x180 [ 1848.326653] ? lock_downgrade+0x6d0/0x6d0 [ 1848.327220] do_recvmmsg+0x24c/0x6d0 [ 1848.327729] ? ___sys_recvmsg+0x200/0x200 [ 1848.328280] ? lock_downgrade+0x6d0/0x6d0 [ 1848.328846] ? ksys_write+0x12d/0x260 [ 1848.329375] ? wait_for_completion_io+0x270/0x270 [ 1848.330021] ? rcu_read_lock_any_held+0x75/0xa0 [ 1848.330641] ? vfs_write+0x354/0xb10 [ 1848.331136] __x64_sys_recvmmsg+0x20f/0x260 [ 1848.331703] ? ksys_write+0x1a9/0x260 [ 1848.332232] ? __do_sys_socketcall+0x600/0x600 [ 1848.332848] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1848.333549] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1848.334245] do_syscall_64+0x33/0x40 [ 1848.334758] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1848.335433] RIP: 0033:0x7f2d4b68ab19 [ 1848.335934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1848.338400] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1848.339422] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1848.340370] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1848.341328] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1848.342265] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1848.343206] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1848.346528] netlink: 144 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1848.347966] loop7: detected capacity change from 0 to 2048 [ 1848.351355] FAULT_INJECTION: forcing a failure. [ 1848.351355] name failslab, interval 1, probability 0, space 0, times 0 [ 1848.352878] CPU: 0 PID: 10903 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1848.353789] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1848.354883] Call Trace: [ 1848.355231] dump_stack+0x107/0x167 [ 1848.355706] should_fail.cold+0x5/0xa [ 1848.356212] ? xas_alloc+0x336/0x440 [ 1848.356699] should_failslab+0x5/0x20 [ 1848.357208] kmem_cache_alloc+0x5b/0x310 [ 1848.357766] xas_alloc+0x336/0x440 [ 1848.358247] xas_create+0x34a/0x10d0 [ 1848.358743] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1848.359451] xas_store+0x8c/0x1c40 [ 1848.359934] __xa_store+0x164/0x2d0 [ 1848.360422] ? xa_delete_node+0x280/0x280 [ 1848.360979] ? trace_hardirqs_on+0x5b/0x180 [ 1848.361576] xa_store+0x31/0x50 [ 1848.362013] __io_uring_add_tctx_node+0x1cf/0x520 [ 1848.362655] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1848.363340] ? alloc_fd+0x2e7/0x670 [ 1848.363823] io_uring_setup+0x1fbb/0x2980 [ 1848.364374] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1848.365034] ? wait_for_completion_io+0x270/0x270 [ 1848.365689] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1848.366390] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1848.367069] do_syscall_64+0x33/0x40 [ 1848.367567] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1848.368246] RIP: 0033:0x7f5e2aecab19 [ 1848.368735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1848.371134] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1848.372127] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1848.373064] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1848.374005] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1848.374927] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1848.375862] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1848.387735] EXT4-fs (loop7): Can't read superblock on 2nd try 12:48:27 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 57) [ 1848.419701] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1848.422288] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1848.424043] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1848.425500] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1848.427452] print_req_error: 16 callbacks suppressed [ 1848.427471] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1848.464876] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1848.465543] FAULT_INJECTION: forcing a failure. [ 1848.465543] name failslab, interval 1, probability 0, space 0, times 0 [ 1848.466960] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1848.468284] CPU: 0 PID: 10916 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1848.468299] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1848.469734] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1848.470514] Call Trace: [ 1848.470533] dump_stack+0x107/0x167 [ 1848.470550] should_fail.cold+0x5/0xa [ 1848.472347] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 1848.473069] ? xas_alloc+0x336/0x440 [ 1848.473654] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 [ 1848.474056] should_failslab+0x5/0x20 [ 1848.474874] buffer_io_error: 14 callbacks suppressed [ 1848.474884] Buffer I/O error on dev sr0, logical block 0, async page read [ 1848.475746] kmem_cache_alloc+0x5b/0x310 [ 1848.475763] xas_alloc+0x336/0x440 [ 1848.475779] xas_create+0x34a/0x10d0 [ 1848.476584] Buffer I/O error on dev sr0, logical block 1, async page read [ 1848.477763] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1848.477784] xas_store+0x8c/0x1c40 [ 1848.478609] Buffer I/O error on dev sr0, logical block 2, async page read [ 1848.479199] __xa_store+0x164/0x2d0 [ 1848.479220] ? xa_delete_node+0x280/0x280 [ 1848.480675] Buffer I/O error on dev sr0, logical block 3, async page read [ 1848.481138] ? trace_hardirqs_on+0x5b/0x180 [ 1848.481158] xa_store+0x31/0x50 [ 1848.481930] Buffer I/O error on dev sr0, logical block 4, async page read [ 1848.482357] __io_uring_add_tctx_node+0x1cf/0x520 [ 1848.482370] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1848.482380] ? alloc_fd+0x2e7/0x670 [ 1848.482405] io_uring_setup+0x1fbb/0x2980 [ 1848.484109] Buffer I/O error on dev sr0, logical block 5, async page read [ 1848.484697] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1848.484708] ? wait_for_completion_io+0x270/0x270 [ 1848.484738] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1848.485513] Buffer I/O error on dev sr0, logical block 6, async page read [ 1848.486300] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1848.486316] do_syscall_64+0x33/0x40 [ 1848.486329] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1848.486343] RIP: 0033:0x7fddef796b19 [ 1848.487108] Buffer I/O error on dev sr0, logical block 7, async page read [ 1848.487589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1848.487596] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1848.487609] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1848.487622] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1848.490754] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.490805] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1848.490820] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1848.491919] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1848.492470] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1848.524582] Buffer I/O error on dev sr0, logical block 0, async page read [ 1848.529579] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.531054] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1848.533207] Buffer I/O error on dev sr0, logical block 1, async page read [ 1848.535678] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.537243] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1848.539808] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.541333] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1848.544573] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.545907] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1848.548634] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.550185] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1848.554006] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.555284] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 12:48:27 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB]) 12:48:27 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x0, 0x0}, 0x10) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext, 0x0, 0x0, 0x9, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$SG_IO(r2, 0x127f, &(0x7f00000003c0)={0xe00, 0x0, 0x0, 0x0, @buffer={0x300, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) socket$nl_generic(0x10, 0x3, 0x10) r3 = getpgrp(0x0) pidfd_open(r3, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, 0x0) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, r1) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$nl_generic(r4, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x40, 0x21, 0x800, 0x70bd25, 0x25dfdbfc, {}, [@nested={0x2c, 0xf, 0x0, 0x1, [@typed={0xc, 0x95, 0x0, 0x0, @u64=0x401}, @typed={0x9, 0x52, 0x0, 0x0, @str=',(/\xef\x00'}, @typed={0x4, 0x82}, @typed={0xc, 0x93, 0x0, 0x0, @u64=0x579}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x44000}, 0x1) [ 1848.575600] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.576438] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1848.601335] loop7: detected capacity change from 0 to 2048 12:48:27 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 59) [ 1848.639887] EXT4-fs (loop7): Can't read superblock on 2nd try 12:48:27 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FITRIM(r4, 0xc0185879, &(0x7f0000000000)={0x5, 0x9, 0x4}) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000080)=0x29eb, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000100), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r1, &(0x7f0000004d00), 0x2f, 0x0) 12:48:27 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x0, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1848.713997] FAULT_INJECTION: forcing a failure. [ 1848.713997] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1848.717112] CPU: 1 PID: 10928 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1848.718921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1848.721032] Call Trace: [ 1848.721781] dump_stack+0x107/0x167 [ 1848.722578] should_fail.cold+0x5/0xa [ 1848.723409] _copy_from_user+0x2e/0x1b0 [ 1848.724280] __copy_msghdr_from_user+0x91/0x4b0 [ 1848.725297] ? __ia32_sys_shutdown+0x80/0x80 [ 1848.726251] ? __lock_acquire+0x1657/0x5b00 [ 1848.727377] ___sys_recvmsg+0xd5/0x200 [ 1848.728355] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1848.729543] ? __lockdep_reset_lock+0x180/0x180 [ 1848.730551] ? __fget_files+0x2cf/0x520 [ 1848.731419] ? lock_acquire+0x197/0x470 [ 1848.732277] ? find_held_lock+0x2c/0x110 [ 1848.733203] ? __might_fault+0xd3/0x180 [ 1848.734065] ? lock_downgrade+0x6d0/0x6d0 [ 1848.734988] do_recvmmsg+0x24c/0x6d0 [ 1848.735806] ? ___sys_recvmsg+0x200/0x200 [ 1848.736707] ? lock_downgrade+0x6d0/0x6d0 [ 1848.737626] ? ksys_write+0x12d/0x260 [ 1848.738469] ? wait_for_completion_io+0x270/0x270 [ 1848.739521] ? rcu_read_lock_any_held+0x75/0xa0 [ 1848.740535] ? vfs_write+0x354/0xb10 [ 1848.741418] __x64_sys_recvmmsg+0x20f/0x260 [ 1848.742386] ? ksys_write+0x1a9/0x260 [ 1848.743267] ? __do_sys_socketcall+0x600/0x600 [ 1848.744268] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1848.745413] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1848.746533] do_syscall_64+0x33/0x40 [ 1848.747343] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1848.748456] RIP: 0033:0x7f2d4b68ab19 [ 1848.749272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1848.753256] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1848.754902] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1848.756443] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1848.757988] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1848.759530] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1848.761080] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:48:27 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 56) 12:48:27 executing program 2: r0 = syz_mount_image$ext4(&(0x7f0000000140)='ext3\x00', &(0x7f0000000180)='./file0\x00', 0x9, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000000)="4bf4cfffa9759b1b5927a0d678b3844eecf78511c4a07d507eebe1c3a09774a530125e8e7cf8ecd01ac4bb96bd21e3113776cd899bc7b60258bf951c300a491aa82d239465630a53b1882e7a54464662781a25357358ecb727049120ef1f72c1d50dbaf1d82c77fc715a0ad3df74c7eb828992291e7b7924d9000988260941659423ba29e029ed14633851", 0x8b, 0x84f}, {&(0x7f00000000c0)="f659d343fa5df0ae6e94166bfae71d2970a172c7488e956623236ddac2e819bc35c80d37ab8c551aee767c5d35087147f765cae5158e7ac6820976521a732c3f6d07f55c179977d69bac79551f11ed00"/92, 0x5c, 0x5eb4ef9a}], 0x0, &(0x7f0000001200)={[], [{@euid_gt}]}) openat(r0, &(0x7f0000000200)='./file0\x00', 0xd00, 0x20) sendmsg$NLBL_UNLABEL_C_ACCEPT(0xffffffffffffffff, &(0x7f0000001e00)={&(0x7f0000001d00), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4001}, 0x40000) [ 1848.817469] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1848.819593] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1848.821041] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1848.822583] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1848.824409] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.826294] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.828624] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.830212] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.831707] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.833042] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.834465] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.836538] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.875384] FAULT_INJECTION: forcing a failure. [ 1848.875384] name failslab, interval 1, probability 0, space 0, times 0 [ 1848.876696] CPU: 0 PID: 10933 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1848.877495] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1848.878448] Call Trace: [ 1848.878759] dump_stack+0x107/0x167 [ 1848.879178] should_fail.cold+0x5/0xa [ 1848.879624] ? create_object.isra.0+0x3a/0xa20 [ 1848.880151] should_failslab+0x5/0x20 [ 1848.880592] kmem_cache_alloc+0x5b/0x310 [ 1848.881070] ? mark_held_locks+0x9e/0xe0 [ 1848.881540] create_object.isra.0+0x3a/0xa20 [ 1848.882044] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1848.882630] kmem_cache_alloc+0x159/0x310 [ 1848.883113] xas_alloc+0x336/0x440 [ 1848.883524] xas_create+0x34a/0x10d0 [ 1848.883960] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1848.884575] xas_store+0x8c/0x1c40 [ 1848.885000] __xa_store+0x164/0x2d0 [ 1848.885427] ? xa_delete_node+0x280/0x280 [ 1848.885908] ? trace_hardirqs_on+0x5b/0x180 [ 1848.886408] xa_store+0x31/0x50 [ 1848.886790] __io_uring_add_tctx_node+0x1cf/0x520 [ 1848.887354] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1848.887960] ? alloc_fd+0x2e7/0x670 [ 1848.888388] io_uring_setup+0x1fbb/0x2980 [ 1848.888874] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1848.889462] ? wait_for_completion_io+0x270/0x270 [ 1848.890032] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1848.890645] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1848.891241] do_syscall_64+0x33/0x40 [ 1848.891669] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1848.892267] RIP: 0033:0x7f5e2aecab19 [ 1848.892698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1848.894830] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1848.895714] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1848.896542] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1848.897371] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1848.898188] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1848.899018] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1848.936775] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1848.955569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:48:43 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 60) 12:48:43 executing program 6: socket$inet6_udplite(0xa, 0x2, 0x88) r0 = socket$inet6(0xa, 0x80000, 0x3d) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 12:48:43 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='block_validity,usrjquota=.,hash,dont_measure,subj_user=ext4\x00,permit_directio,subj_user=2']) 12:48:43 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x0, 0x3f, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:48:43 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 57) 12:48:43 executing program 2: r0 = getpgrp(0x0) perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x800000}, 0x0, 0x2000, 0xffffffffffffffff, 0x0) move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x86) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000500)={0x1360, 0x2b, 0x0, 0x9, 0x25dfdbfd, {0x1f}, [@nested={0x308, 0x89, 0x0, 0x1, [@typed={0x14, 0x90, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x13}}, @generic="ab1e940e0ca8de676949ff1c19d9083aa92ecc9d60c2b85b89b7debe8af3db3f660a420164f09c9922fed416a8299f8c949db502973732712a2446cb8514289d01108fa290c6794e03430d91c40b7ff746c783e458c76b25ba2ecb31fc0efb3f846e7b4c31246b52e65cba2e9c6a424196508c3a9e07e2007283a54f5ed3b0e9f34737b8d524666bed298311ff6326d507c8a6bd5f222fbc97462a9652fbfe10da1fef4a39364614adfde83aeea876ae10a57f13e8aa5f875ed59924637fa223977ca92a3bfdf626996c437f9dc2e65e26a69ab8f13d0208e95ae472a330837b9e1ee62241c2f7045a27", @generic="e492e69691022089a85cba791536f2f02c87ad031af133ee50db5978626b0aa81b512122d06938a65a8504c95932374a81624d6e7134b7ec3077a1c2ae7772dde228f4ba4dbd4afffeac55ddce39e3aa434c8f97862f5dcdc3edbbdabbd80a4d6aed397e2f5523b1d7526275800f253c0de8c4084d5ce665f7ca990f1dd34bff", @typed={0x8, 0x6a, 0x0, 0x0, @uid=0xee01}, @generic="d4a16776e18e94800e10cf62f6a6e2c0540cbcdbeb10cb8e078456231aecc9b0fe10cd0b087b2f6550243d7ba54ff4d81c18adb3aa583171a9123aade2968f2dd8fd64", @generic="0c54719daa20a2739c4ccaaa73e1ed3cabc01f325a7ee52cd4873d36daf225a5a2c38dc19da0bf2018c4e06c39897d95a133856475580544b4a7ca53f8256c580a23f6bb6d2c60baaba1b680ed1bc0af309d41bb9941505b6b2494faf5ecbffdd57a3b8f9adc0b708f500d54641fc74f27400d1946d017bfcf7d9aa8562400edcd2514a139dfda49bdfa92d1704f67cff6842c549857133d61cc8f3ebcac749c28ff444792f2d5ebbca81e525350eedb5e3fda9cd44e038bffc3335e853d918d00c344fe68ea64e7759b7545cb8cbdad14a9a9ab12dff19936a83aa30fffe87dd4d60efecb1da7fe44911b24cafcd739773e608fa9acf7f1", @generic="6efe0a6dd9f49bb3eaa88b391d349710d870e82d4c57e0045a90f2575b48c1b236989d65ff3c0ee6f5392325a38bf7b6f9ce201dbcf89dc19d9bbc8f095a4e0bf41a37"]}, @generic="751bd8192d5f0651b1cdbe90bc89c51a52e9d58af5a997dd1a595f3f4cf2839fe23fdc094ca9269ce450d132a006feb72db8c22e", @typed={0x1004, 0x31, 0x0, 0x0, @binary="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"}, @nested={0xc, 0x6d, 0x0, 0x1, [@typed={0x6, 0x93, 0x0, 0x0, @str='}\x00'}]}]}, 0x1360}, 0x1, 0x0, 0x0, 0x4020800}, 0x24008080) openat(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x3cba43, 0x0) ioctl$FIBMAP(0xffffffffffffffff, 0x1, 0x0) open(&(0x7f0000000180)='./file0/file0\x00', 0x8000, 0x0) capset(&(0x7f0000000240), &(0x7f0000000300)={0x800, 