.
10:25:25 executing program 1:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
r0 = pkey_alloc(0x0, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0)
pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0)
pkey_mprotect(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x8, r0)
pkey_mprotect(&(0x7f0000ff6000/0x2000)=nil, 0x2000, 0x3000002, r0)
pkey_mprotect(&(0x7f0000fed000/0x2000)=nil, 0x2000, 0x8, r0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 2532.364866] name failslab, interval 1, probability 0, space 0, times 0
[ 2532.366504] CPU: 1 PID: 25155 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2532.367428] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2532.368540] Call Trace:
[ 2532.368929]  dump_stack+0x107/0x167
[ 2532.369444]  should_fail.cold+0x5/0xa
[ 2532.377996]  ? io_uring_setup+0x40b/0x2980
[ 2532.378589]  should_failslab+0x5/0x20
[ 2532.379121]  kmem_cache_alloc_trace+0x55/0x320
[ 2532.379726]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2532.380401]  io_uring_setup+0x40b/0x2980
[ 2532.380941]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2532.381577]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2532.382272]  ? wait_for_completion_io+0x270/0x270
[ 2532.382935]  do_syscall_64+0x33/0x40
[ 2532.383429]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2532.384109] RIP: 0033:0x7fd22c24ab19
[ 2532.384605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2532.387061] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2532.388064] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2532.389004] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2532.389967] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2532.390910] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2532.391856] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:25:26 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13004, 0x0, 0xffffffffffffffff)

10:25:26 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 16)

10:25:26 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

10:25:26 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000004)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000240)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYRESDEC])
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000100)=[r0, 0xffffffffffffffff], 0x2)
openat(r0, &(0x7f0000000200)='./file2\x00', 0x20040, 0x1)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x91)
r2 = openat$hpet(0xffffffffffffff9c, 0x0, 0x1a30c2, 0x0)
creat(&(0x7f0000000000)='./file2\x00', 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="1c005ba5e8c6e7fb76000000c06707009fabbb4f0000000000002700000012000000004ad0d2c8ba96174bdcaf8d46c15e7c7054855f8006e66b962983400cd6ff17635441dde09df1fa4949d780bf65e7e87ab06ae542dc8aad7e98716a08000000000000009ddeb99f74f9cc73e986ac9666a64cf17e193d142deb5cf8ef8e526a96af3da314e596f50467f8c442c0048e6a9b3d3f1790c96ed207b8dc5804040001"], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, 0xffffffffffffffff)
dup(r2)
ioctl$IOC_PR_REGISTER(0xffffffffffffffff, 0x401870c8, &(0x7f00000000c0)={0x6200, 0x1f, 0x1})
ioctl$HDIO_GETGEO(r2, 0x301, &(0x7f0000000180))
perf_event_open(&(0x7f0000000400)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x104, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000140), 0x3}, 0x0, 0x81, 0x200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r1, 0x0, 0x2)
ftruncate(0xffffffffffffffff, 0xd5)
r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x128)
copy_file_range(r3, 0x0, r1, 0x0, 0x200f5ef, 0x0)

10:25:26 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 8)
getresuid(0x0, 0x0, 0x0)

10:25:26 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2533.300081] FAULT_INJECTION: forcing a failure.
[ 2533.300081] name failslab, interval 1, probability 0, space 0, times 0
[ 2533.301601] CPU: 0 PID: 25388 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2533.306496] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2533.307581] Call Trace:
[ 2533.307932]  dump_stack+0x107/0x167
[ 2533.308420]  should_fail.cold+0x5/0xa
[ 2533.308926]  ? copy_process+0x3301/0x78b0
[ 2533.309476]  should_failslab+0x5/0x20
[ 2533.309995]  kmem_cache_alloc_node+0x55/0x330
[ 2533.310586]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2533.311281]  copy_process+0x3301/0x78b0
[ 2533.311799]  ? SOFTIRQ_verbose+0x10/0x10
[ 2533.312338]  ? stack_trace_save+0x8c/0xc0
[ 2533.312895]  ? lock_acquire+0x197/0x470
[ 2533.313418]  ? io_sq_thread_park+0x79/0xd0
[ 2533.313993]  ? perf_trace_lock+0xac/0x490
[ 2533.314539]  ? lock_release+0x680/0x680
[ 2533.315068]  ? __cleanup_sighand+0xb0/0xb0
[ 2533.315646]  ? kernel_text_address+0xf2/0x120
[ 2533.316237]  ? find_held_lock+0x2c/0x110
[ 2533.316786]  ? io_uring_setup+0x1c23/0x2980
[ 2533.317356]  ? lock_downgrade+0x6d0/0x6d0
[ 2533.317924]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2533.318567]  create_io_thread+0xb6/0xf0
[ 2533.319090]  ? pidfd_prepare+0x80/0x80
[ 2533.319608]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2533.320262]  io_uring_setup+0x1d79/0x2980
[ 2533.320822]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2533.321487]  ? wait_for_completion_io+0x270/0x270
[ 2533.322163]  do_syscall_64+0x33/0x40
[ 2533.322654]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2533.323330] RIP: 0033:0x7fb4a26afb19
[ 2533.323819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2533.326240] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2533.327240] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2533.328178] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2533.329114] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2533.330062] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2533.331003] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2533.539855] FAULT_INJECTION: forcing a failure.
[ 2533.539855] name failslab, interval 1, probability 0, space 0, times 0
[ 2533.541333] CPU: 0 PID: 25390 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2533.546170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2533.547250] Call Trace:
[ 2533.547596]  dump_stack+0x107/0x167
[ 2533.548084]  should_fail.cold+0x5/0xa
[ 2533.548588]  ? create_object.isra.0+0x3a/0xa20
[ 2533.549190]  should_failslab+0x5/0x20
[ 2533.553712]  kmem_cache_alloc+0x5b/0x310
[ 2533.554250]  create_object.isra.0+0x3a/0xa20
[ 2533.554831]  kmemleak_alloc_percpu+0xa0/0x100
[ 2533.555421]  pcpu_alloc+0x4e2/0x1240
[ 2533.555929]  ? io_tctx_exit_cb+0xf0/0xf0
[ 2533.556465]  percpu_ref_init+0x31/0x3d0
[ 2533.556993]  io_uring_setup+0x47a/0x2980
[ 2533.557528]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2533.558189]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2533.558852]  ? wait_for_completion_io+0x270/0x270
[ 2533.559504]  do_syscall_64+0x33/0x40
[ 2533.559998]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2533.560669] RIP: 0033:0x7fd22c24ab19
[ 2533.561159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2533.563583] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2533.564589] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2533.565524] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2533.566474] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2533.567406] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2533.568345] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:25:44 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:25:44 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 9)
getresuid(0x0, 0x0, 0x0)

10:25:44 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x1300a, 0x0, 0xffffffffffffffff)

10:25:44 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x7e, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:25:44 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1)

10:25:44 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 17)

10:25:44 executing program 4:
r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x142, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0xc10c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r1, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000))
r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, &(0x7f0000000280)=[r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2], 0x5, 0x0, 0x1, {0x0, r6}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/fs/cgroup', 0x212401, 0xc)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x300000c, 0x20010, 0xffffffffffffffff, 0x8000000)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x9, 0x13, r3, 0x8000000)
syz_io_uring_submit(r7, r5, &(0x7f0000000340)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x80000001)
io_uring_enter(r3, 0x58a7, 0x0, 0x0, 0x0, 0x0)
splice(r0, &(0x7f00000000c0)=0x7, r1, &(0x7f0000000200)=0xc8c, 0x8, 0x8)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f00000003c0)='!!$.-]$:/\x00')
write$binfmt_elf64(r1, &(0x7f00000001c0)=ANY=[], 0xfdef)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$FIONREAD(0xffffffffffffffff, 0x541b, &(0x7f0000000000))
creat(&(0x7f0000000040)='./file0\x00', 0x0)

10:25:44 executing program 1:
mlock2(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
r0 = pkey_alloc(0x0, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0)
pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0)
pkey_mprotect(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x8, r0)
mbind(&(0x7f0000ff3000/0x2000)=nil, 0x2000, 0x1, &(0x7f0000000000), 0x0, 0x2)
r1 = pkey_alloc(0x0, 0x5)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r1)
mbind(&(0x7f0000ff7000/0x3000)=nil, 0x3000, 0x1, &(0x7f0000000040)=0x101, 0x20, 0x3)
pkey_mprotect(&(0x7f0000ff1000/0x3000)=nil, 0x3000, 0xc, r1)
pkey_mprotect(&(0x7f0000ff6000/0x2000)=nil, 0x2000, 0x3000002, r0)
pkey_mprotect(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0xa, r0)

[ 2550.741477] FAULT_INJECTION: forcing a failure.
[ 2550.741477] name failslab, interval 1, probability 0, space 0, times 0
[ 2550.745436] CPU: 1 PID: 25511 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2550.747821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2550.750683] Call Trace:
[ 2550.751577]  dump_stack+0x107/0x167
[ 2550.752813]  should_fail.cold+0x5/0xa
[ 2550.754121]  ? create_object.isra.0+0x3a/0xa20
[ 2550.754140]  should_failslab+0x5/0x20
[ 2550.754154]  kmem_cache_alloc+0x5b/0x310
[ 2550.754173]  create_object.isra.0+0x3a/0xa20
[ 2550.754185]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2550.754204]  kmem_cache_alloc_node+0x169/0x330
[ 2550.754220]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2550.754241]  copy_process+0x3301/0x78b0
10:25:44 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x1300c, 0x0, 0xffffffffffffffff)

10:25:44 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 10)
getresuid(0x0, 0x0, 0x0)

10:25:44 executing program 1:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mbind(&(0x7f0000ff6000/0x3000)=nil, 0x3000, 0x4000, &(0x7f0000000080)=0x2, 0x4, 0x1)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
get_mempolicy(&(0x7f0000000000), &(0x7f00000000c0), 0x3, &(0x7f0000ff5000/0x4000)=nil, 0x5)

10:25:44 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 2)

10:25:44 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 18)

[ 2550.754253]  ? SOFTIRQ_verbose+0x10/0x10
[ 2550.754273]  ? stack_trace_save+0x8c/0xc0
[ 2550.754292]  ? lock_acquire+0x197/0x470
[ 2550.754306]  ? io_sq_thread_park+0x79/0xd0
[ 2550.754320]  ? perf_trace_lock+0xac/0x490
[ 2550.754334]  ? lock_release+0x680/0x680
[ 2550.754351]  ? __cleanup_sighand+0xb0/0xb0
[ 2550.754366]  ? kernel_text_address+0xf2/0x120
[ 2550.754384]  ? find_held_lock+0x2c/0x110
[ 2550.754403]  ? io_uring_setup+0x1c23/0x2980
[ 2550.754417]  ? lock_downgrade+0x6d0/0x6d0
[ 2550.754434]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2550.754448]  create_io_thread+0xb6/0xf0
10:25:44 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x85f, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

[ 2550.754461]  ? pidfd_prepare+0x80/0x80
[ 2550.754480]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2550.754508]  io_uring_setup+0x1d79/0x2980
[ 2550.754529]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2550.754542]  ? wait_for_completion_io+0x270/0x270
[ 2550.754581]  do_syscall_64+0x33/0x40
10:25:44 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2550.754597]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2550.754607] RIP: 0033:0x7fb4a26afb19
[ 2550.754622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2550.754630] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2550.754646] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2550.754655] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2550.754663] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2550.754672] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2550.754681] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2550.761087] FAULT_INJECTION: forcing a failure.
[ 2550.761087] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2550.761101] CPU: 0 PID: 25519 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2550.761109] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2550.761113] Call Trace:
[ 2550.761127]  dump_stack+0x107/0x167
[ 2550.761143]  should_fail.cold+0x5/0xa
[ 2550.761163]  _copy_from_user+0x2e/0x1b0
[ 2550.761181]  copy_clone_args_from_user+0x147/0x790
[ 2550.761198]  ? __lockdep_reset_lock+0x180/0x180
[ 2550.761213]  ? sighand_ctor+0x40/0x40
[ 2550.761233]  ? find_held_lock+0x2c/0x110
[ 2550.761254]  ? ksys_write+0x21a/0x260
[ 2550.761270]  ? lock_downgrade+0x6d0/0x6d0
[ 2550.761289]  __do_sys_clone3+0x9d/0x320
[ 2550.761302]  ? __do_sys_clone+0x110/0x110
[ 2550.761320]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2550.761336]  ? wait_for_completion_io+0x270/0x270
[ 2550.761353]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2550.761365]  ? vfs_write+0x354/0xb10
[ 2550.761380]  ? fput_many+0x2f/0x1a0
[ 2550.761395]  ? ksys_write+0x1a9/0x260
[ 2550.761409]  ? __ia32_sys_read+0xb0/0xb0
[ 2550.761433]  do_syscall_64+0x33/0x40
[ 2550.761447]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2550.761456] RIP: 0033:0x7f862144ab19
[ 2550.761475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2550.761483] RSP: 002b:00007f861e99f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2550.761498] RAX: ffffffffffffffda RBX: 00007f862155e020 RCX: 00007f862144ab19
[ 2550.761507] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2550.761515] RBP: 00007f861e99f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2550.761523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2550.761532] R13: 00007ffc637b687f R14: 00007f861e99f300 R15: 0000000000022000
[ 2550.766095] FAULT_INJECTION: forcing a failure.
[ 2550.766095] name failslab, interval 1, probability 0, space 0, times 0
[ 2550.766108] CPU: 0 PID: 25504 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2550.766116] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2550.766120] Call Trace:
[ 2550.766134]  dump_stack+0x107/0x167
[ 2550.766149]  should_fail.cold+0x5/0xa
[ 2550.766164]  ? create_object.isra.0+0x3a/0xa20
[ 2550.766180]  should_failslab+0x5/0x20
[ 2550.766193]  kmem_cache_alloc+0x5b/0x310
[ 2550.766212]  create_object.isra.0+0x3a/0xa20
[ 2550.766234]  kmemleak_alloc_percpu+0xa0/0x100
[ 2550.766254]  pcpu_alloc+0x4e2/0x1240
[ 2550.766283]  ? io_tctx_exit_cb+0xf0/0xf0
[ 2550.766297]  percpu_ref_init+0x31/0x3d0
[ 2550.766315]  io_uring_setup+0x47a/0x2980
[ 2550.766330]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2550.766348]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2550.766358]  ? wait_for_completion_io+0x270/0x270
[ 2550.766397]  do_syscall_64+0x33/0x40
[ 2550.766411]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2550.766420] RIP: 0033:0x7fd22c24ab19
[ 2550.766433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2550.766441] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2550.766456] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2550.766465] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2550.766474] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2550.766482] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2550.766490] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:25:44 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x17, "77004a6efdff00002d1ceb0600"})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x4000, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x11)

10:25:44 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x2, 0xffffffffffffffff)

10:25:45 executing program 1:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mlock2(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 2551.443219] FAULT_INJECTION: forcing a failure.
[ 2551.443219] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2551.444798] CPU: 0 PID: 25732 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2551.445689] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2551.446760] Call Trace:
[ 2551.447108]  dump_stack+0x107/0x167
[ 2551.447590]  should_fail.cold+0x5/0xa
[ 2551.448091]  __alloc_pages_nodemask+0x182/0x600
[ 2551.448693]  ? lock_downgrade+0x6d0/0x6d0
[ 2551.449237]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 2551.450029]  ? memcg_slab_post_alloc_hook+0x17a/0x430
[ 2551.450707]  ? kmem_cache_alloc_node+0x2bc/0x330
[ 2551.451329]  copy_process+0x62b/0x78b0
[ 2551.451842]  ? SOFTIRQ_verbose+0x10/0x10
[ 2551.452381]  ? stack_trace_save+0x8c/0xc0
[ 2551.452927]  ? lock_acquire+0x197/0x470
[ 2551.453444]  ? io_sq_thread_park+0x79/0xd0
[ 2551.454015]  ? perf_trace_lock+0xac/0x490
[ 2551.454563]  ? lock_release+0x680/0x680
[ 2551.455085]  ? __cleanup_sighand+0xb0/0xb0
[ 2551.455645]  ? kernel_text_address+0xf2/0x120
[ 2551.456237]  ? find_held_lock+0x2c/0x110
[ 2551.456775]  ? io_uring_setup+0x1c23/0x2980
[ 2551.457341]  ? lock_downgrade+0x6d0/0x6d0
[ 2551.457903]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2551.458544]  create_io_thread+0xb6/0xf0
[ 2551.459056]  ? pidfd_prepare+0x80/0x80
[ 2551.459572]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2551.460226]  io_uring_setup+0x1d79/0x2980
[ 2551.460772]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2551.461426]  ? wait_for_completion_io+0x270/0x270
[ 2551.462093]  do_syscall_64+0x33/0x40
[ 2551.462583]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2551.463238] RIP: 0033:0x7fb4a26afb19
[ 2551.463729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2551.466093] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2551.467074] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2551.467988] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2551.468910] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2551.469842] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2551.470763] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2551.489689] FAULT_INJECTION: forcing a failure.
[ 2551.489689] name failslab, interval 1, probability 0, space 0, times 0
[ 2551.495324] CPU: 1 PID: 25733 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2551.496240] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2551.497321] Call Trace:
[ 2551.497676]  dump_stack+0x107/0x167
[ 2551.498180]  should_fail.cold+0x5/0xa
[ 2551.498689]  ? copy_process+0x3301/0x78b0
[ 2551.499237]  should_failslab+0x5/0x20
[ 2551.499745]  kmem_cache_alloc_node+0x55/0x330
[ 2551.500339]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2551.501032]  copy_process+0x3301/0x78b0
[ 2551.501556]  ? SOFTIRQ_verbose+0x10/0x10
[ 2551.502109]  ? __lockdep_reset_lock+0x180/0x180
[ 2551.502724]  ? mark_lock+0xf5/0x2df0
[ 2551.503220]  ? lock_acquire+0x197/0x470
[ 2551.503749]  ? find_held_lock+0x2c/0x110
[ 2551.504294]  ? __cleanup_sighand+0xb0/0xb0
[ 2551.504873]  ? _copy_from_user+0xfb/0x1b0
[ 2551.505426]  kernel_clone+0xe7/0x980
[ 2551.505929]  ? __lockdep_reset_lock+0x180/0x180
[ 2551.506544]  ? create_io_thread+0xf0/0xf0
[ 2551.507104]  ? ksys_write+0x21a/0x260
[ 2551.507603]  ? lock_downgrade+0x6d0/0x6d0
[ 2551.508161]  __do_sys_clone3+0x1e5/0x320
[ 2551.508696]  ? __do_sys_clone+0x110/0x110
10:25:45 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 19)

[ 2551.509260]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2551.513879]  ? vfs_write+0x354/0xb10
[ 2551.514372]  ? fput_many+0x2f/0x1a0
[ 2551.514859]  ? ksys_write+0x1a9/0x260
[ 2551.515363]  ? __ia32_sys_read+0xb0/0xb0
[ 2551.515911]  do_syscall_64+0x33/0x40
[ 2551.516404]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2551.517080] RIP: 0033:0x7f862144ab19
[ 2551.517572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2551.520008] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2551.521011] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2551.521963] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2551.522907] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2551.523846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2551.524791] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:25:45 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 3)

[ 2551.678627] FAULT_INJECTION: forcing a failure.
[ 2551.678627] name failslab, interval 1, probability 0, space 0, times 0
[ 2551.680138] CPU: 0 PID: 25734 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2551.681048] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2551.682159] Call Trace:
[ 2551.682508]  dump_stack+0x107/0x167
[ 2551.682975]  should_fail.cold+0x5/0xa
[ 2551.683483]  ? percpu_ref_init+0xd8/0x3d0
[ 2551.684023]  should_failslab+0x5/0x20
[ 2551.684521]  kmem_cache_alloc_trace+0x55/0x320
[ 2551.685121]  ? io_tctx_exit_cb+0xf0/0xf0
[ 2551.685651]  percpu_ref_init+0xd8/0x3d0
[ 2551.686203]  io_uring_setup+0x47a/0x2980
[ 2551.686731]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2551.687364]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2551.688014]  ? wait_for_completion_io+0x270/0x270
[ 2551.688673]  do_syscall_64+0x33/0x40
[ 2551.689161]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2551.689835] RIP: 0033:0x7fd22c24ab19
[ 2551.690335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2551.692692] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2551.693676] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2551.694618] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2551.695532] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2551.696453] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2551.697373] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2552.275001] FAULT_INJECTION: forcing a failure.
[ 2552.275001] name failslab, interval 1, probability 0, space 0, times 0
[ 2552.276520] CPU: 0 PID: 25850 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2552.277429] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2552.279462] Call Trace:
[ 2552.279820]  dump_stack+0x107/0x167
[ 2552.280309]  should_fail.cold+0x5/0xa
[ 2552.280816]  ? __delayacct_tsk_init+0x1b/0x80
[ 2552.281418]  should_failslab+0x5/0x20
[ 2552.281930]  kmem_cache_alloc+0x5b/0x310
[ 2552.282472]  __delayacct_tsk_init+0x1b/0x80
[ 2552.283045]  copy_process+0x3395/0x78b0
[ 2552.283566]  ? SOFTIRQ_verbose+0x10/0x10
[ 2552.284108]  ? stack_trace_save+0x8c/0xc0
[ 2552.284664]  ? lock_acquire+0x197/0x470
[ 2552.285188]  ? io_sq_thread_park+0x79/0xd0
[ 2552.285756]  ? __cleanup_sighand+0xb0/0xb0
[ 2552.286373]  ? kernel_text_address+0xf2/0x120
[ 2552.286967]  ? find_held_lock+0x2c/0x110
[ 2552.287516]  ? io_uring_setup+0x1c23/0x2980
[ 2552.288087]  ? lock_downgrade+0x6d0/0x6d0
[ 2552.288633]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2552.289283]  create_io_thread+0xb6/0xf0
[ 2552.289806]  ? pidfd_prepare+0x80/0x80
[ 2552.291001]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2552.291664]  io_uring_setup+0x1d79/0x2980
[ 2552.292219]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2552.292881]  ? wait_for_completion_io+0x270/0x270
[ 2552.293548]  do_syscall_64+0x33/0x40
[ 2552.294048]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2552.294722] RIP: 0033:0x7fb4a26afb19
[ 2552.295216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2552.297626] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2552.298680] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2552.299615] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2552.300550] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2552.301487] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2552.302459] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2552.335323] FAULT_INJECTION: forcing a failure.
[ 2552.335323] name failslab, interval 1, probability 0, space 0, times 0
[ 2552.338392] CPU: 1 PID: 25864 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2552.339302] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2552.340387] Call Trace:
[ 2552.340742]  dump_stack+0x107/0x167
[ 2552.341228]  should_fail.cold+0x5/0xa
[ 2552.341735]  ? create_object.isra.0+0x3a/0xa20
[ 2552.342360]  should_failslab+0x5/0x20
[ 2552.342866]  kmem_cache_alloc+0x5b/0x310
[ 2552.343410]  create_object.isra.0+0x3a/0xa20
[ 2552.343990]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2552.344706]  kmem_cache_alloc_node+0x169/0x330
[ 2552.345311]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2552.346015]  copy_process+0x3301/0x78b0
[ 2552.346542]  ? SOFTIRQ_verbose+0x10/0x10
[ 2552.347081]  ? __lockdep_reset_lock+0x180/0x180
[ 2552.347691]  ? mark_lock+0xf5/0x2df0
[ 2552.348184]  ? lock_acquire+0x197/0x470
[ 2552.348715]  ? find_held_lock+0x2c/0x110
[ 2552.349259]  ? __cleanup_sighand+0xb0/0xb0
[ 2552.349839]  ? _copy_from_user+0xfb/0x1b0
[ 2552.350404]  kernel_clone+0xe7/0x980
[ 2552.350896]  ? __lockdep_reset_lock+0x180/0x180
[ 2552.351541]  ? create_io_thread+0xf0/0xf0
[ 2552.352096]  ? ksys_write+0x21a/0x260
[ 2552.352607]  ? lock_downgrade+0x6d0/0x6d0
[ 2552.353158]  __do_sys_clone3+0x1e5/0x320
[ 2552.353699]  ? __do_sys_clone+0x110/0x110
[ 2552.354279]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2552.354891]  ? vfs_write+0x354/0xb10
[ 2552.355386]  ? fput_many+0x2f/0x1a0
[ 2552.355866]  ? ksys_write+0x1a9/0x260
[ 2552.356375]  ? __ia32_sys_read+0xb0/0xb0
[ 2552.356924]  do_syscall_64+0x33/0x40
[ 2552.357418]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2552.358117] RIP: 0033:0x7f862144ab19
[ 2552.358613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2552.361031] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2552.362061] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2552.363004] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2552.363945] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2552.364881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2552.365823] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:26:09 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 11)
getresuid(0x0, 0x0, 0x0)

10:26:09 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:26:09 executing program 1:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
r0 = pkey_alloc(0x0, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0)
pkey_mprotect(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x9, r0)
r1 = pkey_alloc(0x0, 0x0)
r2 = pkey_alloc(0x0, 0x2)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0xe933811d03884ed9, r2)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x8, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1ddf5482e5e84945, r1)
pkey_free(0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1)
pkey_mprotect(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x8, r1)
pkey_mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0xffffffffffffffff)
pkey_free(r1)
pkey_mprotect(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x8, r0)
pkey_mprotect(&(0x7f0000ff6000/0x2000)=nil, 0x2000, 0x3000002, r0)
pkey_mprotect(&(0x7f0000ff9000/0x3000)=nil, 0x3000, 0x2000001, r0)

10:26:09 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 4)

10:26:09 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x3, 0xffffffffffffffff)

10:26:09 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x5, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
syz_io_uring_setup(0x6617, &(0x7f00000001c0)={0x0, 0x3268, 0x18, 0x1, 0x123}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000280))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_TEE={0x21, 0x3, 0x0, @fd=r0, 0x0, 0x0, 0x81, 0x8}, 0x2)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), 0xffffffffffffffff)
connect$inet6(0xffffffffffffffff, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, '\x00', 0x10}}, 0x1c)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x8000}, 0x4)
execveat(0xffffffffffffffff, &(0x7f0000001980)='./file0\x00', &(0x7f0000001c40)=[&(0x7f00000019c0)='%-*}(:\'\x00', &(0x7f0000001a00)='\x00', &(0x7f0000001a40)='\'1:.$$-[-\'^@\x00', &(0x7f0000001a80)='\x00', &(0x7f0000001ac0)='\x00', &(0x7f0000001b00)='802.15.4 MAC\x00', &(0x7f0000001b40)='$\x00', &(0x7f0000001b80)='\x00', &(0x7f0000001bc0)='\x00', &(0x7f0000001c00)='@\'/\x00'], &(0x7f0000001cc0), 0x800)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r6=>0x0})
sendmmsg$inet(r4, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000100000000000000008000000", @ANYRES32=r6], 0x38}}], 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_buf(r5, 0x1, 0x1c, &(0x7f0000000000)=""/90, &(0x7f0000000180)=0x5a)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x5}, 0x10040, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

10:26:09 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x2000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:26:09 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 20)

[ 2576.643590] FAULT_INJECTION: forcing a failure.
[ 2576.643590] name failslab, interval 1, probability 0, space 0, times 0
[ 2576.645110] CPU: 1 PID: 26020 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2576.646021] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2576.647146] Call Trace:
[ 2576.647501]  dump_stack+0x107/0x167
[ 2576.647986]  should_fail.cold+0x5/0xa
[ 2576.648499]  ? __delayacct_tsk_init+0x1b/0x80
[ 2576.649098]  should_failslab+0x5/0x20
[ 2576.649602]  kmem_cache_alloc+0x5b/0x310
[ 2576.650156]  __delayacct_tsk_init+0x1b/0x80
[ 2576.650737]  copy_process+0x3395/0x78b0
[ 2576.651281]  ? SOFTIRQ_verbose+0x10/0x10
[ 2576.651828]  ? stack_trace_save+0x8c/0xc0
[ 2576.652380]  ? lock_acquire+0x197/0x470
[ 2576.652905]  ? io_sq_thread_park+0x79/0xd0
[ 2576.653469]  ? __cleanup_sighand+0xb0/0xb0
[ 2576.654026]  ? kernel_text_address+0xf2/0x120
[ 2576.654647]  ? find_held_lock+0x2c/0x110
[ 2576.655188]  ? io_uring_setup+0x1c23/0x2980
[ 2576.655757]  ? lock_downgrade+0x6d0/0x6d0
[ 2576.656305]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2576.656950]  create_io_thread+0xb6/0xf0
[ 2576.657472]  ? pidfd_prepare+0x80/0x80
[ 2576.657987]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2576.658667]  io_uring_setup+0x1d79/0x2980
[ 2576.659221]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2576.659889]  ? wait_for_completion_io+0x270/0x270
[ 2576.660547]  do_syscall_64+0x33/0x40
[ 2576.661038]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2576.661719] RIP: 0033:0x7fb4a26afb19
[ 2576.662224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2576.664634] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2576.665640] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2576.666590] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2576.667524] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2576.668463] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2576.669401] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:26:10 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x4, 0xffffffffffffffff)

[ 2576.699231] FAULT_INJECTION: forcing a failure.
[ 2576.699231] name failslab, interval 1, probability 0, space 0, times 0
[ 2576.700948] CPU: 0 PID: 25969 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2576.701878] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2576.707008] Call Trace:
[ 2576.707376]  dump_stack+0x107/0x167
[ 2576.707877]  should_fail.cold+0x5/0xa
[ 2576.708401]  ? create_object.isra.0+0x3a/0xa20
[ 2576.709023]  should_failslab+0x5/0x20
[ 2576.709539]  kmem_cache_alloc+0x5b/0x310
[ 2576.710100]  create_object.isra.0+0x3a/0xa20
[ 2576.710705]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2576.711404]  kmem_cache_alloc_trace+0x151/0x320
[ 2576.712036]  ? io_tctx_exit_cb+0xf0/0xf0
[ 2576.712590]  percpu_ref_init+0xd8/0x3d0
[ 2576.713137]  io_uring_setup+0x47a/0x2980
[ 2576.713683]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2576.714351]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2576.715026]  ? wait_for_completion_io+0x270/0x270
[ 2576.715710]  do_syscall_64+0x33/0x40
[ 2576.716215]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2576.716903] RIP: 0033:0x7fd22c24ab19
[ 2576.717407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2576.718425] FAULT_INJECTION: forcing a failure.
[ 2576.718425] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2576.719773] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2576.719790] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2576.719800] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2576.719809] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2576.719823] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2576.725805] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2576.726745] CPU: 1 PID: 26019 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2576.727700] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2576.728790] Call Trace:
[ 2576.729146]  dump_stack+0x107/0x167
[ 2576.729642]  should_fail.cold+0x5/0xa
[ 2576.730160]  __alloc_pages_nodemask+0x182/0x600
[ 2576.730775]  ? lock_downgrade+0x6d0/0x6d0
[ 2576.731325]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 2576.732107]  ? memcg_slab_post_alloc_hook+0x17a/0x430
[ 2576.732798]  ? kmem_cache_alloc_node+0x2bc/0x330
[ 2576.733426]  copy_process+0x62b/0x78b0
[ 2576.733936]  ? SOFTIRQ_verbose+0x10/0x10
[ 2576.734490]  ? __lockdep_reset_lock+0x180/0x180
[ 2576.735093]  ? mark_lock+0xf5/0x2df0
[ 2576.735596]  ? lock_acquire+0x197/0x470
[ 2576.736117]  ? find_held_lock+0x2c/0x110
[ 2576.736660]  ? __cleanup_sighand+0xb0/0xb0
[ 2576.737236]  ? _copy_from_user+0xfb/0x1b0
[ 2576.737792]  kernel_clone+0xe7/0x980
[ 2576.738338]  ? __lockdep_reset_lock+0x180/0x180
[ 2576.738956]  ? create_io_thread+0xf0/0xf0
[ 2576.739520]  ? ksys_write+0x21a/0x260
[ 2576.740023]  ? lock_downgrade+0x6d0/0x6d0
[ 2576.740573]  __do_sys_clone3+0x1e5/0x320
[ 2576.741108]  ? __do_sys_clone+0x110/0x110
[ 2576.741670]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2576.742600]  ? vfs_write+0x354/0xb10
[ 2576.743724]  ? fput_many+0x2f/0x1a0
[ 2576.744820]  ? ksys_write+0x1a9/0x260
[ 2576.745965]  ? __ia32_sys_read+0xb0/0xb0
[ 2576.747396]  do_syscall_64+0x33/0x40
[ 2576.748517]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2576.750088] RIP: 0033:0x7f862144ab19
[ 2576.751373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2576.757511] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2576.760100] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2576.762356] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2576.764538] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2576.766877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
10:26:10 executing program 1:
mbind(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4000, &(0x7f0000000000)=0x1000, 0x200, 0x4)
mlock2(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
mlock(&(0x7f0000ff0000/0x2000)=nil, 0x2000)