0x3, 0x7, 0xd7, 0x8000, 0x6}) pidfd_open(0x0, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)=0x0) capset(&(0x7f0000000240)={0x0, r1}, &(0x7f0000000300)={0x800, 0x3, 0x7, 0xd7, 0x8000, 0x6}) tgkill(r0, r1, 0x3) r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000100000018000000", @ANYBLOB="4000010000ce4bf9d7ea3ce6"]) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lsetxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100), &(0x7f0000000140), 0x2, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x342, 0x0) write$binfmt_elf64(r3, &(0x7f0000000180)=ANY=[], 0xfdef) statfs(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)=""/64) ioctl$FIBMAP(r3, 0x1, &(0x7f0000000040)) 12:48:43 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FITRIM(r4, 0xc0185879, &(0x7f0000000000)={0x5, 0x9, 0x4}) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000080)=0x29eb, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000100), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r1, &(0x7f0000004d00), 0x2f, 0x0) 12:48:43 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 58) [ 1864.304975] loop7: detected capacity change from 0 to 2048 [ 1864.316053] FAULT_INJECTION: forcing a failure. [ 1864.316053] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1864.317970] CPU: 1 PID: 10960 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1864.319172] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1864.320431] Call Trace: [ 1864.320858] dump_stack+0x107/0x167 [ 1864.321525] should_fail.cold+0x5/0xa [ 1864.322114] _copy_from_user+0x2e/0x1b0 [ 1864.322851] __copy_msghdr_from_user+0x91/0x4b0 [ 1864.323741] ? __ia32_sys_shutdown+0x80/0x80 [ 1864.324484] ? __lock_acquire+0x1657/0x5b00 [ 1864.325150] ___sys_recvmsg+0xd5/0x200 [ 1864.325853] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1864.326589] ? __lockdep_reset_lock+0x180/0x180 [ 1864.327289] ? __fget_files+0x2cf/0x520 [ 1864.327890] ? lock_acquire+0x197/0x470 [ 1864.328489] ? find_held_lock+0x2c/0x110 [ 1864.329127] ? __might_fault+0xd3/0x180 [ 1864.329731] ? lock_downgrade+0x6d0/0x6d0 [ 1864.330366] do_recvmmsg+0x24c/0x6d0 [ 1864.330924] ? ___sys_recvmsg+0x200/0x200 [ 1864.331540] ? lock_downgrade+0x6d0/0x6d0 [ 1864.332216] ? ksys_write+0x12d/0x260 [ 1864.332969] ? wait_for_completion_io+0x270/0x270 [ 1864.333701] ? rcu_read_lock_any_held+0x75/0xa0 [ 1864.334393] ? vfs_write+0x354/0xb10 [ 1864.334947] __x64_sys_recvmmsg+0x20f/0x260 [ 1864.335588] ? ksys_write+0x1a9/0x260 [ 1864.336152] ? __do_sys_socketcall+0x600/0x600 [ 1864.336832] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1864.337614] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1864.338376] do_syscall_64+0x33/0x40 [ 1864.338928] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1864.339685] RIP: 0033:0x7f2d4b68ab19 [ 1864.340232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1864.342963] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1864.344080] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1864.345128] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1864.346190] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1864.347235] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1864.348279] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1864.351248] FAULT_INJECTION: forcing a failure. [ 1864.351248] name failslab, interval 1, probability 0, space 0, times 0 [ 1864.352898] CPU: 1 PID: 10962 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1864.353927] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1864.355156] Call Trace: [ 1864.355546] dump_stack+0x107/0x167 [ 1864.356085] should_fail.cold+0x5/0xa [ 1864.356651] ? create_object.isra.0+0x3a/0xa20 [ 1864.357333] should_failslab+0x5/0x20 [ 1864.357894] kmem_cache_alloc+0x5b/0x310 [ 1864.358493] ? mark_held_locks+0x9e/0xe0 [ 1864.359099] create_object.isra.0+0x3a/0xa20 [ 1864.359745] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1864.360497] kmem_cache_alloc+0x159/0x310 [ 1864.361116] xas_alloc+0x336/0x440 [ 1864.361654] xas_create+0x34a/0x10d0 [ 1864.362222] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1864.362996] xas_store+0x8c/0x1c40 [ 1864.363528] __xa_store+0x164/0x2d0 [ 1864.364066] ? xa_delete_node+0x280/0x280 [ 1864.364685] ? trace_hardirqs_on+0x5b/0x180 [ 1864.365336] xa_store+0x31/0x50 [ 1864.365822] __io_uring_add_tctx_node+0x1cf/0x520 [ 1864.366528] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1864.367293] ? alloc_fd+0x2e7/0x670 [ 1864.367836] io_uring_setup+0x1fbb/0x2980 [ 1864.368447] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1864.369190] ? wait_for_completion_io+0x270/0x270 [ 1864.369916] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1864.370692] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1864.371450] do_syscall_64+0x33/0x40 [ 1864.372002] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1864.372759] RIP: 0033:0x7fddef796b19 [ 1864.373310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1864.375991] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1864.377060] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1864.378107] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1864.379156] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1864.380194] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1864.381231] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1864.388597] EXT4-fs (loop7): Unrecognized mount option "hash" or missing value [ 1864.390744] FAULT_INJECTION: forcing a failure. [ 1864.390744] name failslab, interval 1, probability 0, space 0, times 0 [ 1864.392419] CPU: 1 PID: 10959 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1864.393432] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1864.394934] Call Trace: [ 1864.395302] dump_stack+0x107/0x167 [ 1864.395834] should_fail.cold+0x5/0xa [ 1864.396386] ? xas_alloc+0x336/0x440 [ 1864.396926] should_failslab+0x5/0x20 [ 1864.397488] kmem_cache_alloc+0x5b/0x310 [ 1864.398080] xas_alloc+0x336/0x440 [ 1864.398738] xas_create+0x34a/0x10d0 [ 1864.399311] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1864.400073] xas_store+0x8c/0x1c40 [ 1864.400607] __xa_store+0x164/0x2d0 [ 1864.401133] ? xa_delete_node+0x280/0x280 [ 1864.401744] ? trace_hardirqs_on+0x5b/0x180 [ 1864.402364] xa_store+0x31/0x50 [ 1864.402840] __io_uring_add_tctx_node+0x1cf/0x520 [ 1864.403529] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1864.404280] ? alloc_fd+0x2e7/0x670 [ 1864.404809] io_uring_setup+0x1fbb/0x2980 [ 1864.405418] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1864.406143] ? wait_for_completion_io+0x270/0x270 [ 1864.406849] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1864.407593] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1864.408346] do_syscall_64+0x33/0x40 [ 1864.408885] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1864.409626] RIP: 0033:0x7f5e2aecab19 [ 1864.410157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1864.412785] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1864.413882] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1864.414903] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1864.415930] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1864.416972] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1864.418025] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:48:43 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB]) [ 1864.469981] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1864.471557] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1864.472818] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1864.473940] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1864.475031] print_req_error: 11 callbacks suppressed [ 1864.475044] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1864.477750] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.478550] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1864.480139] buffer_io_error: 22 callbacks suppressed [ 1864.480146] Buffer I/O error on dev sr0, logical block 0, async page read [ 1864.482601] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.484145] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1864.485587] Buffer I/O error on dev sr0, logical block 1, async page read [ 1864.486767] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.487562] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1864.489164] Buffer I/O error on dev sr0, logical block 2, async page read [ 1864.490540] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.491467] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1864.492920] Buffer I/O error on dev sr0, logical block 3, async page read [ 1864.494407] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.495226] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1864.496660] Buffer I/O error on dev sr0, logical block 4, async page read [ 1864.499291] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.500198] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1864.501963] Buffer I/O error on dev sr0, logical block 5, async page read [ 1864.504403] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.505350] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1864.507171] Buffer I/O error on dev sr0, logical block 6, async page read [ 1864.529664] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.530937] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1864.533124] Buffer I/O error on dev sr0, logical block 7, async page read 12:48:43 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 59) 12:48:43 executing program 6: sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000140)={0x20, 0x0, 0x20, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1}}}}, ["", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x800) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d) sendmsg$nl_generic(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001a0011cd00000000000007000000000008000000", @ANYRES32=0x0, @ANYBLOB="14005300200100"/20], 0x30}}, 0x0) sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x84, 0x7, 0xa, 0xb01, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x46, 0x7, 0x1, 0x0, "cccde81da5e819b5cff470ad8fae8c7da76900cac042250c5703b43ce7073fd82cc89fafef6c22d10e6ac26edbe1a803d69701cf2c045976c91c9eda85006f051fff"}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}]}, 0x84}, 0x1, 0x0, 0x0, 0x2004c014}, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000340)={'syzkaller0\x00'}) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r3, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) sendmsg$BATADV_CMD_SET_MESH(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="840200051171", @ANYRESOCT=r3, @ANYBLOB="000228bd7000fbdbdf250f0000000a000900bbbbbbbbbbbb000008002b00867d0000050037000100000008000600", @ANYBLOB="4fb804403296ab0f6c6531de0bd744b05fb71a4c0fc15305ffd25412f2f040f92ac71e78d090750c844523e5396e91e1c4bdca66939952894b46219aa9eb245dbf5d3d5d525964fd1772142e02135fdd9b7a0346628caf559adae8d9ffe696aa0b0c701460a12914fc49f9e5a75210e3c7e82b7c781a96852ee53c6775be8a336e001282393fcae8df2ec0229338eb37cd52560e24833a2f2126b842bc863cc96ab176a2cfa436d2c95c7120af56d1e6757f88034743c50686d4fe3c2e62a1fdd700ce6470ea0128fa23efc6e1e49c7bb8e0", @ANYBLOB="080034000101000005003800010000000500000000000000"], 0x50}, 0x1, 0x0, 0x0, 0x8011}, 0x20004000) 12:48:43 executing program 2: r0 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$nl_audit(0x10, 0x3, 0x9) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000040)="a6", 0x1}], 0x1}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f0000000140)=0x0) lstat(&(0x7f0000000740)='./file0\x00', &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$nfs4(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x1, 0x7, &(0x7f0000000640)=[{&(0x7f0000000380)="5a1c4a921db49554296dbe0d5f9de6bc6f4e41e2c8b9f6ace2bbfa8ba0aff0ee4f3b0475b853574cf9b347767868aa341afa681013b0d9cbeb44f4d5cbb069d97624d9efe102bf9cbb63734635660ffdff820e97efd5212b959020b6f3eb09", 0x5f, 0x1}, {&(0x7f0000000400)="bcf4efce04ab83528461b5cba085613d841a4e3e04f9c6a42b36a9b2002a5c8fc41371d7dc89fd498fcfeae83e5b499b8f92bd", 0x33, 0x1}, {&(0x7f0000000440)="e08e33a630b86ff53e54e428e73053ea01f71877a35f44b3a75be42e664f1c7f32ace8b0216ff6d6f4835de342345a163f7f5bdf7929b51e79e46e92d36ee363ad2eac1898b8612ed05029003bc4987ccbdf0f417b672ce31112dffe1f1ac08dd1b86735b7875ea091b8438144b1f34722f8821726f85b5517680842f3d2f8", 0x7f, 0xf5}, {&(0x7f00000004c0)="78039264087c8bc7a9c135a3317e7639fdefaa7ae83e16867dfad9e73d35558df386a8c3335018cc686037e5f06699f0716a785a37bf7e5ab6e01b7e3d01b15b36ba08d0d089bdb76c91cbb3e52cbbd8e27242fbd24ce6", 0x57, 0x258}, {&(0x7f0000000880)="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", 0x1000, 0xffffffffffffff81}, {&(0x7f0000000540)="43df044c2d4bbc8f6e38f672b29931b5baf3fcc240367da13d4f4f3a352b33bbbaa78f4188c668b847ecda9be37d02859c2f341ed5c9141c0adf7066249171c16293da6715cb45bf323b2f52d0e1d7ae4bb63a2758e1f4d42c4e1bb7c3b05082a10e5df7d61e2fd4ef7ba23ada783fce0b4f0e10af636626e65b9d1145157e2a38e56aec1323a1d5", 0x88, 0xda5}, {&(0x7f0000000600)="5919ef019ce277b890ce822f4dc1ccbe470860e399d4004ef935", 0x1a, 0x8000}], 0x805008, &(0x7f0000001880)={[{'[$]#/\\(^.\x18&'}, {'\xaa\xaa\xaa\xaa\xaa'}], [{@smackfsfloor={'smackfsfloor', 0x3d, ')/'}}, {@permit_directio}, {@subj_user={'subj_user', 0x3d, '\xaa\xaa\xaa\xaa\xaa'}}, {@hash}, {@euid_lt={'euid<', r6}}]}) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000180)=@sco={0x1f, @fixed}}, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0) syz_io_uring_submit(r4, r2, &(0x7f0000000240)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, r3, 0x80, &(0x7f0000000080)=@hci={0x1f, 0x2, 0x4}}, 0x1000) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r8, r2, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 12:48:43 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 61) [ 1864.577240] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.578122] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1864.579711] Buffer I/O error on dev sr0, logical block 0, async page read [ 1864.581706] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.582453] Buffer I/O error on dev sr0, logical block 1, async page read [ 1864.583531] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.584584] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.585457] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.586296] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.587369] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1864.588182] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:48:43 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 58) [ 1864.700407] loop7: detected capacity change from 0 to 2048 [ 1864.714862] EXT4-fs (loop7): Can't read superblock on 2nd try [ 1864.724586] FAULT_INJECTION: forcing a failure. [ 1864.724586] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1864.727096] CPU: 0 PID: 10978 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1864.728559] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1864.730320] Call Trace: [ 1864.730880] dump_stack+0x107/0x167 [ 1864.731652] should_fail.cold+0x5/0xa [ 1864.732468] _copy_from_user+0x2e/0x1b0 [ 1864.733322] __copy_msghdr_from_user+0x91/0x4b0 [ 1864.734306] ? __ia32_sys_shutdown+0x80/0x80 [ 1864.735236] ? __lock_acquire+0x1657/0x5b00 [ 1864.736168] ___sys_recvmsg+0xd5/0x200 [ 1864.736993] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1864.738034] ? __lockdep_reset_lock+0x180/0x180 [ 1864.739012] ? __fget_files+0x2cf/0x520 [ 1864.739859] ? lock_acquire+0x197/0x470 [ 1864.740696] ? find_held_lock+0x2c/0x110 [ 1864.741565] ? __might_fault+0xd3/0x180 [ 1864.742405] ? lock_downgrade+0x6d0/0x6d0 [ 1864.743309] do_recvmmsg+0x24c/0x6d0 [ 1864.744102] ? ___sys_recvmsg+0x200/0x200 [ 1864.744976] ? lock_downgrade+0x6d0/0x6d0 [ 1864.745870] ? ksys_write+0x12d/0x260 [ 1864.746689] ? wait_for_completion_io+0x270/0x270 [ 1864.747712] ? rcu_read_lock_any_held+0x75/0xa0 [ 1864.748694] ? vfs_write+0x354/0xb10 [ 1864.749505] __x64_sys_recvmmsg+0x20f/0x260 [ 1864.750415] ? ksys_write+0x1a9/0x260 [ 1864.751220] ? __do_sys_socketcall+0x600/0x600 [ 1864.752191] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1864.753309] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1864.754397] do_syscall_64+0x33/0x40 [ 1864.755190] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1864.756267] RIP: 0033:0x7f2d4b68ab19 [ 1864.757050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 12:48:43 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB]) 12:48:43 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x0, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1864.760936] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1864.762755] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1864.764271] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1864.765796] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1864.767304] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1864.768806] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 12:48:43 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FITRIM(r4, 0xc0185879, &(0x7f0000000000)={0x5, 0x9, 0x4}) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000080)=0x29eb, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000100), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) [ 1864.789816] FAULT_INJECTION: forcing a failure. [ 1864.789816] name failslab, interval 1, probability 0, space 0, times 0 [ 1864.792365] CPU: 0 PID: 10979 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1864.793899] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1864.795635] Call Trace: [ 1864.796188] dump_stack+0x107/0x167 [ 1864.796968] should_fail.cold+0x5/0xa [ 1864.797771] ? xas_alloc+0x336/0x440 [ 1864.798571] should_failslab+0x5/0x20 [ 1864.799390] kmem_cache_alloc+0x5b/0x310 [ 1864.800266] xas_alloc+0x336/0x440 [ 1864.801029] xas_create+0x34a/0x10d0 [ 1864.801842] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 1864.802925] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1864.804051] xas_store+0x8c/0x1c40 [ 1864.804834] __xa_store+0x164/0x2d0 [ 1864.805621] ? xa_delete_node+0x280/0x280 [ 1864.806522] ? trace_hardirqs_on+0x5b/0x180 [ 1864.807464] xa_store+0x31/0x50 [ 1864.808181] __io_uring_add_tctx_node+0x1cf/0x520 [ 1864.809222] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1864.810340] ? alloc_fd+0x2e7/0x670 [ 1864.811132] io_uring_setup+0x1fbb/0x2980 [ 1864.812035] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1864.813117] ? wait_for_completion_io+0x270/0x270 [ 1864.814193] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1864.815312] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1864.816417] do_syscall_64+0x33/0x40 [ 1864.817227] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1864.818324] RIP: 0033:0x7fddef796b19 [ 1864.819112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1864.823035] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1864.824660] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1864.826183] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1864.827701] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1864.829237] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1864.830759] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1864.839582] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2567 sclass=netlink_route_socket pid=10984 comm=syz-executor.6 12:48:43 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 62) 12:48:44 executing program 2: r0 = add_key$fscrypt_v1(&(0x7f0000000600), &(0x7f00000001c0)={'fscrypt:', @desc3}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a5480900000000000000dac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) r1 = getegid() perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x100, 0x5805, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0xffffffffffffffff, 0xfffffffffffffffb, 0xffffffffffffffff, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setresgid(r1, r1, r1) setsockopt$inet6_IPV6_DSTOPTS(r2, 0x29, 0x3b, &(0x7f0000000200)=ANY=[], 0x8) signalfd(r2, &(0x7f0000000480)={[0x1]}, 0x8) sendmmsg$inet6(r2, &(0x7f0000000040)=[{{&(0x7f0000000640)={0xa, 0x4e23, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, 0x9a}, 0x1c, 0x0, 0xff9c}}, {{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000440)="10", 0x1}, {&(0x7f0000000000)="b47bee9c72"}, {&(0x7f00000006c0)="b5a1637cc70933fe23ab80693589a58283f9bc1d5e5e619342632c742747493f038a6c6bf5c1e07db6bb2485d757155ef659876be53d92e25b4ed90e1b6e24d9bfb046bf0e607d35b2ceef9ba9f197f571a2b635b97379652e82f78c66fabcb110c1d4c228e2263685c13a8150ef0f38"}], 0x1, 0x0, 0xa}}, {{0x0, 0x0, &(0x7f0000000900), 0x1}}], 0x1, 0x8080) sendmsg$inet6(r2, &(0x7f0000004380)={0x0, 0x0, 0x0}, 0x0) r3 = request_key(&(0x7f0000000540)='rxrpc_s\x00', &(0x7f0000000680)={'syz', 0x2}, &(0x7f00000005c0)='\xf7{]&\x00', r0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) accept$inet6(r4, &(0x7f00000002c0)={0xa, 0x0, 0x0, @empty}, &(0x7f0000000300)=0x1c) r5 = add_key$fscrypt_v1(&(0x7f0000000340), &(0x7f0000000380)={'fscrypt:', @desc2}, &(0x7f00000003c0)={0x0, "9534b98380ff17c266d9bd44260337f337aa5713bfb47b1931f464b2d23164e151aa7637cdeb05320825fc3a162d93c5c3022a514f5494dcc593405c5cfb59f7", 0x20}, 0x48, r3) setsockopt$inet6_IPV6_PKTINFO(r4, 0x29, 0x1a, 0x0, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000180), &(0x7f0000000280)=0xc) r6 = openat$nvram(0xffffffffffffff9c, &(0x7f00000004c0), 0x82043, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000500)={'bond_slave_0\x00'}) r7 = add_key$fscrypt_v1(&(0x7f0000000740), &(0x7f0000000780)={'fscrypt:', @desc4}, &(0x7f00000007c0)={0x0, "0ca6f740069c22200f73f380f004429c1599171c1269247b60e65cfe40e4d273bedf602ae6de95ed167418b37a4e0806aa75820ff09c4cbfa5d41929ae0f7607", 0x3a}, 0x48, r5) keyctl$KEYCTL_MOVE(0x1e, 0x0, r3, r7, 0x0) [ 1864.915573] FAULT_INJECTION: forcing a failure. [ 1864.915573] name failslab, interval 1, probability 0, space 0, times 0 [ 1864.917996] CPU: 0 PID: 10991 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1864.919484] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1864.921404] Call Trace: [ 1864.921970] dump_stack+0x107/0x167 [ 1864.922757] should_fail.cold+0x5/0xa [ 1864.923576] ? create_object.isra.0+0x3a/0xa20 [ 1864.924561] should_failslab+0x5/0x20 [ 1864.925442] kmem_cache_alloc+0x5b/0x310 [ 1864.926492] ? mark_held_locks+0x9e/0xe0 [ 1864.927545] create_object.isra.0+0x3a/0xa20 [ 1864.928571] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1864.929672] kmem_cache_alloc+0x159/0x310 [ 1864.930567] xas_alloc+0x336/0x440 [ 1864.931347] xas_create+0x34a/0x10d0 [ 1864.932160] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1864.933296] xas_store+0x8c/0x1c40 [ 1864.934084] __xa_store+0x164/0x2d0 [ 1864.934872] ? xa_delete_node+0x280/0x280 [ 1864.935775] ? trace_hardirqs_on+0x5b/0x180 [ 1864.936708] xa_store+0x31/0x50 [ 1864.937430] __io_uring_add_tctx_node+0x1cf/0x520 [ 1864.938467] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1864.939588] ? alloc_fd+0x2e7/0x670 [ 1864.940390] io_uring_setup+0x1fbb/0x2980 [ 1864.941296] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1864.942384] ? wait_for_completion_io+0x270/0x270 [ 1864.943443] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1864.944572] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1864.945694] do_syscall_64+0x33/0x40 [ 1864.946493] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1864.947592] RIP: 0033:0x7f5e2aecab19 [ 1864.948382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1864.952329] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1864.953968] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1864.955502] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1864.957031] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1864.958575] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1864.960102] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1865.062453] loop7: detected capacity change from 0 to 2048 [ 1865.072626] EXT4-fs (loop7): Can't read superblock on 2nd try [ 1865.135976] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1865.137161] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1865.137924] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1865.138700] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1865.141100] FAULT_INJECTION: forcing a failure. [ 1865.141100] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1865.142453] CPU: 1 PID: 11002 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1865.143244] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1865.144203] Call Trace: [ 1865.144513] dump_stack+0x107/0x167 [ 1865.144933] should_fail.cold+0x5/0xa [ 1865.145385] _copy_from_user+0x2e/0x1b0 [ 1865.145848] __copy_msghdr_from_user+0x91/0x4b0 [ 1865.146388] ? __ia32_sys_shutdown+0x80/0x80 [ 1865.146896] ? __lock_acquire+0x1657/0x5b00 [ 1865.147403] ___sys_recvmsg+0xd5/0x200 [ 1865.147851] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1865.148412] ? __lockdep_reset_lock+0x180/0x180 [ 1865.148947] ? __fget_files+0x2cf/0x520 [ 1865.149417] ? lock_acquire+0x197/0x470 [ 1865.149874] ? find_held_lock+0x2c/0x110 [ 1865.150345] ? __might_fault+0xd3/0x180 [ 1865.150801] ? lock_downgrade+0x6d0/0x6d0 [ 1865.151294] do_recvmmsg+0x24c/0x6d0 [ 1865.151723] ? ___sys_recvmsg+0x200/0x200 [ 1865.152202] ? lock_downgrade+0x6d0/0x6d0 [ 1865.152682] ? ksys_write+0x12d/0x260 [ 1865.153130] ? wait_for_completion_io+0x270/0x270 [ 1865.153700] ? rcu_read_lock_any_held+0x75/0xa0 [ 1865.154236] ? vfs_write+0x354/0xb10 [ 1865.154671] __x64_sys_recvmmsg+0x20f/0x260 [ 1865.155168] ? ksys_write+0x1a9/0x260 [ 1865.155608] ? __do_sys_socketcall+0x600/0x600 [ 1865.156139] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1865.156742] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1865.157344] do_syscall_64+0x33/0x40 [ 1865.157777] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1865.158364] RIP: 0033:0x7f2d4b68ab19 [ 1865.158793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1865.160896] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1865.161776] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1865.162601] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1865.163416] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1865.164233] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1865.165053] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1865.191479] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1865.192698] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1865.193772] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1865.194665] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 1865.196124] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1865.197671] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1865.198990] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1865.200625] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1865.201953] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1865.203486] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1865.204807] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1865.206207] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:49:00 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 59) 12:49:00 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 60) 12:49:00 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000000080), 0x4) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r3, 0x29, 0x16, &(0x7f0000000080), 0x4) open(&(0x7f0000000400)='./file0\x00', 0x161041, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r4, 0x29, 0x16, &(0x7f0000000080), 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) getpeername$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev}, &(0x7f0000000540)=0x1c) r6 = socket$inet6(0xa, 0x1, 0x6) close_range(r0, r6, 0x0) r7 = accept4(r1, &(0x7f0000000000)=@nl=@unspec, &(0x7f0000000080)=0x80, 0x80800) sendmsg$inet6(r0, &(0x7f00000006c0)={&(0x7f0000000480)={0xa, 0x4e23, 0x8, @remote, 0x9abc}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000004c0)="f21dd02cfbbfe2cc0b6243f92953527f55c51cd339a9ff23cf820cf5a48062ef2390b1150d682ec17a6896e303", 0x2d}, {&(0x7f00000007c0)="97eca251da64b61ff764038516c73b30694fdc64dd747e67a5d66dd28b320eb31a56f168699a0c92ce24c79944e67daeabd0f916f14f06a73370e29758e7fd4b39b560ad06b36e8c123b1eb89f17fe765105521e29201be9e9e21e547ba84ea1010bc3b074fc34ef9f04c6e3ad38c2e425813d70597026e7d2eb4296", 0x7c}], 0x2, &(0x7f0000000900)=[@dstopts={{0x178, 0x29, 0x37, {0x16, 0x2b, '\x00', [@generic={0x0, 0xf5, "3e17c1990f73459473f48c882a13bf63ed8cb6d0588de86f57f9a876dbdc7f26ee1eea857c53b6bcd1a53b98beecd22def085a61d9c6bab86e4794e8ddf1e6673518ef9c87dfc3dd31eb65cb2d54f553c3c185f3f977575141112fc07d36dbf98f27be5b2b25b202d6bfe97c6efddffe0d2ca211334c0abb9577b587e7c8f18acaa89b4c353afc4d487926b83e8e5dcf184d88248441e519f6ed305bf10c5958fe8fae2e3e86fc7a7f1d05e2a6d27fee0b8b9657c2cf0fa729194dba9609fe22b1a0c500db10a536e33f58cc9c4fe6a5b1e4aa5f0e1954239eb183b2cd59e716dfe11225ce99ae68728607b7cec140d886e6da3465"}, @pad1, @ra={0x5, 0x2, 0x2000}, @padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x1ff}, @generic={0x14, 0x3a, "52c707a4cee041521226f40ad60da170d5cf411a0f3ce7e37f618ecfb063704eddd1253350a0921839c48df886450796835d9fb3086764981ef1"}, @ra={0x5, 0x2, 0x6}, @jumbo={0xc2, 0x4, 0xffff7717}, @ra={0x5, 0x2, 0x3}]}}}, @dstopts_2292={{0xa0, 0x29, 0x4, {0x2c, 0x10, '\x00', [@generic={0x8, 0x4e, "ae72f2d10294c0ebcefee6b7fae86b428147baf8fc6c99adabefe87f54f0252ac78dc6c3508a0d406718485b5c36648ef726a6c6274540a5f4b13ca5fbc2f9939eeb36acab7ee4744b12c0a579a2"}, @jumbo={0xc2, 0x4, 0xda}, @ra={0x5, 0x2, 0xc0d}, @ra={0x5, 0x2, 0xfffa}, @ra={0x5, 0x2, 0x4}, @ra={0x5, 0x2, 0x3}, @padn={0x1, 0x2, [0x0, 0x0]}, @calipso={0x7, 0x10, {0x1, 0x2, 0x4, 0x5, [0x1]}}, @enc_lim={0x4, 0x1, 0x80}, @ra]}}}], 0x218}, 0x404c005) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r8, &(0x7f0000000600)=[{{&(0x7f0000000340)={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @loopback}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x1}}, {{&(0x7f0000000140)={0x2, 0x4e25, @broadcast}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000240)="0365b82b75fc55e18cab97e0584bb94f0b1151b23a9784b4164d425aa47ad8093a091344afac98a19c3ee037475f0d1e83b1df4e9399ca0b74bc0a9f904bd2d8c967730ad53c260b2fa1edcb5768e8e5e59f18d09c247afbfc45ed60876cbe1a42b1b8065cd95101626431534b6de946faaeea0ab64b796fdec07ea08418c193ffe0385ddfdd7366608459239570dc5b573530b27e80319c10a5dab31ec83550fba75d461d2cc3d2791103c12c9446d3b369e2ced2ff5ac6b9cf69fc67481343f6c8262276daa62725c274c415a621a180ddc9f8aaba0730c6e3142a122edb3040a127e45bae12b30ab7cae2171560537b093a", 0xf3}], 0x1, &(0x7f00000001c0)=[@ip_ttl={{0x14, 0x0, 0x2, 0x8000}}], 0x18}}], 0x3, 0x4008045) r9 = accept4(r1, &(0x7f0000000580)=@ethernet={0x0, @multicast}, &(0x7f0000000100)=0x80, 0x800) fcntl$dupfd(r7, 0x406, r9) 12:49:00 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 63) 12:49:00 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB]) 12:49:00 executing program 2: link(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='./file0\x00') r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x40000, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000600), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xe, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="cd656d69f282f46caedc9da09676f7d5fb29e8f4e5806ac5ea118e763750a9", 0x1f) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, 0x42, 0xe21}, 0x14}}, 0x0) fsetxattr$trusted_overlay_nlink(r0, 0x0, 0x0, 0x59, 0x1) syz_io_uring_setup(0x7781, &(0x7f0000000400)={0x0, 0x69e9, 0x0, 0x0, 0x3aa}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000480)=0x0, &(0x7f00000004c0)=0x0) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r6, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108) setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000600)=ANY=[], 0x110) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYRES64, @ANYRESOCT=r3], 0x18}}, 0x8800) readv(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000080)=""/223, 0xdf}, {&(0x7f0000000180)=""/13, 0xd}, {&(0x7f00000001c0)=""/55, 0x37}, {&(0x7f0000000200)=""/108, 0x6c}], 0x4) close(0xffffffffffffffff) ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000500)={0x0, 0x7e850000, 0x6, 0x0, 0x0, [{{r1}, 0x800}, {{}, 0x2}, {{r5}, 0x20f}, {{r0}, 0x8}, {{r1}, 0x1ff}, {{}, 0xffffbffffffff754}]}) syz_open_dev$tty20(0xc, 0x4, 0x0) syz_io_uring_submit(0x0, r4, &(0x7f0000000640)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd_index=0x3, 0x5, 0x0, 0xfffffff7, 0x5, 0x1}, 0x800) ioctl$F2FS_IOC_GARBAGE_COLLECT(0xffffffffffffffff, 0x4004f506, &(0x7f00000000c0)=0x1) unshare(0x48020200) 12:49:00 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x0, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:49:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FITRIM(r4, 0xc0185879, &(0x7f0000000000)={0x5, 0x9, 0x4}) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000080)=0x29eb, 0x4) [ 1881.410474] FAULT_INJECTION: forcing a failure. [ 1881.410474] name failslab, interval 1, probability 0, space 0, times 0 [ 1881.413242] CPU: 0 PID: 11016 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1881.414785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1881.416528] Call Trace: [ 1881.417088] dump_stack+0x107/0x167 [ 1881.417917] should_fail.cold+0x5/0xa [ 1881.418722] ? xas_alloc+0x336/0x440 [ 1881.419510] should_failslab+0x5/0x20 [ 1881.420315] kmem_cache_alloc+0x5b/0x310 [ 1881.421179] xas_alloc+0x336/0x440 [ 1881.421955] xas_create+0x34a/0x10d0 [ 1881.422749] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 1881.423808] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1881.424914] xas_store+0x8c/0x1c40 [ 1881.425707] __xa_store+0x164/0x2d0 [ 1881.426477] ? xa_delete_node+0x280/0x280 [ 1881.427359] ? trace_hardirqs_on+0x5b/0x180 [ 1881.428276] xa_store+0x31/0x50 [ 1881.428975] __io_uring_add_tctx_node+0x1cf/0x520 [ 1881.430029] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1881.431142] ? alloc_fd+0x2e7/0x670 [ 1881.431921] io_uring_setup+0x1fbb/0x2980 [ 1881.432809] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1881.433897] ? wait_for_completion_io+0x270/0x270 [ 1881.434942] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1881.436050] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1881.437146] do_syscall_64+0x33/0x40 [ 1881.437961] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1881.439046] RIP: 0033:0x7f5e2aecab19 [ 1881.439826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1881.443746] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1881.445361] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1881.446879] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1881.448393] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1881.449930] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1881.451435] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1881.457786] FAULT_INJECTION: forcing a failure. [ 1881.457786] name failslab, interval 1, probability 0, space 0, times 0 [ 1881.460342] CPU: 0 PID: 11017 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1881.461818] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1881.463570] Call Trace: [ 1881.464126] dump_stack+0x107/0x167 [ 1881.464910] should_fail.cold+0x5/0xa [ 1881.465732] ? create_object.isra.0+0x3a/0xa20 [ 1881.466702] should_failslab+0x5/0x20 [ 1881.467512] kmem_cache_alloc+0x5b/0x310 [ 1881.468376] ? mark_held_locks+0x9e/0xe0 [ 1881.469239] create_object.isra.0+0x3a/0xa20 [ 1881.470172] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1881.471249] kmem_cache_alloc+0x159/0x310 [ 1881.472212] xas_alloc+0x336/0x440 [ 1881.473012] xas_create+0x34a/0x10d0 [ 1881.473823] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1881.474936] xas_store+0x8c/0x1c40 [ 1881.475711] __xa_store+0x164/0x2d0 [ 1881.476487] ? xa_delete_node+0x280/0x280 [ 1881.477383] ? trace_hardirqs_on+0x5b/0x180 [ 1881.478303] xa_store+0x31/0x50 [ 1881.479003] __io_uring_add_tctx_node+0x1cf/0x520 [ 1881.480018] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1881.481121] ? alloc_fd+0x2e7/0x670 [ 1881.481911] io_uring_setup+0x1fbb/0x2980 [ 1881.482799] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1881.483863] ? wait_for_completion_io+0x270/0x270 [ 1881.484906] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1881.486016] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1881.487116] do_syscall_64+0x33/0x40 [ 1881.487899] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1881.488980] RIP: 0033:0x7fddef796b19 [ 1881.489774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1881.493658] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1881.495265] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1881.496761] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1881.498272] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1881.499780] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1881.501277] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1881.509595] loop7: detected capacity change from 0 to 2048 [ 1881.523858] FAULT_INJECTION: forcing a failure. [ 1881.523858] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1881.526348] CPU: 1 PID: 11021 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1881.527812] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1881.529570] Call