[ 2576.769064] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:26:10 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 21)

10:26:10 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 12)
getresuid(0x0, 0x0, 0x0)

[ 2577.176005] FAULT_INJECTION: forcing a failure.
[ 2577.176005] name failslab, interval 1, probability 0, space 0, times 0
[ 2577.177600] CPU: 1 PID: 26188 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2577.178536] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2577.179628] Call Trace:
[ 2577.180005]  dump_stack+0x107/0x167
[ 2577.180496]  should_fail.cold+0x5/0xa
[ 2577.181004]  ? alloc_pid+0xd7/0xd30
[ 2577.181528]  should_failslab+0x5/0x20
[ 2577.182034]  kmem_cache_alloc+0x5b/0x310
[ 2577.182606]  alloc_pid+0xd7/0xd30
[ 2577.186587]  copy_process+0x3b87/0x78b0
[ 2577.187138]  ? SOFTIRQ_verbose+0x10/0x10
[ 2577.187705]  ? stack_trace_save+0x8c/0xc0
[ 2577.188295]  ? __cleanup_sighand+0xb0/0xb0
[ 2577.188874]  ? kernel_text_address+0xf2/0x120
[ 2577.189491]  ? find_held_lock+0x2c/0x110
[ 2577.190057]  ? io_uring_setup+0x1c23/0x2980
[ 2577.190663]  ? lock_downgrade+0x6d0/0x6d0
[ 2577.191232]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2577.191900]  create_io_thread+0xb6/0xf0
[ 2577.192441]  ? pidfd_prepare+0x80/0x80
[ 2577.192978]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2577.193650]  io_uring_setup+0x1d79/0x2980
[ 2577.194247]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2577.194929]  ? wait_for_completion_io+0x270/0x270
[ 2577.195609]  do_syscall_64+0x33/0x40
[ 2577.196125]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2577.196795] RIP: 0033:0x7fb4a26afb19
[ 2577.197293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2577.199719] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2577.200725] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2577.201662] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2577.202618] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2577.203555] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2577.204494] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2577.270057] FAULT_INJECTION: forcing a failure.
[ 2577.270057] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2577.271889] CPU: 0 PID: 26191 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2577.272833] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2577.273906] Call Trace:
[ 2577.274302]  dump_stack+0x107/0x167
[ 2577.274776]  should_fail.cold+0x5/0xa
[ 2577.275308]  __alloc_pages_nodemask+0x182/0x600
[ 2577.275934]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 2577.276724]  ? cap_capable+0x1cd/0x230
[ 2577.277240]  alloc_pages_current+0x187/0x280
[ 2577.277820]  __get_free_pages+0xc/0xa0
[ 2577.278348]  io_uring_setup+0xe27/0x2980
[ 2577.278881]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2577.279580]  ? wait_for_completion_io+0x270/0x270
[ 2577.280234]  do_syscall_64+0x33/0x40
[ 2577.280720]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2577.281388] RIP: 0033:0x7fd22c24ab19
[ 2577.281872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2577.285192] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2577.286523] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2577.287722] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2577.288969] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2577.290183] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2577.291292] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:26:27 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000200), 0x101000, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x1)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f00000000c0)={0x0, 0x4, 0x0, 0x3})
mount(0x0, &(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000140)='sysfs\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001740)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000040)=@file={0x1, './file0/file0\x00'}, 0x6e, 0x0}}], 0x2, 0x0)

10:26:27 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 13)
getresuid(0x0, 0x0, 0x0)

10:26:27 executing program 1:
getitimer(0x0, &(0x7f0000000000))
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:26:27 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x0, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:26:27 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x3f00, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:26:27 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 5)

10:26:27 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 22)

10:26:27 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0xa, 0xffffffffffffffff)

[ 2594.051087] FAULT_INJECTION: forcing a failure.
[ 2594.051087] name failslab, interval 1, probability 0, space 0, times 0
[ 2594.051434] FAULT_INJECTION: forcing a failure.
[ 2594.051434] name failslab, interval 1, probability 0, space 0, times 0
[ 2594.052633] CPU: 1 PID: 26206 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2594.055050] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2594.056114] Call Trace:
[ 2594.056460]  dump_stack+0x107/0x167
[ 2594.056958]  should_fail.cold+0x5/0xa
[ 2594.057445]  ? prepare_creds+0x25/0x5e0
[ 2594.057997]  should_failslab+0x5/0x20
[ 2594.058512]  kmem_cache_alloc+0x5b/0x310
[ 2594.059064]  ? lock_downgrade+0x6d0/0x6d0
[ 2594.059594]  prepare_creds+0x25/0x5e0
[ 2594.060127]  copy_creds+0x72/0x580
[ 2594.060588]  copy_process+0xfef/0x78b0
[ 2594.061086]  ? SOFTIRQ_verbose+0x10/0x10
[ 2594.061608]  ? __lockdep_reset_lock+0x180/0x180
[ 2594.062227]  ? mark_lock+0xf5/0x2df0
[ 2594.062719]  ? lock_acquire+0x197/0x470
[ 2594.063273]  ? find_held_lock+0x2c/0x110
[ 2594.063802]  ? __cleanup_sighand+0xb0/0xb0
[ 2594.064365]  ? _copy_from_user+0xfb/0x1b0
[ 2594.064933]  kernel_clone+0xe7/0x980
[ 2594.065406]  ? __lockdep_reset_lock+0x180/0x180
[ 2594.066044]  ? create_io_thread+0xf0/0xf0
[ 2594.066606]  ? ksys_write+0x21a/0x260
[ 2594.067121]  ? lock_downgrade+0x6d0/0x6d0
[ 2594.067651]  __do_sys_clone3+0x1e5/0x320
[ 2594.068215]  ? __do_sys_clone+0x110/0x110
[ 2594.068761]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2594.069353]  ? vfs_write+0x354/0xb10
[ 2594.069853]  ? fput_many+0x2f/0x1a0
[ 2594.070337]  ? ksys_write+0x1a9/0x260
[ 2594.070828]  ? __ia32_sys_read+0xb0/0xb0
[ 2594.071400]  do_syscall_64+0x33/0x40
[ 2594.071909]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2594.072558] RIP: 0033:0x7f862144ab19
[ 2594.073080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2594.075460] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2594.076438] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2594.077346] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2594.078253] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2594.083211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2594.084162] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2594.086708] CPU: 0 PID: 26208 Comm: syz-executor.5 Not tainted 5.10.238 #1
10:26:27 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0xc, 0xffffffffffffffff)

[ 2594.087636] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2594.098447] Call Trace:
[ 2594.098801]  dump_stack+0x107/0x167
[ 2594.099319]  should_fail.cold+0x5/0xa
[ 2594.099825]  ? create_object.isra.0+0x3a/0xa20
[ 2594.100430]  should_failslab+0x5/0x20
[ 2594.100964]  kmem_cache_alloc+0x5b/0x310
[ 2594.101504]  create_object.isra.0+0x3a/0xa20
[ 2594.102126]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2594.102812]  kmem_cache_alloc+0x159/0x310
[ 2594.103392]  alloc_pid+0xd7/0xd30
[ 2594.103865]  copy_process+0x3b87/0x78b0
[ 2594.104435]  ? SOFTIRQ_verbose+0x10/0x10
[ 2594.104976]  ? stack_trace_save+0x8c/0xc0
[ 2594.105539]  ? __cleanup_sighand+0xb0/0xb0
[ 2594.106117]  ? kernel_text_address+0xf2/0x120
[ 2594.106717]  ? find_held_lock+0x2c/0x110
[ 2594.107306]  ? io_uring_setup+0x1c23/0x2980
[ 2594.107872]  ? lock_downgrade+0x6d0/0x6d0
[ 2594.108419]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2594.109092]  create_io_thread+0xb6/0xf0
[ 2594.109609]  ? pidfd_prepare+0x80/0x80
[ 2594.110156]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2594.110825]  io_uring_setup+0x1d79/0x2980
[ 2594.111401]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2594.112102]  ? wait_for_completion_io+0x270/0x270
[ 2594.112762]  do_syscall_64+0x33/0x40
[ 2594.113251]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2594.113941] RIP: 0033:0x7fb4a26afb19
[ 2594.114451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2594.116923] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2594.117963] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2594.118930] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2594.119865] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2594.120843] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2594.121776] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2594.130568] FAULT_INJECTION: forcing a failure.
[ 2594.130568] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2594.132164] CPU: 0 PID: 26212 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2594.133260] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2594.134554] Call Trace:
[ 2594.134899]  dump_stack+0x107/0x167
[ 2594.135426]  should_fail.cold+0x5/0xa
[ 2594.135931]  __alloc_pages_nodemask+0x182/0x600
[ 2594.136544]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 2594.137366]  ? cap_capable+0x1cd/0x230
[ 2594.137880]  alloc_pages_current+0x187/0x280
[ 2594.138521]  __get_free_pages+0xc/0xa0
[ 2594.139032]  io_uring_setup+0xf9a/0x2980
[ 2594.139572]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2594.140234]  ? wait_for_completion_io+0x270/0x270
[ 2594.140883]  do_syscall_64+0x33/0x40
[ 2594.141418]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2594.142120] RIP: 0033:0x7fd22c24ab19
[ 2594.142620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2594.145056] RSP: 002b:00007fd22979f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2594.146066] RAX: ffffffffffffffda RBX: 00007fd22c35e020 RCX: 00007fd22c24ab19
[ 2594.147072] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2594.148008] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2594.148974] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2594.149905] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:26:27 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 6)

10:26:27 executing program 1:
mlock2(&(0x7f0000fee000/0x1000)=nil, 0x1000, 0x1)
pkey_mprotect(&(0x7f0000fed000/0x3000)=nil, 0x3000, 0x200000c, 0xffffffffffffffff)

10:26:27 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x0, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:26:27 executing program 4:
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x620e, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @ipv4, 0xffffffff}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a64485f108d23b76be1cc06a8682449c18157c739b4f25f709", 0x19}, {0x0}, {0x0}], 0x3}, 0x0, 0x4000000}, 0x0)
setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x36, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x481, &(0x7f0000000080), &(0x7f00000000c0)=0xc)
perf_event_open(&(0x7f0000000400)={0x1, 0x80, 0x42, 0xff, 0x3f, 0x6, 0x0, 0x1, 0x404, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1f, 0x2, @perf_config_ext={0x8, 0x1}, 0x260, 0xc4b, 0x904, 0x1, 0x7fff, 0x5, 0x0, 0x0, 0x3, 0x0, 0x1}, 0xffffffffffffffff, 0xe, r0, 0x0)
syz_io_uring_setup(0x2db9, &(0x7f0000000340)={0x0, 0xd7a5, 0x4, 0x1, 0x389}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f00000003c0)=<r5=>0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r6 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r7}}, 0x2)
syz_io_uring_submit(r2, r5, &(0x7f0000000540)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000006c0)=""/142, 0x8e}], 0x1, &(0x7f0000000940)=""/140, 0x8c}, 0x0, 0x10001, 0x0, {0x3, r7}}, 0x4)
setsockopt$IP_VS_SO_SET_DEL(0xffffffffffffffff, 0x0, 0x484, &(0x7f0000000040)={0x87, @rand_addr=0x64010101, 0x4e23, 0x2, 'none\x00', 0x28, 0xffffff41, 0x3}, 0x2c)
syz_io_uring_submit(0x0, r5, &(0x7f0000000680)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000000580)={0x80000000}, r1}, 0x7)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x100000e, 0x13, r1, 0x0)
r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000)
syz_io_uring_submit(r8, r3, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001)
io_uring_enter(r1, 0x800012d, 0x4, 0x0, 0x0, 0x0)

10:26:27 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 14)
getresuid(0x0, 0x0, 0x0)

10:26:27 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x4000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:26:27 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 23)

10:26:28 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0xa00, 0xffffffffffffffff)

[ 2594.898087] FAULT_INJECTION: forcing a failure.
[ 2594.898087] name failslab, interval 1, probability 0, space 0, times 0
[ 2594.899641] CPU: 0 PID: 26429 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2594.900545] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2594.901629] Call Trace:
[ 2594.901980]  dump_stack+0x107/0x167
[ 2594.902477]  should_fail.cold+0x5/0xa
[ 2594.903050]  ? create_object.isra.0+0x3a/0xa20
[ 2594.903761]  should_failslab+0x5/0x20
[ 2594.904354]  kmem_cache_alloc+0x5b/0x310
[ 2594.904988]  create_object.isra.0+0x3a/0xa20
[ 2594.905674]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2594.906466]  kmem_cache_alloc+0x159/0x310
[ 2594.907559]  prepare_creds+0x25/0x5e0
[ 2594.908120]  copy_creds+0x72/0x580
[ 2594.908586]  copy_process+0xfef/0x78b0
[ 2594.909157]  ? SOFTIRQ_verbose+0x10/0x10
[ 2594.909734]  ? __lockdep_reset_lock+0x180/0x180
[ 2594.910428]  ? mark_lock+0xf5/0x2df0
[ 2594.911340]  ? lock_acquire+0x197/0x470
[ 2594.912028]  ? find_held_lock+0x2c/0x110
[ 2594.912668]  ? __cleanup_sighand+0xb0/0xb0
[ 2594.913475]  ? _copy_from_user+0xfb/0x1b0
[ 2594.914179]  kernel_clone+0xe7/0x980
[ 2594.914787]  ? __lockdep_reset_lock+0x180/0x180
[ 2594.915576]  ? create_io_thread+0xf0/0xf0
[ 2594.916288]  ? ksys_write+0x21a/0x260
[ 2594.916943]  ? lock_downgrade+0x6d0/0x6d0
[ 2594.917600]  __do_sys_clone3+0x1e5/0x320
[ 2594.918287]  ? __do_sys_clone+0x110/0x110
[ 2594.919094]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2594.919816]  ? vfs_write+0x354/0xb10
[ 2594.920456]  ? fput_many+0x2f/0x1a0
[ 2594.921083]  ? ksys_write+0x1a9/0x260
[ 2594.921676]  ? __ia32_sys_read+0xb0/0xb0
[ 2594.922390]  do_syscall_64+0x33/0x40
[ 2594.923037]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2594.923794] RIP: 0033:0x7f862144ab19
[ 2594.924430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2594.927140] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2594.928309] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2594.929359] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2594.930443] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2594.931560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2594.932755] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2595.109826] FAULT_INJECTION: forcing a failure.
[ 2595.109826] name failslab, interval 1, probability 0, space 0, times 0
[ 2595.111356] CPU: 1 PID: 26540 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2595.112278] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2595.113337] Call Trace:
[ 2595.113685]  dump_stack+0x107/0x167
[ 2595.114187]  should_fail.cold+0x5/0xa
[ 2595.114689]  ? io_uring_alloc_task_context+0x99/0x6a0
[ 2595.115400]  should_failslab+0x5/0x20
[ 2595.115890]  kmem_cache_alloc_trace+0x55/0x320
[ 2595.116483]  io_uring_alloc_task_context+0x99/0x6a0
[ 2595.117157]  ? io_import_iovec+0x1120/0x1120
[ 2595.117731]  io_uring_setup+0x1dd1/0x2980
[ 2595.118318]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2595.119017]  ? wait_for_completion_io+0x270/0x270
[ 2595.119661]  do_syscall_64+0x33/0x40
[ 2595.120153]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2595.120815] RIP: 0033:0x7fb4a26afb19
[ 2595.121302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2595.123745] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2595.124722] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2595.125666] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2595.126639] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2595.127586] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2595.128548] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2595.161060] FAULT_INJECTION: forcing a failure.
[ 2595.161060] name failslab, interval 1, probability 0, space 0, times 0
[ 2595.162614] CPU: 0 PID: 26541 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2595.163549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2595.164690] Call Trace:
[ 2595.165078]  dump_stack+0x107/0x167
[ 2595.165593]  should_fail.cold+0x5/0xa
[ 2595.166133]  ? io_uring_setup+0x17ed/0x2980
[ 2595.166752]  should_failslab+0x5/0x20
[ 2595.167264]  kmem_cache_alloc_trace+0x55/0x320
[ 2595.167859]  ? alloc_pages_current+0x18f/0x280
[ 2595.168461]  io_uring_setup+0x17ed/0x2980
[ 2595.169011]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2595.169672]  ? wait_for_completion_io+0x270/0x270
[ 2595.170384]  do_syscall_64+0x33/0x40
[ 2595.170880]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2595.171554] RIP: 0033:0x7fd22c24ab19
[ 2595.172045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2595.174516] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2595.175508] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2595.176435] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2595.177361] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2595.178288] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2595.179234] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:26:45 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 7)

10:26:45 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0xc00, 0xffffffffffffffff)

10:26:45 executing program 4:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, @perf_config_ext={0x5, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x4, 0x3, &(0x7f0000000300)=[{0x0, 0x0, 0x7fff}, {&(0x7f00000000c0)="c38cf7bc4643814e0c3c102f3b75e3c485e1953666867ff0b760954b5332fb483e5202228f1d3639fb7e217fc1641ed544264d6d64acb87d45fd283a67394a4e2e2701aa50bb03876578363361aeef9122b3f11fc180a7a88078783617379e9d50a70aaa5a7cb9416764cc79f78aaa19e3233560c4a9b6170a115d98d65791cb814e7913658915c75934144bdfad8f323895925d58061f0cfee517911f", 0x9d, 0xf4b2}, {&(0x7f0000000180)="5bffa097ec44ff12ea1e69793d84533c7cb8a98876a1d69640b9350e43bd6dbde6d292e3ec889a2f997ed8ca47e1ce40613b86425c9456f874799fb3e850dbcfeb73af445005e7561b8047b6d9437d7a6c73b62e7124fb2699949fe472ecbf145e1c365cd2287639641d1a0c04144114d1bc776d64b3bf20c3e73b4249f23d53201bfb8491e7b24e3c110cf6fa7d1d67d5ee06beeb1646190fdbb6bc2b1b44a917d0612a21f3a5a8a4911756e842a9b14ac53892cdeca6ea25b9228b5bc75aed64cee705e38f18640770a2a4d5d901853a031c6cc4cddff8c22897481b3c52649adbfe44f9e62e445b1bbfc9af83", 0xee, 0x7}])
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x8000)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000280))
readv(r0, &(0x7f0000002500)=[{&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/4084, 0xff4}], 0x2)
ioctl$TCSBRK(0xffffffffffffffff, 0x5409, 0x400)
dup2(r1, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000002540)=ANY=[@ANYBLOB="01000081000000004000014f65eefa6be1b05900", @ANYRES32=<r2=>r1, @ANYRES32=r1, @ANYBLOB="000000002e052f66696c6530006d8c9d2d68082d01037fd5df4fd75a1eac2285787d4e940ef244c72d8cd6ff27be66a8cebc70f0448160d41b62387f333f89016c1c97f6e620aefde2675e20a7e1452878b319ef3c88804bd389bf8d64ab3902c95b3a001932c791a0c6a58062263f3ebb7ba827f53a2bf8b988065fe1c9bb05a4306663d274fc2f969cb135f998286697c04b2ef83b6136e2579fd1fa6636a2a795fef99c66"])
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r2)
openat(0xffffffffffffff9c, &(0x7f00000004c0)='./file1\x00', 0x0, 0x94)

10:26:45 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x0, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:26:45 executing program 1:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$SMC_PNETID_DEL(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x68, r1, 0x100, 0x70bd27, 0x25dfdbff, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x404c440}, 0x8000)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:26:45 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x59fe, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:26:45 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 24)

10:26:45 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 15)
getresuid(0x0, 0x0, 0x0)

[ 2611.871769] FAULT_INJECTION: forcing a failure.
[ 2611.871769] name failslab, interval 1, probability 0, space 0, times 0
[ 2611.873303] CPU: 1 PID: 26657 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2611.874209] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2611.875324] Call Trace:
[ 2611.875680]  dump_stack+0x107/0x167
[ 2611.876161]  should_fail.cold+0x5/0xa
[ 2611.876675]  ? security_prepare_creds+0x112/0x190
[ 2611.877315]  should_failslab+0x5/0x20
[ 2611.877819]  __kmalloc+0x72/0x390
[ 2611.878284]  security_prepare_creds+0x112/0x190
[ 2611.878928]  prepare_creds+0x452/0x5e0
[ 2611.879441]  copy_creds+0x72/0x580
[ 2611.879921]  copy_process+0xfef/0x78b0
[ 2611.880440]  ? SOFTIRQ_verbose+0x10/0x10
[ 2611.880983]  ? __lockdep_reset_lock+0x180/0x180
[ 2611.881615]  ? mark_lock+0xf5/0x2df0
[ 2611.882109]  ? lock_acquire+0x197/0x470
[ 2611.882707]  ? find_held_lock+0x2c/0x110
[ 2611.883260]  ? __cleanup_sighand+0xb0/0xb0
[ 2611.883836]  ? _copy_from_user+0xfb/0x1b0
[ 2611.884392]  kernel_clone+0xe7/0x980
[ 2611.884886]  ? __lockdep_reset_lock+0x180/0x180
[ 2611.885503]  ? create_io_thread+0xf0/0xf0
[ 2611.886063]  ? ksys_write+0x21a/0x260
[ 2611.894596]  ? lock_downgrade+0x6d0/0x6d0
[ 2611.895148]  __do_sys_clone3+0x1e5/0x320
[ 2611.895685]  ? __do_sys_clone+0x110/0x110
[ 2611.896245]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2611.896863]  ? vfs_write+0x354/0xb10
[ 2611.897356]  ? fput_many+0x2f/0x1a0
[ 2611.897838]  ? ksys_write+0x1a9/0x260
[ 2611.898341]  ? __ia32_sys_read+0xb0/0xb0
[ 2611.904869] FAULT_INJECTION: forcing a failure.
[ 2611.904869] name failslab, interval 1, probability 0, space 0, times 0
[ 2611.906916]  do_syscall_64+0x33/0x40
[ 2611.906934]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2611.906951] RIP: 0033:0x7f862144ab19
[ 2611.910032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2611.912481] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2611.913480] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2611.914428] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2611.915386] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2611.916325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2611.917259] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2611.918229] CPU: 0 PID: 26663 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2611.919166] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2611.920251] Call Trace:
[ 2611.920611]  dump_stack+0x107/0x167
[ 2611.921094]  should_fail.cold+0x5/0xa
[ 2611.921605]  ? create_object.isra.0+0x3a/0xa20
[ 2611.922209]  should_failslab+0x5/0x20
[ 2611.922729]  kmem_cache_alloc+0x5b/0x310
[ 2611.923283]  create_object.isra.0+0x3a/0xa20
[ 2611.923865]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2611.924544]  kmem_cache_alloc_trace+0x151/0x320
[ 2611.925174]  io_uring_alloc_task_context+0x99/0x6a0
[ 2611.925828]  ? io_import_iovec+0x1120/0x1120
[ 2611.926422]  io_uring_setup+0x1dd1/0x2980
[ 2611.926992]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2611.927662]  ? wait_for_completion_io+0x270/0x270
[ 2611.928322]  do_syscall_64+0x33/0x40
[ 2611.928813]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2611.929488] RIP: 0033:0x7fb4a26afb19
[ 2611.929977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2611.932502] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2611.933504] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2611.934433] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2611.935423] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2611.936358] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2611.937291] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:26:45 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x4000, 0xffffffffffffffff)

[ 2611.986495] FAULT_INJECTION: forcing a failure.
[ 2611.986495] name failslab, interval 1, probability 0, space 0, times 0
[ 2611.992406] CPU: 1 PID: 26662 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2611.993490] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2611.994811] Call Trace:
[ 2611.995252]  dump_stack+0x107/0x167
[ 2611.995845]  should_fail.cold+0x5/0xa
[ 2611.996468]  ? create_object.isra.0+0x3a/0xa20
[ 2611.997206]  should_failslab+0x5/0x20
[ 2611.997806]  kmem_cache_alloc+0x5b/0x310
[ 2611.998437]  create_object.isra.0+0x3a/0xa20
[ 2611.999127]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2611.999912]  kmem_cache_alloc_trace+0x151/0x320
[ 2612.000634]  io_uring_setup+0x17ed/0x2980
[ 2612.001288]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2612.002065]  ? wait_for_completion_io+0x270/0x270
[ 2612.002835]  do_syscall_64+0x33/0x40
[ 2612.003411]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2612.004197] RIP: 0033:0x7fd22c24ab19
[ 2612.004779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2612.007631] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2612.008810] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2612.009909] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2612.011017] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2612.012124] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2612.013227] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:26:45 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x5f08, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:26:45 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 25)

10:26:45 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 8)

10:26:45 executing program 4:
r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x4, 0x0, 0xfd, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, @perf_config_ext, 0xa200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r1 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0x0)
r2 = add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x3}, 0x0, 0x0, r1)
r3 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000300)={'syz', 0x1}, 0x0, 0x0, r2)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000c00)=<r4=>0x0)
perf_event_open(&(0x7f00000006c0)={0x0, 0x80, 0x1, 0x1, 0x1, 0xc9, 0x0, 0x2, 0x10000, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x8000, 0x0, @perf_bp={&(0x7f00000004c0), 0x2}, 0x800, 0x23c4fade, 0x0, 0x9, 0x7, 0x1000, 0x200, 0x0, 0x114d1009, 0x0, 0x9}, r4, 0x6, r0, 0x1)
r5 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$KEYCTL_MOVE(0x1e, r5, 0xfffffffffffffffc, r3, 0x0)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$sock_int(r6, 0x1, 0x32, &(0x7f0000000080), 0x4)
r7 = add_key$keyring(&(0x7f0000000740), &(0x7f0000000780)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffa)
request_key(&(0x7f0000000100)='asymmetric\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)='\\&\\^+%))#7\x00', r7)
request_key(&(0x7f0000000240)='encrypted\x00', &(0x7f0000000440)={'syz', 0x2}, &(0x7f0000000480)='asymmetric\x00', r2)
add_key$keyring(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00')
ioctl$TIOCGSERIAL(r8, 0x541e, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0)=""/202})
unshare(0x48020200)
r9 = creat(&(0x7f0000000000)='./file0\x00', 0x40)
ioctl$LOOP_CTL_REMOVE(r9, 0x4c81, 0x0)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x3, 0x8010, r9, 0x12a2d000)

10:26:45 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 16)
getresuid(0x0, 0x0, 0x0)

10:26:45 executing program 1:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_uring_setup(0x201168, &(0x7f00000009c0)={0x0, 0x4332, 0x4})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x7f, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x368c, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000000}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000000), 0x400000d, 0x0)
ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x2103, 0x0)
lseek(0xffffffffffffffff, 0x6, 0x2)
splice(0xffffffffffffffff, &(0x7f0000000240)=0x8000, 0xffffffffffffffff, &(0x7f0000000400)=0x518, 0x8001, 0x3)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x24, 0x2e, 0xc21, 0x0, 0x0, {0x0, 0x2, 0x2}, [@nested={0xd, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @generic="8f"]}]}, 0x24}}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)

10:26:45 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0x0, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2612.764878] FAULT_INJECTION: forcing a failure.
[ 2612.764878] name failslab, interval 1, probability 0, space 0, times 0
[ 2612.766410] CPU: 1 PID: 26914 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2612.779276] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2612.780370] Call Trace:
[ 2612.780726]  dump_stack+0x107/0x167
[ 2612.781219]  should_fail.cold+0x5/0xa
[ 2612.781730]  ? create_object.isra.0+0x3a/0xa20
[ 2612.782345]  should_failslab+0x5/0x20
[ 2612.789449] FAULT_INJECTION: forcing a failure.
[ 2612.789449] name failslab, interval 1, probability 0, space 0, times 0
[ 2612.790860]  kmem_cache_alloc+0x5b/0x310
[ 2612.790887]  create_object.isra.0+0x3a/0xa20
[ 2612.793449]  kmemleak_alloc_percpu+0xa0/0x100
[ 2612.794043]  pcpu_alloc+0x4e2/0x1240
[ 2612.794567]  __percpu_counter_init+0x10d/0x2d0
[ 2612.795191]  io_uring_alloc_task_context+0xcc/0x6a0
[ 2612.795853]  ? io_import_iovec+0x1120/0x1120
[ 2612.796453]  io_uring_setup+0x1dd1/0x2980
[ 2612.797011]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2612.797677]  ? wait_for_completion_io+0x270/0x270
[ 2612.798344]  do_syscall_64+0x33/0x40
[ 2612.798856]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2612.799533] RIP: 0033:0x7fb4a26afb19
[ 2612.800028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2612.802456] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2612.803480] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2612.804425] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2612.805368] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2612.806310] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2612.807271] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2612.808243] CPU: 0 PID: 26915 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2612.809162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2612.810245] Call Trace:
[ 2612.810615]  dump_stack+0x107/0x167
[ 2612.811100]  should_fail.cold+0x5/0xa
[ 2612.811612]  ? create_object.isra.0+0x3a/0xa20
[ 2612.812216]  should_failslab+0x5/0x20
[ 2612.812718]  kmem_cache_alloc+0x5b/0x310
[ 2612.813260]  create_object.isra.0+0x3a/0xa20
[ 2612.819034]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2612.819707]  __kmalloc+0x16e/0x390
[ 2612.820187]  security_prepare_creds+0x112/0x190
[ 2612.820800]  prepare_creds+0x452/0x5e0
[ 2612.821323]  copy_creds+0x72/0x580
[ 2612.821796]  copy_process+0xfef/0x78b0
[ 2612.822310]  ? SOFTIRQ_verbose+0x10/0x10
[ 2612.822863]  ? __lockdep_reset_lock+0x180/0x180
[ 2612.823472]  ? mark_lock+0xf5/0x2df0
[ 2612.823973]  ? lock_acquire+0x197/0x470
[ 2612.824500]  ? find_held_lock+0x2c/0x110
[ 2612.825045]  ? __cleanup_sighand+0xb0/0xb0
[ 2612.825618]  ? _copy_from_user+0xfb/0x1b0
[ 2612.826173]  kernel_clone+0xe7/0x980
[ 2612.826671]  ? __lockdep_reset_lock+0x180/0x180
[ 2612.827288]  ? create_io_thread+0xf0/0xf0
[ 2612.827893]  ? ksys_write+0x21a/0x260
[ 2612.828394]  ? lock_downgrade+0x6d0/0x6d0
[ 2612.828940]  __do_sys_clone3+0x1e5/0x320
[ 2612.829472]  ? __do_sys_clone+0x110/0x110
[ 2612.830031]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2612.830651]  ? vfs_write+0x354/0xb10
[ 2612.831137]  ? fput_many+0x2f/0x1a0
[ 2612.831622]  ? ksys_write+0x1a9/0x260
[ 2612.832122]  ? __ia32_sys_read+0xb0/0xb0
[ 2612.832670]  do_syscall_64+0x33/0x40
[ 2612.833159]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2612.833826] RIP: 0033:0x7f862144ab19
[ 2612.834319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2612.836728] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2612.837726] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2612.838669] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2612.839600] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2612.840531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2612.841465] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2613.147729] FAULT_INJECTION: forcing a failure.
[ 2613.147729] name failslab, interval 1, probability 0, space 0, times 0
[ 2613.149230] CPU: 1 PID: 27000 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2613.150161] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2613.151300] Call Trace:
[ 2613.151683]  dump_stack+0x107/0x167
[ 2613.152200]  should_fail.cold+0x5/0xa
[ 2613.152741]  ? create_object.isra.0+0x3a/0xa20
[ 2613.153380]  should_failslab+0x5/0x20
[ 2613.153907]  kmem_cache_alloc+0x5b/0x310
[ 2613.154448]  create_object.isra.0+0x3a/0xa20
[ 2613.155048]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2613.155722]  kmem_cache_alloc_trace+0x151/0x320
[ 2613.156332]  ? alloc_pages_current+0x18f/0x280
[ 2613.156945]  io_uring_setup+0x17ed/0x2980
[ 2613.157499]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2613.158167]  ? wait_for_completion_io+0x270/0x270
[ 2613.159057]  do_syscall_64+0x33/0x40
[ 2613.160186]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2613.161746] RIP: 0033:0x7fd22c24ab19
[ 2613.162734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2613.165160] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2613.166166] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2613.167156] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2613.168097] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2613.169039] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2613.169981] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:27:03 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x1000000, 0xffffffffffffffff)

10:27:03 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0x0, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:27:03 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 17)
getresuid(0x0, 0x0, 0x0)

10:27:03 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 9)

10:27:03 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 26)

10:27:03 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x60ff, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:27:03 executing program 1:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
r0 = pkey_alloc(0x0, 0x1)
pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, r0)

10:27:03 executing program 4:
r0 = signalfd(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000580)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_STATION(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000001580)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001200000008000300", @ANYRES32=r3, @ANYBLOB="0a000600ffffffffffff00000500740020000000"], 0x30}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000010000001800000407b94b89c498474e311b3e0af5953256ab4a922c43b0cea68aa97561305c", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r4 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000001200)={0x88318d00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
symlinkat(0x0, 0xffffffffffffffff, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x6)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x1)
request_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x1, 0x5}, &(0x7f0000000000)=':\x15\x00U\x1bT;\xfa4\x8dd\xa0\x9d&\xb0Z\xdfv\x8b\x84\x87\xa8K\xff\xb5\xce\xb4\xa7\xab\xc6\xf1\a\xdb\xc2m\xb2w\b\xb7*v\xfdo\x83\'\xd9[\xee|4P\xa7\xe8\xad\x82,\xf5\xd1\xea\xdb\xf4\xf5F\xc0H\v\x8d\xbc\x9e)&nH\x032\x15\x80\x19\xc0\fn\xdc\x8dk\xf2\xe4\x80\x9aJ\xe7\xdb\x8e\xd3\x80*i\x82CT\xb3j%\x94\x15\xc6\xc1\xc2\x82\x83\xdc\xf6sqF\x9cX', 0x0)
keyctl$set_reqkey_keyring(0xe, 0x4)
r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000100), 0x10000, 0x0)
ioctl$PERF_EVENT_IOC_QUERY_BPF(r5, 0xc008240a, &(0x7f00000001c0)={0x4, 0x0, [0x0, 0x0, 0x0, 0x0]})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
keyctl$set_reqkey_keyring(0xe, 0x6)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x7f, 0xe1, 0x8, 0x6, 0x0, 0x0, 0x2, 0x5, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7f, 0x1, @perf_bp={0x0, 0x9}, 0x800, 0x4, 0x1, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0xffffffffffffffff, 0xc, r4, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

[ 2629.937826] FAULT_INJECTION: forcing a failure.
[ 2629.937826] name failslab, interval 1, probability 0, space 0, times 0
[ 2629.938170] FAULT_INJECTION: forcing a failure.
[ 2629.938170] name failslab, interval 1, probability 0, space 0, times 0
[ 2629.939394] CPU: 0 PID: 27022 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2629.941765] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2629.942872] Call Trace:
[ 2629.943228]  dump_stack+0x107/0x167
[ 2629.943744]  should_fail.cold+0x5/0xa
[ 2629.944245]  ? __delayacct_tsk_init+0x1b/0x80
[ 2629.944880]  should_failslab+0x5/0x20
[ 2629.945383]  kmem_cache_alloc+0x5b/0x310
[ 2629.945917]  ? prepare_creds+0x466/0x5e0
[ 2629.946457]  __delayacct_tsk_init+0x1b/0x80
[ 2629.947041]  copy_process+0x3395/0x78b0
[ 2629.947592]  ? SOFTIRQ_verbose+0x10/0x10
[ 2629.948125]  ? __lockdep_reset_lock+0x180/0x180
[ 2629.948777]  ? mark_lock+0xf5/0x2df0
[ 2629.949273]  ? lock_acquire+0x197/0x470
[ 2629.949794]  ? find_held_lock+0x2c/0x110
[ 2629.950337]  ? __cleanup_sighand+0xb0/0xb0
[ 2629.950958]  ? _copy_from_user+0xfb/0x1b0
[ 2629.951510]  kernel_clone+0xe7/0x980
[ 2629.952032]  ? __lockdep_reset_lock+0x180/0x180
[ 2629.952642]  ? create_io_thread+0xf0/0xf0
[ 2629.953201]  ? ksys_write+0x21a/0x260
[ 2629.953734]  ? lock_downgrade+0x6d0/0x6d0
[ 2629.954278]  __do_sys_clone3+0x1e5/0x320
[ 2629.958878]  ? __do_sys_clone+0x110/0x110
[ 2629.959441]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2629.960051]  ? vfs_write+0x354/0xb10
[ 2629.960546]  ? fput_many+0x2f/0x1a0
[ 2629.961023]  ? ksys_write+0x1a9/0x260
[ 2629.961529]  ? __ia32_sys_read+0xb0/0xb0
[ 2629.962109]  do_syscall_64+0x33/0x40
[ 2629.962602]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2629.963289] RIP: 0033:0x7f862144ab19
[ 2629.963783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2629.966230] RSP: 002b:00007f861e99f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2629.967272] RAX: ffffffffffffffda RBX: 00007f862155e020 RCX: 00007f862144ab19
[ 2629.968214] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2629.969150] RBP: 00007f861e99f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2629.970114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2629.971104] R13: 00007ffc637b687f R14: 00007f861e99f300 R15: 0000000000022000
[ 2629.972068] CPU: 1 PID: 27021 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2629.973022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2629.974158] Call Trace:
[ 2629.974517]  dump_stack+0x107/0x167
[ 2629.975015]  should_fail.cold+0x5/0xa
[ 2629.975525]  ? create_object.isra.0+0x3a/0xa20
[ 2629.976142]  should_failslab+0x5/0x20
[ 2629.976678]  kmem_cache_alloc+0x5b/0x310
[ 2629.977218]  create_object.isra.0+0x3a/0xa20
[ 2629.977842]  kmemleak_alloc_percpu+0xa0/0x100
[ 2629.978445]  pcpu_alloc+0x4e2/0x1240
[ 2629.983006]  __percpu_counter_init+0x10d/0x2d0
[ 2629.983644]  io_uring_alloc_task_context+0xcc/0x6a0
[ 2629.984323]  ? io_import_iovec+0x1120/0x1120
[ 2629.984917]  io_uring_setup+0x1dd1/0x2980
[ 2629.985489]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2629.986172]  ? wait_for_completion_io+0x270/0x270
[ 2629.986888]  do_syscall_64+0x33/0x40
[ 2629.987383]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2629.988058] RIP: 0033:0x7fb4a26afb19
[ 2629.988573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2629.991054] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2629.992082] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2629.993061] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2629.994000] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2629.994980] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2629.995954] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2630.038711] FAULT_INJECTION: forcing a failure.
[ 2630.038711] name failslab, interval 1, probability 0, space 0, times 0
[ 2630.040336] CPU: 1 PID: 27121 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2630.041250] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2630.042342] Call Trace:
[ 2630.042711]  dump_stack+0x107/0x167
[ 2630.043243]  should_fail.cold+0x5/0xa
[ 2630.043750]  ? create_object.isra.0+0x3a/0xa20
[ 2630.044356]  should_failslab+0x5/0x20
[ 2630.044893]  kmem_cache_alloc+0x5b/0x310
[ 2630.045431]  create_object.isra.0+0x3a/0xa20
[ 2630.046054]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2630.046738]  kmem_cache_alloc_node+0x169/0x330
[ 2630.047349]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2630.048074]  copy_process+0x3301/0x78b0
[ 2630.048598]  ? SOFTIRQ_verbose+0x10/0x10
[ 2630.049192]  ? stack_trace_save+0x8c/0xc0
[ 2630.049747]  ? lock_acquire+0x197/0x470
[ 2630.050279]  ? io_sq_thread_park+0x79/0xd0
[ 2630.050893]  ? perf_trace_lock+0xac/0x490
[ 2630.051441]  ? lock_release+0x680/0x680
[ 2630.052019]  ? __cleanup_sighand+0xb0/0xb0
[ 2630.052582]  ? kernel_text_address+0xf2/0x120
[ 2630.053181]  ? find_held_lock+0x2c/0x110
[ 2630.053729]  ? io_uring_setup+0x1c23/0x2980
[ 2630.054302]  ? lock_downgrade+0x6d0/0x6d0
[ 2630.054896]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2630.055546]  create_io_thread+0xb6/0xf0
[ 2630.056117]  ? pidfd_prepare+0x80/0x80
[ 2630.056636]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2630.057297]  io_uring_setup+0x1d79/0x2980
[ 2630.057886]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2630.058551]  ? wait_for_completion_io+0x270/0x270
[ 2630.059273]  do_syscall_64+0x33/0x40
[ 2630.059768]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2630.060447] RIP: 0033:0x7fd22c24ab19
[ 2630.060962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2630.063438] RSP: 002b:00007fd22979f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2630.064446] RAX: ffffffffffffffda RBX: 00007fd22c35e020 RCX: 00007fd22c24ab19
[ 2630.065430] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2630.066372] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2630.067349] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2630.068329] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:27:03 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x2000000, 0xffffffffffffffff)

10:27:03 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 27)

10:27:03 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0x0, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:27:03 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'ip6tnl0\x00', &(0x7f0000000280)={'syztnl1\x00', <r3=>r2, 0x0, 0x1f, 0x9, 0x0, 0x8, @empty, @mcast2, 0xfb81, 0x0, 0x0, 0x100}})
write$binfmt_script(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e0be472a3980b4b5135a58e221b4df481435bdea0962cec08a28e66e6cc7f4ab40000c72625bb5feccb18f8d22f8bb444a3f1a9bb377d685cf031ee9772ad673fb8f77dd3da0836801a7d3dae6ab6b73d894867abc808413117932ce4e4115999961c7f399acc6bc4c9614a8d44e87b0f26fd1ea6b3ae1ae4adf4e2509f341d1ec763a8022c506fa1948b34be"], 0x90)
connect$inet6(r0, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
pread64(r0, &(0x7f0000000300)=""/12, 0x5d, 0x3)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$SO_TIMESTAMP(r4, 0x1, 0x1d, 0x0, &(0x7f00000000c0))
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000200)={0x0, 0x2}, 0x4)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000040)={<r6=>0x0, @multicast1, @loopback}, &(0x7f0000000080)=0xc)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000010c0)={{{@in=@private, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in6=@private2}, 0x0, @in=@broadcast}}, &(0x7f00000011c0)=0xe8)
sendmmsg$inet(r0, &(0x7f0000002880)=[{{&(0x7f0000000100)={0x2, 0x4e20, @broadcast}, 0x10, &(0x7f0000000700)=[{&(0x7f0000000240)="615a12eec7ad73988704126dad2568896f7ab798ef65a56333f70c", 0x1b}, {&(0x7f0000000400)="5c5913ae4fe78f162e0c5de6382019a68159e202f0d282c481d97f7ab7e4a04218e2e67e42bb7e25c8c4931a0c9f7d584285b71d1fd98a56ed5c71d590379ab9786236665dcd89ea7ae43a4f3b0f805553cad327f36a3733aa02cfe9b9336dbb573b16998f8ea0e60e58396a89e6c1ee511c842dbf92cb412ef026915dbbb08b29942d67c9712e9e6d3206ca2075c90edf9ff5289f91c22824cc27b264f1df593c2d95f7a2b0bec7", 0xa8}, {&(0x7f00000004c0)="e306d40eea50a3f210dc08bfa755fb8063b6413398753e1bfd3dbef0186d43710152a7831c608e6a0186cacc95b305d10a8e30a18f17da25a4f13527a7e3f7a7b5a5204451423ae7db2f3a69e858df360ff72b747b3ece0f7c0712feeb2396972ae9b799cce7d781d80020c3f7bc0bed876f343c3ee4c9933ea4ea52a1db7117cf5e8ff3dd02d73f579bffc9c9ec11d242f4c57373e8c31a05740c460181a1a684763a92f8feb7996218df2e8d", 0xad}, {&(0x7f0000000580)="679a97e28a56220fae7dae6b3343b98491356370b5cfba46537a98c06bfa454a93c657d2e86ebd41a4f70f525f1a95d8e01a5a6a354ba331413ab177a8485eeb3a66b4f04ef20907dd5bcbb3b881a5cb243c0e21c17b5f98dee5617fd79a5217862c63c6cc90896adab80e83627465700ac2c96fdb4556b70833401645a4d44e64d957be142b4231ef9dce612d9488250ffae004084f09e419228e7d7c834e5e1f87132f194a5abf3aea1bb9326badc0adad33bc404219db44a59ffc6bae06d1d94ce43491b01447656ff46291313adf19626dfea0f6fb087b3ce3c9af8b", 0xde}, {&(0x7f0000000680)="7c264098f86431514662ac3c617316e5b0a1eadcfd573ed29e6371ec64b599b201b8e2ee521166e849a7f55c9a2bb01688b43d63e43925ff810073ed0d", 0x3d}, {&(0x7f00000006c0)="75d6a68897b539890ff9bd89308d60573244b0156e26db617d81653fbb8b6a6917b413e29881098f0fc39cf18d82ad274ae70a4418c530fb4793fe", 0x3b}], 0x6, &(0x7f0000000780)=ANY=[@ANYBLOB="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", @ANYRES32=r6, @ANYBLOB="0a0101100000000000000000"], 0x1d8}}, {{&(0x7f0000000980)={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000000d80)=[{&(0x7f00000009c0)="b19493c73c1241224530c3bccee397aa908a2fee2e0e0a1ed6b7465a9b92d3cabb493821639b984799f6306b2fd7e9c5b233234b1ad14ca2c15084a6fa775ed26c6cbc4694f62d8446b6e0ac389e5206de6b5d83e1dd984e43218c12951664dada45131a888f423120e600a4dfd15a3e2c6946b4730d9500472e5cd43f550fa3c25433110dffe4bc5a9f540f9c4cb61ca27857fc68324b51f4dd6897e58235d431b4ec198960e006bd2fa4183760295ec77ebfd0308ed48c4df1b502833b31bda1bdf8a612302dc1c45d4065027433e47bfd7eac1f505fd30e67233b681601744a8ccd38ef1ebdce135513ca4f6efff899dd46c14f", 0xf5}, {&(0x7f0000000ac0)="5c4155ce30275124a087ed417f402dce1200fafbb485dfff0593383c744ead7306679f000d399f0294d8485b608f7533928461f921dda913ad80320180fccfdc2e0db65e5c71aa642d352c6222dba7775c7089438965be894d7f95ecef3532ce383ee8d2b76081b5ebe48f27753983534c0abec02b0e4129bb51de36b63d3011f406ce495dd0c7edf58a3100170117bc176ad922e076caad99959491ce1e871a23a4f96feaf88bb3a083f397e1950a9c5ca77af8010321f0e771033b25d67f403c80b7d3f9445b2eb0e6f44daaf3", 0xce}, {&(0x7f0000000bc0)="786dfbe33aed0e02d1ffc40c7274b4123e42226dff0f87b9a7641cd8552e6d0c68c38fd93a0348166019189ed93cf2c1c802c74d7c9e1b5aa99652c2fb4741f6b0798be45544020c217cf5c43430442adbb4daab9c225a14172dbed57472ae8e3431049afad10b8507d444ecb72b015c88328099f5e4f48e051cc152784c3ba9247a34157e40dd35c7fdd5b668c2570493a22841275a701ee046d1ff315778fffbfab6b54f0b", 0xa6}, {&(0x7f0000000c80)="d3be357f575a0a92655953ffd9fc73f47241d24f85c9082572fe21", 0x1b}, {&(0x7f0000000cc0)="2119d64cd264a4d80c9b11d39a3f49371a56dc2987fba3ced00351310d3cff691ffd07d47479e34dbde8ba0f0e65defb36fb8c8bcb68079f263d2496a553838797f69a675a40f3b395034cac50f3ddb06235e30cc3f02fce53674dde6e241cb20011a4cc4f24a6224a7400a8110e0e35fd0279a3787fdffa21", 0x79}, {&(0x7f0000000d40)="2777db6699197ac6e196889533acb2fdc61512e5c004c88f25f2f6f5a16b41b64ede819d5792c44d0f34488016b1709a1b9c6e1b985240c362", 0x39}], 0x6}}, {{&(0x7f0000000e00)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x42}}, 0x10, &(0x7f0000001000)=[{&(0x7f0000000e40)="5b67a2e16423087d16e336d558ff8e56ae21266003561dbb1faca45ddf9efb08f054529fea8777334eabb3eadf6c8c8636fc12867da5f5f33ea12bb3d7bf83ce6fccabc3af4d7bf92779db004996df9a3959c997b6af42cb5ebacadb0cb8d608928ef1ea4eaf247c0ef8cd30587ba9e51e508f9a4d153143c8fb7afba6f48782666c417912c8f7b26971fd0b1e6e262d231ba17746f6c7b12b4b0a52734cd637d6f9d7bc36f3a8856159c0", 0xab}, {&(0x7f0000000f00)="6d01ac33fff5a7003e9f79f7bf1c7ad939da7e83a58c4c8d6725ba4dfd2e0da1a79637b42415b7bfc9d4029aa60933e38eafb65e663a45bbaf9ca23da254e9d94049d41ee5847cb26bde9c9f9c47075936a0fe8db547276828896841443c59f78ad701a06aaf02e118ccb2472861b10cd93af3d07b3b773115f32f915b329211a29602c160d7a7becc63eb79ac0f7212ec267c1bf1a18b9967476b8addd5d752f3994db0a9e18aac233261ead1e094ebbe20c194c9e878fc8042fcb632c9d6076f8b589da0", 0xc5}], 0x2, &(0x7f0000001200)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x33}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x7fff}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @broadcast, @rand_addr=0x64010100}}}], 0x50}}, {{&(0x7f0000001280)={0x2, 0x4e20, @private=0xa010101}, 0x10, &(0x7f0000001540)=[{&(0x7f00000012c0)="0bf451ed14862ab4ca713ebea93cc9cdf2c32719746dd3ce3b7e2428771271e402abbe3371ddf92ae7822f0c70b7037ec594dbbf6998c3765206614ab2345ad4cafd4f01f0910e04922a391598c02adf22426c42e8f4cd3e95b7a0efa1131268d2105fe0aa3d8ab87d55bb05af5032444f440cfaf87ec9a884b395a6be019c42a5e7627476bf94b00ee13d43f20e94a086ca7b1a3604086b10ee7f0977a926932cce117265c0b1a7dfbad615cc75fffa9569f3ccf6257b4b22775504827c3edae121d64b707b1d057a995e3363b91f00588671142a8dab7d124cf7d8d083dc4747b999f6ab8f475af5", 0xe9}, {&(0x7f00000013c0)="814b2ab135eb2e8558d8fce3c695cfdb1c991397e6c311e1bd6640ddc8c7e9571d1fe31991a12c0511293eea7d9e73d865b270ad5ba27a867fafb38e7dd82062cacbfc4a254c7fdc18f65aab95c61fcea9b8bf5db565936875", 0x59}, {&(0x7f0000001440)="9edb6ea38fef8d525fa2fef06b9f93f01d5fdc813df97137b95c363cbd236cfe5389e7324ad4a6230b6913", 0x2b}, {&(0x7f0000001480)="e54884e14034b2bec2443175c027eb990a630fcc1f208393d9ee363e34121e574a41d440422714d2a2805ea78b0fe31e7c05ec53eb353b41802e02b826af1296c7d31439b73c68a539bdcf924feb19f8b43ba22709a3c9059e56cc8aecd231d20e061b43b06c7d6d604f4219f3df66e65bcd9e61fac5f2abd9a1c52b2d6f5aa249", 0x81}], 0x4, &(0x7f0000001580)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @private=0xa010102, @multicast2}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x6}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x8001}}, @ip_tos_u8={{0x11}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x9}}], 0x98}}, {{&(0x7f0000001640)={0x2, 0x4e22, @broadcast}, 0x10, &(0x7f0000002700)=[{&(0x7f0000001680)="c3b694e6cc78a56231fb7e500178239c676765a7f0137c6d5cc412625ba8fb5e7a07d89946b08f127696545e625b1e85be07c764fae075abaa91f1a87d78b15f44bbb8a9cfc99c84ff3aabcdcbb3eeb1ecb63d88d80d3529c0af0f5c697116d154de67a4ec853f25", 0x68}, {&(0x7f0000001700)="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", 0x1000}], 0x2}}, {{0x0, 0x0, &(0x7f00000027c0)=[{&(0x7f0000002740)="e1683e0357d0ac8a5cbc60134b81e1ea6c7a2718fa6dca68cf8a71643bd21bd8263307306e6bef4cd59844ca6f7b35283b60109e6f91fe140bed", 0x3a}, {&(0x7f0000002780)="f9e93826a0898a1e5b018d6a618ae44626c214dcff69aed7eb9997bf52033b9ed2a861edf1255e4457", 0x29}], 0x2, &(0x7f0000002800)=[@ip_tos_int={{0x14}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x9}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xffff}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}], 0x78}}], 0x6, 0x800)
socket$inet(0x2, 0x2, 0x0)

10:27:03 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 18)
getresuid(0x0, 0x0, 0x0)

10:27:03 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x7e00, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:27:03 executing program 1:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat(r0, &(0x7f0000000080)='./file0\x00', 0x420001, 0x1c0)
mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0)
r1 = creat(&(0x7f0000000440)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91})
fsopen(&(0x7f0000000100)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
syz_mount_image$vfat(&(0x7f0000000980), &(0x7f0000003740)='./file0\x00', 0xfffffffffffffff7, 0x8, &(0x7f0000000580)=[{&(0x7f0000003780)="8946a479d980c834f816cdc2c9d5f471e153bcc0cdac9e05a54f9a6d21476aa2", 0x20, 0x2}, {&(0x7f00000037c0)="477ee36d9ba26103119bed2d5aeaba3b6c5334dcc46ad60e839e780a37ed3675556eaf23ad99a44eb189bcbf", 0x2c, 0x3}, {&(0x7f0000003800)="d319d3bbd7f37c42dc3d26044e333b0ce2603ed5596eb5157831ed7c90f76d0b4bda09e78ca8ed6a19410f2fc7af1ea117ee0571c0c58ebf67ad9e2f21c374f09620866e58c38feecb2f89fba45effc983b51ce00a02c86fedc5bb53ece9e8839fbb55f53794b9da7897640af1ce7808df77d62487d5", 0x76, 0x79}, {&(0x7f0000003880)="d727da7925368d675f8c5d9f391690747c90e89d0b26beb160f048200fd1fcb377232cdb36b31769d2b30e59c095c5329baeff54aef4d0a9bcf1fe92c5c2dcb57975f8b7513f", 0x46, 0x8}, {&(0x7f0000003900)="1e22b343d362ab87ff3547c481cd4f31f7a3a875f591cbb2057052d3092d8b5607663f9dd2925a9ae72cdf3a4ec9b56ebe49cc5c8434e8727b84c0756fe8a4c0f50d3e13ad8427c83b8eb4d5895e29fbbf292440e62d396bb12022447f731bb036327eb45ea5786571b81648e46c2487752bd3e156708311956b483dea49352bb54e1708812945020b78977f0f22571941b95e30419d7c3fecee841c4270331af6dd79c24490ae3d7369be066330ed1bd21e0e3d0c746363c1650f3f6f0175503bf2c8f59cc6e2441de6e4bfb14db1eb38bc", 0xd2}, {&(0x7f0000003a00)="d83ebdf8c5232d4636b9b239a62ad671ca905da48ede141ef1d3bf57c6145a5184387431c654763699ebe4350967c22d31c53b5f206a36e3486536e4b08856f91444e029c2fc64b595da4222f683d2ee13f215f9fd1dc03e0f98b967a6b2e4e08ba6b9ba16feae848c0b963178a5c9c537448d220eee4910907a605b1727821405777412b6a6a7de2cc5c6a1ea3ed459df7b0dffbae06ee513f7e88a6d2817dd7cef047f5ac2933798d96c86a5210dcd55a842eacf71e5a18967ebc3581cc244e7b6bd845d569226231a9d059b0b3255651f7198d368a02542b882aad1399ca88daace362ae00bbce90d14aecc39f1", 0xef, 0x1}, {&(0x7f0000003b00)="ea40d2124f64f48a7233e8166dba56acb1b5bc72df22f139815bdc9df910e5af0bb1e5f20fa8713be4b1ea61f567965c571cfe68aae4de9bed3099f929fce41b2b657d7012beae2e9e5094915299ff5981c757c5f51e81bbae15ab74352949d2ce61680cfd6efd2c37ea58e6a62453beb38671ab46b9bc55a7b4894898b74ddcc08a3905818fe8cae5d981a7ae34efe00c6bc3d44ec3079e27b75cc9f94261e79e4a87a1bb586d9c4444acb3853a8a11e8d424b0c97ae5070f43bdb63dcd34c880dc03f45d", 0xc5, 0x7}, {&(0x7f00000004c0)="6c3c7ea188ec82e5a5961185b1f24f89d1868b905291b3d3e424e8a1ad5208d9f3563bf83d26ef06606e18833fea40583a658666ee47f9ef5b7529307cd701631326349aa20f994cfc9f4db06abc9c6659c987244d7953aa5728fdf729c3b7e07d858862701d21905a83da0c0316e1a9bb47412416fa5d7937288fca88dceab994fb8ca7f15505271fed1b1ac5183abafa7243b0", 0x94, 0x8}], 0x4004080, &(0x7f0000003cc0)={[{@nonumtail}, {@shortname_winnt}, {@shortname_win95}, {@utf8}], [{@fsuuid={'fsuuid', 0x3d, {[0x36, 0x39, 0x34, 0x34, 0x36, 0x31, 0x34, 0x64], 0x2d, [0x34, 0x38, 0x39, 0x61], 0x2d, [0x66, 0x63, 0x31, 0x38], 0x2d, [0x36, 0x37, 0x65], 0x2d, [0x35, 0x65, 0x0, 0x68, 0x62, 0x32, 0x31, 0x62]}}}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x37, 0x62, 0x34, 0x36, 0x37, 0x31, 0x36], 0x2d, [0x39, 0x32, 0x62, 0x37], 0x2d, [0x65, 0x35, 0xe9fe58f9bcdc7c5b, 0x38], 0x2d, [0x62, 0x33, 0x31, 0x38], 0x2d, [0x37, 0x63, 0xf, 0x38, 0x36, 0x38, 0x63, 0x64]}}}, {@func={'func', 0x3d, 'FILE_CHECK'}}]})
mknod$loop(&(0x7f00000003c0)='./file0/file0\x00', 0x80, 0x0)
recvmmsg$unix(r2, &(0x7f00000035c0)=[{{&(0x7f0000000140), 0x6e, &(0x7f00000000c0)=[{&(0x7f00000001c0)=""/245, 0xf5}], 0x1, &(0x7f00000002c0)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f0000000340)=@abs, 0x6e, &(0x7f0000000840), 0x5, &(0x7f0000000400)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f00000008c0), 0x6e, &(0x7f0000001b80)=[{&(0x7f0000000940)=""/8, 0x8}, {&(0x7f0000000980)}, {&(0x7f0000000a40)=""/94, 0x52}, {&(0x7f0000003d80)=""/75, 0x4b}, {&(0x7f0000000ac0)=""/4087, 0x1000}, {&(0x7f0000001ac0)=""/166, 0xa6}], 0x6, &(0x7f0000001c00)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38}}, {{&(0x7f0000001c40), 0x6e, &(0x7f00000020c0)=[{&(0x7f0000001cc0)=""/255, 0xff}, {&(0x7f0000001dc0)=""/254, 0xfe}, {&(0x7f0000001ec0)=""/22, 0x16}, {&(0x7f0000001f00)=""/209, 0xd1}, {&(0x7f0000002000)=""/186, 0xba}], 0x5, &(0x7f0000002140)=[@cred={{0x1c}}], 0x20}}, {{0x0, 0x0, &(0x7f0000003480)=[{&(0x7f0000002180)=""/143, 0x8f}, {&(0x7f00000009c0)=""/117, 0x6f}, {&(0x7f00000022c0)=""/216, 0xd8}, {&(0x7f00000023c0)=""/4096, 0x1000}, {&(0x7f00000033c0)=""/135, 0x9e}], 0x5, &(0x7f0000003500)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa0}}], 0x5, 0x2060, &(0x7f0000003700)={0x0, 0x989680})
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)

10:27:03 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 10)

[ 2631.144773] FAULT_INJECTION: forcing a failure.
[ 2631.144773] name failslab, interval 1, probability 0, space 0, times 0
[ 2631.146570] CPU: 0 PID: 27248 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2631.147512] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2631.148597] Call Trace:
[ 2631.148953]  dump_stack+0x107/0x167
[ 2631.149433]  should_fail.cold+0x5/0xa
[ 2631.149944]  ? io_uring_alloc_task_context+0x4a3/0x6a0
[ 2631.150639]  should_failslab+0x5/0x20
[ 2631.151158]  kmem_cache_alloc_trace+0x55/0x320
[ 2631.151767]  io_uring_alloc_task_context+0x4a3/0x6a0
[ 2631.152430]  ? io_import_iovec+0x1120/0x1120
[ 2631.153028]  io_uring_setup+0x1dd1/0x2980
[ 2631.153582]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2631.154248]  ? wait_for_completion_io+0x270/0x270
[ 2631.154928]  do_syscall_64+0x33/0x40
[ 2631.155421]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2631.156099] RIP: 0033:0x7fb4a26afb19
[ 2631.156589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2631.163390] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2631.165392] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2631.167311] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2631.169210] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2631.171119] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2631.173012] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2631.263708] FAULT_INJECTION: forcing a failure.
[ 2631.263708] name failslab, interval 1, probability 0, space 0, times 0
[ 2631.265232] CPU: 1 PID: 27252 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2631.266144] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2631.267278] Call Trace:
[ 2631.267631]  dump_stack+0x107/0x167
[ 2631.274980]  should_fail.cold+0x5/0xa
[ 2631.275481]  ? create_object.isra.0+0x3a/0xa20
[ 2631.276090]  should_failslab+0x5/0x20
[ 2631.276592]  kmem_cache_alloc+0x5b/0x310
[ 2631.277132]  create_object.isra.0+0x3a/0xa20
[ 2631.277707]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2631.278377]  kmem_cache_alloc+0x159/0x310
[ 2631.278944]  ? prepare_creds+0x466/0x5e0
[ 2631.279534]  __delayacct_tsk_init+0x1b/0x80
[ 2631.280102]  copy_process+0x3395/0x78b0
[ 2631.280629]  ? SOFTIRQ_verbose+0x10/0x10
[ 2631.281168]  ? __lockdep_reset_lock+0x180/0x180
[ 2631.281780]  ? mark_lock+0xf5/0x2df0
[ 2631.282308]  ? lock_acquire+0x197/0x470
[ 2631.282848]  ? find_held_lock+0x2c/0x110
[ 2631.283437]  ? __cleanup_sighand+0xb0/0xb0
[ 2631.284010]  ? _copy_from_user+0xfb/0x1b0
[ 2631.284563]  kernel_clone+0xe7/0x980
[ 2631.285053]  ? __lockdep_reset_lock+0x180/0x180
[ 2631.285666]  ? create_io_thread+0xf0/0xf0
[ 2631.286257]  ? ksys_write+0x21a/0x260
[ 2631.290777]  ? lock_downgrade+0x6d0/0x6d0
[ 2631.291334]  __do_sys_clone3+0x1e5/0x320
[ 2631.291868]  ? __do_sys_clone+0x110/0x110
[ 2631.292431]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2631.293045]  ? vfs_write+0x354/0xb10
[ 2631.293533]  ? fput_many+0x2f/0x1a0
[ 2631.294011]  ? ksys_write+0x1a9/0x260
[ 2631.294524]  ? __ia32_sys_read+0xb0/0xb0
[ 2631.307472]  do_syscall_64+0x33/0x40
[ 2631.308621]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2631.310206] RIP: 0033:0x7f862144ab19
[ 2631.311456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2631.315876] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2631.316919] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2631.317865] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2631.319040] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2631.321268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2631.323148] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2631.387696] FAULT_INJECTION: forcing a failure.
[ 2631.387696] name failslab, interval 1, probability 0, space 0, times 0
[ 2631.389198] CPU: 1 PID: 27266 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2631.390121] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2631.391311] Call Trace:
[ 2631.391694]  dump_stack+0x107/0x167
[ 2631.392197]  should_fail.cold+0x5/0xa
[ 2631.392718]  ? create_object.isra.0+0x3a/0xa20
[ 2631.393339]  should_failslab+0x5/0x20
[ 2631.393843]  kmem_cache_alloc+0x5b/0x310
[ 2631.394415]  create_object.isra.0+0x3a/0xa20
[ 2631.395009]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2631.395728]  kmem_cache_alloc_node+0x169/0x330
[ 2631.396336]  copy_process+0x3301/0x78b0
[ 2631.396861]  ? SOFTIRQ_verbose+0x10/0x10
[ 2631.397437]  ? stack_trace_save+0x8c/0xc0
[ 2631.397985]  ? lock_acquire+0x197/0x470
[ 2631.398554]  ? io_sq_thread_park+0x79/0xd0
[ 2631.399129]  ? perf_trace_lock+0xac/0x490
[ 2631.399677]  ? lock_release+0x680/0x680
[ 2631.400205]  ? __cleanup_sighand+0xb0/0xb0
[ 2631.400766]  ? kernel_text_address+0xf2/0x120
[ 2631.401395]  ? find_held_lock+0x2c/0x110
[ 2631.401933]  ? io_uring_setup+0x1c23/0x2980
[ 2631.402548]  ? lock_downgrade+0x6d0/0x6d0
[ 2631.403140]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2631.403811]  create_io_thread+0xb6/0xf0
[ 2631.404363]  ? pidfd_prepare+0x80/0x80
[ 2631.404878]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2631.405580]  io_uring_setup+0x1d79/0x2980
[ 2631.406134]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2631.406827]  ? wait_for_completion_io+0x270/0x270
[ 2631.407485]  do_syscall_64+0x33/0x40
[ 2631.407978]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2631.408680] RIP: 0033:0x7fd22c24ab19
[ 2631.409169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2631.411666] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2631.412664] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2631.419007] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2631.419973] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2631.420952] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2631.421891] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:27:21 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 11)