Trace: [ 1881.530139] dump_stack+0x107/0x167 [ 1881.530909] should_fail.cold+0x5/0xa [ 1881.531721] _copy_from_user+0x2e/0x1b0 [ 1881.532575] __copy_msghdr_from_user+0x91/0x4b0 [ 1881.533573] ? __ia32_sys_shutdown+0x80/0x80 [ 1881.534506] ? __lock_acquire+0x1657/0x5b00 [ 1881.535444] ___sys_recvmsg+0xd5/0x200 [ 1881.536269] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1881.537302] ? __lockdep_reset_lock+0x180/0x180 [ 1881.538307] ? lock_acquire+0x197/0x470 [ 1881.539147] ? find_held_lock+0x2c/0x110 [ 1881.540008] ? __might_fault+0xd3/0x180 [ 1881.540843] ? lock_downgrade+0x6d0/0x6d0 [ 1881.541752] do_recvmmsg+0x24c/0x6d0 [ 1881.542556] ? ___sys_recvmsg+0x200/0x200 [ 1881.543430] ? lock_downgrade+0x6d0/0x6d0 [ 1881.544327] ? ksys_write+0x12d/0x260 [ 1881.545140] ? wait_for_completion_io+0x270/0x270 [ 1881.546185] ? rcu_read_lock_any_held+0x75/0xa0 [ 1881.547184] ? vfs_write+0x354/0xb10 [ 1881.547984] __x64_sys_recvmmsg+0x20f/0x260 [ 1881.548893] ? ksys_write+0x1a9/0x260 [ 1881.549710] ? __do_sys_socketcall+0x600/0x600 [ 1881.550683] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1881.551801] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1881.552979] do_syscall_64+0x33/0x40 [ 1881.553763] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1881.554816] RIP: 0033:0x7f2d4b68ab19 [ 1881.555578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1881.559360] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1881.560919] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1881.562389] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1881.563844] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1881.565295] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1881.566752] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1881.588898] EXT4-fs (loop7): Can't read superblock on 2nd try 12:49:00 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 61) 12:49:00 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 60) [ 1881.670083] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1881.672118] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1881.673691] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1881.675158] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1881.676977] print_req_error: 17 callbacks suppressed [ 1881.676996] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1881.680940] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1881.682231] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1881.684592] buffer_io_error: 22 callbacks suppressed [ 1881.684603] Buffer I/O error on dev sr0, logical block 0, async page read [ 1881.687652] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1881.688895] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1881.691249] Buffer I/O error on dev sr0, logical block 1, async page read [ 1881.692736] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1881.694018] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1881.696228] Buffer I/O error on dev sr0, logical block 2, async page read [ 1881.698757] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1881.700119] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1881.702122] Buffer I/O error on dev sr0, logical block 3, async page read [ 1881.710689] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1881.713023] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1881.715213] Buffer I/O error on dev sr0, logical block 4, async page read [ 1881.717748] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1881.718954] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1881.721094] Buffer I/O error on dev sr0, logical block 5, async page read [ 1881.722855] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1881.724058] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1881.726192] Buffer I/O error on dev sr0, logical block 6, async page read [ 1881.727833] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1881.729030] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1881.731311] Buffer I/O error on dev sr0, logical block 7, async page read 12:49:00 executing program 6: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xd4, 0x40, 0x7f, 0x11, 0x0, 0x5, 0x8000, 0x8, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0xa0, 0x0, @perf_config_ext={0x3, 0x9}, 0x40, 0x7, 0x6, 0x4, 0x4db6, 0x0, 0x2, 0x0, 0xfffffffe, 0x0, 0x80000001}, 0xffffffffffffffff, 0xa, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 12:49:00 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='block_validity,usrjquota=.,hash,dont_measure']) [ 1881.790855] FAULT_INJECTION: forcing a failure. [ 1881.790855] name failslab, interval 1, probability 0, space 0, times 0 [ 1881.793538] CPU: 1 PID: 11034 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1881.794865] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1881.796464] Call Trace: [ 1881.796988] dump_stack+0x107/0x167 [ 1881.797695] should_fail.cold+0x5/0xa [ 1881.798410] ? xas_alloc+0x336/0x440 [ 1881.799127] should_failslab+0x5/0x20 [ 1881.799856] kmem_cache_alloc+0x5b/0x310 [ 1881.800625] xas_alloc+0x336/0x440 [ 1881.801302] xas_create+0x34a/0x10d0 [ 1881.802023] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1881.803008] xas_store+0x8c/0x1c40 [ 1881.803689] __xa_store+0x164/0x2d0 [ 1881.804372] ? xa_delete_node+0x280/0x280 [ 1881.805156] ? trace_hardirqs_on+0x5b/0x180 [ 1881.805986] xa_store+0x31/0x50 [ 1881.806608] __io_uring_add_tctx_node+0x1cf/0x520 [ 1881.807518] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1881.808495] ? alloc_fd+0x2e7/0x670 [ 1881.809187] io_uring_setup+0x1fbb/0x2980 [ 1881.809980] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1881.810924] ? wait_for_completion_io+0x270/0x270 [ 1881.811850] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1881.812903] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1881.813947] do_syscall_64+0x33/0x40 [ 1881.814638] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1881.815587] RIP: 0033:0x7f5e2aecab19 [ 1881.816289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1881.819884] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1881.821610] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1881.823166] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1881.824713] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1881.826254] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1881.827760] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:49:00 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 64) 12:49:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$FITRIM(r4, 0xc0185879, &(0x7f0000000000)={0x5, 0x9, 0x4}) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) [ 1881.849092] FAULT_INJECTION: forcing a failure. [ 1881.849092] name failslab, interval 1, probability 0, space 0, times 0 [ 1881.851331] CPU: 1 PID: 11035 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1881.852600] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1881.854111] Call Trace: [ 1881.854595] dump_stack+0x107/0x167 [ 1881.855255] should_fail.cold+0x5/0xa [ 1881.855949] ? create_object.isra.0+0x3a/0xa20 [ 1881.856792] should_failslab+0x5/0x20 [ 1881.857487] kmem_cache_alloc+0x5b/0x310 [ 1881.858226] ? mark_held_locks+0x9e/0xe0 [ 1881.858966] create_object.isra.0+0x3a/0xa20 [ 1881.859758] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1881.860682] kmem_cache_alloc+0x159/0x310 [ 1881.861438] xas_alloc+0x336/0x440 [ 1881.862076] xas_create+0x34a/0x10d0 [ 1881.862755] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1881.863700] xas_store+0x8c/0x1c40 [ 1881.864356] __xa_store+0x164/0x2d0 [ 1881.865012] ? xa_delete_node+0x280/0x280 [ 1881.865769] ? trace_hardirqs_on+0x5b/0x180 [ 1881.866570] xa_store+0x31/0x50 [ 1881.867168] __io_uring_add_tctx_node+0x1cf/0x520 [ 1881.868033] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1881.868973] ? alloc_fd+0x2e7/0x670 [ 1881.869656] io_uring_setup+0x1fbb/0x2980 [ 1881.870411] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1881.871311] ? wait_for_completion_io+0x270/0x270 [ 1881.872199] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1881.873138] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1881.874070] do_syscall_64+0x33/0x40 [ 1881.874754] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1881.875672] RIP: 0033:0x7fddef796b19 [ 1881.876350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1881.879653] RSP: 002b:00007fddecd0c108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1881.881019] RAX: ffffffffffffffda RBX: 00007fddef8a9f60 RCX: 00007fddef796b19 [ 1881.882275] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1881.883538] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1881.884809] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1881.886071] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1881.891622] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1881.893471] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1881.894937] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1881.896088] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 1881.897618] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 [ 1881.899588] Buffer I/O error on dev sr0, logical block 0, async page read [ 1881.901136] Buffer I/O error on dev sr0, logical block 1, async page read [ 1882.035446] loop7: detected capacity change from 0 to 2048 [ 1882.058289] FAULT_INJECTION: forcing a failure. [ 1882.058289] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1882.060974] CPU: 0 PID: 11048 Comm: syz-executor.0 Not tainted 5.10.236 #1 [ 1882.062525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1882.064269] Call Trace: [ 1882.064831] dump_stack+0x107/0x167 [ 1882.065632] should_fail.cold+0x5/0xa [ 1882.066448] _copy_from_user+0x2e/0x1b0 [ 1882.067295] __copy_msghdr_from_user+0x91/0x4b0 [ 1882.068281] ? __ia32_sys_shutdown+0x80/0x80 [ 1882.069213] ? __lock_acquire+0x1657/0x5b00 [ 1882.070183] ___sys_recvmsg+0xd5/0x200 [ 1882.071010] ? __copy_msghdr_from_user+0x4b0/0x4b0 [ 1882.072046] ? __lockdep_reset_lock+0x180/0x180 [ 1882.073028] ? __fget_files+0x2cf/0x520 [ 1882.073899] ? lock_acquire+0x197/0x470 [ 1882.074737] ? find_held_lock+0x2c/0x110 [ 1882.075602] ? __might_fault+0xd3/0x180 [ 1882.076446] ? lock_downgrade+0x6d0/0x6d0 [ 1882.077357] do_recvmmsg+0x24c/0x6d0 [ 1882.078171] ? ___sys_recvmsg+0x200/0x200 [ 1882.079047] ? lock_downgrade+0x6d0/0x6d0 [ 1882.079932] ? ksys_write+0x12d/0x260 [ 1882.080752] ? wait_for_completion_io+0x270/0x270 [ 1882.081804] ? rcu_read_lock_any_held+0x75/0xa0 [ 1882.082783] ? vfs_write+0x354/0xb10 [ 1882.083574] __x64_sys_recvmmsg+0x20f/0x260 [ 1882.084483] ? ksys_write+0x1a9/0x260 [ 1882.085285] ? __do_sys_socketcall+0x600/0x600 [ 1882.086280] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1882.087387] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1882.088472] do_syscall_64+0x33/0x40 [ 1882.089257] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1882.090377] RIP: 0033:0x7f2d4b68ab19 [ 1882.091160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1882.095050] RSP: 002b:00007f2d48c00188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1882.096660] RAX: ffffffffffffffda RBX: 00007f2d4b79df60 RCX: 00007f2d4b68ab19 [ 1882.098185] RDX: 000000000000035f RSI: 0000000020001a00 RDI: 0000000000000003 [ 1882.099686] RBP: 00007f2d48c001d0 R08: 0000000000000000 R09: 0000000000000000 [ 1882.101185] R10: 0000000000010062 R11: 0000000000000246 R12: 0000000000000002 [ 1882.102718] R13: 00007fff957937ff R14: 00007f2d48c00300 R15: 0000000000022000 [ 1882.111671] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1882.113181] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1882.114208] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1882.115175] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1882.116813] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1882.120973] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1882.122357] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1882.123738] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1882.125352] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1882.126873] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1882.128568] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1882.130222] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1882.137702] EXT4-fs (loop7): Unrecognized mount option "hash" or missing value 12:49:16 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)) r1 = syz_open_procfs(0x0, &(0x7f0000001580)='net/snmp\x00') readv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000001780)=""/251, 0xfb}, {&(0x7f0000001880)=""/102, 0x66}, {&(0x7f0000001900)=""/130, 0x82}, {&(0x7f00000019c0)=""/95, 0x5f}], 0x4) ioctl(r0, 0x8, &(0x7f00000020c0)="a40abccfc461882da956b150e28c7cda85bc73c13be14d91a756d54d0d87864f469c074ebea3dc63c29a7605dbd8c0722587ace1383477873a20d3429067bcfc515b58c88b3b22bbd7a4b34b1371ac7f24bc3b382625d5b9c2dc258edfc811ee2500f801cf89835894cb29c7fef8bf815a4532c1f80e0ed94748188eab7e4461a282c92fc358f1d85d8253f004d6d9724a034b95752cec511feee9f3a9c7fe3a0d08830c6614c92576473c7c4253af9072465fe11f34ab94ef6d69a6d0df2e4b2b868eabff6bb9839b1721433051f331ae9271bbbba56d9556643392e8f831f79405661854c3f5e6ff7ba867875f8fec68ca06d404cd275f280107605d0adb89c01e9da5a7a4b755827cb114aa291b3af796654ae4d252fbb1b1d45be8d8e6af0806af21538a47501d1ae82acbf09970809225c7affa7733b0b694019e8964e0756423864f85491a6dd0eebc8cae2d035c0946b7c6a29997375936198ed9778bbcb0e7e30b87d0152f55370882d7dfe32508225007a6d7dbe34a48f7123cc889eac8691a108a0bf0757a75a0564a5661fee198a43da2dafaf390a8463133a104fa58949a32f76fa3cdfc81a6cd9a42a632251f977520ed19504edeaa91b1902112874f6020800f26a822d18fe1e020b183bcd6625d0ba08e2ee3676ccf83c4045c414aa9a139e812d5c19ed0fc5b59deb964cf8fb770d6b8b3b41bcf8dbd7729e4f075a9ee9d354a245670b7e434ef3d570258849a3db89532a8c20ced1528c20cb41171b5e9699060b94041403f3ae2a4a8651dfcff56df3b3dee07855cde4dc1ece1b8755ce061a83ae1f5f6aafccb4becac1ab92c2c1d87f95b50cf43d7d20e19d90a184fd043ede8aa18a50bb3fd47307123c45918786c04a2458f0826267f2d56e0f4e40a9a75595023cfd2afed1097a9a14e8711451149bc06071346a7bd56a923e05f5eb29fa6dbbcb8deb2c6c13691bac008b0317ff38a606fde8968a62a26ee21f87982e57a16dca25032ea664548486f2f59576fc1b07c0e2542c3344ceb9abb4fe4fd1182d46c42a8f50e07a8d7bfd68e8b0801bfb54798fa9667e73d7035a380954d00f0305d223d4ee97043d195de993224b88efd419713801ac3e5ad57f053c053ad54ecf35ee046d7557d6fcd16237ebff4944b29397236cee80ac1bae1f1e5565be3a4766614484717c8c0e6859cbb0863af9a3fffd133bceae99153bf7081af9a380d0579eb7ecf687364bddd6b4a82f5c24492f08cbabc03f651c5ad0ca93692552f6e352979a7b8a5f406db6b17ba510a5beead34b32451331df92698a27f15ff0549b43517a3b1030e70c679f6950bd5bf6a952f696f76a9199c42901de086b6fc0d374fc2ae70c97b2e95f8d45ccd2d7228186bd91db3d05f59d27a1fcfd1e46107c7648740a4ccf1283c954ad78db9c906a0e4adf0679b4309b745315904836583e2dba0c88c06d4e6569199e69cde9bc20fb35e6171bfa4f215eebfdb46891dde22b7c404d799480b6390e1ef3714c0bb7622e4a3189f271107ff365481936448849351ef33b79a782ab8aa980b76b33133de3e2d378d72ae83bbe7e05fd4677f73ee0f8bbf426d2c907805b4575d44fb1ba2ae8a837ae419a746fbab3c350385d12b6e5e6569144dc404ece473805cb5ca14773a949a5d6963bbccbff432ff5198a9ffff10fd4ed62553b629787050d48c8c0725bd8a0d26bf97bde47eb6ed6475482cb19fe8ccdef65b088ae529fb8c155e7542dbc7a970129f9249b61d5041fbc758eab55d71aee1e4c030188eea691b0e0c44974eefd1879a47e97d697581e453aa6e26f95603116877b04d8fe3d4626b4347f3b3f5f5dfd0137e61b2ba3d13429ec5a6ba0814216f452f9cf7062c04647bf851c334035b478ef3720c8102646b31eb4bef5ffd9f9308381437dbfc421bfa382ca4ed3df8c005aa883bd4d66f81c8ae7108225048b6df9f6e5d16fe92f409d2706d995e7f51cbb2084450a3db61790308f348fb3d2506f03f875e3df808f957692623f63fa95a47c817f6c3ca135b8f035580e3061fc4306f8f71fe22cb66e9e8a2510e47a70250618676cac00b5b70992148ea920a19b2a6c348def0300530a8f1ad7aeaa0919bdf149831b68e062ee7d0ce85db2a5ae354110bfe76afecaa1ed25698478363d6301ed79f9e32b1be47a5beb64b7e3053be3dd30bb04ec22117409598932f48fe67499c1b24241ab4106fe18beeb32de0acd3dbd3a9ec5f51950513db8f403f1713feffcd908ca51fc542ec7098a51f1cad3b1221e7115b99868ef91743d0ec0dbb79babdd7e3e3873f018a44ce91a7a18823fee389cee23a6e15fa383f089126298c3b38b657f8e06cb978fdef614003c7c9ffc7c5bf0592a330044ffb747a8783a3d0e3d049f72c0e039e4eaee94265be7c492aa10841931c7603049eeeff2304d60ee5ed3156252c56cee1864c5b5aada681916c6e95deeb7e3aef318db555e8aa481a095f8f6b99bd3f727ed685041c3cca62452dc99ac8453a3140a8ea4f165363a4a776aefda76da97cebfdaddc4780f3642ba5586e4855cc7e4d0862af09aca14954dd00620ae41e8cf39cba2d2763d6b2799967f57bbadff42a81fde3fdfd15d79b01d714ae07b4f5bf4f7058a6fe671adc9dd03c6eb514730be08e9d8523bcf77491808292dc910b80ba81399c9f4e1c281b2bd73b34f76914e210085442611125279389f4762a1ca785372d1d2fb83f9d31504aa4a0bcd4457d54b20f48cc6433f7ab5081032ea3e204ac8ebf5fa012fecb8124d1fb41970eb494cba19352b8ab6ab7b29c3fc64cba7e8e6d801ad5a1d9f704c792c6b54e3352ff649efe495cf3e6729ed1337a7814377ef5dd47e7402203b6f891bdb37e1bd91e4e1b12009476a1bccdf04929405004d85ade875285700e60979ff87bf123ed4d0e62bd4ab36f8715f28f91405e8967bb0972528a9279590da853b85e092c84389a42bf948c4180c74fc54a3fba1e856451f509fb8b8687abf5e7059ffb782325a0767e9e054d8e5b18e12d6b5ff23c334dda582e6d4637b397c22875253bc8b8e98339ba724142cf3c461cc0e51c41c3bcdb30150afe8578298f0851b95ce69c4a2b1dfd49cb4251158c9011557a649a01ee226ab3758f9032df7b1a7174cf1168087a1c78f6e253c0265b3f1029b5551cee9f76db868ea426c8967706544ba4b7fabc528bf8d2d871800bc3a4af7456c62d9ec50f1cf87815cfd68376ed8fbf0299ad2bb88a1a30c4fc300b61685d3eddca643ca29cb734d943f44ec72f5028dc30ed6d40b7c7338ced6eda023d7e48fbb5e44fb62105660170ca8071ec3ebca4b3bb6d94f108c4a765922adce0b18954d70c22dab90b1b9095007b806208d47ba558ada3013484536291818bf825006d2169e3c9aba5fca46eadacb96855eb3df97ba2824a469abe7be1b468c2f5f6e04c59eb340ca9384bf72510ea661a25c1b9f107b00cd59a273143fd1108cd3e43499337d9e69c7ebfcaa0041d3508021f25aa1adf45f511220e71879a2bf609ae075797459322b98ef51dc554f239beaa5f50b19c021a17999cf2b21e8b8b79c2e7b2fcf0bc491c7c123de009220426660ef902f906c849fa19fd7a667a9a1d7e6139c029840b3f01c03ec71a16fd28e0701c1de80c546ad0180a400846bdbda8f6068f4737bc8ec652a2bc0d553ce3e6faff41439d93a43834eb4395a86a3499eb9bfc9097a7015664191145b6feffa467d7a0987c76d80bdabe40cc843a62b303f7de1db161cb244bde82a5784634632a6b1c5251c1978c35ae0c3520245e5e8f840d1bdb57efed76daeae0edfa9039a0e0e52db4d4f8fe9536df2f70cb6b1acab47c8d38b7cb812cd13f76352e6eb4c1e798846741b560ec3600f6596955dc7853176016f88dd44b8396c263e4df8ce7c2cad888625effaab503e196b6f699da755baf227b44a6a2eeab0f0528d6a4dfe4fcc7320e5ea90c24925a6dbc06148879ac788897fa2875336eef358b0225f87eb1b70cd7cc665c004ef1d06c191780e7f7a477b17a32678f109454ea74b865499188190f2e0fd215476c81ab031085c00f5e3b15a9730eb8613024676ccd47165486abc76cfe866f7b7aa3f5dbc909a4793d50b14f1cff2886701cad1793a1703895e5e5eeb99226e0c024c142ea477a223e58b7c20857b51ff873dcc81219fc18ff24a0fe5580a1b7ca91764f6745c3bb9f38d0648dfe11b642384446107278577ec2bc0a2d13ae5c379c359b8f1ea4b1442a64e5230e98ef694b45a64f581ad562a7b1b609b5ffec59b85ac52be6d3f6d681c1ad5524bba069fcbb77b08ae1266785bca275eaa000b4dc446b203817bee264b1ce29491041c86370dc2bbfa358f16e99ba0899fcce9ae53e390a7c90c345d9c566c1832155412a8e1678683183fabe8f4a17241aae9b20cdac5b6a61394ed1368c414db31f6a70a812120988b91626840fc270881edbca41e5cd060740d891eac92d3d4e8a9177ccd54be5278c8691ba8167263f31cc2dda560e9a30b76f5274ac405c4f3436fc07a73cea88bdbfd2fdeff7f39b4ac762a876b3ad158db0a626f6636f92e76dc9911bb63fe65c371511db3e4b3fdd3b7d9af84a08509609e08ee0560c9553d57ed199c6fb3bf70205c2f11ad11ace108daaa335d36636b1ba979e2de3a0dfda534893650ccb00abaa7abf438c04eb103567d54164076f5e1f503ecf46291636e34af92d07d09c25241911bb5f4a079b31b94c547ed7046feafb6e058c30bf327fc4cb21cc46684ca738c511778703ebf72127f0eec4e1a6760236ed06d029b4c3f6728c4066296c5c30df9865e00d8c2676bd9a8bb60041ad20ad85f6df775467cd67de4bb8be4cb05e51252d8c3f5afd91e45532ddcb04370cece9f737d485b7a292bb572bb8d17f80847f56a3bcb6e2ff172dfcf9e6f8d57b70fdaf55cc6f2ece75bdca019c387813257dd3ea0c8a62a45a255ab824ace8642ddb67d2aff9e8942e99bb40e67beece48737ded557796c0bbe0401d7950bac8ca49d0f01242ed55bcbd32ec655a51b9ed1fce9b6b7150a2b0d929c86a397b0f07be54434623557c7747b9bc86321b2a7e517da261b36c7fda17d1b915c68a0a3d20534fb353e0d708a56e5439ac20a10424047989778c44f0b1f4c21dea0d558ee9cc18f0ffa66ed1b2d2142c66621878208d078406f82f17aaa3fe498d1d2a5929a9a7a870fd03a27d3ee3a76edb67294782c5795d93a1d7e46e0ffe97121620d54782cd6ae8130a4c87b6d8899382231104a5d3f45363fefd1c917a89070cc2d132750d2c5ff41121b5b50f0d7de53de186cd3097b1149c7cc50ada2e23414062cc5d7b845637f0404ce73eb6676acc541a989eddd43ea2c8c972b038ef9a0fa4c3b123527e3efda569fedd4b4da9bfbee51bb775ea63096ad3c09c0c81481c5cb1b50834026b59efbf85ff804a574d53fe317fc4be4dc67f9750c667c0fc818ae7d078df840545d552c9bc1a887b250e3a225f40fd840ddb0ba405f343bfcee8c4e453ddc020aafd7df56ec764cd981beeb72825677bb036ba41724bb7a0e8be4aa43d6850f15c1e7b3f236da72fe6b973b042d92a4957205442539269496db67741f8f9225ec2a32ad75ba6d0d727975c4b6ec58b1004f810685c4e8cc96f2ae22d5a97ebc6f03e6445fed7b9e6a527b13f0234a31c8f9dd7b5f7bd2d2b6a34c1fe22986418f3e83583578a8c74666eee0bb778153a8d231d17eb75c25454c3") readv(r1, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4095, 