10:27:21 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x3000000, 0xffffffffffffffff)

10:27:21 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:27:21 executing program 1:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = fork()
ptrace(0x10, r3)
ptrace$getsig(0x4202, r3, 0x5, &(0x7f0000000300))
ptrace$getregset(0x4204, r3, 0x6, &(0x7f0000000180)={&(0x7f0000000400)=""/136, 0x88})
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0x0, r4, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000080)={&(0x7f0000004240)=ANY=[@ANYBLOB="202400001000020028bd7000fedbdf2518000000062146800400740008000600", @ANYRES32=r3, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="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", @ANYRES32=0xee01, @ANYBLOB="1708605e9db807cb8d45768f87630b681d97932a87f99b22c1d0f277e9c03837da1c8c17c598df3c0d4c1cc1de2746bf0ad3e2dce28aa396fbca1dcd17f07a13aaeeb6a41fd95b829b5cae808668eb1a942e5f15fcec5a1be4b2140400a6bf655b066db5bd0414f3cce7178bf7cd558c7e91b6dd5b0acecd0c36cfd486f0dc2ebc8e1f329a0f66f2c487838d5d0d4e6e34700ee051f606224cb68e9757578b19a2e0421a7289141cabd421d5a0b3ad6eae6a1da4cf079a39ada9da9c7a06ce9828258bde4fb51e3a91339de8e33ea0f4b0f037addb6bd423c54363bb2099edc99629799819ae5d73e3c23bf7f72408005500", @ANYRES32, @ANYBLOB="04004c00ea0019006bf0e16a538a1141a1537a14f8441620f875ed3167ddd515088a9138f36b32dc81eb2e2520310186ba54b09eae6c21a86fc452580abdc7ad1bb61f74636604bd7d37bb5cc6be1bb2ed525863cb7b014c10ef1affcc076d81730cdc6ecc1824c73859f4cf2e60337adcfbf33251c7147745cab3867bcb1ea9ddaeeefaba531efbd198d8c91ac2750b896feaa3a9f0774abeee543d70ba81fe0e0e8bccef6214ce79ab875a6c94a1e9dd011f4b10af994c3831ff3559a9dc0eeb797bc328b73de2f5dd3647cf8b5dca5c9ee388b46f8ae1bbf86d140377c12a6ca7cc13aec9b934f39e8ac4ae05000008007600", @ANYRES32, @ANYBLOB="6de62de31b778b6e3700"], 0x2420}, 0x1, 0x0, 0x0, 0x802}, 0x400)
ptrace$getsig(0x4202, 0x0, 0x5, &(0x7f0000000300))
ptrace$getregset(0x4204, 0x0, 0x6, &(0x7f0000000180)={&(0x7f0000000400)=""/136, 0x88})
perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x3f, 0x2, 0x9, 0x4, 0x0, 0x7ff, 0x41400, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x20, 0x4, @perf_config_ext={0x100000001, 0x2}, 0x20, 0xffffffff, 0x0, 0x6, 0x3, 0x600, 0x1, 0x0, 0x7f, 0x0, 0x3}, 0x0, 0xffffffffffffffff, r0, 0xa)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', <r6=>0x0})
bind$packet(r1, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14)
sendfile(r1, r0, 0x0, 0x500000001)

10:27:21 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 28)

10:27:21 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00.file0\x00\x00'])
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
fsync(r1)
setxattr$incfs_metadata(&(0x7f0000000600)='./file1\x00', &(0x7f0000000640), 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0x8020})
close(r0)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
recvmmsg(r2, &(0x7f00000000c0)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)=""/132, 0x84}], 0x1, &(0x7f0000000200)=""/65, 0x41}, 0x8}], 0x1, 0x100, &(0x7f0000000280))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)

10:27:21 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfe59, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:27:21 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 19)
getresuid(0x0, 0x0, 0x0)

[ 2648.307100] FAULT_INJECTION: forcing a failure.
[ 2648.307100] name failslab, interval 1, probability 0, space 0, times 0
[ 2648.307961] FAULT_INJECTION: forcing a failure.
[ 2648.307961] name failslab, interval 1, probability 0, space 0, times 0
[ 2648.308637] CPU: 0 PID: 27578 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2648.315021] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2648.316110] Call Trace:
[ 2648.316466]  dump_stack+0x107/0x167
[ 2648.316950]  should_fail.cold+0x5/0xa
[ 2648.317457]  ? create_object.isra.0+0x3a/0xa20
[ 2648.318057]  should_failslab+0x5/0x20
[ 2648.318568]  kmem_cache_alloc+0x5b/0x310
[ 2648.319123]  create_object.isra.0+0x3a/0xa20
[ 2648.319701]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2648.320375]  kmem_cache_alloc_trace+0x151/0x320
[ 2648.320996]  io_uring_alloc_task_context+0x4a3/0x6a0
[ 2648.321664]  ? io_import_iovec+0x1120/0x1120
[ 2648.322263]  io_uring_setup+0x1dd1/0x2980
[ 2648.322817]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2648.323510]  ? wait_for_completion_io+0x270/0x270
[ 2648.324173]  do_syscall_64+0x33/0x40
[ 2648.324665]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2648.325337] RIP: 0033:0x7fb4a26afb19
[ 2648.325825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2648.328251] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2648.329253] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2648.330191] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2648.331154] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2648.332089] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2648.333023] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2648.333984] CPU: 1 PID: 27582 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2648.334951] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2648.336049] Call Trace:
[ 2648.336407]  dump_stack+0x107/0x167
[ 2648.336892]  should_fail.cold+0x5/0xa
[ 2648.337399]  ? dup_fd+0x89/0xf40
[ 2648.337849]  should_failslab+0x5/0x20
[ 2648.338358]  kmem_cache_alloc+0x5b/0x310
[ 2648.338899]  dup_fd+0x89/0xf40
[ 2648.339347]  ? audit_filter_inodes+0x40/0x40
[ 2648.339931]  ? security_task_alloc+0xe6/0x260
[ 2648.340526]  copy_process+0x197c/0x78b0
[ 2648.341050]  ? SOFTIRQ_verbose+0x10/0x10
[ 2648.341587]  ? __lockdep_reset_lock+0x180/0x180
[ 2648.342200]  ? mark_lock+0xf5/0x2df0
[ 2648.342711]  ? __cleanup_sighand+0xb0/0xb0
[ 2648.343303]  ? _copy_from_user+0xfb/0x1b0
[ 2648.343855]  kernel_clone+0xe7/0x980
[ 2648.344347]  ? __lockdep_reset_lock+0x180/0x180
[ 2648.344959]  ? create_io_thread+0xf0/0xf0
[ 2648.345520]  ? ksys_write+0x21a/0x260
[ 2648.346018]  ? lock_downgrade+0x6d0/0x6d0
[ 2648.346575]  __do_sys_clone3+0x1e5/0x320
[ 2648.347125]  ? __do_sys_clone+0x110/0x110
[ 2648.347688]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2648.348298]  ? vfs_write+0x354/0xb10
[ 2648.348790]  ? fput_many+0x2f/0x1a0
[ 2648.349273]  ? ksys_write+0x1a9/0x260
[ 2648.349772]  ? __ia32_sys_read+0xb0/0xb0
[ 2648.350322]  do_syscall_64+0x33/0x40
[ 2648.350816]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2648.351503] RIP: 0033:0x7f862144ab19
[ 2648.351997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2648.354412] RSP: 002b:00007f861e99f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2648.355435] RAX: ffffffffffffffda RBX: 00007f862155e020 RCX: 00007f862144ab19
[ 2648.356378] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2648.357316] RBP: 00007f861e99f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2648.358254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2648.359211] R13: 00007ffc637b687f R14: 00007f861e99f300 R15: 0000000000022000
10:27:22 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x20000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:27:22 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x4000000, 0xffffffffffffffff)

[ 2648.409277] FAULT_INJECTION: forcing a failure.
10:27:22 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 29)

[ 2648.409277] name failslab, interval 1, probability 0, space 0, times 0
[ 2648.415036] CPU: 1 PID: 27670 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2648.416058] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2648.417351] Call Trace:
[ 2648.417760]  dump_stack+0x107/0x167
[ 2648.418326]  should_fail.cold+0x5/0xa
[ 2648.418917]  ? __delayacct_tsk_init+0x1b/0x80
[ 2648.423611]  should_failslab+0x5/0x20
[ 2648.424203]  kmem_cache_alloc+0x5b/0x310
[ 2648.424840]  __delayacct_tsk_init+0x1b/0x80
[ 2648.425504]  copy_process+0x3395/0x78b0
[ 2648.426108]  ? SOFTIRQ_verbose+0x10/0x10
[ 2648.426736]  ? stack_trace_save+0x8c/0xc0
[ 2648.427383]  ? lock_acquire+0x197/0x470
[ 2648.427996]  ? io_sq_thread_park+0x79/0xd0
[ 2648.428659]  ? __cleanup_sighand+0xb0/0xb0
[ 2648.429316]  ? kernel_text_address+0xf2/0x120
[ 2648.430012]  ? find_held_lock+0x2c/0x110
[ 2648.430640]  ? io_uring_setup+0x1c23/0x2980
[ 2648.431264]  ? lock_downgrade+0x6d0/0x6d0
[ 2648.431811]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2648.432462]  create_io_thread+0xb6/0xf0
[ 2648.432984]  ? pidfd_prepare+0x80/0x80
[ 2648.433505]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2648.434166]  io_uring_setup+0x1d79/0x2980
[ 2648.434720]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2648.435408]  ? wait_for_completion_io+0x270/0x270
[ 2648.436063]  do_syscall_64+0x33/0x40
[ 2648.436563]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2648.437237] RIP: 0033:0x7fd22c24ab19
[ 2648.437731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2648.440160] RSP: 002b:00007fd22979f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2648.441170] RAX: ffffffffffffffda RBX: 00007fd22c35e020 RCX: 00007fd22c24ab19
10:27:22 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 12)

[ 2648.442110] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2648.443062] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2648.451457] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2648.452568] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:27:22 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 20)
getresuid(0x0, 0x0, 0x0)

10:27:22 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:27:22 executing program 1:
prlimit64(0x0, 0x9, &(0x7f00000017c0), 0x0)
getrlimit(0x1, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10018, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000300)={0x0, <r2=>0x0})
prlimit64(r2, 0x5, &(0x7f0000000080)={0x12, 0x48}, 0x0)
syz_open_procfs(r2, &(0x7f0000000480)='mountstats\x00')
prlimit64(r2, 0x9, &(0x7f0000000200)={0x1, 0x401}, &(0x7f0000000240))
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x100000)
stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001c00))
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
prlimit64(0xffffffffffffffff, 0xc, &(0x7f00000000c0)={0x7, 0x3}, &(0x7f0000000100))
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$EVIOCGBITSND(r3, 0x80404532, &(0x7f00000004c0)=""/4096)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000014c0)={0x0, 0x0, 0x5, 0x0, '\x00', [{0x9, 0xfffffff8, 0x1000, 0x20, 0x8, 0x5}, {0x2, 0x78, 0x2, 0x4, 0x51a94adb, 0x20}], ['\x00', '\x00', '\x00', '\x00', '\x00']})
prlimit64(0x0, 0xc, 0x0, &(0x7f0000000140))
io_setup(0x2d47, &(0x7f0000000000))

10:27:22 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x1}, 0x2}, 0x1c)
r1 = syz_io_uring_complete(0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4ea0, 0x0, @remote}, 0x1c)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x111000, 0x0)
ftruncate(r2, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r2, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0xfffffffd, 0x10000000})
sendmmsg$inet6(r0, &(0x7f0000000500)=[{{0x0, 0x0, &(0x7f0000001a40)=[{&(0x7f0000000380)="25ac1047b3ce45cf9596865dfd948689021f3d080db8744f850730e7ca7e247ee2c7b74f81e93de28f390635aaafe37e74e38da878cbc74f612599c1428e2cacf56760f7b3c4db104aa204dcaa869618bab9ccee1845368d3bf9c10cb60dda3cc5114249db532117bfc471406b71b6a548da23a8f5db1e20d92be87c25daf48d31a33bcbf4576b9fa663d5ceb39fd1edda9b8ff3594c7efebf45837c8d6e183184a103f4e20452065cb491ee7604afd8bf6e", 0xb2}, {&(0x7f0000000440)="b7c2250c219598f86c6f5818c30071228987b61df922e8134256e0e6054c05e06084c4d799e0f9bee94b278dcfe3d5d7557d0baf96a16cb9dfeb8b16c6152f43bb9ab8961a2b39e583ca1f57436b878aefe01d6858a4678dffa2d9050078a2a4fe621ad7cab4857a2c790e934ee8dd8858934d942ebd317a7c232287ea8cc90ab2cfe1015fae8ae3409887cb9cba31fc501e9f6d0b559eb883ad4525b44718c888a4d08d2737bac363e4ec73e5", 0xad}, {&(0x7f0000001e00)="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", 0x1000}, {&(0x7f0000000580)="d8bab729d43fc28ac1435557186441ec530301a7fc3847494ed67d922fd06c0caeb7dbc8c923b5909df055b8b5ddc16183b6c6cfee97a2414dc7b85d453ffd279b616c77bf0cc32e89cb83108c7de87233b47ce55c78738257854a8d596e03b3e2d92f5cd0c877ba8fcb9798e284dde95f93ba0d4567e2d3263980940db783a69dc2570459e4422a1884ddfe315d05c1a1225efc7eba1f022e97a9d6d52c5db92b5a76ac7fc6de89b628a8190d55e0c808c3d51c2a0a58a58d4d84277feaebb10f3d52be38627047864e7e78cdf7c7fee833a87f1455", 0xd6}, {&(0x7f0000000680)="44ae3472a0740df4471a4257c5bab62f525455ec58103c00a043a46c9243074bea67070cc9fabcb9b3121df4abfe5c1be4bdcea418bd4cff5cd44d220cb9e066f850a92921713e86b3c2423aad90029d78a65a68bb67210cdd1c401eae74652d0afc1ac8788d17bc876bac6c682ed51eff375c924ec4ca97472fa30fc40614f07d678f492b9e7a2564c0764cf5f357427e3868c25b7961f91e5b99d92963c9392c5faab512ace3b79aa6cfcc1710152bba45f6", 0xb3}, {&(0x7f00000000c0)="596ce54d73f920d6da2fdcdafae41a65011305cc6781d686f1d16532e278ebf255202ffed2", 0x25}, {&(0x7f0000000740)="e73fec4f62f37f14a4dad033a191a3ae29966570874f4d4c9d285681301d39dd3cfb286b6befa0fbbc0d0fa30bbac8bae9580c77a1d34c16d97d17f439318a62720c8bd9c41b0b58463561ee08606cc0dd3c76eec6777fa2c83af438cf1ea3f64f859ac11452ed85686175d4056bced202c8f7bde5f1994c857d1133727fcc724797fe0e1f296f4f278bab9ecab5176a3a0115656fef6f0c6ed5363b7c9e7a80ffe2a2e09f5d60249c844f7003e3d14fc75846d480f38a17f17d260cbcae943e422dbf1067392f672718d4e624bc8fba00b98ee5158777732f9a7e6a94666e585edde4188b36dc61c0bad85c0c", 0xed}, {&(0x7f0000000840)="60a6b3ec6677cd8c99b590eb29dff459de771cf38b517b9ed42e508bce9ba7b17db3d78432e6d169733795dd78097376d56217fa7d3fd3f3e95f805bdb145f63f5c1d9279cc8f5629cdf6b0b21c6", 0x4e}, {&(0x7f0000001940)="8002e34cce31064134f3c473ff1013189ab5a4e719fcd3610a0b7d1812b9114e2bc09e6eb16231b2058db270318eea7d9d04128e0c1aec6d9b0af4e85bef528546762b2f8565a640cd97538b373a82a19aec53fa7839ac50c8ce500b5cf91fb625681d7239e92cc522e85430279cd79be39f7085b71aad24f9599c93109db1b5c0a8f0fea165c99da54068466a3f97dcbbd41a7923a0517405351505d330f5e80ab6a8ae8d158f30b7052bd6fd9544775d1540abd9faa7f908ea7c6bd186d13fde0e4235911547b2fe7606371ed34c9c5caf85b6e7cadd97f289e965f8fe70eaaa13813a4492b421", 0xe8}, {&(0x7f00000008c0)="a9901989a28fa80ed9b7642c5fcfacf355fbeb3a93d19bd40bb72ef675a2abd38cf84ccb9c4db3e45b38c086267032c6f36aedf85305ea1798662ea0ae313dac0fbcc0e2a8b49c48edbcfdff590887bdcfa90ecae6a5086f022e07d7f97d3f15aeb115d8", 0x64}], 0xa, &(0x7f0000001b00)}}], 0x1, 0x8884)
fcntl$setflags(r1, 0x2, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r3)
writev(r2, &(0x7f0000000140)=[{&(0x7f00000001c0)="5654a1abbc8dd937873851c4adaec269b4c4bdc163a0fb3fe7c9d3415b3caf9b041807d8ea115a540a42f50a8fdda625101e57f9e4745eb6a49fb4558c9e6e726af0a9875a89f5385edb520bc83027f5efdd4c29c2e7bd58e40eef4dd284dee2a53501e74a2db1b0734badfbef563c63d6f84d0d9a94b4cbdf091f57ca52c3ae0965088430b459", 0x87}, {&(0x7f0000000280)="68045a189f063948c3641b5bd826e4e9bb9b6ba2732e227325e9beda4037109b2fbd23d6eac6772d9eed2d10b138567389e50da3847252fae238c0b6d94ba2ce6f8cb1e481930de6a57389e657f0c53895f4d23c6e4d583e44830b52f1d77df01e75e2d2a3de0da2013e3b9cfee51c7fa0d6256be25a2542456d525df5932fcefa4f912a4cdef91c67dab95f9eff0b05a1a2ffe04b0e14c45ceaccd1eca1ac6c67c33174d6856efc62de5d5ad29f0565e9c02dd7d5a3bb2636d751eefa3eea610c582a1866ea93fea67e6aa1", 0xcc}, {&(0x7f0000000940)="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", 0x1000}], 0x3)
ioctl$sock_inet6_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000180)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x74})
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000001bc0)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r2, 0x0, &(0x7f0000001b80)='./file0\x00', 0x196, 0x440080, 0x12345, {0x0, r5}}, 0x3)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x1000}, 0x4)
ioctl$F2FS_IOC_DEFRAGMENT(0xffffffffffffffff, 0xc010f508, &(0x7f0000000100)={0x0, 0x3})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 2649.327969] FAULT_INJECTION: forcing a failure.
[ 2649.327969] name failslab, interval 1, probability 0, space 0, times 0
[ 2649.329570] CPU: 1 PID: 27708 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2649.330487] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2649.335562] Call Trace:
[ 2649.335917]  dump_stack+0x107/0x167
[ 2649.336409]  should_fail.cold+0x5/0xa
[ 2649.336917]  ? io_wq_create+0xeb/0xc00
[ 2649.337441]  should_failslab+0x5/0x20
[ 2649.337944]  __kmalloc+0x72/0x390
[ 2649.338408]  io_wq_create+0xeb/0xc00
[ 2649.338912]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2649.339606]  ? io_import_iovec+0x1120/0x1120
[ 2649.340228]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2649.340820]  ? __io_req_find_next+0x300/0x300
[ 2649.341425]  io_uring_setup+0x1dd1/0x2980
[ 2649.341980]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2649.342649]  ? wait_for_completion_io+0x270/0x270
[ 2649.355238]  do_syscall_64+0x33/0x40
[ 2649.355738]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2649.356414] RIP: 0033:0x7fb4a26afb19
[ 2649.356908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2649.363344] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2649.364351] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2649.365293] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2649.366270] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2649.375194] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2649.376138] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2649.382291] FAULT_INJECTION: forcing a failure.
[ 2649.382291] name failslab, interval 1, probability 0, space 0, times 0
[ 2649.387867] CPU: 1 PID: 27723 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2649.388785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2649.389875] Call Trace:
[ 2649.390232]  dump_stack+0x107/0x167
[ 2649.390718]  should_fail.cold+0x5/0xa
[ 2649.403230]  ? create_object.isra.0+0x3a/0xa20
[ 2649.403835]  should_failslab+0x5/0x20
[ 2649.404339]  kmem_cache_alloc+0x5b/0x310
[ 2649.404879]  create_object.isra.0+0x3a/0xa20
[ 2649.405458]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2649.406134]  kmem_cache_alloc+0x159/0x310
[ 2649.406683]  dup_fd+0x89/0xf40
[ 2649.407116]  ? audit_filter_inodes+0x40/0x40
[ 2649.407707]  ? security_task_alloc+0xe6/0x260
[ 2649.408302]  copy_process+0x197c/0x78b0
[ 2649.408828]  ? SOFTIRQ_verbose+0x10/0x10
[ 2649.409368]  ? __lockdep_reset_lock+0x180/0x180
[ 2649.409976]  ? mark_lock+0xf5/0x2df0
[ 2649.410530]  ? __cleanup_sighand+0xb0/0xb0
[ 2649.411118]  ? _copy_from_user+0xfb/0x1b0
[ 2649.411672]  kernel_clone+0xe7/0x980
[ 2649.412164]  ? __lockdep_reset_lock+0x180/0x180
[ 2649.412779]  ? create_io_thread+0xf0/0xf0
[ 2649.413372]  ? ksys_write+0x21a/0x260
[ 2649.413871]  ? lock_downgrade+0x6d0/0x6d0
[ 2649.414467]  __do_sys_clone3+0x1e5/0x320
[ 2649.415014]  ? __do_sys_clone+0x110/0x110
[ 2649.415590]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2649.416205]  ? vfs_write+0x354/0xb10
[ 2649.416700]  ? fput_many+0x2f/0x1a0
[ 2649.417214]  ? ksys_write+0x1a9/0x260
[ 2649.417719]  ? __ia32_sys_read+0xb0/0xb0
[ 2649.418288]  do_syscall_64+0x33/0x40
[ 2649.418796]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2649.419488] RIP: 0033:0x7f862144ab19
[ 2649.419983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2649.422467] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2649.423484] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2649.424431] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2649.425412] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2649.426355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2649.431317] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:27:23 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0xa000000, 0xffffffffffffffff)

[ 2649.593332] FAULT_INJECTION: forcing a failure.
[ 2649.593332] name failslab, interval 1, probability 0, space 0, times 0
[ 2649.594838] CPU: 1 PID: 27813 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2649.595775] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2649.596861] Call Trace:
[ 2649.597215]  dump_stack+0x107/0x167
[ 2649.597710]  should_fail.cold+0x5/0xa
[ 2649.598221]  ? create_object.isra.0+0x3a/0xa20
[ 2649.598837]  should_failslab+0x5/0x20
[ 2649.599369]  kmem_cache_alloc+0x5b/0x310
[ 2649.599915]  ? create_object.isra.0+0x3ad/0xa20
[ 2649.600541]  create_object.isra.0+0x3a/0xa20
[ 2649.601125]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2649.601836]  __kmalloc_node+0x1ae/0x420
[ 2649.602369]  memcg_alloc_page_obj_cgroups+0x73/0x100
[ 2649.603108]  memcg_slab_post_alloc_hook+0x1f0/0x430
[ 2649.603769]  ? trace_hardirqs_on+0x5b/0x180
[ 2649.604347]  kmem_cache_alloc_node+0x181/0x330
[ 2649.604960]  copy_process+0x3301/0x78b0
[ 2649.605500]  ? SOFTIRQ_verbose+0x10/0x10
[ 2649.606053]  ? stack_trace_save+0x8c/0xc0
[ 2649.606627]  ? lock_acquire+0x197/0x470
[ 2649.611196]  ? io_sq_thread_park+0x79/0xd0
[ 2649.611757]  ? perf_trace_lock+0xac/0x490
[ 2649.612305]  ? lock_release+0x680/0x680
[ 2649.612834]  ? __cleanup_sighand+0xb0/0xb0
[ 2649.613388]  ? kernel_text_address+0xf2/0x120
[ 2649.613991]  ? find_held_lock+0x2c/0x110
[ 2649.614531]  ? io_uring_setup+0x1c23/0x2980
[ 2649.615122]  ? lock_downgrade+0x6d0/0x6d0
[ 2649.615679]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2649.616325]  create_io_thread+0xb6/0xf0
[ 2649.616879]  ? pidfd_prepare+0x80/0x80
[ 2649.617395]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2649.618101]  io_uring_setup+0x1d79/0x2980
[ 2649.618655]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2649.627331]  ? wait_for_completion_io+0x270/0x270
[ 2649.627991]  do_syscall_64+0x33/0x40
[ 2649.628478]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2649.629161] RIP: 0033:0x7fd22c24ab19
[ 2649.629653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2649.632127] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2649.633127] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2649.634065] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2649.635016] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2649.635995] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2649.636932] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:27:40 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0xc000000, 0xffffffffffffffff)

10:27:40 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x200000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:27:40 executing program 4:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
ftruncate(r0, 0x2)
r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f0000000280))
r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
write(r2, &(0x7f0000000240)='e', 0x1)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r2})
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat(r4, &(0x7f00000000c0)='./file1\x00', 0x44740, 0xd)

10:27:40 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 21)
getresuid(0x0, 0x0, 0x0)

10:27:40 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 30)

10:27:40 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 13)

10:27:40 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x620e, &(0x7f0000000180)={0x0, 0x4ac1}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @ipv4, 0xffffffff}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a64485f108d23b76be1cc06a8682449c18157c739b4f25f709", 0x19}, {0x0}, {0x0}], 0x3}, 0x0, 0x40448c0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
pwritev2(0xffffffffffffffff, &(0x7f0000000780)=[{&(0x7f0000000940)="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", 0x1000}, {&(0x7f0000000040)="c3442580cc299af4d88d06ef6b113d788bffc654fc5944a0ca7d7087ea428e5566cf6334af", 0x25}, {&(0x7f0000001940)="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", 0xc00}, {&(0x7f0000000340)="8661651f42a63adff786fea1c356e92f7de93d9c832526692db81cdf22d5bb29ebd58ac240cb216da42145fab5fd716b36cef0628f91d2a5846edaffd5734320ee014550e5a68a1449ae31db992d354ca004eb9853777f8bc775d7f64f490656bfb35f4c2fe29dbb2d2bf8cda388311ec106593afd63c487a8732f951eecbbed504ebe514a1b16ebe401b76972e1eba83cf1a91bed56dea35a509fecf5cd12ea9d2e74eb279a9a9583b1", 0xaa}, {&(0x7f0000000080)}, {&(0x7f0000000500)="1e259ffa62ea41bf7ebbaf219cda5c82ac6f60cc86781e162dfde77637ca7a2788c9dabb9a5acd83d8fcdab5a9f7951e9d6ea016e5d7e24a024ea17da55a7537c92065c789368713d587a923adff96ed47920d61f92a520b4de846aaabaad11a75061c1054c5f7a26420e32711e05f77a7656923a34908e84b5ee8d8b5ad5774d82152f409cb7ba95c3482ac6a917c3324bddada1483453f11264215e8004fb3b2dbc71ba875", 0xa6}, {&(0x7f00000005c0)="06729268a23b1d8d4fa3d2fa1ad85d65f0ae110a59b63ad3fc1cea1e01385d870239157f4463aded9338e228dc927634d1e9491607a722ebcc0a1e4bef0eaac7c85444e7d72531458e0aa2c3aefc18a00314b84edaaacfad8469434642150745fbb9a3d3fb39475f74d06bc03dbea40e9e8634f172a1d4b51272d451c04f5faf2e9fed1e42973677fe2b5af562a2f5f15d610c57fecc42ff205e51a44ac22160cfa773", 0xa3}, {&(0x7f0000000680)="be6f74153fb57fcd47a383525a20ddfac5b71b19cdc12dcaf34cc5aa7e762c5358b005b6db993779cff10778f3787f3d44ad4c229f7c75b8e7fc664cf0980a50d91015ef87291f77c3d9003d89f580ef9e28e9dfffe5ac3ea91eb97dc3ad5cabd61417fb09c1e2546403a1a835e852d1b907caec26f82183051681cfd0e7c582a20f5dbf5db53f6edd7fccfcef13f1af9a7bddf5c873fb8117e40fd0bebd5a279624301df0c4d6035758f9a4ee711c23c63531265d1a4239c38d78fa6301543069820dd09926e3fd43323dc85c2b0419fa4eb9aecdcf85c567173d34a420ad60f1227363bcef67ab34616798", 0xec}, {&(0x7f00000000c0)="ebd328211a19b0d406fc", 0xa}, {&(0x7f0000000400)="56da6ae86a71740b86ec3fdf46d2f5b55900b3260ae30e6e772af73f4c0353a5ee347c60a63417e7a045e043f8f1343ce249f153dc218bc0513566ba51cbcbbd22eb0e9edab34d630776", 0x4a}], 0xa, 0x81, 0x8, 0x1e)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000000, 0x80010, r0, 0x10000000)
r6 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r7}}, 0x2)
syz_io_uring_submit(r1, r5, &(0x7f0000000080)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x2007, @fd=r0, 0x195, &(0x7f0000002540)=""/148, 0x94, 0xc, 0x0, {0x0, r7}}, 0x6)
syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

10:27:40 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2666.997189] FAULT_INJECTION: forcing a failure.
[ 2666.997189] name failslab, interval 1, probability 0, space 0, times 0
[ 2666.998700] CPU: 0 PID: 27934 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2666.999686] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2667.000813] Call Trace:
[ 2667.001168]  dump_stack+0x107/0x167
[ 2667.001650]  should_fail.cold+0x5/0xa
[ 2667.002154]  ? alloc_fdtable+0x84/0x280
[ 2667.002708]  should_failslab+0x5/0x20
[ 2667.003219]  kmem_cache_alloc_trace+0x55/0x320
[ 2667.003826]  ? rwlock_bug.part.0+0x90/0x90
[ 2667.004386]  alloc_fdtable+0x84/0x280
[ 2667.004889]  dup_fd+0x92e/0xf40
[ 2667.005338]  copy_process+0x197c/0x78b0
[ 2667.005861]  ? SOFTIRQ_verbose+0x10/0x10
[ 2667.006400]  ? __lockdep_reset_lock+0x180/0x180
[ 2667.007004]  ? mark_lock+0xf5/0x2df0
[ 2667.007534]  ? __cleanup_sighand+0xb0/0xb0
[ 2667.008108]  ? _copy_from_user+0xfb/0x1b0
[ 2667.008659]  kernel_clone+0xe7/0x980
[ 2667.009150]  ? __lockdep_reset_lock+0x180/0x180
[ 2667.009761]  ? create_io_thread+0xf0/0xf0
[ 2667.010316]  ? ksys_write+0x21a/0x260
[ 2667.010826]  ? lock_downgrade+0x6d0/0x6d0
[ 2667.011388]  __do_sys_clone3+0x1e5/0x320
[ 2667.011923]  ? __do_sys_clone+0x110/0x110
[ 2667.012486]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2667.013091]  ? vfs_write+0x354/0xb10
[ 2667.013588]  ? fput_many+0x2f/0x1a0
[ 2667.014068]  ? ksys_write+0x1a9/0x260
[ 2667.014569]  ? __ia32_sys_read+0xb0/0xb0
[ 2667.015115]  do_syscall_64+0x33/0x40
[ 2667.015622]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2667.016290] RIP: 0033:0x7f862144ab19
[ 2667.016790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2667.019198] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2667.020207] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2667.021142] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2667.022074] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2667.023014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2667.027970] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2667.036132] FAULT_INJECTION: forcing a failure.
[ 2667.036132] name failslab, interval 1, probability 0, space 0, times 0
[ 2667.037690] CPU: 0 PID: 27931 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2667.039370] FAULT_INJECTION: forcing a failure.
[ 2667.039370] name failslab, interval 1, probability 0, space 0, times 0
[ 2667.039413] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2667.039425] Call Trace:
[ 2667.042317]  dump_stack+0x107/0x167
[ 2667.042798]  should_fail.cold+0x5/0xa
[ 2667.043315]  ? alloc_pid+0xd7/0xd30
[ 2667.043797]  should_failslab+0x5/0x20
[ 2667.044295]  kmem_cache_alloc+0x5b/0x310
[ 2667.044840]  alloc_pid+0xd7/0xd30
[ 2667.045310]  copy_process+0x3b87/0x78b0
[ 2667.045833]  ? SOFTIRQ_verbose+0x10/0x10
[ 2667.046377]  ? stack_trace_save+0x8c/0xc0
[ 2667.046936]  ? __cleanup_sighand+0xb0/0xb0
[ 2667.047509]  ? kernel_text_address+0xf2/0x120
[ 2667.048103]  ? find_held_lock+0x2c/0x110
[ 2667.048643]  ? io_uring_setup+0x1c23/0x2980
[ 2667.049209]  ? lock_downgrade+0x6d0/0x6d0
[ 2667.049756]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2667.050401]  create_io_thread+0xb6/0xf0
[ 2667.050919]  ? pidfd_prepare+0x80/0x80
[ 2667.051446]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2667.052108]  io_uring_setup+0x1d79/0x2980
[ 2667.052658]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2667.053320]  ? wait_for_completion_io+0x270/0x270
[ 2667.053974]  do_syscall_64+0x33/0x40
[ 2667.054466]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2667.055139] RIP: 0033:0x7fd22c24ab19
[ 2667.055647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2667.058098] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2667.059099] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2667.060075] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2667.061016] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2667.061953] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2667.062890] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2667.063869] CPU: 1 PID: 27956 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2667.064794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2667.065878] Call Trace:
[ 2667.066232]  dump_stack+0x107/0x167
[ 2667.066722]  should_fail.cold+0x5/0xa
[ 2667.067246]  ? create_object.isra.0+0x3a/0xa20
[ 2667.067852]  should_failslab+0x5/0x20
[ 2667.068357]  kmem_cache_alloc+0x5b/0x310
[ 2667.068897]  create_object.isra.0+0x3a/0xa20
[ 2667.069476]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2667.070142]  __kmalloc+0x16e/0x390
[ 2667.070627]  io_wq_create+0xeb/0xc00
[ 2667.071126]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2667.071810]  ? io_import_iovec+0x1120/0x1120
[ 2667.072391]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2667.072977]  ? __io_req_find_next+0x300/0x300
[ 2667.073580]  io_uring_setup+0x1dd1/0x2980
[ 2667.074134]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2667.074800]  ? wait_for_completion_io+0x270/0x270
[ 2667.075481]  do_syscall_64+0x33/0x40
[ 2667.075969]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2667.076644] RIP: 0033:0x7fb4a26afb19
[ 2667.077136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2667.079554] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2667.080554] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2667.081491] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2667.082418] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2667.083378] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2667.084313] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:27:40 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 14)

10:27:40 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x40000000, 0xffffffffffffffff)

10:27:40 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xf0ff1f, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:27:40 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 22)
getresuid(0x0, 0x0, 0x0)

10:27:40 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x21, 0x80002, 0x5)
getsockopt$IP_SET_OP_GET_BYINDEX(r1, 0x1, 0x53, &(0x7f0000000000)={0x7, 0x7, 0xffffffffffffffff}, &(0x7f0000000040)=0x28)
r2 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x24, 0x1a, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\xf0'}, @typed={0x5, 0x1, 0x0, 0x0, @str='\xf0'}]}, 0x24}}, 0x0)

10:27:40 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 31)

[ 2667.987411] FAULT_INJECTION: forcing a failure.
[ 2667.987411] name failslab, interval 1, probability 0, space 0, times 0
[ 2667.988925] CPU: 1 PID: 28159 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2667.989836] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2667.990920] Call Trace:
[ 2667.991439]  dump_stack+0x107/0x167
[ 2667.992519]  should_fail.cold+0x5/0xa
[ 2667.993651]  ? create_object.isra.0+0x3a/0xa20
[ 2667.995011]  should_failslab+0x5/0x20
[ 2667.996349]  kmem_cache_alloc+0x5b/0x310
[ 2667.997774]  create_object.isra.0+0x3a/0xa20
[ 2667.999329]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2668.001115]  kmem_cache_alloc_trace+0x151/0x320
[ 2668.002742]  ? rwlock_bug.part.0+0x90/0x90
[ 2668.004240]  alloc_fdtable+0x84/0x280
[ 2668.005574]  dup_fd+0x92e/0xf40
[ 2668.006742]  copy_process+0x197c/0x78b0
[ 2668.008146]  ? SOFTIRQ_verbose+0x10/0x10
[ 2668.009569]  ? __lockdep_reset_lock+0x180/0x180
[ 2668.011206]  ? mark_lock+0xf5/0x2df0
[ 2668.012524]  ? __cleanup_sighand+0xb0/0xb0
[ 2668.014020]  ? _copy_from_user+0xfb/0x1b0
[ 2668.015480]  kernel_clone+0xe7/0x980
[ 2668.015974]  ? __lockdep_reset_lock+0x180/0x180
[ 2668.016595]  ? create_io_thread+0xf0/0xf0
[ 2668.017157]  ? ksys_write+0x21a/0x260
[ 2668.017662]  ? lock_downgrade+0x6d0/0x6d0
[ 2668.018213]  __do_sys_clone3+0x1e5/0x320
[ 2668.018749]  ? __do_sys_clone+0x110/0x110
[ 2668.023338]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2668.023950]  ? vfs_write+0x354/0xb10
[ 2668.024444]  ? fput_many+0x2f/0x1a0
[ 2668.024927]  ? ksys_write+0x1a9/0x260
[ 2668.025432]  ? __ia32_sys_read+0xb0/0xb0
[ 2668.025975]  do_syscall_64+0x33/0x40
[ 2668.026476]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2668.027151] RIP: 0033:0x7f862144ab19
[ 2668.027669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2668.030081] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2668.031089] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2668.032040] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2668.032974] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2668.033914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2668.034850] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2668.096815] FAULT_INJECTION: forcing a failure.
[ 2668.096815] name failslab, interval 1, probability 0, space 0, times 0
[ 2668.098320] CPU: 1 PID: 28203 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2668.099251] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2668.100347] Call Trace:
[ 2668.100710]  dump_stack+0x107/0x167
[ 2668.101198]  should_fail.cold+0x5/0xa
[ 2668.101710]  ? io_wq_create+0x6ef/0xc00
[ 2668.102244]  should_failslab+0x5/0x20
[ 2668.102754]  kmem_cache_alloc_node_trace+0x59/0x340
[ 2668.103447]  io_wq_create+0x6ef/0xc00
[ 2668.103965]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2668.104641]  ? io_import_iovec+0x1120/0x1120
[ 2668.105228]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2668.105819]  ? __io_req_find_next+0x300/0x300
[ 2668.106423]  io_uring_setup+0x1dd1/0x2980
[ 2668.106986]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2668.107672]  ? wait_for_completion_io+0x270/0x270
[ 2668.108340]  do_syscall_64+0x33/0x40
[ 2668.108833]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2668.109514] RIP: 0033:0x7fb4a26afb19
[ 2668.110012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2668.112456] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2668.113464] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2668.114411] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2668.115386] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2668.116323] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2668.117275] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2668.321351] FAULT_INJECTION: forcing a failure.
[ 2668.321351] name failslab, interval 1, probability 0, space 0, times 0
[ 2668.322852] CPU: 0 PID: 28270 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2668.323794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2668.329129] Call Trace:
[ 2668.329481]  dump_stack+0x107/0x167
[ 2668.330053]  should_fail.cold+0x5/0xa
[ 2668.330554]  ? create_object.isra.0+0x3a/0xa20
[ 2668.331223]  should_failslab+0x5/0x20
[ 2668.331723]  kmem_cache_alloc+0x5b/0x310
[ 2668.332327]  create_object.isra.0+0x3a/0xa20
[ 2668.332986]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2668.333654]  kmem_cache_alloc+0x159/0x310
[ 2668.334262]  alloc_pid+0xd7/0xd30
[ 2668.334724]  copy_process+0x3b87/0x78b0
[ 2668.335327]  ? SOFTIRQ_verbose+0x10/0x10
[ 2668.335865]  ? stack_trace_save+0x8c/0xc0
[ 2668.336484]  ? __cleanup_sighand+0xb0/0xb0
[ 2668.337124]  ? kernel_text_address+0xf2/0x120
[ 2668.337708]  ? find_held_lock+0x2c/0x110
[ 2668.338310]  ? io_uring_setup+0x1c23/0x2980
[ 2668.338873]  ? lock_downgrade+0x6d0/0x6d0
[ 2668.339504]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2668.340205]  create_io_thread+0xb6/0xf0
[ 2668.340724]  ? pidfd_prepare+0x80/0x80
[ 2668.341324]  ? io_uring_cancel_generic+0x2b0/0x2b0
[ 2668.342042]  io_uring_setup+0x1d79/0x2980
[ 2668.342589]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2668.343328]  ? wait_for_completion_io+0x270/0x270
[ 2668.344047]  do_syscall_64+0x33/0x40
[ 2668.344533]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2668.345293] RIP: 0033:0x7fd22c24ab19
[ 2668.345781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2668.348377] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2668.349467] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2668.350485] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2668.351522] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2668.352513] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2668.353500] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:27:58 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:27:58 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 23)
getresuid(0x0, 0x0, 0x0)

10:27:58 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x4, &(0x7f0000000080)=[{&(0x7f00000017c0)="200000000002000019000000900100000f000040000000000000000004000000000002000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000000000000c285000002b8d3389b16e490d4b121bd0000000000000000", 0x68, 0x400}, {&(0x7f0000001840)="000000000000000000000000dff4ef821ec34de5a68f275e28ea4831010040", 0x1f, 0x4e1}, {&(0x7f00000004c0)="000000000063fc3e37255fce127a6552858c46cd00000000000000000000002000200001000000000005004000000000000000000000000000000031000000000000007472604fc9be34a9c37e02c7945f438231c392c7c064618abf754f8a1bd722aaad20f22993a2f8a3fbecd3d879a64521320d91149bab4e0ef9834ed45bc7b169aa034b00daa8b37344886a89f0aa9200189d2901506e789836ba405a99b36ae8d155eb0b95b11550bf4404e1e9cb060ff77d1e33c8196600000000000000", 0xc1, 0xfffffffffffffe15}, {&(0x7f0000000040)="6f9875cfbb826af344179162a96eccee461662aaba250f04efbbd1ace0a5b437", 0x20, 0xd}], 0x0, &(0x7f0000001980)=ANY=[@ANYBLOB="71756f7461fdcfd6be6a7175a7949294d2c6d9d7a12d1bd354090000000000007cc3eeb73d338a44dd13948d20e3ed187c12fc7c9ccd930c40ca5b3fecda1cb578a3e1c0a7ea0a20b8373ce73b35355d5b1c60c1a440ba872a3c701ba72295c0a823fd690d6e26bba8596b1bf0eb0d558487140cb6d8b49d27ec99350f12df750ce35c793bf63261a26e3283e087be7cee6280cb6781b89dc4f8bb3bc769340e384ae9257e7fcf31ba8246e3cfa20a3a519e4f9946d63208b121dd703926f44f679f06c736af9b52aa405d5aeb979b16f6e2d52eaec1e33a9636931a4a797c5f91d9a97a92fc93827f"])
ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, r0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
recvmsg$unix(r1, &(0x7f0000001740)={&(0x7f0000000140)=@abs, 0x6e, &(0x7f0000001680)=[{&(0x7f00000001c0)=""/47, 0x2f}, {&(0x7f0000001a80)=""/139, 0x8b}, {&(0x7f00000002c0)=""/51, 0x33}, {&(0x7f0000000300)=""/80, 0xff3b}, {&(0x7f0000000200)=""/12, 0xfffffffffffffef5}, {&(0x7f0000001b40)=""/4109, 0x1000}, {&(0x7f0000001880)=""/98, 0x63}, {&(0x7f00000015c0)=""/157, 0x9d}, {&(0x7f0000000240)=""/38, 0x7d}, {&(0x7f0000000480)=""/34, 0x22}], 0xa}, 0x40008080)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
close_range(r2, r3, 0x0)

10:27:58 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 15)

10:27:58 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x329, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000180)}, 0x0, 0x2}, 0x0, 0xfffffbffffffffff, 0xffffffffffffffff, 0x8)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000000)={0x8020})
close(r1)
r2 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000200)={&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0)="cb", 0x1, r0}, 0x68)
r3 = accept$unix(r2, &(0x7f0000000040), &(0x7f00000000c0)=0x6e)
r4 = accept4(r2, 0x0, &(0x7f0000000140), 0x100000)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
r6 = dup(r5)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r8=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r6, 0x8936, &(0x7f0000000080)={@local, 0x0, r8})
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(0xffffffffffffffff, 0x89fa, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000280)={'syztnl0\x00', r8, 0x29, 0x4, 0x0, 0x1, 0x53, @mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x80, 0x700, 0x1, 0x2d}})
sendfile(r3, r4, 0x0, 0xf4)

10:27:58 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x300000000, 0xffffffffffffffff)

10:27:58 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 32)

10:27:58 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x1000000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

[ 2685.073007] FAULT_INJECTION: forcing a failure.
[ 2685.073007] name failslab, interval 1, probability 0, space 0, times 0
[ 2685.075717] CPU: 0 PID: 28290 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2685.078095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2685.081000] Call Trace:
[ 2685.081815]  dump_stack+0x107/0x167
[ 2685.082964]  should_fail.cold+0x5/0xa
[ 2685.084172]  ? create_object.isra.0+0x3a/0xa20
[ 2685.085612]  should_failslab+0x5/0x20
[ 2685.086808]  kmem_cache_alloc+0x5b/0x310
[ 2685.088128]  ? io_wq_create+0x114/0xc00
[ 2685.089369]  create_object.isra.0+0x3a/0xa20
[ 2685.090742]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2685.092351]  kmem_cache_alloc_node_trace+0x16d/0x340
[ 2685.093970]  io_wq_create+0x6ef/0xc00
[ 2685.095165]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2685.096792]  ? io_import_iovec+0x1120/0x1120
[ 2685.098166]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2685.099590]  ? __io_req_find_next+0x300/0x300
[ 2685.100992]  io_uring_setup+0x1dd1/0x2980
[ 2685.102338]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2685.103934]  ? wait_for_completion_io+0x270/0x270
[ 2685.105493]  do_syscall_64+0x33/0x40
[ 2685.106661]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2685.108309] RIP: 0033:0x7fb4a26afb19
[ 2685.109471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2685.112855] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2685.115331] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2685.117614] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2685.119894] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2685.122157] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2685.124410] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:27:58 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x100000000000000, 0xffffffffffffffff)

[ 2685.141813] FAULT_INJECTION: forcing a failure.
[ 2685.141813] name failslab, interval 1, probability 0, space 0, times 0
[ 2685.152551] CPU: 1 PID: 28304 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2685.155115] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2685.162273] Call Trace:
[ 2685.163231]  dump_stack+0x107/0x167
[ 2685.164560]  should_fail.cold+0x5/0xa
[ 2685.165959]  ? io_uring_alloc_task_context+0x99/0x6a0
[ 2685.167871]  should_failslab+0x5/0x20
[ 2685.169268]  kmem_cache_alloc_trace+0x55/0x320
[ 2685.170932]  io_uring_alloc_task_context+0x99/0x6a0
[ 2685.172772]  ? io_import_iovec+0x1120/0x1120
[ 2685.174384]  io_uring_setup+0x1dd1/0x2980
[ 2685.175921]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2685.177768]  ? wait_for_completion_io+0x270/0x270
[ 2685.179563]  do_syscall_64+0x33/0x40
[ 2685.180130]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2685.182036] RIP: 0033:0x7fd22c24ab19
[ 2685.183397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2685.186109] RSP: 002b:00007fd22979f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2685.188924] RAX: ffffffffffffffda RBX: 00007fd22c35e020 RCX: 00007fd22c24ab19
[ 2685.191578] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2685.194200] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2685.196854] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2685.199486] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2685.213267] FAULT_INJECTION: forcing a failure.
[ 2685.213267] name failslab, interval 1, probability 0, space 0, times 0
[ 2685.217488] CPU: 1 PID: 28286 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2685.220035] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2685.223106] Call Trace:
[ 2685.224073]  dump_stack+0x107/0x167
[ 2685.225404]  should_fail.cold+0x5/0xa
[ 2685.226778]  ? create_object.isra.0+0x3a/0xa20
[ 2685.228464]  should_failslab+0x5/0x20
[ 2685.229846]  kmem_cache_alloc+0x5b/0x310
[ 2685.231328]  create_object.isra.0+0x3a/0xa20
[ 2685.232945]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2685.233727]  kmem_cache_alloc+0x159/0x310
[ 2685.235236]  dup_fd+0x89/0xf40
[ 2685.236414]  ? audit_filter_inodes+0x40/0x40
[ 2685.237084]  ? security_task_alloc+0xe6/0x260
[ 2685.238723]  copy_process+0x197c/0x78b0
[ 2685.240178]  ? SOFTIRQ_verbose+0x10/0x10
[ 2685.240815]  ? __lockdep_reset_lock+0x180/0x180
[ 2685.242513]  ? mark_lock+0xf5/0x2df0
[ 2685.243113]  ? __cleanup_sighand+0xb0/0xb0
[ 2685.244685]  ? _copy_from_user+0xfb/0x1b0
[ 2685.245335]  kernel_clone+0xe7/0x980
[ 2685.246672]  ? __lockdep_reset_lock+0x180/0x180
[ 2685.248381]  ? create_io_thread+0xf0/0xf0
[ 2685.249018]  ? ksys_write+0x21a/0x260
[ 2685.250411]  ? lock_downgrade+0x6d0/0x6d0
[ 2685.251924]  __do_sys_clone3+0x1e5/0x320
[ 2685.253412]  ? __do_sys_clone+0x110/0x110
[ 2685.254936]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2685.256645]  ? vfs_write+0x354/0xb10
[ 2685.257986]  ? fput_many+0x2f/0x1a0
[ 2685.259312]  ? ksys_write+0x1a9/0x260
[ 2685.260723]  ? __ia32_sys_read+0xb0/0xb0
[ 2685.262210]  do_syscall_64+0x33/0x40
[ 2685.263554]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2685.265453] RIP: 0033:0x7f862144ab19
[ 2685.266815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2685.273677] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2685.276516] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2685.279211] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2685.281880] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2685.284524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2685.287195] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:27:58 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 33)

10:27:58 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x2000000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:27:58 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:27:58 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 24)
getresuid(0x0, 0x0, 0x0)

10:27:59 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 16)

10:27:59 executing program 4:
r0 = semget$private(0x0, 0x4, 0x100)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getresgid(&(0x7f00000010c0), &(0x7f0000001100), &(0x7f0000001140)=<r1=>0x0)
stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="7472616e733d66642c7266646e6f3d91e31b7892f71f3ac842db783e431d605372ea606c253e7c4ff3d013e13614b38210b49077cca3b953d867fd849b8fe2ff2f49a2849f897aa0aa585aa164a900174fe3c047d0a0ef6ba946c262de8447be315f075609f2699660fff9cea9b11f2ff3704d4e29085b4a147c8a8a6a2692f391d2bdb33465bfa785d15ef405e901c59cb0dfc75ae84a5ce85db5f2f363979cb753db1587222b79306408adc276c908415e25b03133db4f57b0c655c00f80fbfa44be8ec19f836f4013dffac188d9138b9092519ee6b70bff1f71d2e6827cbc0c6b793e42e5804c0bd43cda8ee0f658e43dd92a12e9c8a06f88da9446a1a9abe526856e0a44e08e9191d988b24b8ad93f54abdbbd38c1c46dd4b4784197cc05e4b2b9f45289239bfaddb8363b33fff155d35ce555", @ANYRESHEX, @ANYBLOB="86d7958a103ae7d4a2dcd823b568000000f0b5ac79475c1326e6d07c00000000000000007f010000000000000017d60000000000", @ANYRESHEX, @ANYBLOB="2c63616368653d6d6d61702c63616368653d6c6f6f73652c6e6f657874656e642c6e6f6465766d61702c646f6e745f61707072616973652c646f6e745f6d6561737572652c7375626a5f747970653d2c646f6e745f6d6561737572652c6673636f6e746578743d73797374656d5f752c66736d616769633d3078303030303030303030303030303038632c7569643d4cbbf3b07034ef9d4556ef87ff8819a817bb020867ae4df5e36da7abbe9d7d7daeb4f5a307d8263d4f3e9125ce3443923e6dc374eaed996295e2462ebc12f0ee59c43a9835d2f3963e474a6ef139886dc5115391d66da321451d1900bb99e9af77360794612c2b15b189a700254b849c0d89fbcbc6a3d2e173b406c8e6117430c817c5ee56ef63984892202b2dc4276353b24d81060753873382121457d431adf8f6a46c090af2e8412c50430b1e0ccf0a9b3807afdca4ac27fc93f94cd56808588c393e86255375da6ea6517f48df25cafa783c567bdf826690bca15c6691fcea2aa1ee70d7103ff7ba", @ANYRESDEC=r2, @ANYBLOB="45c11c8b446ac16d5c2cf6f400f8"])
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000002c0)={{0x1, 0x0, 0x0, r2, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7})
semctl$IPC_RMID(0x0, 0x0, 0x0)
mknodat$loop(0xffffffffffffffff, &(0x7f0000000280)='./file1\x00', 0x0, 0x1)
semtimedop(0x0, &(0x7f0000000340)=[{0x6, 0x1, 0x1000}], 0x1, &(0x7f0000000380)={0x0, 0x3938700})
r3 = semget(0x2, 0x0, 0x20b)
r4 = getuid()
semctl$IPC_RMID(r3, 0x0, 0x0)
stat(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
semctl$IPC_SET(r3, 0x0, 0x1, &(0x7f00000002c0)={{0x1, r4, r1, r5, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7})
clock_gettime(0x5, &(0x7f00000000c0)={<r6=>0x0, <r7=>0x0})
semtimedop(r3, &(0x7f0000000080)=[{0x0, 0x4, 0x1000}], 0x1, &(0x7f0000000100)={r6, r7+10000000})
semctl$SEM_INFO(0x0, 0x935a4533181df21f, 0x13, &(0x7f0000001e00)=""/4096)
semctl$SEM_INFO(r0, 0x3, 0x13, &(0x7f0000000000)=""/35)
semop(r0, &(0x7f00000003c0)=[{0x1, 0x0, 0x1000}, {0x2, 0x0, 0x1000}, {0x0, 0x0, 0x1000}, {0xa, 0x6, 0x2000}, {0x2, 0x5, 0x1800}, {0x3, 0x2, 0x800}, {0x3, 0x8, 0x800}], 0x7)
unshare(0x48020200)

10:27:59 executing program 1:
r0 = syz_io_uring_setup(0x68d4, &(0x7f0000000100)={0x0, 0x867e, 0x0, 0x0, 0x399}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040))
fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
mmap$IORING_OFF_SQES(&(0x7f0000fee000/0x12000)=nil, 0x12000, 0x0, 0x40010, r0, 0x10000000)
socket$packet(0x11, 0x2, 0x300)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
memfd_create(&(0x7f00000003c0)='\x00\'\'x\xe0\x1c\x02\x00d\x88\xc4P\xb0\x01\x00\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\xf9\n\x17`\xf1U\'\\\x14\t\xc2\xaa|\x81\x91=;h\xfeGm\xaf\x88\xf7\x01\xce\xdc.fjW\x8d\xf9\xbf\xd3\xf1\xa1\xa2\xb0\xcf\xbb|\xdfp\xd7sI\x8dyz\x1c\xb6\xe5\xb9Ta\xcf\xab\xc32\xd9\xaea\x80\xc6\x92', 0x6)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)=""/148, 0x94}, {&(0x7f0000000580)=""/98, 0x62}, {&(0x7f0000000440)=""/181, 0xb5}, {&(0x7f0000000300)=""/67, 0x43}], 0x4)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000240)=ANY=[@ANYBLOB="fc0000001a00010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffffffffffec0000000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="ac14143f000000000000000000000000000000003c000000fc01000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000800000000000000000c0008000800080000000000"], 0xfc}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x460, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fork()

10:27:59 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x200000000000000, 0xffffffffffffffff)

[ 2685.814281] FAULT_INJECTION: forcing a failure.
[ 2685.814281] name failslab, interval 1, probability 0, space 0, times 0
[ 2685.816385] FAULT_INJECTION: forcing a failure.
[ 2685.816385] name failslab, interval 1, probability 0, space 0, times 0
[ 2685.818018] CPU: 1 PID: 28570 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2685.823256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2685.829965] Call Trace:
[ 2685.830787]  dump_stack+0x107/0x167
[ 2685.831933]  should_fail.cold+0x5/0xa
[ 2685.833135]  ? io_rsrc_node_switch_start.part.0+0x43/0x250
[ 2685.834884]  should_failslab+0x5/0x20
[ 2685.836079]  kmem_cache_alloc_trace+0x55/0x320
[ 2685.837500]  io_rsrc_node_switch_start.part.0+0x43/0x250
[ 2685.838387]  io_uring_setup+0x14f6/0x2980
[ 2685.839704]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2685.840528]  ? wait_for_completion_io+0x270/0x270
[ 2685.842035]  do_syscall_64+0x33/0x40
[ 2685.842644]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2685.844255] RIP: 0033:0x7fb4a26afb19
[ 2685.844944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2685.850730] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2685.853080] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2685.855294] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2685.857529] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2685.859782] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2685.861993] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2685.864243] CPU: 0 PID: 28568 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2685.865545] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2685.867111] Call Trace:
[ 2685.867624]  dump_stack+0x107/0x167
[ 2685.868328]  should_fail.cold+0x5/0xa
[ 2685.869047]  ? create_object.isra.0+0x3a/0xa20
[ 2685.869924]  should_failslab+0x5/0x20
[ 2685.870655]  kmem_cache_alloc+0x5b/0x310
[ 2685.871414]  create_object.isra.0+0x3a/0xa20
[ 2685.872252]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2685.873225]  __kmalloc_node+0x1ae/0x420
[ 2685.874011]  kvmalloc_node+0x119/0x170
[ 2685.874752]  alloc_fdtable+0xd3/0x280
[ 2685.875498]  dup_fd+0x92e/0xf40
[ 2685.876146]  copy_process+0x197c/0x78b0
[ 2685.876891]  ? SOFTIRQ_verbose+0x10/0x10
[ 2685.878766]  ? __lockdep_reset_lock+0x180/0x180
[ 2685.880849]  ? mark_lock+0xf5/0x2df0
[ 2685.882555]  ? __cleanup_sighand+0xb0/0xb0
[ 2685.883215]  ? _copy_from_user+0xfb/0x1b0
[ 2685.884715]  kernel_clone+0xe7/0x980
[ 2685.886028]  ? __lockdep_reset_lock+0x180/0x180
[ 2685.887713]  ? create_io_thread+0xf0/0xf0
[ 2685.889227]  ? ksys_write+0x21a/0x260
[ 2685.890574]  ? lock_downgrade+0x6d0/0x6d0
[ 2685.892073]  __do_sys_clone3+0x1e5/0x320
[ 2685.893511]  ? __do_sys_clone+0x110/0x110
[ 2685.895010]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2685.896680]  ? vfs_write+0x354/0xb10
[ 2685.898026]  ? fput_many+0x2f/0x1a0
[ 2685.899340]  ? ksys_write+0x1a9/0x260
[ 2685.900745]  ? __ia32_sys_read+0xb0/0xb0
[ 2685.902215]  do_syscall_64+0x33/0x40
[ 2685.903571]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2685.905447] RIP: 0033:0x7f862144ab19
[ 2685.906803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2685.913664] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2685.916428] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2685.918911] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2685.921415] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2685.923966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2685.926462] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2686.126703] FAULT_INJECTION: forcing a failure.
[ 2686.126703] name failslab, interval 1, probability 0, space 0, times 0
[ 2686.128219] CPU: 0 PID: 28620 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2686.129134] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2686.130220] Call Trace:
[ 2686.130575]  dump_stack+0x107/0x167
[ 2686.131059]  should_fail.cold+0x5/0xa
[ 2686.132051]  ? create_object.isra.0+0x3a/0xa20
[ 2686.133648]  should_failslab+0x5/0x20
[ 2686.134954]  kmem_cache_alloc+0x5b/0x310
[ 2686.136384]  create_object.isra.0+0x3a/0xa20
[ 2686.137944]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2686.140582]  kmem_cache_alloc_trace+0x151/0x320
[ 2686.142403]  io_uring_alloc_task_context+0x99/0x6a0
[ 2686.144414]  ? io_import_iovec+0x1120/0x1120
[ 2686.146157]  io_uring_setup+0x1dd1/0x2980
[ 2686.147771]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2686.149523]  ? wait_for_completion_io+0x270/0x270
[ 2686.151221]  do_syscall_64+0x33/0x40
[ 2686.152515]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2686.154256] RIP: 0033:0x7fd22c24ab19
[ 2686.155524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2686.162143] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2686.164833] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2686.167331] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2686.169831] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2686.173016] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2686.173953] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:28:16 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 34)

10:28:16 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x400000000000000, 0xffffffffffffffff)

10:28:16 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000080), 0x6e, &(0x7f00000002c0)=[{&(0x7f0000000100)=""/104, 0x68}, {&(0x7f0000000180)=""/203, 0xcb}, {&(0x7f0000000280)=""/1, 0x1}], 0x3, &(0x7f0000000300)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff]}}], 0x40}, 0x10040)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r3, {0x4, 0x4}}, './file0\x00'})
r5 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r5)
mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r4)
open$dir(&(0x7f0000000440)='./file0\x00', 0x501003, 0x8)
setxattr$incfs_size(&(0x7f0000000040)='./file0\x00', &(0x7f0000000400), 0x0, 0x0, 0x2)

10:28:16 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x8000000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:28:16 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 17)

10:28:16 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 25)
getresuid(0x0, 0x0, 0x0)

10:28:16 executing program 4:
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x40000)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ppoll(&(0x7f0000000240)=[{r2, 0x19520}, {r3, 0x82}, {0xffffffffffffffff, 0xa109}, {0xffffffffffffffff, 0x4}, {0xffffffffffffffff, 0x104ad}], 0x5, &(0x7f00000002c0), &(0x7f0000000440)={[0xb9]}, 0x8)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000140)=0x3ff, 0x3)
lseek(r1, 0x0, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x1c}}, 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r4, 0xf501, 0x0)
r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
fstat(r1, 0x0)
sendfile(r1, r5, 0x0, 0x100000001)
openat(r1, &(0x7f0000000040)='./file1\x00', 0x40000, 0x10)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0)