0xfff}], 0x17) r2 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00') ioctl$FIONREAD(r2, 0x6801, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000001e00)=ANY=[@ANYRES32=0xffffffffffffffff, @ANYBLOB="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"]) getdents(r3, &(0x7f0000000380)=""/215, 0xd7) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000180)={'U-', 0x7fffffff}, 0x16, 0x2) write(r2, &(0x7f00000014c0)="487f680552966bf99f50f7b3c7bea76f13b18ae6445f21d36c6ff8141fa6c6ef46be406bd95d91b3a8e332e8e47832b525ae2b6858ece781c07dcbb4360870fe773c480ea03fe686f3cc1a76e353c5f5fe4d644c95ba4240c770ff57ac31df9d842f56a480", 0x65) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mkdir(&(0x7f0000000080)='./file0/file1\x00', 0x0) write$P9_RXATTRCREATE(r2, &(0x7f0000000200)={0x7, 0x21, 0x1}, 0x7) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) unshare(0x48020200) 12:49:16 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x0, 0x0, 0xc9, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:49:16 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) creat(&(0x7f0000000280)='./file0\x00', 0x0) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) 12:49:16 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 61) 12:49:16 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) (fail_nth: 65) 12:49:16 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) accept$inet6(r0, 0x0, &(0x7f0000000080)) fstat(0xffffffffffffffff, &(0x7f0000000000)) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 12:49:16 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB]) 12:49:16 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 62) [ 1897.648623] FAULT_INJECTION: forcing a failure. [ 1897.648623] name failslab, interval 1, probability 0, space 0, times 0 [ 1897.651199] CPU: 0 PID: 11066 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1897.652802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1897.654585] Call Trace: [ 1897.655160] dump_stack+0x107/0x167 [ 1897.655938] should_fail.cold+0x5/0xa [ 1897.656750] ? create_object.isra.0+0x3a/0xa20 [ 1897.657728] should_failslab+0x5/0x20 [ 1897.658544] kmem_cache_alloc+0x5b/0x310 [ 1897.659405] ? mark_held_locks+0x9e/0xe0 [ 1897.660271] create_object.isra.0+0x3a/0xa20 [ 1897.661200] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1897.662291] kmem_cache_alloc+0x159/0x310 [ 1897.663181] xas_alloc+0x336/0x440 [ 1897.663937] xas_create+0x34a/0x10d0 [ 1897.664739] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1897.665860] xas_store+0x8c/0x1c40 [ 1897.666632] __xa_store+0x164/0x2d0 [ 1897.667408] ? xa_delete_node+0x280/0x280 [ 1897.668297] ? trace_hardirqs_on+0x5b/0x180 [ 1897.669219] xa_store+0x31/0x50 [ 1897.669936] __io_uring_add_tctx_node+0x1cf/0x520 [ 1897.670958] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1897.672072] ? alloc_fd+0x2e7/0x670 [ 1897.672862] io_uring_setup+0x1fbb/0x2980 [ 1897.673755] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1897.674827] ? wait_for_completion_io+0x270/0x270 [ 1897.675874] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1897.676985] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1897.678087] do_syscall_64+0x33/0x40 [ 1897.678878] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1897.679964] RIP: 0033:0x7f5e2aecab19 [ 1897.680748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1897.684653] RSP: 002b:00007f5e28440108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1897.686272] RAX: ffffffffffffffda RBX: 00007f5e2afddf60 RCX: 00007f5e2aecab19 [ 1897.687788] RDX: 0000000020ffc000 RSI: 0000000020000240 RDI: 00000000000012a8 [ 1897.689301] RBP: 0000000020000240 R08: 0000000020000140 R09: 0000000020000140 [ 1897.690986] R10: 0000000020000080 R11: 0000000000000202 R12: 0000000020000140 [ 1897.692691] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1897.724431] FAULT_INJECTION: forcing a failure. [ 1897.724431] name failslab, interval 1, probability 0, space 0, times 0 [ 1897.727454] CPU: 1 PID: 11068 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1897.729144] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1897.731063] Call Trace: [ 1897.731638] dump_stack+0x107/0x167 [ 1897.732420] should_fail.cold+0x5/0xa [ 1897.733237] ? create_object.isra.0+0x3a/0xa20 [ 1897.734225] should_failslab+0x5/0x20 [ 1897.735042] kmem_cache_alloc+0x5b/0x310 [ 1897.735917] create_object.isra.0+0x3a/0xa20 [ 1897.736853] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1897.737956] kmem_cache_alloc+0x159/0x310 [ 1897.738849] vm_area_dup+0x78/0x290 [ 1897.739640] ? mark_lock+0xf5/0x2df0 [ 1897.740443] ? lock_chain_count+0x20/0x20 [ 1897.741324] ? mark_lock+0xf5/0x2df0 [ 1897.742128] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1897.743253] ? lock_chain_count+0x20/0x20 [ 1897.744137] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1897.745084] ? trace_hardirqs_on+0x5b/0x180 [ 1897.746013] ? mark_lock+0xf5/0x2df0 [ 1897.746813] ? vm_area_alloc+0x110/0x110 [ 1897.747683] ? __lock_acquire+0x1657/0x5b00 [ 1897.748623] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1897.749749] ? SOFTIRQ_verbose+0x10/0x10 [ 1897.750610] ? vmacache_find+0x55/0x2a0 [ 1897.751460] __split_vma+0xa8/0x4e0 [ 1897.752244] __do_munmap+0x365/0x1260 [ 1897.753059] ? arch_get_unmapped_area+0x450/0x450 [ 1897.754094] ? lock_release+0x680/0x680 [ 1897.754952] mmap_region+0x7c8/0x1500 [ 1897.755782] do_mmap+0xcdb/0x11e0 [ 1897.756539] vm_mmap_pgoff+0x198/0x1f0 [ 1897.757374] ? randomize_page+0xb0/0xb0 [ 1897.758246] ksys_mmap_pgoff+0x41c/0x560 [ 1897.759113] ? find_mergeable_anon_vma+0x250/0x250 [ 1897.760172] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1897.761295] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1897.762409] do_syscall_64+0x33/0x40 [ 1897.763200] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1897.764294] RIP: 0033:0x7fddef796b62 [ 1897.765086] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1897.769031] RSP: 002b:00007fddecd0c0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1897.770666] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fddef796b62 [ 1897.772182] RDX: 0000000000000003 RSI: 0000000000048140 RDI: 0000000020ffc000 [ 1897.773709] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 1897.775226] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1897.776746] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1897.779845] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1897.781903] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1897.783678] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1897.785186] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1897.786805] print_req_error: 9 callbacks suppressed [ 1897.786823] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1897.790557] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1897.791910] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1897.794096] buffer_io_error: 14 callbacks suppressed [ 1897.794107] Buffer I/O error on dev sr0, logical block 0, async page read [ 1897.799013] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1897.800265] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1897.803042] Buffer I/O error on dev sr0, logical block 1, async page read [ 1897.805896] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1897.807386] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1897.809562] Buffer I/O error on dev sr0, logical block 2, async page read [ 1897.811331] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1897.812731] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1897.814864] Buffer I/O error on dev sr0, logical block 3, async page read [ 1897.816915] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1897.818192] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1897.820438] Buffer I/O error on dev sr0, logical block 4, async page read [ 1897.822700] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1897.823915] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1897.826117] Buffer I/O error on dev sr0, logical block 5, async page read [ 1897.828119] loop7: detected capacity change from 0 to 2048 [ 1897.829650] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1897.831219] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1897.833362] Buffer I/O error on dev sr0, logical block 6, async page read [ 1897.836570] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1897.838249] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 12:49:16 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 62) [ 1897.840393] Buffer I/O error on dev sr0, logical block 7, async page read 12:49:16 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) [ 1897.876941] EXT4-fs (loop7): Can't read superblock on 2nd try 12:49:17 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) [ 1897.945586] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1897.947686] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1897.949176] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1897.950589] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1897.952196] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1897.978664] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1897.979920] Buffer I/O error on dev sr0, logical block 0, async page read [ 1897.993319] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1897.994551] Buffer I/O error on dev sr0, logical block 1, async page read [ 1897.996387] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1897.998872] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.001543] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.003310] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.005322] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.006709] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:49:17 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB]) 12:49:17 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 63) [ 1898.088657] FAULT_INJECTION: forcing a failure. [ 1898.088657] name failslab, interval 1, probability 0, space 0, times 0 [ 1898.091469] CPU: 1 PID: 11086 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1898.092914] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1898.094638] Call Trace: [ 1898.095190] dump_stack+0x107/0x167 [ 1898.095939] should_fail.cold+0x5/0xa [ 1898.096729] ? vm_area_dup+0x78/0x290 [ 1898.097522] should_failslab+0x5/0x20 [ 1898.098312] kmem_cache_alloc+0x5b/0x310 [ 1898.099153] vm_area_dup+0x78/0x290 [ 1898.099916] ? mark_lock+0xf5/0x2df0 [ 1898.100691] ? lock_chain_count+0x20/0x20 [ 1898.101554] ? mark_lock+0xf5/0x2df0 [ 1898.102328] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1898.103404] ? lock_chain_count+0x20/0x20 [ 1898.104270] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1898.105191] ? trace_hardirqs_on+0x5b/0x180 [ 1898.106086] ? mark_lock+0xf5/0x2df0 [ 1898.106849] ? vm_area_alloc+0x110/0x110 [ 1898.107689] ? __lock_acquire+0x1657/0x5b00 [ 1898.108592] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1898.109674] ? SOFTIRQ_verbose+0x10/0x10 [ 1898.110502] ? vmacache_find+0x55/0x2a0 [ 1898.111312] __split_vma+0xa8/0x4e0 [ 1898.112068] __do_munmap+0x365/0x1260 [ 1898.112845] ? arch_get_unmapped_area+0x450/0x450 [ 1898.113844] ? lock_release+0x680/0x680 [ 1898.114666] mmap_region+0x7c8/0x1500 [ 1898.115476] do_mmap+0xcdb/0x11e0 [ 1898.116199] vm_mmap_pgoff+0x198/0x1f0 [ 1898.116997] ? randomize_page+0xb0/0xb0 [ 1898.117842] ksys_mmap_pgoff+0x41c/0x560 [ 1898.118674] ? find_mergeable_anon_vma+0x250/0x250 [ 1898.119688] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1898.120772] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1898.121851] do_syscall_64+0x33/0x40 [ 1898.122630] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1898.123686] RIP: 0033:0x7f5e2aecab62 [ 1898.124458] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1898.128220] RSP: 002b:00007f5e284400f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1898.129772] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f5e2aecab62 [ 1898.131245] RDX: 0000000000000003 RSI: 0000000000048140 RDI: 0000000020ffc000 [ 1898.132709] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 1898.134178] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1898.135734] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:49:17 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0x0, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:49:17 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) [ 1898.248309] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1898.250655] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1898.252207] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1898.253561] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1898.255551] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.259712] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.261052] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.262902] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.264310] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.266535] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.268367] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.269683] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.296829] FAULT_INJECTION: forcing a failure. [ 1898.296829] name failslab, interval 1, probability 0, space 0, times 0 [ 1898.299387] CPU: 0 PID: 11095 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1898.300782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1898.302432] Call Trace: [ 1898.302967] dump_stack+0x107/0x167 [ 1898.303705] should_fail.cold+0x5/0xa [ 1898.304468] ? anon_vma_clone+0xdc/0x590 [ 1898.305282] should_failslab+0x5/0x20 [ 1898.306049] kmem_cache_alloc+0x5b/0x310 [ 1898.306871] anon_vma_clone+0xdc/0x590 [ 1898.307669] __split_vma+0x17c/0x4e0 [ 1898.308418] __do_munmap+0x365/0x1260 [ 1898.309191] ? arch_get_unmapped_area+0x450/0x450 [ 1898.310187] ? lock_release+0x680/0x680 [ 1898.310989] mmap_region+0x7c8/0x1500 [ 1898.311767] do_mmap+0xcdb/0x11e0 [ 1898.312470] vm_mmap_pgoff+0x198/0x1f0 [ 1898.313255] ? randomize_page+0xb0/0xb0 [ 1898.314083] ksys_mmap_pgoff+0x41c/0x560 [ 1898.314895] ? find_mergeable_anon_vma+0x250/0x250 [ 1898.315880] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1898.316928] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1898.317966] do_syscall_64+0x33/0x40 [ 1898.318712] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1898.319723] RIP: 0033:0x7fddef796b62 [ 1898.320467] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1898.324101] RSP: 002b:00007fddecd0c0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1898.325612] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fddef796b62 [ 1898.327032] RDX: 0000000000000003 RSI: 0000000000048140 RDI: 0000000020ffc000 [ 1898.328440] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 1898.329855] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1898.331272] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:49:17 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) [ 1898.344591] loop7: detected capacity change from 0 to 2048 [ 1898.367496] EXT4-fs (loop7): Can't read superblock on 2nd try [ 1898.606790] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1898.609209] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1898.610800] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1898.612316] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1898.614646] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.616280] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.617732] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.619420] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.620821] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.622345] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.623777] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1898.625305] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:49:31 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 63) 12:49:31 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0x0, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:49:31 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) 12:49:31 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 64) 12:49:31 