10:28:16 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2703.246566] FAULT_INJECTION: forcing a failure.
[ 2703.246566] name failslab, interval 1, probability 0, space 0, times 0
[ 2703.248095] CPU: 0 PID: 28745 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2703.249005] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2703.250093] Call Trace:
[ 2703.250448]  dump_stack+0x107/0x167
[ 2703.250932]  should_fail.cold+0x5/0xa
[ 2703.251438]  ? create_object.isra.0+0x3a/0xa20
[ 2703.252053]  should_failslab+0x5/0x20
[ 2703.252551]  kmem_cache_alloc+0x5b/0x310
[ 2703.253092]  ? _raw_spin_unlock_irqrestore+0x38/0x40
[ 2703.253757]  ? trace_hardirqs_on+0x5b/0x180
[ 2703.254327]  create_object.isra.0+0x3a/0xa20
[ 2703.254902]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2703.261992]  kmem_cache_alloc_trace+0x151/0x320
[ 2703.262625]  io_rsrc_node_switch_start.part.0+0x43/0x250
[ 2703.263330]  io_uring_setup+0x14f6/0x2980
[ 2703.263903]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2703.264563]  ? wait_for_completion_io+0x270/0x270
[ 2703.265218]  do_syscall_64+0x33/0x40
[ 2703.265707]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2703.266371] RIP: 0033:0x7fb4a26afb19
[ 2703.266865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2703.269282] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2703.270275] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2703.271211] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2703.272151] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2703.273080] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2703.274012] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2703.339361] FAULT_INJECTION: forcing a failure.
[ 2703.339361] name failslab, interval 1, probability 0, space 0, times 0
[ 2703.341844] CPU: 0 PID: 28752 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2703.342830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2703.344050] Call Trace:
[ 2703.344405]  dump_stack+0x107/0x167
[ 2703.344951]  should_fail.cold+0x5/0xa
[ 2703.345460]  ? kvmalloc_node+0x119/0x170
[ 2703.346121]  should_failslab+0x5/0x20
[ 2703.346617]  __kmalloc_node+0x76/0x420
[ 2703.347206]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2703.348486]  kvmalloc_node+0x119/0x170
[ 2703.349072]  alloc_fdtable+0x13f/0x280
[ 2703.349580]  dup_fd+0x92e/0xf40
[ 2703.350124]  copy_process+0x197c/0x78b0
[ 2703.350645]  ? SOFTIRQ_verbose+0x10/0x10
[ 2703.351254]  ? __lockdep_reset_lock+0x180/0x180
[ 2703.352482]  ? mark_lock+0xf5/0x2df0
[ 2703.353062]  ? __cleanup_sighand+0xb0/0xb0
[ 2703.353631]  ? _copy_from_user+0xfb/0x1b0
[ 2703.354278]  kernel_clone+0xe7/0x980
[ 2703.354767]  ? __lockdep_reset_lock+0x180/0x180
[ 2703.355443]  ? create_io_thread+0xf0/0xf0
[ 2703.358220]  ? ksys_write+0x21a/0x260
[ 2703.358720]  ? lock_downgrade+0x6d0/0x6d0
[ 2703.359377]  __do_sys_clone3+0x1e5/0x320
[ 2703.361623]  ? __do_sys_clone+0x110/0x110
[ 2703.362283]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2703.362947]  ? vfs_write+0x354/0xb10
[ 2703.363443]  ? fput_many+0x2f/0x1a0
[ 2703.365808]  ? ksys_write+0x1a9/0x260
[ 2703.366409]  ? __ia32_sys_read+0xb0/0xb0
[ 2703.367024]  do_syscall_64+0x33/0x40
10:28:17 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 35)

[ 2703.367518]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2703.368832] RIP: 0033:0x7f862144ab19
10:28:17 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0xa00000000000000, 0xffffffffffffffff)

[ 2703.369396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2703.387731] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2703.388734] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2703.389667] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2703.390608] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2703.391547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2703.392501] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2703.406973] FAULT_INJECTION: forcing a failure.
[ 2703.406973] name failslab, interval 1, probability 0, space 0, times 0
[ 2703.408509] CPU: 1 PID: 28757 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2703.409446] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2703.410562] Call Trace:
[ 2703.410940]  dump_stack+0x107/0x167
[ 2703.411447]  should_fail.cold+0x5/0xa
[ 2703.411990]  ? create_object.isra.0+0x3a/0xa20
[ 2703.412618]  should_failslab+0x5/0x20
[ 2703.413125]  kmem_cache_alloc+0x5b/0x310
[ 2703.413669]  create_object.isra.0+0x3a/0xa20
[ 2703.414261]  kmemleak_alloc_percpu+0xa0/0x100
[ 2703.414856]  pcpu_alloc+0x4e2/0x1240
[ 2703.415375]  __percpu_counter_init+0x10d/0x2d0
[ 2703.416001]  io_uring_alloc_task_context+0xcc/0x6a0
[ 2703.416664]  ? io_import_iovec+0x1120/0x1120
[ 2703.417262]  io_uring_setup+0x1dd1/0x2980
[ 2703.417818]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2703.418487]  ? wait_for_completion_io+0x270/0x270
[ 2703.419155]  do_syscall_64+0x33/0x40
[ 2703.419660]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2703.420339] RIP: 0033:0x7fd22c24ab19
[ 2703.420835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2703.423269] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2703.424297] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2703.425248] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2703.426196] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2703.427143] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2703.428110] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2703.444825] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
10:28:17 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x1ffff000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:28:17 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 18)

10:28:17 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 26)
getresuid(0x0, 0x0, 0x0)

10:28:17 executing program 1:
unshare(0x28020600)
acct(&(0x7f0000000040)='./file0\x00')
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0xad, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xdc, 0x6}}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0)
setxattr$security_evm(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200)=@md5={0x1, "ebe9721bf5a36ab874eabc28af9589aa"}, 0x11, 0x0)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000180), 0x40800, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000380)={0x53, 0xfffffffffffffffd, 0xc4, 0x6, @buffer={0x0, 0x0, &(0x7f00000000c0)}, &(0x7f0000000240)="3dc19c9f7bc3371c512d41607b19e4ff97e6d960a09c39818f37608daed0ba44e13508800a6ebc647a4976c982699309977aa7fc4c5772fc89e24125aa8e46d61f0b638068136018e8eea6d9070b6dce2a97982a5960cded403ffc4f57a948187bcd40d7b09862512ddfba11b933adfcf940990e1906573201dfdaea31fc56cf08a24d8925ff9c026e914e5300b300ee42b693c4c87d2c7a040d6f2f0a89aaf3d31e66c489dac480f691223991ccf4b29c98dd8b43e77309c9fa0acb7865e3c636d87834", &(0x7f0000000480)=""/253, 0x3, 0x10030, 0xffffffffffffffff, &(0x7f0000000340)})
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000440)=ANY=[@ANYBLOB="03f60611000000008d00000033338a83d4970e1ce4511e9b4e1566c3fefa4677896a09a44438a58d"])
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r6, 0x84009422, &(0x7f0000000980)={0x0, 0x0, {0x0, @struct}, {0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000100)='\x8b\x00')
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="2021202e2f66696c6530200a863d9ccfbc3e6b07c1957f19147b07e33018b08994e2501ff24967f6954cb67e0b74a733598467393901e592bb8aac0590d7fe"], 0x45)
r7 = epoll_create(0x1)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0xa0000003})
sendfile(r1, r7, &(0x7f0000000000)=0x8, 0x7fff)
unshare(0x58020b00)

10:28:17 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, r4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r4}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r4}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r5=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0x0, r6, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r5}}, {@dont_appraise}, {@fowner_gt={'fowner>', r6}}]}})

[ 2703.610885] FAULT_INJECTION: forcing a failure.
[ 2703.610885] name failslab, interval 1, probability 0, space 0, times 0
[ 2703.614169] CPU: 0 PID: 28967 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2703.616006] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2703.618167] Call Trace:
10:28:17 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0xc00000000000000, 0xffffffffffffffff)

[ 2703.618824]  dump_stack+0x107/0x167
[ 2703.619909]  should_fail.cold+0x5/0xa
[ 2703.620873]  ? io_rsrc_node_switch_start.part.0+0x43/0x250
[ 2703.622278]  should_failslab+0x5/0x20
[ 2703.623230]  kmem_cache_alloc_trace+0x55/0x320
[ 2703.624561]  io_rsrc_node_switch_start.part.0+0x43/0x250
[ 2703.625924]  io_uring_setup+0x14f6/0x2980
[ 2703.626966]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2703.628386]  ? wait_for_completion_io+0x270/0x270
[ 2703.629620]  do_syscall_64+0x33/0x40
[ 2703.630549]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2703.631900] RIP: 0033:0x7fb4a26afb19
[ 2703.632396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2703.634807] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2703.635830] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2703.636768] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2703.637704] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2703.638641] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2703.639585] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2703.695860] FAULT_INJECTION: forcing a failure.
[ 2703.695860] name failslab, interval 1, probability 0, space 0, times 0
[ 2703.697369] CPU: 1 PID: 28972 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2703.698276] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2703.699356] Call Trace:
[ 2703.699737]  dump_stack+0x107/0x167
[ 2703.700223]  should_fail.cold+0x5/0xa
[ 2703.700730]  ? create_object.isra.0+0x3a/0xa20
[ 2703.701338]  should_failslab+0x5/0x20
[ 2703.701841]  kmem_cache_alloc+0x5b/0x310
[ 2703.702385]  create_object.isra.0+0x3a/0xa20
[ 2703.702962]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2703.703652]  __kmalloc_node+0x1ae/0x420
[ 2703.704188]  kvmalloc_node+0x119/0x170
[ 2703.704706]  alloc_fdtable+0x13f/0x280
[ 2703.705223]  dup_fd+0x92e/0xf40
[ 2703.705674]  copy_process+0x197c/0x78b0
[ 2703.706201]  ? SOFTIRQ_verbose+0x10/0x10
[ 2703.706742]  ? __lockdep_reset_lock+0x180/0x180
[ 2703.707350]  ? mark_lock+0xf5/0x2df0
[ 2703.708242]  ? __cleanup_sighand+0xb0/0xb0
[ 2703.708933]  ? _copy_from_user+0xfb/0x1b0
[ 2703.709585]  kernel_clone+0xe7/0x980
[ 2703.710170]  ? __lockdep_reset_lock+0x180/0x180
[ 2703.710895]  ? create_io_thread+0xf0/0xf0
[ 2703.711554]  ? ksys_write+0x21a/0x260
[ 2703.712316]  ? lock_downgrade+0x6d0/0x6d0
[ 2703.712963]  __do_sys_clone3+0x1e5/0x320
[ 2703.713599]  ? __do_sys_clone+0x110/0x110
[ 2703.714264]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2703.714996]  ? vfs_write+0x354/0xb10
[ 2703.715596]  ? fput_many+0x2f/0x1a0
[ 2703.716083]  ? ksys_write+0x1a9/0x260
[ 2703.716589]  ? __ia32_sys_read+0xb0/0xb0
[ 2703.717139]  do_syscall_64+0x33/0x40
[ 2703.717634]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2703.718313] RIP: 0033:0x7f862144ab19
[ 2703.718808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2703.724087] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2703.727535] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2703.728490] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2703.729435] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2703.730375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2703.731324] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2703.772310] FAULT_INJECTION: forcing a failure.
[ 2703.772310] name failslab, interval 1, probability 0, space 0, times 0
[ 2703.776431] CPU: 1 PID: 28982 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2703.781750] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2703.784702] Call Trace:
[ 2703.785621]  dump_stack+0x107/0x167
[ 2703.786892]  should_fail.cold+0x5/0xa
[ 2703.788232]  ? create_object.isra.0+0x3a/0xa20
[ 2703.789837]  should_failslab+0x5/0x20
[ 2703.791170]  kmem_cache_alloc+0x5b/0x310
[ 2703.792614]  create_object.isra.0+0x3a/0xa20
[ 2703.797135]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2703.798918]  kmem_cache_alloc_trace+0x151/0x320
[ 2703.801475]  io_uring_alloc_task_context+0x99/0x6a0
[ 2703.803218]  ? io_import_iovec+0x1120/0x1120
[ 2703.804841]  io_uring_setup+0x1dd1/0x2980
[ 2703.806298]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2703.808105]  ? wait_for_completion_io+0x270/0x270
[ 2703.809819]  do_syscall_64+0x33/0x40
[ 2703.811116]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2703.812931] RIP: 0033:0x7fd22c24ab19
[ 2703.814231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2703.825679] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2703.828554] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2703.831377] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2703.836993] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2703.839969] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2703.842718] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2703.945004] sd 0:0:0:0: [sg0] tag#0 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[ 2703.948279] sd 0:0:0:0: [sg0] tag#0 CDB: Update Block
[ 2703.950027] sd 0:0:0:0: [sg0] tag#0 CDB[00]: 3d c1 9c 9f 7b c3 37 1c 51 2d 41 60 7b 19 e4 ff
[ 2703.952837] sd 0:0:0:0: [sg0] tag#0 CDB[10]: 97 e6 d9 60 a0 9c 39 81 8f 37 60 8d ae d0 ba 44
[ 2703.955704] sd 0:0:0:0: [sg0] tag#0 CDB[20]: e1 35 08 80 0a 6e bc 64 7a 49 76 c9 82 69 93 09
[ 2703.958502] sd 0:0:0:0: [sg0] tag#0 CDB[30]: 97 7a a7 fc 4c 57 72 fc 89 e2 41 25 aa 8e 46 d6
[ 2703.961319] sd 0:0:0:0: [sg0] tag#0 CDB[40]: 1f 0b 63 80 68 13 60 18 e8 ee a6 d9 07 0b 6d ce
[ 2703.964138] sd 0:0:0:0: [sg0] tag#0 CDB[50]: 2a 97 98 2a 59 60 cd ed 40 3f fc 4f 57 a9 48 18
[ 2703.966932] sd 0:0:0:0: [sg0] tag#0 CDB[60]: 7b cd 40 d7 b0 98 62 51 2d df ba 11 b9 33 ad fc
[ 2703.969788] sd 0:0:0:0: [sg0] tag#0 CDB[70]: f9 40 99 0e 19 06 57 32 01 df da ea 31 fc 56 cf
[ 2703.972599] sd 0:0:0:0: [sg0] tag#0 CDB[80]: 08 a2 4d 89 25 ff 9c 02 6e 91 4e 53 00 b3 00 ee
[ 2703.975409] sd 0:0:0:0: [sg0] tag#0 CDB[90]: 42 b6 93 c4 c8 7d 2c 7a 04 0d 6f 2f 0a 89 aa f3
[ 2703.978269] sd 0:0:0:0: [sg0] tag#0 CDB[a0]: d3 1e 66 c4 89 da c4 80 f6 91 22 39 91 cc f4 b2
[ 2703.981079] sd 0:0:0:0: [sg0] tag#0 CDB[b0]: 9c 98 dd 8b 43 e7 73 09 c9 fa 0a cb 78 65 e3 c6
[ 2703.983883] sd 0:0:0:0: [sg0] tag#0 CDB[c0]: 36 d8 78 34
[ 2703.986005] program syz-executor.1 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2704.012557] cgroup: fork rejected by pids controller in /syz1
10:28:34 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 36)

10:28:34 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0/file0', [{0x20, '[-:$+'}, {0x20, '@'}, {0x20, 'r\\.@{'}, {0x20, '\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n'}, {0x20, '-z&#-/'}], 0xa, "fad37df07883599b1ee76f23b4754e551d5defd9c7f478"}, 0x64)
r2 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r2, 0x0)
lseek(r2, 0x0, 0x3)

10:28:34 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 27)
getresuid(0x0, 0x0, 0x0)

10:28:34 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x20000000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:28:34 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x4000000000000000, 0xffffffffffffffff)

10:28:34 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 19)

10:28:34 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, r4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r4}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r4}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r5=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0x0, r6, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r5}}, {@dont_appraise}, {@fowner_gt={'fowner>', r6}}]}})

10:28:34 executing program 4:
pipe2(&(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80800)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000001ec0)=ANY=[@ANYBLOB="0100f01e1ddb5c155b9f0000baabc44fe45d64841664860895a634b40ae459fa330d79c7b70fb07075d1255ebd036bb4225cc1f6cc5a07650efccdd69f753cac41f6304cf1cf68ede11e1353aff57b125b06872852faa68d7f03a72c4dc544f72e361487bf9d0c34dd1a20fd38c3a2bc5d033b0c4aaeab779491d6252d3e6f4ea46d9ad07e28564adec08659d5c9a05bc92de3509d9d4a92522a24dddeefab8d9afaeec4b1608f1c2de02635fa31f999c359976319ff6c", @ANYRESDEC, @ANYBLOB="05000000000000002e2f66696c653100"])
r2 = syz_io_uring_setup(0x56dd, &(0x7f00000001c0)={0x0, 0x770f}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000100)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
recvmmsg$unix(r0, &(0x7f0000001d00)=[{{&(0x7f0000000340)=@abs, 0x6e, &(0x7f00000006c0)=[{&(0x7f00000003c0)=""/183, 0xb7}, {&(0x7f0000000500)=""/245, 0xf5}, {&(0x7f0000000600)=""/180, 0xb4}], 0x3, &(0x7f0000000700)=ANY=[@ANYBLOB="20041e970000ff0001ec", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0x20}}, {{&(0x7f0000000740)=@abs, 0x6e, &(0x7f0000000880)=[{&(0x7f00000007c0)=""/165, 0xa5}], 0x1, &(0x7f00000008c0)=ANY=[@ANYBLOB="2c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=<r6=>0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="00800000"], 0x30}}, {{&(0x7f0000000900)=@abs, 0x6e, &(0x7f0000001a80)=[{&(0x7f0000000980)=""/214, 0xd6}, {&(0x7f0000000a80)=""/4096, 0x1000}], 0x2, &(0x7f0000001ac0)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x98}}], 0x3, 0x12001, 0x0)
syz_io_uring_setup(0x14df, &(0x7f0000001b80)={0x0, 0xe1c2, 0x4, 0x3, 0x108, 0x0, r6}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000001c80), &(0x7f0000001dc0))
symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00')
setresuid(0xffffffffffffffff, r5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
socket$unix(0x1, 0x5, 0x0)
accept$inet6(r1, &(0x7f0000001e00)={0xa, 0x0, 0x0, @dev}, &(0x7f0000001e40)=0x1c)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000)
r8 = openat$cgroup_int(r0, &(0x7f0000000300)='cpuset.memory_spread_slab\x00', 0x2, 0x0)
ftruncate(r8, 0x3)
syz_io_uring_submit(r7, r4, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001)
connect$inet6(0xffffffffffffffff, &(0x7f0000001e80)={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0xf}, 0x8}, 0x1c)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2720.748621] FAULT_INJECTION: forcing a failure.
[ 2720.748621] name failslab, interval 1, probability 0, space 0, times 0
[ 2720.750161] CPU: 1 PID: 29303 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2720.751078] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2720.756214] Call Trace:
[ 2720.756591]  dump_stack+0x107/0x167
[ 2720.757145]  should_fail.cold+0x5/0xa
[ 2720.757667]  ? copy_fs_struct+0x45/0x340
[ 2720.758210]  should_failslab+0x5/0x20
[ 2720.758723]  kmem_cache_alloc+0x5b/0x310
[ 2720.759269]  copy_fs_struct+0x45/0x340
[ 2720.759801]  copy_process+0x34b1/0x78b0
[ 2720.760333]  ? SOFTIRQ_verbose+0x10/0x10
[ 2720.760879]  ? __lockdep_reset_lock+0x180/0x180
[ 2720.761496]  ? mark_lock+0xf5/0x2df0
[ 2720.762012]  ? __cleanup_sighand+0xb0/0xb0
[ 2720.762587]  ? _copy_from_user+0xfb/0x1b0
[ 2720.763153]  kernel_clone+0xe7/0x980
[ 2720.763650]  ? __lockdep_reset_lock+0x180/0x180
[ 2720.764286]  ? create_io_thread+0xf0/0xf0
[ 2720.764852]  ? ksys_write+0x21a/0x260
[ 2720.765357]  ? lock_downgrade+0x6d0/0x6d0
[ 2720.765919]  __do_sys_clone3+0x1e5/0x320
[ 2720.766459]  ? __do_sys_clone+0x110/0x110
[ 2720.767028]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2720.767648]  ? vfs_write+0x354/0xb10
[ 2720.768186]  ? fput_many+0x2f/0x1a0
[ 2720.768674]  ? ksys_write+0x1a9/0x260
[ 2720.769179]  ? __ia32_sys_read+0xb0/0xb0
[ 2720.769734]  do_syscall_64+0x33/0x40
[ 2720.770231]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2720.770912] RIP: 0033:0x7f862144ab19
[ 2720.771409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2720.773920] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2720.774935] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2720.775899] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2720.776849] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2720.777797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2720.778750] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2720.789829] FAULT_INJECTION: forcing a failure.
[ 2720.789829] name failslab, interval 1, probability 0, space 0, times 0
10:28:34 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
madvise(&(0x7f0000ff3000/0x2000)=nil, 0x2000, 0x13)
pkey_mprotect(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x2000004, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 2720.791779] CPU: 0 PID: 29305 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2720.796690] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2720.797789] Call Trace:
[ 2720.798139]  dump_stack+0x107/0x167
[ 2720.798622]  should_fail.cold+0x5/0xa
[ 2720.799127]  ? create_object.isra.0+0x3a/0xa20
[ 2720.799731]  should_failslab+0x5/0x20
[ 2720.800257]  kmem_cache_alloc+0x5b/0x310
[ 2720.800800]  create_object.isra.0+0x3a/0xa20
[ 2720.801382]  kmemleak_alloc_percpu+0xa0/0x100
[ 2720.801982]  pcpu_alloc+0x4e2/0x1240
[ 2720.802485]  ? io_async_queue_proc+0x80/0x80
[ 2720.803065]  percpu_ref_init+0x31/0x3d0
[ 2720.803595]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 2720.804320]  io_uring_setup+0x14f6/0x2980
[ 2720.804879]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2720.805545]  ? wait_for_completion_io+0x270/0x270
[ 2720.806204]  do_syscall_64+0x33/0x40
[ 2720.806697]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2720.807371] RIP: 0033:0x7fb4a26afb19
[ 2720.807872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2720.810290] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2720.811291] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2720.812247] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2720.813185] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2720.814125] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2720.815060] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:28:34 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 20)

[ 2720.856507] FAULT_INJECTION: forcing a failure.
[ 2720.856507] name failslab, interval 1, probability 0, space 0, times 0
[ 2720.858014] CPU: 1 PID: 29302 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2720.858923] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2720.860035] Call Trace:
[ 2720.860386]  dump_stack+0x107/0x167
[ 2720.860869]  should_fail.cold+0x5/0xa
[ 2720.861380]  ? io_uring_alloc_task_context+0x4a3/0x6a0
[ 2720.862077]  should_failslab+0x5/0x20
[ 2720.862583]  kmem_cache_alloc_trace+0x55/0x320
[ 2720.863193]  io_uring_alloc_task_context+0x4a3/0x6a0
[ 2720.863889]  ? io_import_iovec+0x1120/0x1120
[ 2720.864485]  io_uring_setup+0x1dd1/0x2980
[ 2720.865048]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2720.865720]  ? wait_for_completion_io+0x270/0x270
[ 2720.866386]  do_syscall_64+0x33/0x40
[ 2720.866884]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2720.867556] RIP: 0033:0x7fd22c24ab19
[ 2720.868078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2720.870505] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2720.871510] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2720.872481] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2720.873423] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2720.874364] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2720.875310] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:28:34 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 37)

10:28:34 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 28)
getresuid(0x0, 0x0, 0x0)

10:28:34 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x21000000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:28:34 executing program 4:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
ioctl$PIO_UNIMAP(r2, 0x4b67, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x8, 0x7}]})
ioctl$FIONCLEX(r0, 0x5450)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r1)
r3 = dup3(r0, 0xffffffffffffffff, 0x0)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, 0x0)
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100), 0x206000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r3, 0xc0189374, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r5, @ANYBLOB="b90bfeffffffffff2d422f66696cce0000"])
ioctl$TIOCL_BLANKSCREEN(r4, 0x541c, &(0x7f0000000000)=0xf)

10:28:34 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, r4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r4}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r4}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r5=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0x0, r6, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r5}}, {@dont_appraise}, {@fowner_gt={'fowner>', r6}}]}})

10:28:34 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0/file0', [{0x20, '[-:$+'}, {0x20, '@'}, {0x20, 'r\\.@{'}, {0x20, '\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n'}, {0x20, '-z&#-/'}], 0xa, "fad37df07883599b1ee76f23b4754e551d5defd9c7f478"}, 0x64)
r2 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r2, 0x0)
lseek(r2, 0x0, 0x3)

[ 2721.789555] FAULT_INJECTION: forcing a failure.
[ 2721.789555] name failslab, interval 1, probability 0, space 0, times 0
[ 2721.791082] CPU: 1 PID: 29523 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2721.792017] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2721.793111] Call Trace:
[ 2721.793467]  dump_stack+0x107/0x167
[ 2721.793951]  should_fail.cold+0x5/0xa
[ 2721.794452]  ? create_object.isra.0+0x3a/0xa20
[ 2721.795062]  should_failslab+0x5/0x20
[ 2721.795565]  kmem_cache_alloc+0x5b/0x310
[ 2721.800141]  create_object.isra.0+0x3a/0xa20
[ 2721.800720]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2721.801386]  kmem_cache_alloc+0x159/0x310
[ 2721.801943]  copy_fs_struct+0x45/0x340
[ 2721.802458]  copy_process+0x34b1/0x78b0
[ 2721.802983]  ? SOFTIRQ_verbose+0x10/0x10
[ 2721.803519]  ? __lockdep_reset_lock+0x180/0x180
[ 2721.804152]  ? mark_lock+0xf5/0x2df0
[ 2721.804661]  ? __cleanup_sighand+0xb0/0xb0
[ 2721.805237]  ? _copy_from_user+0xfb/0x1b0
[ 2721.805789]  kernel_clone+0xe7/0x980
[ 2721.806277]  ? __lockdep_reset_lock+0x180/0x180
[ 2721.806891]  ? create_io_thread+0xf0/0xf0
[ 2721.807442]  ? ksys_write+0x21a/0x260
[ 2721.807970]  ? lock_downgrade+0x6d0/0x6d0
[ 2721.808520]  __do_sys_clone3+0x1e5/0x320
[ 2721.809050]  ? __do_sys_clone+0x110/0x110
[ 2721.809613]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2721.810222]  ? vfs_write+0x354/0xb10
[ 2721.810714]  ? fput_many+0x2f/0x1a0
[ 2721.811190]  ? ksys_write+0x1a9/0x260
[ 2721.811692]  ? __ia32_sys_read+0xb0/0xb0
[ 2721.812266]  do_syscall_64+0x33/0x40
[ 2721.812757]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2721.813430] RIP: 0033:0x7f862144ab19
[ 2721.813921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2721.816357] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2721.817366] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2721.818309] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2721.819244] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2721.824208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2721.825141] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2721.874115] FAULT_INJECTION: forcing a failure.
[ 2721.874115] name failslab, interval 1, probability 0, space 0, times 0
[ 2721.875620] CPU: 0 PID: 29528 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2721.878453] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2721.879533] Call Trace:
[ 2721.879914]  dump_stack+0x107/0x167
[ 2721.880411]  should_fail.cold+0x5/0xa
[ 2721.880931]  ? percpu_ref_init+0xd8/0x3d0
[ 2721.881476]  should_failslab+0x5/0x20
[ 2721.881987]  kmem_cache_alloc_trace+0x55/0x320
[ 2721.882586]  ? io_async_queue_proc+0x80/0x80
[ 2721.883201]  percpu_ref_init+0xd8/0x3d0
[ 2721.883740]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 2721.884502]  io_uring_setup+0x14f6/0x2980
[ 2721.885066]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2721.885739]  ? wait_for_completion_io+0x270/0x270
[ 2721.886398]  do_syscall_64+0x33/0x40
[ 2721.886929]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2721.887592] RIP: 0033:0x7fb4a26afb19
[ 2721.888114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2721.890541] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2721.891559] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2721.893093] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2721.894210] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2721.895394] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2721.896571] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2722.152864] FAULT_INJECTION: forcing a failure.
[ 2722.152864] name failslab, interval 1, probability 0, space 0, times 0
[ 2722.154431] CPU: 0 PID: 29567 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2722.155354] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2722.156474] Call Trace:
[ 2722.156837]  dump_stack+0x107/0x167
[ 2722.157319]  should_fail.cold+0x5/0xa
[ 2722.157842]  ? create_object.isra.0+0x3a/0xa20
[ 2722.158447]  should_failslab+0x5/0x20
[ 2722.158961]  kmem_cache_alloc+0x5b/0x310
[ 2722.159503]  create_object.isra.0+0x3a/0xa20
[ 2722.160096]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2722.160775]  kmem_cache_alloc_trace+0x151/0x320
[ 2722.161395]  io_uring_alloc_task_context+0x4a3/0x6a0
[ 2722.162063]  ? io_import_iovec+0x1120/0x1120
[ 2722.162657]  io_uring_setup+0x1dd1/0x2980
[ 2722.163210]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2722.165238]  ? wait_for_completion_io+0x270/0x270
[ 2722.169237]  do_syscall_64+0x33/0x40
[ 2722.171707]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2722.175519] RIP: 0033:0x7fd22c24ab19
[ 2722.177138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2722.180424] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2722.181644] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2722.182823] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2722.184123] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2722.185268] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2722.186486] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:28:52 executing program 4:
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x5b, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f00000004c0))
r1 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r1, 0xa, 0x0, r2)
preadv(r1, &(0x7f0000000000), 0x0, 0x2, 0x5de)

10:28:52 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:28:52 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 38)

10:28:52 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x3f000000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:28:52 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 29)
getresuid(0x0, 0x0, 0x0)

10:28:52 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0/file0', [{0x20, '[-:$+'}, {0x20, '@'}, {0x20, 'r\\.@{'}, {0x20, '\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n'}, {0x20, '-z&#-/'}], 0xa, "fad37df07883599b1ee76f23b4754e551d5defd9c7f478"}, 0x64)
r2 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r2, 0x0)
lseek(r2, 0x0, 0x3)

10:28:52 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 21)

10:28:52 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
r0 = pkey_alloc(0x0, 0x5)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0)
pkey_mprotect(&(0x7f0000ff6000/0x5000)=nil, 0x5000, 0x200000d, r0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
r1 = pkey_alloc(0x0, 0x2)
pkey_mprotect(&(0x7f0000ff7000/0x1000)=nil, 0x1000, 0x2000004, r1)

[ 2739.365948] FAULT_INJECTION: forcing a failure.
[ 2739.365948] name failslab, interval 1, probability 0, space 0, times 0
[ 2739.367613] CPU: 1 PID: 29758 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2739.368685] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2739.369898] Call Trace:
[ 2739.370286]  dump_stack+0x107/0x167
[ 2739.370817]  should_fail.cold+0x5/0xa
[ 2739.371379]  ? create_object.isra.0+0x3a/0xa20
[ 2739.372060]  should_failslab+0x5/0x20
[ 2739.381927] FAULT_INJECTION: forcing a failure.
[ 2739.381927] name failslab, interval 1, probability 0, space 0, times 0
[ 2739.384558]  kmem_cache_alloc+0x5b/0x310
[ 2739.384584]  create_object.isra.0+0x3a/0xa20
[ 2739.388783]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2739.389451]  kmem_cache_alloc_trace+0x151/0x320
[ 2739.390071]  ? io_async_queue_proc+0x80/0x80
[ 2739.390650]  percpu_ref_init+0xd8/0x3d0
[ 2739.391196]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 2739.391911]  io_uring_setup+0x14f6/0x2980
[ 2739.392489]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2739.393157]  ? wait_for_completion_io+0x270/0x270
[ 2739.393814]  do_syscall_64+0x33/0x40
[ 2739.394314]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2739.394989] RIP: 0033:0x7fb4a26afb19
[ 2739.395483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2739.397930] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2739.398936] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2739.399879] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2739.400843] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2739.401781] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2739.402732] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2739.403703] CPU: 0 PID: 29760 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2739.404642] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2739.405719] Call Trace:
[ 2739.406080]  dump_stack+0x107/0x167
[ 2739.406563]  should_fail.cold+0x5/0xa
[ 2739.407066]  ? copy_process+0x1ae7/0x78b0
[ 2739.408143]  should_failslab+0x5/0x20
[ 2739.409499]  kmem_cache_alloc+0x5b/0x310
[ 2739.410929]  ? _raw_spin_unlock+0x1a/0x30
[ 2739.412398]  copy_process+0x1ae7/0x78b0
[ 2739.413769]  ? SOFTIRQ_verbose+0x10/0x10
[ 2739.415215]  ? __lockdep_reset_lock+0x180/0x180
[ 2739.416871]  ? mark_lock+0xf5/0x2df0
[ 2739.418197]  ? __cleanup_sighand+0xb0/0xb0
[ 2739.419687]  ? _copy_from_user+0xfb/0x1b0
[ 2739.421148]  kernel_clone+0xe7/0x980
[ 2739.422440]  ? __lockdep_reset_lock+0x180/0x180
[ 2739.429399]  ? create_io_thread+0xf0/0xf0
[ 2739.430840]  ? ksys_write+0x21a/0x260
[ 2739.432182]  ? lock_downgrade+0x6d0/0x6d0
[ 2739.433619]  __do_sys_clone3+0x1e5/0x320
[ 2739.435021]  ? __do_sys_clone+0x110/0x110
[ 2739.436492]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2739.438104]  ? vfs_write+0x354/0xb10
[ 2739.439396]  ? fput_many+0x2f/0x1a0
[ 2739.444682]  ? ksys_write+0x1a9/0x260
[ 2739.446004]  ? __ia32_sys_read+0xb0/0xb0
[ 2739.447424]  do_syscall_64+0x33/0x40
[ 2739.448727]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2739.450515] RIP: 0033:0x7f862144ab19
[ 2739.451807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2739.458291] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2739.460959] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2739.463481] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2739.466012] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2739.468550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2739.471101] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2739.496650] FAULT_INJECTION: forcing a failure.
[ 2739.496650] name failslab, interval 1, probability 0, space 0, times 0
[ 2739.511763] CPU: 0 PID: 29823 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2739.514206] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2739.517126] Call Trace:
[ 2739.518036]  dump_stack+0x107/0x167
[ 2739.519297]  should_fail.cold+0x5/0xa
[ 2739.520641]  ? io_wq_create+0xeb/0xc00
[ 2739.522009]  should_failslab+0x5/0x20
[ 2739.523329]  __kmalloc+0x72/0x390
[ 2739.524566]  io_wq_create+0xeb/0xc00
[ 2739.525895]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2739.527657]  ? io_import_iovec+0x1120/0x1120
[ 2739.529228]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2739.530774]  ? __io_req_find_next+0x300/0x300
[ 2739.540361]  io_uring_setup+0x1dd1/0x2980
[ 2739.541802]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2739.543566]  ? wait_for_completion_io+0x270/0x270
[ 2739.545278]  do_syscall_64+0x33/0x40
[ 2739.546566]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2739.548365] RIP: 0033:0x7fd22c24ab19
[ 2739.549653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2739.556203] RSP: 002b:00007fd22979f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2739.558879] RAX: ffffffffffffffda RBX: 00007fd22c35e020 RCX: 00007fd22c24ab19
[ 2739.561442] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2739.563927] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2739.566437] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2739.568955] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:28:53 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 39)

10:28:53 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffe000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:28:53 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:28:53 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x40000000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:28:53 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 22)

10:28:53 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 30)
getresuid(0x0, 0x0, 0x0)

10:28:53 executing program 4:
syz_io_uring_setup(0x13cb, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x10a}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
syz_io_uring_setup(0x13cb, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x10a}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
ioctl$BTRFS_IOC_RM_DEV(0xffffffffffffffff, 0x5000940b, &(0x7f00000004c0)={{}, "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"})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fork()
ptrace(0x10, r0)
ptrace$getsig(0x4202, r0, 0x5, &(0x7f0000000300))
ptrace$getregset(0x4204, r0, 0x6, &(0x7f0000000180)={&(0x7f0000000400)=""/136, 0x88})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x9, 0x5, 0x7, 0x24, 0x0, 0x6, 0x1001, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, @perf_config_ext={0x7fff, 0x8}, 0x4, 0x8, 0x7ff, 0x0, 0x3, 0x4, 0x0, 0x0, 0x3f, 0x0, 0x5}, r0, 0x6, r1, 0x2)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x1ff, 0x5, &(0x7f0000000440)=[{&(0x7f0000000240)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f453ef010001000000dff4655f000000000000000001000000000000000b00000000011de0bf1d81bf57205bfcea596f45c422d0a3e234416e002518852b3536696e17b0e211e6beced6622a279d5b7c651455b110e23074442dad7422ce152c08982cdec23bd0af363984ef4a58e2c4cf7f0f91c0cdf9084e479bd57a9073d1ff390adb47cd2ae442af19391987d50dfcf332a0e609c33fdba5299818209b525291e0f2f0c40ba778c69a8081200ed7833906f2d35ad32a03a3c66789fc519c469da3360f08427d65c4ba458f826d34", 0x101, 0x400}, {0x0, 0x28, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000000080)="00e4fa9633afebe2b20600000000000000", 0x11, 0x800}, {&(0x7f0000011600)="ed410000000d0000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000040)={[{@data_writeback}]})

10:28:53 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0/file0', [{0x20, '[-:$+'}, {0x20, '@'}, {0x20, 'r\\.@{'}, {0x20, '\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n'}, {0x20, '-z&#-/'}], 0xa, "fad37df07883599b1ee76f23b4754e551d5defd9c7f478"}, 0x64)
r2 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r2, 0x0)
lseek(r2, 0x0, 0x3)

[ 2741.066474] FAULT_INJECTION: forcing a failure.
[ 2741.066474] name failslab, interval 1, probability 0, space 0, times 0
[ 2741.069629] FAULT_INJECTION: forcing a failure.
[ 2741.069629] name failslab, interval 1, probability 0, space 0, times 0
[ 2741.072222] CPU: 1 PID: 29986 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2741.074514] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2741.075603] Call Trace:
[ 2741.075961]  dump_stack+0x107/0x167
[ 2741.076457]  should_fail.cold+0x5/0xa
[ 2741.076959]  ? create_object.isra.0+0x3a/0xa20
[ 2741.077571]  should_failslab+0x5/0x20
[ 2741.078074]  kmem_cache_alloc+0x5b/0x310
[ 2741.078615]  create_object.isra.0+0x3a/0xa20
[ 2741.079191]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2741.079863]  kmem_cache_alloc+0x159/0x310
[ 2741.080433]  copy_process+0x1ae7/0x78b0
[ 2741.080954]  ? SOFTIRQ_verbose+0x10/0x10
[ 2741.081500]  ? __lockdep_reset_lock+0x180/0x180
[ 2741.082111]  ? mark_lock+0xf5/0x2df0
[ 2741.082623]  ? __cleanup_sighand+0xb0/0xb0
[ 2741.083202]  ? _copy_from_user+0xfb/0x1b0
[ 2741.083755]  kernel_clone+0xe7/0x980
[ 2741.084267]  ? __lockdep_reset_lock+0x180/0x180
[ 2741.084877]  ? create_io_thread+0xf0/0xf0
[ 2741.085445]  ? ksys_write+0x21a/0x260
[ 2741.085949]  ? lock_downgrade+0x6d0/0x6d0
[ 2741.086500]  __do_sys_clone3+0x1e5/0x320
[ 2741.087038]  ? __do_sys_clone+0x110/0x110
[ 2741.087602]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2741.088231]  ? vfs_write+0x354/0xb10
[ 2741.088722]  ? fput_many+0x2f/0x1a0
[ 2741.089209]  ? ksys_write+0x1a9/0x260
[ 2741.089713]  ? __ia32_sys_read+0xb0/0xb0
[ 2741.090261]  do_syscall_64+0x33/0x40
[ 2741.090756]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2741.091431] RIP: 0033:0x7f862144ab19
[ 2741.091924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2741.094369] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2741.095373] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2741.096333] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2741.097274] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2741.098215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2741.099155] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2741.104140] CPU: 0 PID: 29985 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2741.105060] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2741.106148] Call Trace:
[ 2741.106503]  dump_stack+0x107/0x167
[ 2741.106986]  should_fail.cold+0x5/0xa
[ 2741.107492]  ? create_object.isra.0+0x3a/0xa20
[ 2741.108112]  should_failslab+0x5/0x20
[ 2741.108615]  kmem_cache_alloc+0x5b/0x310
[ 2741.109158]  create_object.isra.0+0x3a/0xa20
[ 2741.109730]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2741.110407]  kmem_cache_alloc_trace+0x151/0x320
[ 2741.111023]  ? io_async_queue_proc+0x80/0x80
[ 2741.111613]  percpu_ref_init+0xd8/0x3d0
[ 2741.112154]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 2741.112868]  io_uring_setup+0x14f6/0x2980
[ 2741.113421]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2741.120511]  ? wait_for_completion_io+0x270/0x270
[ 2741.121177]  do_syscall_64+0x33/0x40
[ 2741.121665]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2741.122340] RIP: 0033:0x7fb4a26afb19
[ 2741.122834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2741.125254] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2741.126255] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2741.127194] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2741.128139] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2741.129071] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2741.130001] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:28:54 executing program 0:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
move_mount(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00', 0x0)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
syz_io_uring_setup(0x4d53, &(0x7f00000002c0), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000400)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, {0x2008}}, 0x5)

[ 2741.297168] FAULT_INJECTION: forcing a failure.
[ 2741.297168] name failslab, interval 1, probability 0, space 0, times 0
[ 2741.298713] CPU: 0 PID: 30092 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2741.299628] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2741.304741] Call Trace:
[ 2741.305097]  dump_stack+0x107/0x167
[ 2741.305584]  should_fail.cold+0x5/0xa
[ 2741.306090]  ? create_object.isra.0+0x3a/0xa20
[ 2741.306699]  should_failslab+0x5/0x20
[ 2741.307203]  kmem_cache_alloc+0x5b/0x310
[ 2741.307747]  create_object.isra.0+0x3a/0xa20
[ 2741.308332]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2741.309009]  __kmalloc+0x16e/0x390
[ 2741.309486]  io_wq_create+0xeb/0xc00
[ 2741.309983]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2741.310649]  ? io_import_iovec+0x1120/0x1120
[ 2741.311228]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2741.311812]  ? __io_req_find_next+0x300/0x300
[ 2741.312420]  io_uring_setup+0x1dd1/0x2980
[ 2741.312977]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2741.313639]  ? wait_for_completion_io+0x270/0x270
[ 2741.314296]  do_syscall_64+0x33/0x40
[ 2741.314785]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2741.315456] RIP: 0033:0x7fd22c24ab19
[ 2741.315941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2741.318357] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2741.319354] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2741.320294] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2741.321234] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2741.322167] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2741.323103] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2741.390017] kauditd_printk_skb: 52 callbacks suppressed
[ 2741.390038] audit: type=1326 audit(1749637735.029:408): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29982 comm="syz-executor.4" exe="/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5312d97b19 code=0x7ffc0000
[ 2741.401840] audit: type=1326 audit(1749637735.029:409): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29982 comm="syz-executor.4" exe="/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5312d97b19 code=0x7ffc0000
[ 2741.421411] audit: type=1326 audit(1749637735.056:410): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29982 comm="syz-executor.4" exe="/syz-executor.4" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f5312d97b19 code=0x7ffc0000
[ 2741.430713] audit: type=1326 audit(1749637735.056:411): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29982 comm="syz-executor.4" exe="/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5312d97b19 code=0x7ffc0000
[ 2741.438910] audit: type=1326 audit(1749637735.056:412): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29982 comm="syz-executor.4" exe="/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5312d97b19 code=0x7ffc0000
[ 2741.446696] audit: type=1326 audit(1749637735.061:413): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29982 comm="syz-executor.4" exe="/syz-executor.4" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f5312d97b19 code=0x7ffc0000
[ 2741.449940] audit: type=1326 audit(1749637735.061:414): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29982 comm="syz-executor.4" exe="/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5312d97b19 code=0x7ffc0000
[ 2741.457820] audit: type=1326 audit(1749637735.061:415): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29982 comm="syz-executor.4" exe="/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5312d97b19 code=0x7ffc0000
[ 2741.485812] audit: type=1326 audit(1749637735.070:416): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29982 comm="syz-executor.4" exe="/syz-executor.4" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f5312d97b19 code=0x7ffc0000
[ 2741.497138] audit: type=1326 audit(1749637735.136:417): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=29982 comm="syz-executor.4" exe="/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5312d97b19 code=0x7ffc0000
10:29:12 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 40)

10:29:12 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
r0 = pkey_alloc(0x0, 0x5)
pkey_mprotect(&(0x7f0000ff1000/0x3000)=nil, 0x3000, 0x2, r0)

10:29:12 executing program 4:
socketpair(0x27, 0x800, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_genetlink_get_family_id$mptcp(&(0x7f00000001c0), r0)
syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r1, 0x82307201, &(0x7f0000000500)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
r2 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x900020, &(0x7f0000000900)=ANY=[])
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='wchan\x00')
setfsgid(0x0)
mkdirat(r2, &(0x7f0000000040)='./file0\x00', 0x0)
syz_io_uring_setup(0x4d53, &(0x7f00000002c0), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000240)=@IORING_OP_ASYNC_CANCEL={0xe, 0x3, 0x0, 0x0, 0x0, 0x23456}, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/sockstat6\x00')
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index}, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000)
unlinkat(r2, &(0x7f00000004c0)='./file0\x00', 0x200)
open(&(0x7f0000000180)='./file0\x00', 0x240880, 0x0)

10:29:12 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x5f080000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:29:12 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 23)

10:29:12 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 31)
getresuid(0x0, 0x0, 0x0)

10:29:12 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:29:12 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0/file0', [{0x20, '[-:$+'}, {0x20, '@'}, {0x20, 'r\\.@{'}, {0x20, '\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n'}, {0x20, '-z&#-/'}], 0xa, "fad37df07883599b1ee76f23b4754e551d5defd9c7f478"}, 0x64)
r2 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r2, 0x0)

[ 2758.697877] FAULT_INJECTION: forcing a failure.
[ 2758.697877] name failslab, interval 1, probability 0, space 0, times 0
[ 2758.699434] CPU: 1 PID: 30217 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2758.700364] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2758.701457] Call Trace:
[ 2758.701813]  dump_stack+0x107/0x167
[ 2758.702299]  should_fail.cold+0x5/0xa
[ 2758.702808]  ? __d_alloc+0x2a/0x990
[ 2758.703296]  should_failslab+0x5/0x20
[ 2758.703797]  kmem_cache_alloc+0x5b/0x310
[ 2758.704403]  __d_alloc+0x2a/0x990
[ 2758.704865]  ? find_held_lock+0x2c/0x110
[ 2758.705407]  d_alloc_pseudo+0x19/0x70
[ 2758.705912]  alloc_file_pseudo+0xce/0x250
[ 2758.706458]  ? trace_hardirqs_on+0x5b/0x180
[ 2758.707027]  ? alloc_file+0x5a0/0x5a0
[ 2758.707546]  anon_inode_getfile+0xc8/0x1f0
[ 2758.708118]  io_uring_setup+0x138b/0x2980
[ 2758.708706]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2758.709414]  ? wait_for_completion_io+0x270/0x270
[ 2758.710077]  do_syscall_64+0x33/0x40
[ 2758.710570]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2758.711247] RIP: 0033:0x7fb4a26afb19
[ 2758.711742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2758.714182] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2758.715188] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2758.716129] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2758.717079] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2758.718025] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2758.718964] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2758.742740] FAULT_INJECTION: forcing a failure.
[ 2758.742740] name failslab, interval 1, probability 0, space 0, times 0
[ 2758.744267] CPU: 1 PID: 30216 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2758.745204] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2758.746311] Call Trace:
[ 2758.746685]  dump_stack+0x107/0x167
[ 2758.747195]  should_fail.cold+0x5/0xa
[ 2758.747726]  ? io_wq_create+0x6ef/0xc00
[ 2758.748265]  should_failslab+0x5/0x20
[ 2758.748790]  kmem_cache_alloc_node_trace+0x59/0x340
[ 2758.749480]  io_wq_create+0x6ef/0xc00
[ 2758.750002]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2758.750677]  ? io_import_iovec+0x1120/0x1120
[ 2758.751259]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2758.751853]  ? __io_req_find_next+0x300/0x300
[ 2758.752468]  io_uring_setup+0x1dd1/0x2980
[ 2758.753023]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2758.753690]  ? wait_for_completion_io+0x270/0x270
[ 2758.754354]  do_syscall_64+0x33/0x40
[ 2758.754847]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2758.755521] RIP: 0033:0x7fd22c24ab19
[ 2758.756012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2758.758443] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2758.759446] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2758.760396] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2758.761335] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2758.762265] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2758.763208] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:29:12 executing program 0:
ioctl$KDGETKEYCODE(0xffffffffffffffff, 0x4b4c, &(0x7f0000000000)={0x2, 0x7fff})
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:29:12 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 41)

[ 2758.809369] FAULT_INJECTION: forcing a failure.
[ 2758.809369] name failslab, interval 1, probability 0, space 0, times 0
[ 2758.810869] CPU: 0 PID: 30300 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2758.811805] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2758.816462] Call Trace:
[ 2758.816819]  dump_stack+0x107/0x167
[ 2758.817305]  should_fail.cold+0x5/0xa
[ 2758.817798]  ? copy_process+0x1c65/0x78b0
[ 2758.818336]  should_failslab+0x5/0x20
[ 2758.818827]  kmem_cache_alloc+0x5b/0x310
[ 2758.819353]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2758.820026]  copy_process+0x1c65/0x78b0
[ 2758.824565]  ? SOFTIRQ_verbose+0x10/0x10
[ 2758.825106]  ? __lockdep_reset_lock+0x180/0x180
[ 2758.825716]  ? mark_lock+0xf5/0x2df0
[ 2758.826228]  ? __cleanup_sighand+0xb0/0xb0
[ 2758.826803]  ? _copy_from_user+0xfb/0x1b0
[ 2758.827357]  kernel_clone+0xe7/0x980
[ 2758.827847]  ? __lockdep_reset_lock+0x180/0x180
[ 2758.828480]  ? create_io_thread+0xf0/0xf0
[ 2758.829039]  ? ksys_write+0x21a/0x260
[ 2758.829542]  ? lock_downgrade+0x6d0/0x6d0
[ 2758.830092]  __do_sys_clone3+0x1e5/0x320
[ 2758.830631]  ? __do_sys_clone+0x110/0x110
[ 2758.831193]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2758.831803]  ? vfs_write+0x354/0xb10
[ 2758.832303]  ? fput_many+0x2f/0x1a0
[ 2758.832791]  ? ksys_write+0x1a9/0x260
[ 2758.833295]  ? __ia32_sys_read+0xb0/0xb0
[ 2758.833841]  do_syscall_64+0x33/0x40
[ 2758.834335]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2758.835008] RIP: 0033:0x7f862144ab19
[ 2758.835503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2758.837926] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2758.838927] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2758.839862] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2758.840817] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2758.841757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2758.842695] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:29:12 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 32)
getresuid(0x0, 0x0, 0x0)

10:29:12 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x7e000000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

[ 2759.390552] FAULT_INJECTION: forcing a failure.
[ 2759.390552] name failslab, interval 1, probability 0, space 0, times 0
[ 2759.392070] CPU: 0 PID: 30442 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2759.396656] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2759.397739] Call Trace:
[ 2759.398094]  dump_stack+0x107/0x167
[ 2759.398576]  should_fail.cold+0x5/0xa
[ 2759.399081]  ? create_object.isra.0+0x3a/0xa20
[ 2759.399685]  should_failslab+0x5/0x20
[ 2759.400182]  kmem_cache_alloc+0x5b/0x310
[ 2759.400784]  create_object.isra.0+0x3a/0xa20
[ 2759.401359]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2759.402029]  kmem_cache_alloc+0x159/0x310
[ 2759.402582]  __d_alloc+0x2a/0x990
[ 2759.403038]  ? find_held_lock+0x2c/0x110
[ 2759.403577]  d_alloc_pseudo+0x19/0x70
[ 2759.404074]  alloc_file_pseudo+0xce/0x250
[ 2759.404644]  ? trace_hardirqs_on+0x5b/0x180
[ 2759.405210]  ? alloc_file+0x5a0/0x5a0
[ 2759.405725]  anon_inode_getfile+0xc8/0x1f0
[ 2759.406287]  io_uring_setup+0x138b/0x2980
[ 2759.406840]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2759.407498]  ? wait_for_completion_io+0x270/0x270
[ 2759.408165]  do_syscall_64+0x33/0x40
[ 2759.412677]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2759.413349] RIP: 0033:0x7fb4a26afb19
[ 2759.413841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2759.416262] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2759.417267] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2759.418228] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2759.419205] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2759.420140] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2759.421090] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2759.649511] FAULT_INJECTION: forcing a failure.
[ 2759.649511] name failslab, interval 1, probability 0, space 0, times 0
[ 2759.651172] CPU: 1 PID: 30512 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2759.652140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2759.653685] Call Trace:
[ 2759.654040]  dump_stack+0x107/0x167
[ 2759.654515]  should_fail.cold+0x5/0xa
[ 2759.655102]  ? create_object.isra.0+0x3a/0xa20
[ 2759.655769]  should_failslab+0x5/0x20
[ 2759.656279]  kmem_cache_alloc+0x5b/0x310
[ 2759.656881]  create_object.isra.0+0x3a/0xa20
[ 2759.657454]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2759.658177]  __kmalloc+0x16e/0x390
[ 2759.658728]  io_wq_create+0xeb/0xc00
[ 2759.659230]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2759.659987]  ? io_import_iovec+0x1120/0x1120
[ 2759.661188]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2759.661844]  ? __io_req_find_next+0x300/0x300
[ 2759.662438]  io_uring_setup+0x1dd1/0x2980
[ 2759.663045]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2759.663815]  ? wait_for_completion_io+0x270/0x270
[ 2759.664491]  do_syscall_64+0x33/0x40
[ 2759.665040]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2759.665763] RIP: 0033:0x7fd22c24ab19
[ 2759.666257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2759.668854] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2759.669900] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2759.670894] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2759.671878] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2759.672911] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2759.673897] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:29:29 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0/file0', [{0x20, '[-:$+'}, {0x20, '@'}, {0x20, 'r\\.@{'}, {0x20, '\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n'}, {0x20, '-z&#-/'}], 0xa, "fad37df07883599b1ee76f23b4754e551d5defd9c7f478"}, 0x64)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, 0xffffffffffffffff, 0x0)

10:29:29 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 33)
getresuid(0x0, 0x0, 0x0)

10:29:29 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xe4ffffff, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:29:29 executing program 4:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000180)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0)
openat(r0, &(0x7f0000000240)='./file1\x00', 0x84500, 0x8)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8002, 0x0, @perf_config_ext={0x3}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
openat(r1, &(0x7f0000000000)='./file1\x00', 0x10000, 0x184)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000140)={0x0, 0x100000000})

10:29:29 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 24)

10:29:29 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:29:29 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
r0 = pkey_alloc(0x0, 0x5)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0)
pkey_mprotect(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000004, r0)
r1 = pkey_alloc(0x0, 0x3)
pkey_mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x9, r1)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ff3000/0x2000)=nil, 0x2000, 0x8000, &(0x7f0000000000)=0x80, 0x8, 0x4)

10:29:29 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 42)

[ 2776.326465] FAULT_INJECTION: forcing a failure.
[ 2776.326465] name failslab, interval 1, probability 0, space 0, times 0
[ 2776.327996] CPU: 1 PID: 30561 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2776.332924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2776.334013] Call Trace:
[ 2776.334369]  dump_stack+0x107/0x167
[ 2776.334853]  should_fail.cold+0x5/0xa
[ 2776.335358]  ? __alloc_file+0x21/0x320
[ 2776.335876]  should_failslab+0x5/0x20
[ 2776.336375]  kmem_cache_alloc+0x5b/0x310
[ 2776.336940]  __alloc_file+0x21/0x320
[ 2776.337432]  alloc_empty_file+0x6d/0x170
[ 2776.337969]  alloc_file+0x5e/0x5a0
[ 2776.338442]  alloc_file_pseudo+0x16a/0x250
[ 2776.339000]  ? alloc_file+0x5a0/0x5a0
[ 2776.339519]  anon_inode_getfile+0xc8/0x1f0
[ 2776.340085]  io_uring_setup+0x138b/0x2980
[ 2776.340656]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2776.341318]  ? wait_for_completion_io+0x270/0x270
[ 2776.341987]  do_syscall_64+0x33/0x40
[ 2776.342480]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2776.343156] RIP: 0033:0x7fb4a26afb19
[ 2776.343649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2776.346078] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2776.347085] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2776.348026] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2776.348976] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2776.349915] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2776.350854] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2776.375387] FAULT_INJECTION: forcing a failure.
[ 2776.375387] name failslab, interval 1, probability 0, space 0, times 0
[ 2776.381064] CPU: 1 PID: 30566 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2776.381973] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2776.383072] Call Trace:
[ 2776.383427]  dump_stack+0x107/0x167
[ 2776.383911]  should_fail.cold+0x5/0xa
[ 2776.384427]  ? create_object.isra.0+0x3a/0xa20
[ 2776.385044]  should_failslab+0x5/0x20
[ 2776.385549]  kmem_cache_alloc+0x5b/0x310
[ 2776.386092]  create_object.isra.0+0x3a/0xa20
[ 2776.386673]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2776.387343]  kmem_cache_alloc+0x159/0x310
[ 2776.387904]  copy_process+0x1c65/0x78b0
[ 2776.388441]  ? SOFTIRQ_verbose+0x10/0x10
[ 2776.388987]  ? __lockdep_reset_lock+0x180/0x180
[ 2776.389602]  ? mark_lock+0xf5/0x2df0
[ 2776.390113]  ? __cleanup_sighand+0xb0/0xb0
[ 2776.390691]  ? _copy_from_user+0xfb/0x1b0
[ 2776.391247]  kernel_clone+0xe7/0x980
[ 2776.391740]  ? __lockdep_reset_lock+0x180/0x180
[ 2776.392353]  ? create_io_thread+0xf0/0xf0
[ 2776.392947]  ? ksys_write+0x21a/0x260
[ 2776.393458]  ? lock_downgrade+0x6d0/0x6d0
[ 2776.394013]  __do_sys_clone3+0x1e5/0x320
[ 2776.394551]  ? __do_sys_clone+0x110/0x110
[ 2776.395118]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2776.395732]  ? vfs_write+0x354/0xb10
10:29:30 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000ff3000/0x1000)=nil, 0x1000, 0xc, 0xffffffffffffffff)

[ 2776.396227]  ? fput_many+0x2f/0x1a0
[ 2776.404731]  ? ksys_write+0x1a9/0x260
[ 2776.405235]  ? __ia32_sys_read+0xb0/0xb0
[ 2776.405783]  do_syscall_64+0x33/0x40
[ 2776.406277]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2776.406950] RIP: 0033:0x7f862144ab19
[ 2776.407445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2776.409881] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2776.410888] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2776.411829] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2776.412786] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2776.413730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2776.414673] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:29:30 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 43)

[ 2776.437617] FAULT_INJECTION: forcing a failure.
[ 2776.437617] name failslab, interval 1, probability 0, space 0, times 0
[ 2776.439270] CPU: 1 PID: 30563 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2776.440220] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2776.441350] Call Trace:
[ 2776.441733]  dump_stack+0x107/0x167
[ 2776.442250]  should_fail.cold+0x5/0xa
[ 2776.442791]  ? io_wq_create+0x6ef/0xc00
[ 2776.443336]  should_failslab+0x5/0x20
[ 2776.443865]  kmem_cache_alloc_node_trace+0x59/0x340
[ 2776.444569]  io_wq_create+0x6ef/0xc00
[ 2776.445080]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2776.445747]  ? io_import_iovec+0x1120/0x1120
[ 2776.446328]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2776.446917]  ? __io_req_find_next+0x300/0x300
[ 2776.447517]  io_uring_setup+0x1dd1/0x2980
[ 2776.448072]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2776.448758]  ? wait_for_completion_io+0x270/0x270
[ 2776.449416]  do_syscall_64+0x33/0x40
[ 2776.449915]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2776.450589] RIP: 0033:0x7fd22c24ab19
[ 2776.451081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2776.453550] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2776.454550] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2776.455496] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2776.456449] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2776.457392] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2776.458332] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:29:30 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 34)
getresuid(0x0, 0x0, 0x0)

10:29:30 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 25)

10:29:30 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:29:30 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfe590000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:29:30 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0/file0', [{0x20, '[-:$+'}, {0x20, '@'}, {0x20, 'r\\.@{'}, {0x20, '\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n'}, {0x20, '-z&#-/'}], 0xa, "fad37df07883599b1ee76f23b4754e551d5defd9c7f478"}, 0x64)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, 0xffffffffffffffff, 0x0)

10:29:30 executing program 4:
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000000)=""/241, 0x13d)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000100)=""/233, 0xe9)

10:29:30 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
mlock(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 2777.365733] FAULT_INJECTION: forcing a failure.
[ 2777.365733] name failslab, interval 1, probability 0, space 0, times 0
[ 2777.367238] CPU: 0 PID: 30782 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2777.368149] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2777.372533] Call Trace:
[ 2777.372889]  dump_stack+0x107/0x167
[ 2777.373386]  should_fail.cold+0x5/0xa
[ 2777.373891]  ? create_object.isra.0+0x3a/0xa20
[ 2777.374497]  should_failslab+0x5/0x20
[ 2777.374995]  kmem_cache_alloc+0x5b/0x310
[ 2777.375540]  create_object.isra.0+0x3a/0xa20
[ 2777.376116]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2777.376800]  kmem_cache_alloc+0x159/0x310
[ 2777.377350]  __alloc_file+0x21/0x320
[ 2777.377840]  alloc_empty_file+0x6d/0x170
[ 2777.378374]  alloc_file+0x5e/0x5a0
[ 2777.378845]  alloc_file_pseudo+0x16a/0x250
[ 2777.379400]  ? alloc_file+0x5a0/0x5a0
[ 2777.379916]  anon_inode_getfile+0xc8/0x1f0
[ 2777.380492]  io_uring_setup+0x138b/0x2980
[ 2777.381044]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2777.381746]  ? wait_for_completion_io+0x270/0x270
[ 2777.382405]  do_syscall_64+0x33/0x40
[ 2777.382896]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2777.383569] RIP: 0033:0x7fb4a26afb19
[ 2777.384062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2777.390482] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2777.391481] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2777.392428] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2777.393363] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2777.394305] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2777.395240] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:29:31 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 44)