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r1, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) connect$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x89, @any, 0x2}, 0xe) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)={0x2c, 0x2e, 0x878c5bf8df414e27, 0x0, 0x0, {}, [@typed={0x4}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@empty}]}, 0x2c}}, 0x0) 12:49:31 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) getsockname$packet(0xffffffffffffffff, &(0x7f0000003c80)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000240)={'syztnl1\x00', r2, 0x4, 0x5, 0xc8, 0x3bf826d0, 0x65, @mcast1, @mcast1, 0x80, 0x8000, 0x0, 0x1}}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r3, 0x29, 0x16, &(0x7f0000000080), 0x4) sendmsg$inet6(r3, &(0x7f0000003c00)={&(0x7f0000001d40)={0xa, 0x4e23, 0xe3, @private0={0xfc, 0x0, '\x00', 0x1}, 0xf5}, 0x1c, &(0x7f0000002ac0)=[{&(0x7f0000002580)="49aabf4c40803b8678fb7674bf17539cab62667f3ac77a1cf3c70fd12a5c9dcc221e38ed6adbe3cef65e204f24fc3c012d93c6cb56bc1c8b39540c2539c118cd396d9fe8997d9e527b2f349d4791ad99c1152f28bbd0d4f1d9f6a022b661cda16da2b9c05ddd5eb64b5914041f97088df40260cfb4eb207eba84fb435eb883e47778f6b561db9bc9ec5e6a6ebca942b3b221be9f023333f47f6904f4883237d2c3e420cb5a", 0xa5}, {&(0x7f0000002640)="262de1e58b4f6f32c2ea0d18ccb94d2cd0845091c40efc13b14f9f95073b16978451a7987b348b94bc5c8274e50eae78e18ebbcb05d3c1d49bbeb801108e3bb42103a12f47c0a06a9096861121cb20a98f65313b0dba960b6193f2fbb48aab0329adb97257454b5f58b9abe922a2f33f6e0071ecf9f97823054c335986e63b6401c6b388cb585ff77ae3bcbbad5d4af562432acf0d38c1c9d56df97cd45b28ef820e91", 0xa3}, {&(0x7f0000002700)="e3d5e371d4c379af0f428d14a583b38e403f06bc0414d78557fa97fe6e693179f29e42aa00cc89664b216a47fa235b541ce72c2f3297445330f3a2d764b64f336c70233736332e4254b24d11c450d57b2d641cf520ca24d9b8c0ba807f71a1e09c26ef85d121425e4b130178974df45868544c293b6f625e68a4caf5c803fb52678e8be5", 0x84}, {&(0x7f00000027c0)="5d01a72bb4337c7e4922a13925c17252c097b506e793af99fd238970ebcb63fbf5c4f00119b1ec8bbc97c6aacf1a781ea3226b89f8b663778385e1db9af9daa969bbf8d9665f99e7a3441b17e23d5c5a4d242957a2ac96b7f48b0d2bedf328c022a0408c62fce769a1ddb5ae3a81074468b782942caaa0444a71db8d19a56f98ed48d8b1355727e1fa292d7fa3bd1544b535873e0388649a072aeca26d3c3fdc52a24bc1a6d099c5ce4615bd7b986ba76c35417f8b961e209855497af3fa885360de6948affd9e776701a5ddc220cfb0cd95cfe181af0ce28214ee7a", 0xdc}, {&(0x7f00000028c0)="9bf9cb91b75aa236d36e820ac9a8452effa014976d157db7e4fce65c57acf8ef5b83dd2329c53826bb7e36de07819ab85a7826ee069522ef25c1fcd4c2f7c4c3a686b5171f0adc1be2d0cfe76e90b726955999ea1ee3fe3d3bfaee59b1b7e8e6326ccff2efda897a71739737317a300016c001404980fedacd723801789956236a08c606b8136db16979c826cce3ee04b7fcd6c2442e9243a80a0c6d4b344ca2d2641247e8c668b75bda56d36e7f145af943f071866aa7ae6c2d5982e72b8cdfb837f5a488aff0815e122b3038d6c6c22518b6a411752f9cf125c6c0", 0xdc}, {&(0x7f0000001d80)="45c9f2619784aa5ba356e2612bb77370cfe47c506177daa6aa225b3de516b2859a7ebf1022e38704639a22c21baa7f60f561f3f36390", 0x36}, {&(0x7f00000029c0)="afc60dc4b4c975ce954ac17fde6739d90b01e3138b8a443d438c7680fa8e7c875a28ef59153db5c8faae2b7300cbe6f76a522519cae3c1e99d5e4670979f7c7dfb7ff7be6c40b2f984e16d9a63b531f395a34f3b83ec264a459a109ae7b8de84cdd902221c87f90d5d17672cf47cfc7d23ef137126390ca9e402bdccee4bc207ae8d0339129847eaf97becd8dbf51a1d003fd1b63c65ac6b45f5d09c3f9e29df3be0bc316d685abec4b53cc9d8e6038e52b14870642587e62ddd614d473445a875e920561d2cfe86e4c65943060e5c993eceda", 0xd3}], 0x7, &(0x7f0000002b40)=[@rthdrdstopts={{0x1040, 0x29, 0x37, {0x2c, 0x204, '\x00', [@hao={0xc9, 0x10, @empty}, @enc_lim={0x4, 0x1, 0x6}, @jumbo={0xc2, 0x4, 0x2}, @enc_lim={0x4, 0x1, 0xff}, @generic={0x3, 0x1000, "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"}, @pad1]}}}, @tclass={{0x14}}, @hoplimit={{0x14, 0x29, 0x34, 0x6}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x29, 0x0, '\x00', [@jumbo={0xc2, 0x4, 0x401}]}}}], 0x1090}, 0x2004c010) close_range(r0, 0xffffffffffffffff, 0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000003c40)={0x20, 0x5, 0xffffffffffffff9b, 0xaa, 0x2, 0x2b}) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = accept4$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, &(0x7f00000000c0)=0x1c, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wg0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f0000000300)={'sit0\x00', &(0x7f0000000200)={'ip6tnl0\x00', r7, 0x2f, 0x6, 0xf5, 0x295faaa0, 0x30, @remote, @empty, 0x0, 0x700, 0x3, 0xffffafaf}}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000100)) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000001700)={'team0\x00', 0x0}) sendmmsg$inet(r6, &(0x7f0000002400)=[{{0x0, 0x0, &(0x7f0000001680)=[{&(0x7f00000002c0)="7ab7782c883c42e279bef230b8e3b08cc5b25fc285e1cab0b557c8ea02fb7404a56e503079c0bd424f6bdacff170d90312fdd4d1e51fd0fe919b4868aa59c599e1deb92a9fcd0ca7c8dc63dea7645f7e753ab17ce356190f38aa009a3da93cf14b25e7668f208de0e9a1bdba34689b69fac8199c9a1371d34b", 0x79}, {&(0x7f0000000340)="d66412aacd8a5fea7336abf68d22c8bb7a560adc7b4b5e78d4113c0564f632544650001b74906e4e7beaa926b50435bfa00375436e21018f3a112ed6ba46c0d3a7c4d46819299cb01c909cf6b24f5b5b2d0810d3b15db310437e440e7a64c87ce32dade1c1744f9cb932796908d9f46db182c535e038705297f5e26b91001374a75906026ff49cc490578c234d12891a792cb55158aae7026558520f3ceac65bac7ef0824093e0fe0032f019e92514e3cefa3dceeaa73c152c6ff3a7304ca9fcb690737781e6924b5a974fcb77a19c85931157c4d3e91ffc793a5b163ec1c93be6a9850955f7c629c0", 0xe9}, {&(0x7f0000000440)="ce9b4bc0532e95414737c2b0c874f3fdeea2e505ca5da1545dadc3c798409e0f39f2999faf6ee8cedb3f691ec0a3f7605a079f52e8737c044f25fb478785ed1df8be9a7d6b70595fda0906a383cf0a82c1454b42c1746d6bcc6dc83b1b96085f4c817a9db5894aa2f7e335101d67aff345a14385d6fbf4298a217618e0abc1bf4456", 0x82}, {&(0x7f0000000500)="618633feaf73ba76cd90db0782c8d14dad36591b5b154b37000621670b3f244e1f031e9b23467c4ec4ecf6df0e2142ff7888bed176ed739822437b9b841351cb7902114a6cc3020a7b7451d4c7cf8439ffdc886a26c68a20afee2c27fd9ff8248ffc2b9c1d83b6eb2e55a9ba2837b698c88bd17c4b15a838bc1dd5d5", 0x7c}, {&(0x7f0000000580)="1e96364bbbb5b94c0b8a185eda96864ebbc8323baf98683c7086b64368c872d675a361b351317fa8e7683e2faa825a43f97507c9ac956a08ebcd4bc03dbde546b748f1f23f00a2df9ea19426c7f859d727a862a584c16f95c410aff3247fff80ab5ddd6733e609634e8d6a5391346a5102c733182c57cea847c95d3c160d5dbedbe1d76f74e8994a291cb026b576abe54f7d7dfac36cfeeea41ff445df3c4168d5c2f1a57a1cea505c65d7c06727dee7e823871c4837d4630ceabb9f453a6a4e4b104c391c858630f1dd30bde06401f77e795bc3869a087d3483e57c2bc9348107fe34bcc1db785e80021b7f2d3a7247522a916b1f38e1130e7852a3bb4343b1e24d19e47c634e7b008bcb59c09b8c9e000f1977df9cb3b97efca40183ee7a5448f9971de2ecad94ab632de78f11c52966e91be29ae37dd9403734b6d04707ee555039dbb2cc91e44347e4898207f8cbf03d5147e9052a6246472363c112b9ad06bce9aadc4771370ab80d9e960984c9de4cb13b15f6ada2a4ed9ca3462ad419c0ea960f5796758e4c3f29b744b55f453158e527956f3021d01739a8e550f41656a9dc5704ca1081bdaea2b68a2b7e03dd432ebd12435706e665c42442e2c4947033c67f007d48f1cabcde004188c0414a3f39d75b929d66dbb39c75137f637d5905ac5972f9547f4ac55fecfef39a822f3e574f17d627b05f8624828b6d5ec16655482c8f65b530d8fb6e31b1dd86432a6a0ceb5a69d7e69d430667ded4ed5718022063e3a29ebe35f34d79c85273b45324820244a976cd44999054e52f0ae9b86314b7001d9a680895e0efdf08fda0b6e022b526c874caa1611db9b97489176226880dfca35235ed5ea5fdf94861757539f799424484e2bdc1fb766709e0fa6d3f00036c949f940ae31c4725a16dcd8fc8b343a5c29e615b9700677529fc178d234a2428384ecfc2643d00a13f281bbeb94e6119735fd5926da2c7358aac2960bbab62a31ca7a69351b85659ad34c65ba44bf3d6cf268fbb28f8f40d9e479c2221afadbff4ddc7838cda52ecbe65b2fad60070c670e7f99e3e0a3f28405c704520e3d26c0226841537478ca9695446e4ed72916363c9c21a939ab36c1b2cd15377a42870e19ac9c4ce00e7cbdfcb6bd173c5a6fdec1fd2421a6f7842fdd47bb288e043ddbd07f6d05f19be8e57765c134ace34f0e231a9e15a389c3322bae0eecfc49e19744474556cbbdd55451289267b9d67a9b05dd131925f28ec749da96e0c57d985f0d92f46eba88a872c3247e488229ae7ea6ddfcb3f99ed8f2d8fc21dc8a3660f36a7e2a84021826e6df5ec54de6a342a529b9516e6c7ff135aec2ed7a8632ba98bab698da00b39d1ba538b7612f6c05851be4b9330f4ff812dc7f4b1f2b4a3894c5e72cfe5e03daa6de378f40748441def15addebc35c0a2e0d5bb5cd72e043ad7f1a5a841f4956aa7433ab373def515c3080de9da5b896e6efec47aaa6d730eab55937ef993db3c2c5c76118c4effbb0d47757d604314662f5c25717ecd38a0526b6a97a1066e6cdc8003b90ad8f81a056d677df4e2a52bed18dcb15c775e9aa5120aa44f8be97ab965e54bfaba1f08f05be2b85cd499b1429d2b8c47de810a486e93c47f0b287b6028f1cef10e9b83fcbe1ec9d73f8db99215ebaaf93f22b882537675ac2e78f68cce45a3407dca2f84014843c5f9daf6f7855713ddeb67d87c8888f3bbe3c14874d06268ce41a6702d6d692b88167242b1b5c1cb77156354f8e6c92eb0781aa0eefa56bc6535596527adb90acf4c5567a684719b3f2c717d6cbed8121cbdd700cafb9475aa3947789aac84124b092a1f17d1a4f55ed58112bd6a9c5ea230b437a2355a68c59d4342343b10bb76eea17983c87f97c03a0ef498d5ca0258b22fd3cbe157fb71ee94a9874c0aa9a2e02faec84dc5239cdd45fb4189829ec4808b0f7f34fdca24eddbc163672d9d3f02f705a68bb95def232a00a2b91fb0b9439f797dae6e9e51eedc6d2a1ab0ad34f74d264fdbdb7aaf34ec588af38e7ee395cee530ee2835792e3005e92b34d0ad49619bb16cbc1568de963f73f957b4ffa34e200881abd2b1459517354db91b53e4d036e51e3e6ebfa8c696495db354d3129e9e74f99949ed11fc4dc2d8b208c79e07482fb1181e60cb44900d0a55fa2b51bac35c92d94f067356c31802d5beda1bd132edf9d33cd8d5e2d2230439241d84dae473a347b6eb1e2ed3d008fdcd53a1b1e2fe97e74c1d682690a0a70bf59cb4980e5dfbbc87e00558fd0a46b48737185510a9873d2e2a76296c9b2df54b9e384bd7f20200380292f308034e725df94eeffa0d44aea73797fb8716f6e526311b3e24621c9c46abefde3848183680f4ceaaced6a31fec6c8a8e2fd894b252b4a2642aa65294e652a74ff1c6f270836088c1bbfd0ca085add7c8d617f3d0835c97c31a0197b8b7d087e7879b55b1b389985591be330df2b1324fdd86c81238267c5f305ed7ec307d5a2bc25568278a9461cc30b460a3938910c97ea1384d5e36409494167454589c2afbc991554e1bf30647b248b4a5b63b6d4bd24ba1f690a29c6346024f61a27d7f4610408c2fc23a90c68c99356ebecc4f7326b99937ae456e41a0dd54534c8176ce4e3d5ab2da41f11b3e93ce97fbb35282c5bce258d0450e191f0b3dfce86771eec3191f3f4054c85863a896f85e0e83a5b073a0ad148eae85923067ad74457bd930c326b25c15d294c1ece1b45c80b9e3770e131a8e3224a175b02d9e91db0133167ce23e5533e4502d776b7631c397a2907b49903404ec9741effad7c47288982b3e45911086549c6aa6baf4a7dafb888940bb056af72812d33f2dd25fe18e9f7af83776463074a2ae0b3a519b6469b3b6b5e3e60b206346fc1edd951dc1b916b2aad509faa898db4601d389bd37336a6ec2e90a4dbe42275033f48657fbd185812005bc497572d2496441be204b44158f6ef3e103d5d82e3b85337e5cd0c99d35ff6ba2fe4c4cb77052f673b418c607db589354de2cfcb477d06c1e9e6f09159ac791a133ec16410618df7ad5be4a4411c753435dc42faccc06ef4de47c3c5675b9716d01b53f91832a17b3cadd6b0b79d8ce1c4e10ade1f1bda8689561d9b7edbdc29a52a787344bfcee5cc907046ece43712edc8d7ebb433077a478c4b7a0a6dfeda68a82f4e6a5869ea20f5b6e0faf22236cc22bc578ff874200a096b933d0a1773bfa38a1f7e9765f1a3fe96fbe780eab892ae9959e4901a020a442b35b7aa926674693e21e4409bf6242f48a8f2da67a5965916cb3dcddb98a5a441ebb05c3739c93e613d3e58440e738894baf0b4a333ee2c6d4a3312150713c7b76076af7957e7664a108e29b29c7076d99473e6e4cc9d93ee1e0cde5a64f10de138f9831a6ae48e473aefc2b76225a0cbadc613bbd2243cf505c43567a81f854045b849ef6157ded8bbc450175ae1a33f0630f0ff01fb270f6e06fd77e633541abba48d48ba95d402beb74c055a41be7e49e74d01692e061c0a74089f9d7c43af5c787ee83b183a4e5e263da28d6b2fc696714468d0234390786170c3312e78a359fd2d6d5808195c08764e13c9f815a7a3141e3bc066e1eda17a81715f0f5411d853a5b4d00bc0e39c216b477d2e43ce544d6c3395a6b322b230e3fe184d4cb8db5cd73378bdfb92ed65996d1606555cda8fcc0c9de94bcf8e61312579fc8c629c5a742c0796e566883af6b72ebd6a52f2dbd4edea09fd9ab9e27bf314688c1834cf214774772711927e2a16f648743498151813bf46d8a0bc4e1f1b2cd1e2b913cfd67f80798b6a29ac184149bcc3c6994c97880faea561cc741787fd17ee3d025627bb2ee6bff276732654b327bfc488712dc2869d55af4a3bce0def31325fd7e650671497ef7a2c7c01f03ce950f7e078fda31e076b250b2e853280c53ef53df2085b38eb774ca8bb02ec0feef5396af77a0f224912e77b1440d49d2015a1167ee047e0eaef65326139773def7faafecc8ac8a298e3bc97df28e59f0979bdd8c23c469c4dd6019d1aaace2f0df43da3cd7f1dffab6a5322d5d9b9671f71f899d4973fcc31735b4e15d722c96893785a2d453cbeb6204f5b1844f8c172e8a01a9d7e3b6243481f7f0a7e722743a1250b1f36d6dddd9de24f6059b2bc9a9a6fe4e45c51eceda805ef14822d8ea5769da9c8630a5dacd6c59d4bb11f550174344d48c5ff6f65f8b5eff636b3f873e182b0f94af458b2d4ce0f54cd9b45b118f8be1b8b98a704d4908f1cf330338ffce025fba2229b519cf53e51d3ba0fb229a6a03a686efafce016f96b35d014240435263ef10a466feae543a632e92f53f9b0ddf83024a5064bd1aeb719ab265bae5f8863805965e6f6f9d94af0c6e3718ecc136da4b5d0dcd741d2d571b640bec0102f1d2b0c69dfde5e630dddebeca7a15e2ad12ad72608f762c960f9a3b18cc7150cb80057a6ae2f24c5cf8726222d8a6bcc0fd215488fa9cc60b66fc22705314ced86d103e225660a50630896bf73fc8c81e242af84d9707b47e8cd6fc911e764efb0f0ea3b28ad2677103a0c1a0b1802e82df47aa143136f008402efdcbf6477101236a0095cf0b2a86bf95b1c848c1651d230bf6b7fd4773c296bc3d3b9f5a10dd62f4adf7fb590ee9e281012163910affc6b229c16bbc69146a32d66c388b2f347b2680da05ebc9b10f322f80251069b5dea1ff0f652616879fae610ef2872220bbab6c1faa5861d6cc508ec58bb7645e8da94f155512365eb3b2da044797f451100b2cd3c01e2605807f28b7fb3fe02376863e7d11c870975e9edcad1d10c45a4e05d1048f062871a4586c3c72ded93fcffe142960361860f46c50591c8792856c874ae2c3c41ab999c0ecb90b30a0f19cd6d51b8270314fb212794b3a1a04a00f0424aef2c935121a2348f3b0a713986e0bd2bbe83eb4c4e430374bd7372302d6aa320d1827e87558cc452c55f8f048e5d98f3517c7fbd26de109ecdb9872588b91e8cf95223d785dc285e6e29ea856a281c287785a4a560bba6c588a3e2d91306c8df72ec59024265f83edb07d60bb94711cdf6564ea2c1c4fba6d985120fd64232d2d5b451b6360540a729d7d68dbda451cb969b24a3009cf888d948d171e81b65e68e4a9f7549954aefc9fb19a9ad700bafad52fb5d96381c268fb4da2cf341aec3d2c6602d3c6f0941c492aef475d985535c1a9f29a0b56be26216b641144655c8498fecac76d63a46946debe6dd0ca951856e0f171d5fecbd9bb0e2273a16273d30068a00f2d71dcf3601dc7174d8164b4241f5f44ac553b14650172949ee976b5ad359bad3746520ff194f720232a332caadf324e717a3d994023d05d5923fbe595bdcd2b5bd9d849b4a3b6978383df7fd74aa0ca4f5953a35c3099b86546344d5ae0cc4ef6cd5b1ed9b9c10dd8da80bf2d1ecdd152232b7a34217e83269407ecea90eba9c1ce17022ffe6e43085bda2a75cf08b21f9d90a9ccae5bcbcf873d1713779c2db20af1ec1f9f8cded1ab78ca254dbe61876fc1e788cee615c058dac0e59ee0c40c9201e879640381713329526342eda28227fe86a36c4babf3c9b7008e237fbfea991c4ade86c9f1bb937bb296cf5d7e7a4867eb003a2fcf78fd9d55377de671f1fdb6c7189b3298f9e0e0859c7100ffad0a1ffa042477151c1e85f4bb4d90049d1991adf33f404192b212d6ebc595901987a06e96841963a86e0cf6f1c499cc0e5e3449cae1156d342e3e7d56c70c7f3ed42412", 0x1000}, {&(0x7f0000001580)="c69ba731d2490c5dbaed984d044b70c808c337011d8b0fa5b07f2d183255fcbb97b80ae798e61594269d984f80722569635cb5ca1fb3e662588acbbaf39ba256f9d5f1", 0x43}, {&(0x7f0000001600)="b3486574a48472477504fd4d920fb6715ecea8e81e637c2b4d30bd4a5ea2a68fb571e4c10b5d7164e8897a87dd384024d0cbfd13c7009a39996268a49e6185987fa54df68c999c040c4725f00f", 0x4d}], 0x7, &(0x7f0000001740)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_retopts={{0x5c, 0x0, 0x7, {[@end, @cipso={0x86, 0x15, 0x0, [{0x6, 0xf, "9bd507cf33f77385ec5749f3b3"}]}, @timestamp_addr={0x44, 0x24, 0x6c, 0x1, 0x3, [{@local, 0x9}, {@remote, 0x8d}, {@broadcast, 0x7}, {@rand_addr=0x64010100, 0x7}]}, @ssrr={0x89, 0xf, 0xe4, [@remote, @dev={0xac, 0x14, 0x14, 0x41}, @remote]}, @end]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @private=0xa010102, @rand_addr=0x64010100}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x4}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x3}}, @ip_retopts={{0xa4, 0x0, 0x7, {[@timestamp_addr={0x44, 0x3c, 0xfe, 0x1, 0x1, [{@loopback, 0x6}, {@local, 0x80}, {@local, 0x2}, {@empty, 0x6}, {@empty, 0x7}, {@private=0xa010101, 0x4}, {@multicast2, 0x3ff}]}, @ssrr={0x89, 0xb, 0x3a, [@initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @generic={0x94, 0xe, "593fc51d0584af0f98f608ae"}, @timestamp_prespec={0x44, 0x1c, 0x67, 0x3, 0x9, [{@multicast2, 0x2000}, {@rand_addr=0x64010101, 0xfff}, {@dev={0xac, 0x14, 0x14, 0x3d}, 0x5}]}, @timestamp_prespec={0x44, 0x1c, 0x62, 0x3, 0x0, [{@private=0xa010100, 0x5}, {@rand_addr=0x64010100, 0x8}, {@rand_addr=0x64010101}]}, @ra={0x94, 0x4}, @noop]}}}, @ip_retopts={{0x4c, 0x0, 0x7, {[@ra={0x94, 0x4}, @ssrr={0x89, 0x17, 0x44, [@private=0xa010102, @dev={0xac, 0x14, 0x14, 0x2f}, @local, @remote, @multicast2]}, @ra={0x94, 0x4}, @rr={0x7, 0x13, 0x1d, [@rand_addr=0x64010100, @dev={0xac, 0x14, 0x14, 0x35}, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @private=0xa010100, @broadcast}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x9}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r9, @loopback, @rand_addr=0x64010100}}}], 0x218}}, {{0x0, 0x0, &(0x7f0000001f80)=[{&(0x7f0000001980)="bd3cf597667e91e1d7326c04ccdd35347b11245b275f68d65dcf05936039e43488dd84ad960b618f2e6754bc5b83ebc720e88c94b23a645542fe173afdc3ae076059df6eff2ecaa795c1d5c26ef9ac9cb533d7eec49018680de283e6add1ed132a4f9cd52a1391ab20a203f57d610bd18a61da", 0x73}, {&(0x7f0000001a00)="0d098e8e655afd2857e98224331db12c14022cf368080152fe2396f99fbd4dc51d4f0ec0379c3ceb75d575afa9e26915e18516ece6acbb055df85e2b526a1414d3cce7a0dbf5de6b5700fbdb404fc04fbf5e49901c", 0x55}, {&(0x7f0000001a80)="dd9ed4a62af03730998dace55a2dd7a8f0243b98466fb7b0b889eea36713cffbbae4c337591a85177ccd90c9c685525d3b5c374b541f8b5cd4607c6d66ddfd662bbf3a248d033e0535e596804578930e728ecf7bcd2c3b8c385f07516c0b420f2ae26cfc3f34c667c8c0bf46e5ba0d4583a5c91e3959dfb43e50f11941414b3002d2e36bb31e341c344e56a459cccb1c7a26668f4362cfcd7b0fa87d09c38524477bf1de6167dd0efabf49bd5d3ba644b9ec0deed74a4f587f97690d4aa27fa76ddbca0a844d352529cdebcc15d52d417ed65c29e4", 0xd5}, {&(0x7f0000001b80)="0b00d104548e", 0x6}, {&(0x7f0000001bc0)="ad5fd493d16b611a4326e6b85d5076bdbcf886111b60f61498c0744a6257d8a2298fd0a829bbf5af30bd84bdc61823a750ba5f38ca8bf7a11a1023c1226df4873e215b9d14f9f3ec622ad75da946be94cb253ca6b5009f5aa9bd9546d585", 0x5e}, {&(0x7f0000001c40)="83e87c33890227231b27349654782f309c97d41ae1f3a22cc9489801e7d53f831d384586ed384b723d48c7e831bb56641d7aeb079a3e301b94db864fa22a633700cefede4b9e16b6dcc339f953d5a4c00fd8031a9dc5fe0b81c3a926a90151f5378bea6bc237a3d8dfad1169fd6959cf58768bf8733e9d29269e7ab9bf910cdad599828985b4aec295814848662daecd35aa78837cffccbe8ec08f83cedade34093418a99ad96f18e354ea02609bca88fcfca9bde5fc0c3ae62adc36bf5b47481dd3af15716e00a32626cf488bafc2244dc2ed5955cff8dc23258cbf181646", 0xdf}, {&(0x7f00000024c0)="1c868fa947afdb48c0fd0ee2c9fdeecb3e062ada79024e108318aea4b6f2f777a7bbcad46b4149988a2540dd4e2ebbc3373d82496070b438a2e36b311704d7c7870b4a7b804f12237670a9d7fa7a1b63a8dc37a6c13915a45b9739d290121e71f4cfefd4e8a904b6e37d7bc508649d669fd5d69c9997ef1c273e0dd8d37b615869f8f87ce4550e5a1ef1f799fc6e984cd74f489b68e890a875c6762aab4321b6b531fe27d0170fd9352c1f0d0bab0a2182c439ea", 0xb4}, {&(0x7f0000001dc0)="199b7795711f170bc1e45b61d8acde869a8355ee8a3b20fe922342a1375f7e95dee49cdc4120d2aa948cc63c3c341b8f207104b826f8fb97ab2a4cb85479274cc5cb98aa515f3cff5c6f0b5887fe4236d6f90ef3623ec3049fdbd6c3947869009239e8c9aca0b04e2362e88d5aa0490045c34d97e77716e81796ec177026a716bb675e6486cbdfbc55f74466827a79485436f51eff6df10569b171c94eeff8", 0x9f}, {&(0x7f0000001e80)="d10f227e7f9de3a838fbb90197eca3672e64dd8c9baa18b42fd76db46c9029d1819da968441ea0e9076ed38e6c61af", 0x2f}, {&(0x7f0000001ec0)="07b1df6c2bb694fbe2fee206ddfe63ecf23232791ef472feba061381d2630f911203ec969172d345e36430161bd6b978a1f02308ec10734ea25578b8c456422c95107ac1c8562b30e726dfbd0982ff89778c62431aba58d8f6af8fae3175b8b6be34c2ff73dd24c72312739fad59b78aa55f436dd5f4f235e910cf8b6a3fb7a045908f589338f55afab1627936a4f7ed3f0054", 0x93}], 0xa, &(0x7f0000002040)=[@ip_ttl={{0x14, 0x0, 0x2, 0xe5}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xb412}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x2}}, @ip_ttl={{0x14, 0x0, 0x2, 0x40}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x7}}, @ip_retopts={{0xc4, 0x0, 0x7, {[@timestamp_addr={0x44, 0x54, 0x15, 0x1, 0x3, [{@rand_addr=0x64010101, 0x7}, {@empty, 0x8}, {@rand_addr=0x64010101, 0x40}, {@multicast1, 0x100}, {@private=0xa010101, 0x8001}, {@loopback, 0x800}, {@rand_addr=0x64010100}, {@broadcast, 0xfffffbff}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x6}, {@broadcast, 0x7}]}, @cipso={0x86, 0x5f, 0x1, [{0x2, 0x10, "bc4a9c72da32d054c62e2e04e714"}, {0x1, 0xe, "948bfc460b6baf3cfdfdf669"}, {0x5, 0x11, "c4740d79cdb93c0bc0edd2f7525d3c"}, {0x5, 0x7, "c3013ab511"}, {0x0, 0x8, "eebb1101b3c2"}, {0x5, 0xa, "19d5b0e926e1d428"}, {0x6, 0x11, "ce07d937fcfc8c9381285fffe79d22"}]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x79d}}, @ip_ttl={{0x14, 0x0, 0x2, 0x55ec7640}}], 0x170}}, {{0x0, 0x0, &(0x7f0000002340)=[{&(0x7f00000021c0)="3b88d5b254b7c619147dfdd03c26454307dc44b614c3c578ee4cf9fc674a5d4d2ce11cbd68b8bb8f71ae8d31987b3000a90154f63c706fa01431935c1393248f446f684f159f134b7a840f59de1f3a5ceb8a010a6362ca76493149b8a7782aeb74a1288cf57b1c33041ad4cc7f1d4d3525af0e3bc15e0db7d53f3b33afbef1b8fa915c22bc666350a1b1a085c05657008685be28e79a0a105e6b681a68a8bbe4b9cf05afd5d6a6729f5dc34e53cb510b", 0xb0}, {&(0x7f0000002280)="6e3e3a0bc76951174257a999f6958a0fc7edd04784e4dd37f9a11228c47489a2a3e5540d8df6c8f2de928d7540690e6a38391e64a7681f82f4e697417ffb150a0d8aa21aa2f6fbfbfcbf433071c56106b3e53990116c5d475ab7f1986b67c62e34f5c28cbb0b49660da0c79084faa822d4466d57fe6d4947aa5ee181024419201d12e2981ea441c5f64fc18a9b3dab68c696f84056ac2368ef4e52cbf53efec8876a0467d8f4d099e8d8568f", 0xac}], 0x2, &(0x7f0000002380)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x2dc3f2c1}}, @ip_tos_u8={{0x11}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x2}}, @ip_tos_int={{0x14}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @multicast2, @private=0xa010100}}}], 0x80}}], 0x3, 0x8004) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'lo\x00'}) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'geneve1\x00'}) 12:49:31 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB]) 12:49:31 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x2, 0x0}}], 0x35f, 0x10062, 0x0) [ 1912.537262] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1912.551941] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1912.555996] loop7: detected capacity change from 0 to 2048 [ 1912.561292] FAULT_INJECTION: forcing a failure. [ 1912.561292] name failslab, interval 1, probability 0, space 0, times 0 [ 1912.564242] CPU: 0 PID: 11115 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1912.566000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1912.567738] Call Trace: [ 1912.568292] dump_stack+0x107/0x167 [ 1912.569081] should_fail.cold+0x5/0xa [ 1912.569918] ? anon_vma_clone+0xdc/0x590 [ 1912.570787] should_failslab+0x5/0x20 [ 1912.571599] kmem_cache_alloc+0x5b/0x310 [ 1912.572478] anon_vma_clone+0xdc/0x590 [ 1912.573302] __split_vma+0x17c/0x4e0 [ 1912.574126] __do_munmap+0x365/0x1260 [ 1912.574949] ? arch_get_unmapped_area+0x450/0x450 [ 1912.575990] ? lock_release+0x680/0x680 [ 1912.576846] mmap_region+0x7c8/0x1500 [ 1912.577699] do_mmap+0xcdb/0x11e0 [ 1912.578457] vm_mmap_pgoff+0x198/0x1f0 [ 1912.579291] ? randomize_page+0xb0/0xb0 [ 1912.580168] ksys_mmap_pgoff+0x41c/0x560 [ 1912.581032] ? find_mergeable_anon_vma+0x250/0x250 [ 1912.582093] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1912.583218] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1912.584332] do_syscall_64+0x33/0x40 [ 1912.585131] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1912.586236] RIP: 0033:0x7f5e2aecab62 [ 1912.586695] FAULT_INJECTION: forcing a failure. [ 1912.586695] name failslab, interval 1, probability 0, space 0, times 0 [ 1912.587032] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1912.587052] RSP: 002b:00007f5e284400f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1912.594841] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f5e2aecab62 [ 1912.596319] RDX: 0000000000000003 RSI: 0000000000048140 RDI: 0000000020ffc000 [ 1912.597814] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 1912.599282] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1912.600774] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1912.602307] CPU: 1 PID: 11114 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1912.603697] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1912.605352] Call Trace: [ 1912.605886] dump_stack+0x107/0x167 [ 1912.606625] should_fail.cold+0x5/0xa [ 1912.607392] ? create_object.isra.0+0x3a/0xa20 [ 1912.608296] should_failslab+0x5/0x20 [ 1912.609058] kmem_cache_alloc+0x5b/0x310 [ 1912.609913] create_object.isra.0+0x3a/0xa20 [ 1912.610802] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1912.611820] kmem_cache_alloc+0x159/0x310 [ 1912.612672] anon_vma_clone+0xdc/0x590 [ 1912.613479] __split_vma+0x17c/0x4e0 [ 1912.614221] __do_munmap+0x365/0x1260 [ 1912.615003] ? arch_get_unmapped_area+0x450/0x450 [ 1912.615968] ? lock_release+0x680/0x680 [ 1912.616785] mmap_region+0x7c8/0x1500 [ 1912.617579] do_mmap+0xcdb/0x11e0 [ 1912.618308] vm_mmap_pgoff+0x198/0x1f0 [ 1912.619088] ? randomize_page+0xb0/0xb0 [ 1912.619907] ksys_mmap_pgoff+0x41c/0x560 [ 1912.620738] ? find_mergeable_anon_vma+0x250/0x250 [ 1912.621731] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1912.622790] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1912.623828] do_syscall_64+0x33/0x40 [ 1912.624589] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1912.625617] RIP: 0033:0x7fddef796b62 [ 1912.626385] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1912.630603] RSP: 002b:00007fddecd0c0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1912.632529] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fddef796b62 [ 1912.634320] RDX: 0000000000000003 RSI: 0000000000048140 RDI: 0000000020ffc000 [ 1912.636130] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 1912.637930] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1912.639727] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:49:31 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x4, 0x0}}], 0x35f, 0x10062, 0x0) [ 1912.676749] EXT4-fs (loop7): Can't read superblock on 2nd try [ 1912.716492] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1912.718704] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1912.720199] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1912.721607] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1912.723237] print_req_error: 26 callbacks suppressed [ 1912.723256] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1912.728038] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1912.729376] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1912.731504] buffer_io_error: 22 callbacks suppressed [ 1912.731515] Buffer I/O error on dev sr0, logical block 0, async page read [ 1912.734979] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1912.736202] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1912.738577] Buffer I/O error on dev sr0, logical block 1, async page read [ 1912.740209] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1912.741584] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 6 prio class 0 [ 1912.743799] Buffer I/O error on dev sr0, logical block 2, async page read [ 1912.745505] Buffer I/O error on dev sr0, logical block 3, async page read [ 1912.747178] Buffer I/O error on dev sr0, logical block 4, async page read [ 1912.748663] Buffer I/O error on dev sr0, logical block 5, async page read [ 1912.750172] Buffer I/O error on dev sr0, logical block 6, async page read [ 1912.751662] Buffer I/O error on dev sr0, logical block 7, async page read [ 1912.841237] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1912.843344] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1912.844821] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1912.846227] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1912.847857] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 21 prio class 0 [ 1912.855456] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1912.856748] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1912.858906] Buffer I/O error on dev sr0, logical block 0, async page read [ 1912.860621] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1912.861873] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1912.864373] Buffer I/O error on dev sr0, logical block 1, async page read 12:49:31 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d) sendmsg$nl_generic(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000880)={0x28, 0x1a, 0x69844ea0a6ddcd11, 0x0, 0x0, {}, [@typed={0xe14, 0x0, 0x0, 0x0, @pid}, @nested={0xc, 0xf, 0x0, 0x1, [@typed={0x4, 0x0, 0x0, 0x0, @fd}]}]}, 0x28}}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)={0x2c, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_REKEY_DATA={0x10, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "1bf8c10fc63f67e5"}]}]}, 0x2c}}, 0x0) 12:49:31 executing program 6: socket$inet6_udplite(0xa, 0x2, 0x88) r0 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) timerfd_create(0x1, 0x80000) socket$inet6_icmp(0xa, 0x2, 0x3a) r1 = syz_open_dev$ttys(0xc, 0x2, 0x0) r2 = memfd_create(&(0x7f0000000000)='erspan0\x00', 0x4) close_range(r1, r2, 0x0) [ 1912.874992] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:49:31 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 65) [ 1912.876229] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1912.878978] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1912.880292] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1912.882562] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1912.883818] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1912.887236] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1912.889308] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:49:32 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 64) [ 1912.892888] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:49:32 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='block_validity,usrjquo']) 12:49:32 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) [ 1913.020412] netlink: 'syz-executor.2': attribute type 15 has an invalid length. [ 1913.022249] netlink: 'syz-executor.2': attribute type 15 has an invalid length. [ 1913.023961] netlink: 'syz-executor.2': attribute type 15 has an invalid length. [ 1913.035589] netlink: 'syz-executor.2': attribute type 15 has an invalid length. [ 1913.037658] netlink: 'syz-executor.2': attribute type 15 has an invalid length. [ 1913.039866] netlink: 'syz-executor.2': attribute type 15 has an invalid length. [ 1913.077660] FAULT_INJECTION: forcing a failure. [ 1913.077660] name failslab, interval 1, probability 0, space 0, times 0 [ 1913.080067] CPU: 1 PID: 11151 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1913.081714] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1913.083558] Call Trace: [ 1913.084233] dump_stack+0x107/0x167 [ 1913.085219] should_fail.cold+0x5/0xa [ 1913.086161] ? vm_area_alloc+0x1c/0x110 [ 1913.087168] should_failslab+0x5/0x20 [ 1913.088129] kmem_cache_alloc+0x5b/0x310 [ 1913.089182] vm_area_alloc+0x1c/0x110 [ 1913.090128] mmap_region+0x97e/0x1500 [ 1913.091178] do_mmap+0xcdb/0x11e0 [ 1913.092174] vm_mmap_pgoff+0x198/0x1f0 [ 1913.093110] ? randomize_page+0xb0/0xb0 [ 1913.094081] ksys_mmap_pgoff+0x41c/0x560 [ 1913.095136] ? find_mergeable_anon_vma+0x250/0x250 [ 1913.096451] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1913.097582] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1913.098987] do_syscall_64+0x33/0x40 [ 1913.100006] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1913.101094] RIP: 0033:0x7fddef796b62 [ 1913.101983] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1913.106501] RSP: 002b:00007fddecd0c0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1913.108214] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fddef796b62 [ 1913.109732] RDX: 0000000000000003 RSI: 0000000000048140 RDI: 0000000020ffc000 [ 1913.111240] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 1913.112754] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1913.114285] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1913.119210] FAULT_INJECTION: forcing a failure. [ 1913.119210] name failslab, interval 1, probability 0, space 0, times 0 [ 1913.121575] CPU: 1 PID: 11150 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1913.123055] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1913.124827] Call Trace: [ 1913.125382] dump_stack+0x107/0x167 [ 1913.126166] should_fail.cold+0x5/0xa [ 1913.126976] ? create_object.isra.0+0x3a/0xa20 [ 1913.127951] should_failslab+0x5/0x20 [ 1913.128775] kmem_cache_alloc+0x5b/0x310 [ 1913.129650] create_object.isra.0+0x3a/0xa20 [ 1913.130596] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1913.131661] kmem_cache_alloc+0x159/0x310 [ 1913.132547] anon_vma_clone+0xdc/0x590 [ 1913.133378] __split_vma+0x17c/0x4e0 [ 1913.134187] __do_munmap+0x365/0x1260 [ 1913.135016] ? arch_get_unmapped_area+0x450/0x450 [ 1913.136032] ? lock_release+0x680/0x680 [ 1913.136886] mmap_region+0x7c8/0x1500 [ 1913.137729] do_mmap+0xcdb/0x11e0 [ 1913.138482] vm_mmap_pgoff+0x198/0x1f0 [ 1913.139321] ? randomize_page+0xb0/0xb0 [ 1913.140176] ksys_mmap_pgoff+0x41c/0x560 [ 1913.141046] ? find_mergeable_anon_vma+0x250/0x250 [ 1913.142112] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1913.143245] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1913.144362] do_syscall_64+0x33/0x40 [ 1913.145148] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1913.146225] RIP: 0033:0x7f5e2aecab62 [ 1913.147021] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1913.150939] RSP: 002b:00007f5e284400f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1913.152548] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f5e2aecab62 [ 1913.154067] RDX: 0000000000000003 RSI: 0000000000048140 RDI: 0000000020ffc000 [ 1913.155583] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 1913.157096] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1913.158601] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1913.218187] loop7: detected capacity change from 0 to 2048 [ 1913.241226] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1913.243437] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1913.245580] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1913.247003] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1913.249268] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1913.250828] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1913.250933] EXT4-fs (loop7): Unrecognized mount option "usrjquo" or missing value [ 1913.252181] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1913.254975] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1913.256555] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1913.257864] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1913.259226] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1913.260577] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:49:47 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xc02c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1831c1, 0x0) writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000200)="af", 0x1}, {&(0x7f00000004c0)}, {&(0x7f0000000400)="1ef58e118a4caa8b3d271bb9ae7a2d05ae8dd086a4464ff380fc80c4e13e4002cff445f731ee318763f7bcb2d278c0ac3135a294b029311ad362fe623926959b31073b47b8c0cb19c597ffd56ac34d5b2131e51565f7a449b86ad48c39225559bcd36633c2f87d812b86b52ee6208781bf2be98e7eb4fbff213b9f440840093fd7b3b1ab0013c82ed0d488ea0bd31fa58fa3d39cbf42a2c6", 0x98}, {0x0}], 0x4) r2 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) fallocate(0xffffffffffffffff, 0x43, 0x6a08, 0x8) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/stat\x00') openat$incfs(r3, 0x0, 0x0, 0x0) sendmsg$GTP_CMD_DELPDP(r3, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x4002) fallocate(r2, 0x0, 0x0, 0x8000) lseek(0xffffffffffffffff, 0x2, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x4) lseek(0xffffffffffffffff, 0x6, 0x0) sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x24, 0x0, 0x10, 0x70bd26, 0x25dfdbfd, {{}, {}, {0x8, 0x11, 0x78}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x8004) ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) r5 = perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2}) r6 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3000008, 0x810, r0, 0x10000000) syz_io_uring_submit(0x0, r6, &(0x7f00000000c0)=@IORING_OP_WRITE={0x17, 0x4, 0x4004, @fd=r5, 0x9, &(0x7f0000000340)="f55d06067a56927f214993c73c2c5a1570f339c01af5699447843f2e084f5c85e4bfb44c1a3b26d7d854f47f24847b4b8edbf908d13a1ee21441fb59a34ab43c9ef344b7c821aa5831e7e61756bec5d1", 0x50, 0x8}, 0x10000) 12:49:47 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x8, 0x0}}], 0x35f, 0x10062, 0x0) 12:49:47 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = epoll_create1(0x0) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000140)) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x3, 0x0, r2, &(0x7f0000000000)={0x8}, r0}, 0x7) r4 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 12:49:47 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='block_validity,usrjquo']) 12:49:47 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) 12:49:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 65) 12:49:47 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 66) 12:49:47 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0x0, 0x2401, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) [ 1928.171283] FAULT_INJECTION: forcing a failure. [ 1928.171283] name failslab, interval 1, probability 0, space 0, times 0 [ 1928.173828] CPU: 0 PID: 11174 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1928.175351] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1928.177172] Call Trace: [ 1928.177763] dump_stack+0x107/0x167 [ 1928.178573] should_fail.cold+0x5/0xa [ 1928.179413] ? vm_area_alloc+0x1c/0x110 [ 1928.180286] should_failslab+0x5/0x20 [ 1928.181113] kmem_cache_alloc+0x5b/0x310 [ 1928.182009] vm_area_alloc+0x1c/0x110 [ 1928.182836] mmap_region+0x97e/0x1500 [ 1928.183682] do_mmap+0xcdb/0x11e0 [ 1928.184476] vm_mmap_pgoff+0x198/0x1f0 [ 1928.185328] ? randomize_page+0xb0/0xb0 [ 1928.186216] ksys_mmap_pgoff+0x41c/0x560 [ 1928.187100] ? find_mergeable_anon_vma+0x250/0x250 [ 1928.188187] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1928.189450] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1928.190619] do_syscall_64+0x33/0x40 [ 1928.191440] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1928.192572] RIP: 0033:0x7f5e2aecab62 [ 1928.193392] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1928.197467] RSP: 002b:00007f5e284400f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1928.199155] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f5e2aecab62 [ 1928.200734] RDX: 0000000000000003 RSI: 0000000000048140 RDI: 0000000020ffc000 [ 1928.202319] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 1928.203922] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1928.205509] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:49:47 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x2000, 0x0}}], 0x35f, 0x10062, 0x0) [ 1928.218479] FAULT_INJECTION: forcing a failure. [ 1928.218479] name failslab, interval 1, probability 0, space 0, times 0 [ 1928.220156] CPU: 1 PID: 11180 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1928.221167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1928.221496] loop7: detected capacity change from 0 to 2048 [ 1928.222372] Call Trace: [ 1928.222389] dump_stack+0x107/0x167 [ 1928.222405] should_fail.cold+0x5/0xa [ 1928.222425] ? create_object.isra.0+0x3a/0xa20 [ 1928.225699] should_failslab+0x5/0x20 [ 1928.226274] kmem_cache_alloc+0x5b/0x310 [ 1928.226867] create_object.isra.0+0x3a/0xa20 [ 1928.227499] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1928.228246] kmem_cache_alloc+0x159/0x310 [ 1928.228852] anon_vma_clone+0xdc/0x590 [ 1928.229404] __split_vma+0x17c/0x4e0 [ 1928.229952] __do_munmap+0x365/0x1260 [ 1928.230520] ? arch_get_unmapped_area+0x450/0x450 [ 1928.231216] ? lock_release+0x680/0x680 [ 1928.231790] mmap_region+0x7c8/0x1500 [ 1928.232356] do_mmap+0xcdb/0x11e0 [ 1928.232866] vm_mmap_pgoff+0x198/0x1f0 [ 1928.233430] ? randomize_page+0xb0/0xb0 [ 1928.234033] ksys_mmap_pgoff+0x41c/0x560 [ 1928.234623] ? find_mergeable_anon_vma+0x250/0x250 [ 1928.235338] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1928.236097] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1928.236845] do_syscall_64+0x33/0x40 [ 1928.237384] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1928.238149] RIP: 0033:0x7fddef796b62 [ 1928.238697] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1928.241343] RSP: 002b:00007fddecd0c0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1928.242459] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fddef796b62 [ 1928.243491] RDX: 0000000000000003 RSI: 0000000000048140 RDI: 0000000020ffc000 [ 1928.244516] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 1928.245543] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1928.246576] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1928.258770] EXT4-fs (loop7): Unrecognized mount option "usrjquo" or missing value 12:49:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 66) [ 1928.285644] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1928.287090] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1928.288067] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1928.289006] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1928.290099] print_req_error: 12 callbacks suppressed [ 1928.290116] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 20 prio class 0 [ 1928.292599] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.293394] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1928.294841] buffer_io_error: 14 callbacks suppressed [ 1928.294849] Buffer I/O error on dev sr0, logical block 0, async page read [ 1928.296734] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.297637] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1928.299487] Buffer I/O error on dev sr0, logical block 1, async page read [ 1928.300662] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.301493] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1928.302919] Buffer I/O error on dev sr0, logical block 2, async page read [ 1928.304356] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.305162] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1928.306597] Buffer I/O error on dev sr0, logical block 3, async page read [ 1928.307725] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.308524] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1928.309960] Buffer I/O error on dev sr0, logical block 4, async page read [ 1928.312224] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.312987] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1928.314421] Buffer I/O error on dev sr0, logical block 5, async page read [ 1928.315567] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.316603] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1928.318061] Buffer I/O error on dev sr0, logical block 6, async page read [ 1928.319414] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.320223] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1928.321642] Buffer I/O error on dev sr0, logical block 7, async page read 12:49:47 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39) r1 = socket$inet6_udp(0xa, 0x2, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000040), 0x4) socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) [ 1928.376423] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1928.377980] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1928.378941] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1928.379844] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1928.380912] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 19 prio class 0 12:49:47 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='block_validity,usrjquo']) [ 1928.383017] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.384602] Buffer I/O error on dev sr0, logical block 0, async page read [ 1928.386478] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.387711] Buffer I/O error on dev sr0, logical block 1, async page read [ 1928.389542] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.391097] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.394990] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.396547] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.398466] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.399972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:49:47 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x12a8, &(0x7f0000000240), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000140)) (fail_nth: 67) 12:49:47 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x40) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'erspan0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000000080), 0x4) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e23, 0x8, @loopback, 0x4}, 0x1c) 12:49:47 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@x25, 0x80, 0x0, 0x0, &(0x7f0000000140)=""/23, 0x17}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) r1 = fsopen(&(0x7f0000000100)='cgroup2\x00', 0x1) dup2(r1, 0xffffffffffffffff) r2 = getpgrp(0xffffffffffffffff) creat(&(0x7f0000000340)='./file0\x00', 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r3, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x7f, 0x9, 0x2, 0x3f, 0x0, 0xc9, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x2}, 0x480c3, 0xffffffff, 0x669, 0x3, 0x8, 0x1ff, 0x1000, 0x0, 0x5, 0x0, 0x40}, r2, 0xd, r4, 0xa) stat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) connect$unix(r0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000080)) 12:49:47 executing program 2: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x8, 0x0}}], 0x35f, 0x10062, 0x0) [ 1928.541321] FAULT_INJECTION: forcing a failure. [ 1928.541321] name failslab, interval 1, probability 0, space 0, times 0 [ 1928.543789] CPU: 0 PID: 11198 Comm: syz-executor.4 Not tainted 5.10.236 #1 [ 1928.545270] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1928.546934] Call Trace: [ 1928.547466] dump_stack+0x107/0x167 [ 1928.548197] should_fail.cold+0x5/0xa [ 1928.548966] ? create_object.isra.0+0x3a/0xa20 [ 1928.549888] should_failslab+0x5/0x20 [ 1928.550654] kmem_cache_alloc+0x5b/0x310 [ 1928.551480] create_object.isra.0+0x3a/0xa20 [ 1928.552359] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1928.553383] kmem_cache_alloc+0x159/0x310 [ 1928.554231] vm_area_alloc+0x1c/0x110 [ 1928.554996] mmap_region+0x97e/0x1500 [ 1928.555783] do_mmap+0xcdb/0x11e0 [ 1928.556490] vm_mmap_pgoff+0x198/0x1f0 [ 1928.557278] ? randomize_page+0xb0/0xb0 [ 1928.558106] ksys_mmap_pgoff+0x41c/0x560 [ 1928.558922] ? find_mergeable_anon_vma+0x250/0x250 [ 1928.559914] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1928.560962] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1928.562011] do_syscall_64+0x33/0x40 [ 1928.562766] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1928.563785] RIP: 0033:0x7f5e2aecab62 [ 1928.564530] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1928.568215] RSP: 002b:00007f5e284400f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1928.569739] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f5e2aecab62 [ 1928.571174] RDX: 0000000000000003 RSI: 0000000000048140 RDI: 0000000020ffc000 [ 1928.572597] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 1928.574025] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1928.575452] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 12:49:47 executing program 0: sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003600)=[{{&(0x7f0000000340)={0x2, 0x0, @dev}, 0x7fffefe9, &(0x7f0000000700)=[{&(0x7f0000000440)='7x', 0x2}, {&(0x7f0000000380)='t', 0x1}], 0x2}}, {{&(0x7f00000003c0)={0x2, 0x0, @dev}, 0x10, &(0x7f00000008c0)=[{&(0x7f0000000780)="4ded", 0x2}], 0x300}}], 0x2, 0x8004) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x4000, 0x0}}], 0x35f, 0x10062, 0x0) [ 1928.611180] FAULT_INJECTION: forcing a failure. [ 1928.611180] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1928.613637] CPU: 0 PID: 11200 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1928.615026] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1928.616671] Call Trace: [ 1928.617208] dump_stack+0x107/0x167 [ 1928.617948] should_fail.cold+0x5/0xa [ 1928.618712] __alloc_pages_nodemask+0x182/0x600 [ 1928.619643] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1928.620836] ? walk_mem_res+0x170/0x170 [ 1928.621638] alloc_pages_current+0x187/0x280 [ 1928.622528] pte_alloc_one+0x16/0x1a0 [ 1928.623285] __pte_alloc+0x1d/0x330 [ 1928.624012] remap_pfn_range_internal+0x9a3/0xf60 [ 1928.624979] ? lookup_memtype+0x5b/0x200 [ 1928.625813] ? apply_to_existing_page_range+0x40/0x40 [ 1928.626868] remap_pfn_range+0xcd/0x160 [ 1928.627671] ? remap_pfn_range_notrack+0x70/0x70 [ 1928.628619] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1928.629654] io_uring_mmap+0x398/0x530 [ 1928.630442] mmap_file+0x5e/0xe0 [ 1928.631123] mmap_region+0xc49/0x1500 [ 1928.631905] do_mmap+0xcdb/0x11e0 [ 1928.632607] vm_mmap_pgoff+0x198/0x1f0 [ 1928.633383] ? randomize_page+0xb0/0xb0 [ 1928.634213] ksys_mmap_pgoff+0x41c/0x560 [ 1928.635021] ? find_mergeable_anon_vma+0x250/0x250 [ 1928.636004] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1928.637049] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1928.638109] do_syscall_64+0x33/0x40 [ 1928.638853] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1928.639878] RIP: 0033:0x7fddef796b62 [ 1928.640618] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1928.644258] RSP: 002b:00007fddecd0c0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1928.645766] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fddef796b62 [ 1928.647195] RDX: 0000000000000003 RSI: 0000000000048140 RDI: 0000000020ffc000 [ 1928.648634] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 1928.650054] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1928.651480] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1928.689864] loop7: detected capacity change from 0 to 2048 [ 1928.712994] EXT4-fs (loop7): Unrecognized mount option "usrjquo" or missing value [ 1928.717562] ------------[ cut here ]------------ [ 1928.718816] WARNING: CPU: 0 PID: 11200 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 1928.720740] Modules linked in: [ 1928.721554] CPU: 0 PID: 11200 Comm: syz-executor.1 Not tainted 5.10.236 #1 [ 1928.723013] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1928.724727] RIP: 0010:get_pat_info+0x216/0x270 [ 1928.725678] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 71 89 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 5a 89 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 b5 8d 5a 00 e9 [ 1928.729455] RSP: 0018:ffff888049397898 EFLAGS: 00010216 [ 1928.730711] RAX: 0000000000012fdf RBX: ffff88800d781c00 RCX: ffffc9000701b000 [ 1928.732293] RDX: 0000000000040000 RSI: ffffffff81123696 RDI: 0000000000000007 [ 1928.733957] RBP: ffff888049397950 R08: 0000000000000000 R09: ffff888049397820 [ 1928.740360] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 1928.742565] R13: 1ffff11009272f13 R14: 0000000000000000 R15: ffff88800d781c50 [ 1928.744168] FS: 00007fddecd0c700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 1928.745990] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1928.747286] CR2: 00007f5a52d92000 CR3: 000000004993e000 CR4: 0000000000350ef0 [ 1928.748905] Call Trace: [ 1928.749576] ? pgprot_writethrough+0xc0/0xc0 [ 1928.750666] ? finish_task_switch+0x126/0x5d0 [ 1928.751690] ? finish_task_switch+0xef/0x5d0 [ 1928.752758] untrack_pfn+0xdc/0x240 [ 1928.753635] ? track_pfn_insert+0x150/0x150 [ 1928.754699] ? lock_downgrade+0x6d0/0x6d0 [ 1928.755677] ? uprobe_munmap+0x95/0x560 [ 1928.756661] unmap_single_vma+0x1bc/0x300 [ 1928.757644] zap_page_range_single+0x2ce/0x450 [ 1928.758769] ? unmap_single_vma+0x300/0x300 [ 1928.759779] ? remap_pfn_range_internal+0xc56/0xf60 [ 1928.760968] ? lookup_memtype+0x5b/0x200 [ 1928.761958] ? apply_to_existing_page_range+0x40/0x40 [ 1928.763210] remap_pfn_range+0x139/0x160 [ 1928.764129] ? remap_pfn_range_notrack+0x70/0x70 [ 1928.765306] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1928.766505] io_uring_mmap+0x398/0x530 [ 1928.767482] mmap_file+0x5e/0xe0 [ 1928.768318] mmap_region+0xc49/0x1500 [ 1928.769103] do_mmap+0xcdb/0x11e0 [ 1928.770010] vm_mmap_pgoff+0x198/0x1f0 [ 1928.770934] ? randomize_page+0xb0/0xb0 [ 1928.771937] ksys_mmap_pgoff+0x41c/0x560 [ 1928.772891] ? find_mergeable_anon_vma+0x250/0x250 [ 1928.773925] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1928.775009] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1928.776090] do_syscall_64+0x33/0x40 [ 1928.776874] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1928.777949] RIP: 0033:0x7fddef796b62 [ 1928.778727] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1928.782451] RSP: 002b:00007fddecd0c0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1928.784000] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fddef796b62 [ 1928.785469] RDX: 0000000000000003 RSI: 0000000000048140 RDI: 0000000020ffc000 [ 1928.786936] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000000000000 [ 1928.788389] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1928.789872] R13: 0000000020ffc000 R14: 0000000020000080 R15: 0000000020ffc000 [ 1928.791368] irq event stamp: 2025 [ 1928.792069] hardirqs last enabled at (2033): [] console_unlock+0x92d/0xb40 [ 1928.793802] hardirqs last disabled at (2042): [] console_unlock+0x839/0xb40 [ 1928.795559] softirqs last enabled at (1408): [] asm_call_irq_on_stack+0x12/0x20 [ 1928.797385] softirqs last disabled at (1355): [] asm_call_irq_on_stack+0x12/0x20 [ 1928.799195] ---[ end trace f418e39065ab07e4 ]--- [ 1928.809708] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1928.810845] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1928.811642] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1928.812397] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1928.814142] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.814827] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.815599] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.816287] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.817042] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.817737] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.818501] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.819194] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.980744] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1928.981872] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1928.982644] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1928.983387] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1928.984844] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.986651] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.988550] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.990546] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.992560] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.994594] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.996589] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1928.998560] sr 1:0:0:0: [sr0] tag#0 unaligned transfer VM DIAGNOSIS: 12:49:48 Registers: info registers vcpu 0 RAX=0000000000000052 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822df4a1 RDI=ffffffff879f3180 RBP=ffffffff879f3140 RSP=ffff8880493972a8 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000052 R13=0000000000000052 R14=ffffffff879f3140 R15=dffffc0000000000 RIP=ffffffff822df4f8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fddecd0c700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f5a52d92000 CR3=000000004993e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000000 RBX=ffff888009233500 RCX=0000000000000001 RDX=1ffff110012466a8 RSI=ffff88806cf3b2d8 RDI=ffff888009233540 RBP=ffff88806cf3b380 RSP=ffff88806cf09bf8 R8 =0000000000000001 R9 =0000000000000000 R10=ffff88800f6a1ad0 R11=0000000000000001 R12=000000000000a152 R13=000001c111e6e89d R14=ffff88806cf3b380 R15=ffff88800f6a1c00 RIP=ffffffff8120d2f1 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa06d3d8de8 CR3=00000000418c8000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000000000000000ff000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000