[ 2777.515640] FAULT_INJECTION: forcing a failure.
[ 2777.515640] name failslab, interval 1, probability 0, space 0, times 0
[ 2777.517777] CPU: 1 PID: 30785 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2777.518685] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2777.519776] Call Trace:
[ 2777.520133]  dump_stack+0x107/0x167
[ 2777.524935]  should_fail.cold+0x5/0xa
[ 2777.526276]  ? copy_process+0x2514/0x78b0
[ 2777.527710]  should_failslab+0x5/0x20
[ 2777.529062]  kmem_cache_alloc+0x5b/0x310
[ 2777.530469]  copy_process+0x2514/0x78b0
[ 2777.531865]  ? SOFTIRQ_verbose+0x10/0x10
[ 2777.533285]  ? __lockdep_reset_lock+0x180/0x180
[ 2777.534918]  ? mark_lock+0xf5/0x2df0
[ 2777.536215]  ? __cleanup_sighand+0xb0/0xb0
[ 2777.541717]  ? _copy_from_user+0xfb/0x1b0
[ 2777.542276]  kernel_clone+0xe7/0x980
[ 2777.542770]  ? __lockdep_reset_lock+0x180/0x180
[ 2777.543388]  ? create_io_thread+0xf0/0xf0
[ 2777.543951]  ? ksys_write+0x21a/0x260
[ 2777.544461]  ? lock_downgrade+0x6d0/0x6d0
[ 2777.545020]  __do_sys_clone3+0x1e5/0x320
[ 2777.545552]  ? __do_sys_clone+0x110/0x110
[ 2777.546118]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2777.546732]  ? vfs_write+0x354/0xb10
[ 2777.547224]  ? fput_many+0x2f/0x1a0
[ 2777.547707]  ? ksys_write+0x1a9/0x260
[ 2777.548212]  ? __ia32_sys_read+0xb0/0xb0
[ 2777.548793]  do_syscall_64+0x33/0x40
[ 2777.549284]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2777.549998] RIP: 0033:0x7f862144ab19
[ 2777.550494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2777.552938] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2777.553945] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2777.554886] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2777.555827] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2777.556784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2777.557723] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2777.682813] FAULT_INJECTION: forcing a failure.
[ 2777.682813] name failslab, interval 1, probability 0, space 0, times 0
[ 2777.684291] CPU: 0 PID: 30793 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2777.685219] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2777.686306] Call Trace:
[ 2777.686657]  dump_stack+0x107/0x167
[ 2777.687139]  should_fail.cold+0x5/0xa
[ 2777.687642]  ? create_object.isra.0+0x3a/0xa20
[ 2777.688246]  should_failslab+0x5/0x20
[ 2777.688843]  kmem_cache_alloc+0x5b/0x310
[ 2777.689377]  ? _raw_spin_unlock_irqrestore+0x38/0x40
[ 2777.690040]  ? trace_hardirqs_on+0x5b/0x180
[ 2777.690611]  create_object.isra.0+0x3a/0xa20
[ 2777.691187]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2777.691857]  kmem_cache_alloc_trace+0x151/0x320
[ 2777.692484]  io_rsrc_node_switch_start.part.0+0x43/0x250
[ 2777.693198]  io_uring_setup+0x14f6/0x2980
[ 2777.693746]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2777.694414]  ? wait_for_completion_io+0x270/0x270
[ 2777.695072]  do_syscall_64+0x33/0x40
[ 2777.695562]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2777.696234] RIP: 0033:0x7fd22c24ab19
[ 2777.697071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2777.699607] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2777.700802] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2777.702942] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2777.705206] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2777.707390] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2777.709841] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2778.146934] FAULT_INJECTION: forcing a failure.
[ 2778.146934] name failslab, interval 1, probability 0, space 0, times 0
[ 2778.150448] CPU: 0 PID: 30999 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2778.152195] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2778.154689] Call Trace:
[ 2778.155363]  dump_stack+0x107/0x167
[ 2778.156296]  should_fail.cold+0x5/0xa
[ 2778.157426]  ? create_object.isra.0+0x3a/0xa20
[ 2778.158580]  should_failslab+0x5/0x20
[ 2778.159531]  kmem_cache_alloc+0x5b/0x310
[ 2778.160587]  create_object.isra.0+0x3a/0xa20
[ 2778.161716]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2778.163024]  kmem_cache_alloc+0x159/0x310
[ 2778.164095]  __d_alloc+0x2a/0x990
[ 2778.165087]  ? find_held_lock+0x2c/0x110
[ 2778.166105]  d_alloc_pseudo+0x19/0x70
[ 2778.167054]  alloc_file_pseudo+0xce/0x250
[ 2778.168087]  ? trace_hardirqs_on+0x5b/0x180
[ 2778.169367]  ? alloc_file+0x5a0/0x5a0
[ 2778.170356]  anon_inode_getfile+0xc8/0x1f0
[ 2778.171445]  io_uring_setup+0x138b/0x2980
[ 2778.172533]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2778.173803]  ? wait_for_completion_io+0x270/0x270
[ 2778.175040]  do_syscall_64+0x33/0x40
[ 2778.175970]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2778.177452] RIP: 0033:0x7fb4a26afb19
[ 2778.178403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2778.183678] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2778.185844] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2778.187693] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2778.189730] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2778.191527] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2778.192918] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:29:48 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 26)

10:29:48 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 45)

10:29:48 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
r0 = syz_io_uring_setup(0x4d53, &(0x7f00000002c0), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180))
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_FALLOCATE={0x11, 0x5, 0x0, @fd_index=0x1, 0xffffffff, 0x0, 0x3, 0x0, 0x0, {0x0, r4}}, 0x97)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3, 0x0, {0x0, r3}}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x3, 0x0, 0xa61, 0x2, &(0x7f0000000240)="8194cbc709ef1aafa7dd6af728", 0x4, 0x0, 0x0, {0x0, r5}}, 0x7f8000)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000000)=0x7, 0x80, 0x1)
r6 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x40000, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff7000/0x1000)=nil, 0x1000, 0x0, 0x1010, r6, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:29:48 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0/file0', [{0x20, '[-:$+'}, {0x20, '@'}, {0x20, 'r\\.@{'}, {0x20, '\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n'}, {0x20, '-z&#-/'}], 0xa, "fad37df07883599b1ee76f23b4754e551d5defd9c7f478"}, 0x64)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, 0xffffffffffffffff, 0x0)

10:29:48 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xff600000, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:29:48 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 35)
getresuid(0x0, 0x0, 0x0)

10:29:48 executing program 4:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
r2 = accept(r1, 0x0, 0x0)
write$sndseq(r1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={&(0x7f0000000200), 0x2}, 0x8b00, 0x0, 0x9, 0x5}, 0x0, 0x2, 0xffffffffffffffff, 0x0)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x8000, 0x0)
ioctl$SG_IO(r3, 0x127f, &(0x7f00000003c0)={0xe00, 0x0, 0x0, 0x0, @buffer={0x300, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r1)
sendmsg$NL80211_CMD_TDLS_OPER(r2, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x20, r4, 0x400, 0x70bd26, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x0, 0x66}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0xc004)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$KDGETLED(0xffffffffffffffff, 0x4b44, &(0x7f0000000000))
socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="d00000001d0000012dbd7000fcdbdf2519000000c961fe2dcae66e10344f4fd63dfdc6a7f34187a6d85136be8b52ef0b62ee0500010f2fb83c86a98130b8f76c1e47a3a2d0cb4e1ce605b5cd8cadba40b637a524f8f2ee23727685eed89a5373a1bb29a4d7fa4b29abfa379b1cfd4a20a7c3a0fb9c5a1a84f2e180197a5ebe41605dbe869f1f3dbfd6bb9edbf228e2c15fc52917fac210568d0aaba8db7e7655e939f17f12bc686c9d8ecd0d8d0a07c9d6d31c70cbff3e456d4c244e4d0e0563f1a5f1585caea29985c141a844c22a92a08426192f4060af363b3dca5adab8d62d454e42d06b13b9"], 0xd0}, 0x1, 0x0, 0x0, 0x4191}, 0x4000000)
ioctl$SCSI_IOCTL_GET_PCI(0xffffffffffffffff, 0x5387, &(0x7f00000004c0))
waitid(0x0, 0x0, &(0x7f00000000c0), 0x8, 0x0)
perf_event_open(0x0, 0x0, 0x4, 0xffffffffffffffff, 0x1)
ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000480)={@private1, 0x51})

10:29:48 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2794.657195] FAULT_INJECTION: forcing a failure.
[ 2794.657195] name failslab, interval 1, probability 0, space 0, times 0
[ 2794.658738] CPU: 1 PID: 31019 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2794.659645] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2794.660751] Call Trace:
[ 2794.661104]  dump_stack+0x107/0x167
[ 2794.661587]  should_fail.cold+0x5/0xa
[ 2794.662092]  ? create_object.isra.0+0x3a/0xa20
[ 2794.662698]  should_failslab+0x5/0x20
[ 2794.663203]  kmem_cache_alloc+0x5b/0x310
[ 2794.663735]  ? percpu_ref_put_many.constprop.0+0x4e/0x110
[ 2794.664468]  create_object.isra.0+0x3a/0xa20
[ 2794.665061]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2794.665735]  kmem_cache_alloc+0x159/0x310
[ 2794.666289]  security_file_alloc+0x34/0x170
[ 2794.666859]  __alloc_file+0xb7/0x320
[ 2794.667352]  alloc_empty_file+0x6d/0x170
[ 2794.667886]  alloc_file+0x5e/0x5a0
[ 2794.668366]  alloc_file_pseudo+0x16a/0x250
[ 2794.668937]  ? alloc_file+0x5a0/0x5a0
[ 2794.669456]  anon_inode_getfile+0xc8/0x1f0
[ 2794.670021]  io_uring_setup+0x138b/0x2980
[ 2794.670571]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2794.671243]  ? wait_for_completion_io+0x270/0x270
[ 2794.671904]  do_syscall_64+0x33/0x40
[ 2794.672396]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2794.673093] RIP: 0033:0x7fb4a26afb19
[ 2794.673592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2794.676005] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2794.677021] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2794.677962] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2794.678888] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2794.679830] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2794.680784] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:29:48 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffe000/0x1000)=nil)
mincore(&(0x7f0000ff1000/0x1000)=nil, 0x1000, &(0x7f0000000000)=""/94)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 2794.684905] FAULT_INJECTION: forcing a failure.
[ 2794.684905] name failslab, interval 1, probability 0, space 0, times 0
[ 2794.689674] CPU: 0 PID: 31016 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2794.697507] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2794.698609] Call Trace:
[ 2794.698969]  dump_stack+0x107/0x167
[ 2794.699463]  should_fail.cold+0x5/0xa
[ 2794.699979]  ? create_object.isra.0+0x3a/0xa20
[ 2794.700594]  should_failslab+0x5/0x20
[ 2794.701131]  kmem_cache_alloc+0x5b/0x310
[ 2794.701681]  create_object.isra.0+0x3a/0xa20
[ 2794.702273]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2794.702965]  kmem_cache_alloc+0x159/0x310
[ 2794.703536]  copy_process+0x2514/0x78b0
[ 2794.704082]  ? SOFTIRQ_verbose+0x10/0x10
[ 2794.704641]  ? __lockdep_reset_lock+0x180/0x180
[ 2794.705276]  ? mark_lock+0xf5/0x2df0
[ 2794.705806]  ? __cleanup_sighand+0xb0/0xb0
[ 2794.706401]  ? _copy_from_user+0xfb/0x1b0
[ 2794.706974]  kernel_clone+0xe7/0x980
[ 2794.707481]  ? __lockdep_reset_lock+0x180/0x180
[ 2794.708114]  ? create_io_thread+0xf0/0xf0
[ 2794.708705]  ? ksys_write+0x21a/0x260
[ 2794.709231]  ? lock_downgrade+0x6d0/0x6d0
[ 2794.709801]  __do_sys_clone3+0x1e5/0x320
[ 2794.710352]  ? __do_sys_clone+0x110/0x110
[ 2794.710934]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2794.711561]  ? vfs_write+0x354/0xb10
[ 2794.712066]  ? fput_many+0x2f/0x1a0
[ 2794.712567]  ? ksys_write+0x1a9/0x260
[ 2794.713104]  ? __ia32_sys_read+0xb0/0xb0
[ 2794.713667]  do_syscall_64+0x33/0x40
[ 2794.714175]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2794.714862] RIP: 0033:0x7f862144ab19
[ 2794.715368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2794.717828] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2794.718844] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2794.719802] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2794.720782] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2794.721731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2794.722682] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2794.744214] FAULT_INJECTION: forcing a failure.
[ 2794.744214] name failslab, interval 1, probability 0, space 0, times 0
[ 2794.749741] CPU: 0 PID: 31013 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2794.750664] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2794.751764] Call Trace:
[ 2794.752125]  dump_stack+0x107/0x167
[ 2794.752647]  should_fail.cold+0x5/0xa
[ 2794.753176]  ? io_rsrc_node_switch_start.part.0+0x43/0x250
[ 2794.753927]  should_failslab+0x5/0x20
[ 2794.754445]  kmem_cache_alloc_trace+0x55/0x320
[ 2794.755071]  io_rsrc_node_switch_start.part.0+0x43/0x250
[ 2794.755802]  io_uring_setup+0x14f6/0x2980
[ 2794.756378]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2794.757072]  ? wait_for_completion_io+0x270/0x270
[ 2794.757750]  do_syscall_64+0x33/0x40
[ 2794.758258]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2794.758944] RIP: 0033:0x7fd22c24ab19
[ 2794.759447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2794.761909] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2794.762872] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2794.763763] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2794.764674] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2794.765568] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2794.766460] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:29:48 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 27)

10:29:48 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 46)

10:29:48 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
r1 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r1, 0x0)

10:29:48 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 36)
getresuid(0x0, 0x0, 0x0)

10:29:48 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
pkey_mprotect(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x3000003, 0xffffffffffffffff)
munlock(&(0x7f0000ff5000/0x1000)=nil, 0x1000)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:29:48 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xffffffe4, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

[ 2794.977003] FAULT_INJECTION: forcing a failure.
[ 2794.977003] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2794.978597] CPU: 0 PID: 31232 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2794.979504] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2794.980589] Call Trace:
[ 2794.980974]  dump_stack+0x107/0x167
[ 2794.981474]  should_fail.cold+0x5/0xa
[ 2794.981982]  __alloc_pages_nodemask+0x182/0x600
[ 2794.982602]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 2794.983400]  alloc_pages_current+0x187/0x280
[ 2794.984028]  __get_free_pages+0xc/0xa0
[ 2794.984541]  pgd_alloc+0x84/0x4e0
[ 2794.985017]  ? pgd_page_get_mm+0x40/0x40
[ 2794.985555]  ? lockdep_init_map_type+0x2c7/0x780
[ 2794.986180]  ? lockdep_init_map_type+0x2c7/0x780
[ 2794.986812]  mm_init+0x670/0xab0
[ 2794.987258]  copy_process+0x257b/0x78b0
[ 2794.987786]  ? SOFTIRQ_verbose+0x10/0x10
[ 2794.988325]  ? __lockdep_reset_lock+0x180/0x180
[ 2794.988950]  ? mark_lock+0xf5/0x2df0
[ 2794.989460]  ? __cleanup_sighand+0xb0/0xb0
[ 2794.990032]  ? _copy_from_user+0xfb/0x1b0
[ 2794.990579]  kernel_clone+0xe7/0x980
[ 2794.991076]  ? __lockdep_reset_lock+0x180/0x180
[ 2794.991688]  ? create_io_thread+0xf0/0xf0
10:29:48 executing program 4:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0)
timer_delete(0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0xa2, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x800}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)
capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0)
timer_create(0x2, &(0x7f00000002c0)={0x0, 0xb, 0x0, @tid=0xffffffffffffffff}, &(0x7f00000005c0)=<r0=>0x0)
timer_gettime(r0, &(0x7f0000000600))
capset(&(0x7f0000000300), &(0x7f0000000340)={0xc8dd, 0x81, 0x4, 0x7, 0x2, 0x2})
timer_create(0x4, &(0x7f0000000100)={0x0, 0x23, 0x4, @thr={&(0x7f0000000840)="07dc8f21678ab5c15f3e13dd8f3f3825e19b144082e913a1292f963fc5284667bedb3fe86a5d083b7ea076533397624c44e9250801e20f1c0e9ae2763943a351379ba0c6df65ca29853b9a867ec97d64b2a0ffd6aeeac6293f7f553d2ce62efb04749ff8c881d6c1bea169529964fb0647d97de367bee5c22f3aefc36167b86b75a6fc6d03d7c5bab6a28f737f71ede9d39dbac7ff7932f1e8a70f9bd6007b887fda339f56a50ffa78c1d77c96da2fd7bc0b055a4ee5c91e251e381244a379746fe5bd58a9", &(0x7f0000000500)="8a1d914f4cd005b6e7b871c5b29e76ef906d5d2d678a46"}}, &(0x7f0000000240)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x77359400}, {0x77359400}}, 0x0)
clock_gettime(0x0, &(0x7f0000000400))
setsockopt$bt_hci_HCI_DATA_DIR(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000140)=0x5, 0x4)
timer_settime(0x0, 0x0, &(0x7f0000000480)={{0x77359400}}, &(0x7f00000004c0))
readv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000040)=""/21, 0x15}, {&(0x7f0000000640)=""/206, 0xce}], 0x2)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x0)
capset(&(0x7f0000000280)={0x20071026}, &(0x7f00000003c0)={0x2, 0x400, 0x9f, 0x86, 0xb108, 0xc6c9})
read(r2, &(0x7f0000000080)=""/65, 0x41)
clone3(&(0x7f00000001c0)={0x982b00, 0x0, 0x0, 0x0, {0x2b}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2794.992245]  ? ksys_write+0x21a/0x260
[ 2794.996789]  ? lock_downgrade+0x6d0/0x6d0
[ 2794.997348]  __do_sys_clone3+0x1e5/0x320
[ 2794.997901]  ? __do_sys_clone+0x110/0x110
[ 2794.998478]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2794.999091]  ? vfs_write+0x354/0xb10
[ 2795.008964]  ? fput_many+0x2f/0x1a0
[ 2795.009464]  ? ksys_write+0x1a9/0x260
[ 2795.009984]  ? __ia32_sys_read+0xb0/0xb0
[ 2795.010542]  do_syscall_64+0x33/0x40
[ 2795.011053]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2795.011744] RIP: 0033:0x7f862144ab19
[ 2795.012252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2795.014691] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2795.015715] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2795.016690] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2795.017642] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2795.018605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2795.019564] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:29:48 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2795.207031] FAULT_INJECTION: forcing a failure.
[ 2795.207031] name failslab, interval 1, probability 0, space 0, times 0
[ 2795.208552] CPU: 0 PID: 31237 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2795.209467] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2795.210556] Call Trace:
[ 2795.210910]  dump_stack+0x107/0x167
[ 2795.211396]  should_fail.cold+0x5/0xa
[ 2795.211899]  ? io_uring_alloc_task_context+0x99/0x6a0
[ 2795.212585]  should_failslab+0x5/0x20
[ 2795.213096]  kmem_cache_alloc_trace+0x55/0x320
[ 2795.213701]  io_uring_alloc_task_context+0x99/0x6a0
[ 2795.214361]  ? io_import_iovec+0x1120/0x1120
[ 2795.214941]  ? lock_downgrade+0x6d0/0x6d0
[ 2795.215483]  ? do_raw_spin_lock+0x121/0x260
[ 2795.216050]  ? rwlock_bug.part.0+0x90/0x90
[ 2795.216613]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2795.217257]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2795.217943]  ? alloc_fd+0x2e7/0x670
[ 2795.218431]  io_uring_setup+0x1fbb/0x2980
[ 2795.218978]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2795.219648]  ? wait_for_completion_io+0x270/0x270
[ 2795.220306]  do_syscall_64+0x33/0x40
[ 2795.224888]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2795.225578] RIP: 0033:0x7fb4a26afb19
[ 2795.226090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2795.228534] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2795.229580] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2795.230529] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2795.231502] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2795.232315] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2795.233148] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2795.639841] FAULT_INJECTION: forcing a failure.
[ 2795.639841] name failslab, interval 1, probability 0, space 0, times 0
[ 2795.641401] CPU: 0 PID: 31248 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2795.642312] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2795.643394] Call Trace:
[ 2795.643747]  dump_stack+0x107/0x167
[ 2795.644228]  should_fail.cold+0x5/0xa
[ 2795.644754]  ? create_object.isra.0+0x3a/0xa20
[ 2795.645357]  should_failslab+0x5/0x20
[ 2795.645862]  kmem_cache_alloc+0x5b/0x310
[ 2795.646405]  create_object.isra.0+0x3a/0xa20
[ 2795.646993]  kmemleak_alloc_percpu+0xa0/0x100
[ 2795.647587]  pcpu_alloc+0x4e2/0x1240
[ 2795.648091]  ? io_async_queue_proc+0x80/0x80
[ 2795.648677]  percpu_ref_init+0x31/0x3d0
[ 2795.649217]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 2795.649934]  io_uring_setup+0x14f6/0x2980
[ 2795.650486]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2795.651171]  ? wait_for_completion_io+0x270/0x270
[ 2795.651834]  do_syscall_64+0x33/0x40
[ 2795.652361]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2795.653057] RIP: 0033:0x7fd22c24ab19
[ 2795.653559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2795.656058] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2795.657077] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2795.658034] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2795.658967] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2795.659898] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2795.660855] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:30:06 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 28)

10:30:06 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:30:06 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xffffffff, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:30:06 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
mlock2(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0)

10:30:06 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 47)

10:30:06 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
r1 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r1, 0x0)

10:30:06 executing program 4:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6}]})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
openat(r1, &(0x7f0000000040)='./file0\x00', 0x185000, 0xc9)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0)

10:30:06 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 37)
getresuid(0x0, 0x0, 0x0)

[ 2813.092744] FAULT_INJECTION: forcing a failure.
[ 2813.092744] name failslab, interval 1, probability 0, space 0, times 0
[ 2813.094343] CPU: 1 PID: 31368 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2813.095364] kauditd_printk_skb: 20 callbacks suppressed
[ 2813.095380] audit: type=1326 audit(1749637806.735:438): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31362 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5312d97b19 code=0x0
[ 2813.101399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2813.101405] Call Trace:
[ 2813.101427]  dump_stack+0x107/0x167
[ 2813.101445]  should_fail.cold+0x5/0xa
[ 2813.101462]  ? create_object.isra.0+0x3a/0xa20
[ 2813.101480]  should_failslab+0x5/0x20
[ 2813.101496]  kmem_cache_alloc+0x5b/0x310
[ 2813.101519]  create_object.isra.0+0x3a/0xa20
[ 2813.109509]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2813.110189]  kmem_cache_alloc_trace+0x151/0x320
[ 2813.110811]  io_uring_alloc_task_context+0x99/0x6a0
[ 2813.111469]  ? io_import_iovec+0x1120/0x1120
[ 2813.112058]  ? lock_downgrade+0x6d0/0x6d0
[ 2813.112603]  ? do_raw_spin_lock+0x121/0x260
[ 2813.113192]  ? rwlock_bug.part.0+0x90/0x90
[ 2813.113755]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2813.114398]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2813.115087]  ? alloc_fd+0x2e7/0x670
[ 2813.115579]  io_uring_setup+0x1fbb/0x2980
[ 2813.116133]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2813.116802]  ? wait_for_completion_io+0x270/0x270
[ 2813.117483]  do_syscall_64+0x33/0x40
[ 2813.117977]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2813.118651] RIP: 0033:0x7fb4a26afb19
[ 2813.119142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2813.121561] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2813.122566] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2813.123505] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2813.124442] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2813.125435] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2813.126373] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2813.203834] FAULT_INJECTION: forcing a failure.
10:30:06 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 48)

10:30:06 executing program 0:
mlock2(&(0x7f0000ff2000/0x4000)=nil, 0x4000, 0x1)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 2813.203834] name failslab, interval 1, probability 0, space 0, times 0
[ 2813.213710] CPU: 1 PID: 31374 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2813.214631] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2813.214804] FAULT_INJECTION: forcing a failure.
[ 2813.214804] name failslab, interval 1, probability 0, space 0, times 0
[ 2813.215719] Call Trace:
[ 2813.217569]  dump_stack+0x107/0x167
[ 2813.218057]  should_fail.cold+0x5/0xa
[ 2813.218563]  ? vm_area_dup+0x78/0x290
[ 2813.219069]  should_failslab+0x5/0x20
[ 2813.219573]  kmem_cache_alloc+0x5b/0x310
[ 2813.220117]  vm_area_dup+0x78/0x290
[ 2813.220603]  ? __lock_acquire+0xbb1/0x5b00
[ 2813.221198]  ? perf_trace_lock+0xac/0x490
[ 2813.221746]  ? SOFTIRQ_verbose+0x10/0x10
[ 2813.222288]  ? __lockdep_reset_lock+0x180/0x180
[ 2813.222913]  ? vm_area_alloc+0x110/0x110
[ 2813.223443]  ? find_held_lock+0x2c/0x110
[ 2813.223985]  ? get_mm_exe_file+0x139/0x310
[ 2813.224548]  ? lock_downgrade+0x6d0/0x6d0
[ 2813.225115]  ? down_write_nested+0xe4/0x160
[ 2813.225685]  ? rwsem_down_write_slowpath+0xc30/0xc30
[ 2813.226361]  ? get_mm_exe_file+0x162/0x310
[ 2813.226925]  copy_process+0x298b/0x78b0
[ 2813.227477]  ? __cleanup_sighand+0xb0/0xb0
[ 2813.228059]  ? _copy_from_user+0xfb/0x1b0
[ 2813.228612]  kernel_clone+0xe7/0x980
[ 2813.229128]  ? __lockdep_reset_lock+0x180/0x180
[ 2813.229744]  ? create_io_thread+0xf0/0xf0
[ 2813.230335]  ? ksys_write+0x21a/0x260
[ 2813.230834]  ? lock_downgrade+0x6d0/0x6d0
[ 2813.231395]  __do_sys_clone3+0x1e5/0x320
[ 2813.231916]  ? __do_sys_clone+0x110/0x110
[ 2813.232469]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2813.233098]  ? vfs_write+0x354/0xb10
[ 2813.233580]  ? fput_many+0x2f/0x1a0
[ 2813.234054]  ? ksys_write+0x1a9/0x260
[ 2813.234541]  ? __ia32_sys_read+0xb0/0xb0
[ 2813.235081]  do_syscall_64+0x33/0x40
[ 2813.235559]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2813.236217] RIP: 0033:0x7f862144ab19
[ 2813.236697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2813.239069] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2813.240046] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2813.240988] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2813.241926] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2813.242875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2813.243817] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2813.244782] CPU: 0 PID: 31378 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2813.245723] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2813.246811] Call Trace:
[ 2813.247167]  dump_stack+0x107/0x167
[ 2813.247650]  should_fail.cold+0x5/0xa
[ 2813.248157]  ? percpu_ref_init+0xd8/0x3d0
[ 2813.248703]  should_failslab+0x5/0x20
[ 2813.249228]  kmem_cache_alloc_trace+0x55/0x320
[ 2813.249832]  ? io_async_queue_proc+0x80/0x80
[ 2813.250409]  percpu_ref_init+0xd8/0x3d0
[ 2813.250937]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 2813.251647]  io_uring_setup+0x14f6/0x2980
[ 2813.252205]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2813.252877]  ? wait_for_completion_io+0x270/0x270
[ 2813.253541]  do_syscall_64+0x33/0x40
[ 2813.254036]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2813.254710] RIP: 0033:0x7fd22c24ab19
[ 2813.255210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2813.257633] RSP: 002b:00007fd22979f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2813.258644] RAX: ffffffffffffffda RBX: 00007fd22c35e020 RCX: 00007fd22c24ab19
[ 2813.259585] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2813.260522] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2813.261573] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2813.262505] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:30:06 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 29)

10:30:06 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r1, 0x0)

10:30:07 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 38)
getresuid(0x0, 0x0, 0x0)

10:30:07 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x3}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:30:07 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2813.910030] FAULT_INJECTION: forcing a failure.
[ 2813.910030] name failslab, interval 1, probability 0, space 0, times 0
[ 2813.911591] CPU: 0 PID: 31487 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2813.912504] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2813.913620] Call Trace:
[ 2813.913974]  dump_stack+0x107/0x167
[ 2813.914472]  should_fail.cold+0x5/0xa
[ 2813.914983]  ? io_uring_alloc_task_context+0x99/0x6a0
[ 2813.915672]  should_failslab+0x5/0x20
[ 2813.916180]  kmem_cache_alloc_trace+0x55/0x320
[ 2813.916790]  io_uring_alloc_task_context+0x99/0x6a0
[ 2813.917498]  ? io_import_iovec+0x1120/0x1120
[ 2813.918086]  ? lock_downgrade+0x6d0/0x6d0
[ 2813.918635]  ? do_raw_spin_lock+0x121/0x260
[ 2813.919215]  ? rwlock_bug.part.0+0x90/0x90
[ 2813.919787]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2813.920432]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2813.921149]  ? alloc_fd+0x2e7/0x670
[ 2813.921649]  io_uring_setup+0x1fbb/0x2980
[ 2813.922212]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2813.922884]  ? wait_for_completion_io+0x270/0x270
[ 2813.923556]  do_syscall_64+0x33/0x40
[ 2813.924046]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2813.924729] RIP: 0033:0x7fb4a26afb19
[ 2813.925244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2813.927668] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2813.928672] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2813.929633] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2813.930583] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2813.931527] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2813.932471] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2813.937679] audit: type=1326 audit(1749637807.577:439): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=31362 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5312d97b19 code=0x0
10:30:07 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff)

[ 2813.999695] FAULT_INJECTION: forcing a failure.
[ 2813.999695] name failslab, interval 1, probability 0, space 0, times 0
[ 2814.005251] CPU: 1 PID: 31496 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2814.006155] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2814.007239] Call Trace:
[ 2814.007602]  dump_stack+0x107/0x167
[ 2814.008087]  should_fail.cold+0x5/0xa
[ 2814.008595]  ? create_object.isra.0+0x3a/0xa20
[ 2814.009224]  should_failslab+0x5/0x20
[ 2814.009729]  kmem_cache_alloc+0x5b/0x310
[ 2814.010267]  create_object.isra.0+0x3a/0xa20
[ 2814.010855]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2814.011530]  kmem_cache_alloc+0x159/0x310
[ 2814.012089]  vm_area_dup+0x78/0x290
[ 2814.012581]  ? __lock_acquire+0xbb1/0x5b00
[ 2814.033128]  ? perf_trace_lock+0xac/0x490
[ 2814.033683]  ? SOFTIRQ_verbose+0x10/0x10
[ 2814.034226]  ? __lockdep_reset_lock+0x180/0x180
[ 2814.034850]  ? vm_area_alloc+0x110/0x110
[ 2814.035386]  ? find_held_lock+0x2c/0x110
[ 2814.035928]  ? get_mm_exe_file+0x139/0x310
[ 2814.036490]  ? lock_downgrade+0x6d0/0x6d0
[ 2814.037051]  ? down_write_nested+0xe4/0x160
[ 2814.037628]  ? rwsem_down_write_slowpath+0xc30/0xc30
[ 2814.038301]  ? get_mm_exe_file+0x162/0x310
[ 2814.038863]  copy_process+0x298b/0x78b0
[ 2814.039386]  ? SOFTIRQ_verbose+0x10/0x10
[ 2814.039954]  ? __cleanup_sighand+0xb0/0xb0
[ 2814.040534]  ? _copy_from_user+0xfb/0x1b0
[ 2814.041109]  kernel_clone+0xe7/0x980
[ 2814.041600]  ? __lockdep_reset_lock+0x180/0x180
[ 2814.042219]  ? create_io_thread+0xf0/0xf0
[ 2814.042782]  ? ksys_write+0x21a/0x260
[ 2814.043284]  ? lock_downgrade+0x6d0/0x6d0
[ 2814.043845]  __do_sys_clone3+0x1e5/0x320
[ 2814.044382]  ? __do_sys_clone+0x110/0x110
[ 2814.044965]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2814.045579]  ? vfs_write+0x354/0xb10
[ 2814.046073]  ? fput_many+0x2f/0x1a0
[ 2814.046559]  ? ksys_write+0x1a9/0x260
[ 2814.047062]  ? __ia32_sys_read+0xb0/0xb0
[ 2814.047619]  do_syscall_64+0x33/0x40
[ 2814.048114]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2814.048797] RIP: 0033:0x7f862144ab19
[ 2814.049314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2814.051734] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2814.052740] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2814.053693] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2814.054637] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2814.055580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2814.056546] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2814.250606] FAULT_INJECTION: forcing a failure.
[ 2814.250606] name failslab, interval 1, probability 0, space 0, times 0
[ 2814.252094] CPU: 0 PID: 31599 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2814.257000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2814.258099] Call Trace:
[ 2814.258466]  dump_stack+0x107/0x167
[ 2814.258961]  should_fail.cold+0x5/0xa
[ 2814.259458]  ? create_object.isra.0+0x3a/0xa20
[ 2814.260066]  should_failslab+0x5/0x20
[ 2814.260543]  kmem_cache_alloc+0x5b/0x310
[ 2814.261080]  create_object.isra.0+0x3a/0xa20
[ 2814.261631]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2814.262277]  kmem_cache_alloc_trace+0x151/0x320
[ 2814.262865]  ? io_async_queue_proc+0x80/0x80
[ 2814.263418]  percpu_ref_init+0xd8/0x3d0
[ 2814.263948]  io_rsrc_node_switch_start.part.0+0x6a/0x250
[ 2814.264624]  io_uring_setup+0x14f6/0x2980
[ 2814.265202]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2814.265838]  ? wait_for_completion_io+0x270/0x270
[ 2814.266469]  do_syscall_64+0x33/0x40
[ 2814.266970]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2814.267608] RIP: 0033:0x7fd22c24ab19
[ 2814.268122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2814.270469] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2814.271455] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2814.272348] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2814.273287] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2814.274221] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2814.275117] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:30:25 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 49)

10:30:25 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:30:25 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mlock2(&(0x7f0000ff1000/0x2000)=nil, 0x2000, 0x1)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:30:25 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:30:25 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0)
mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r0, 0x39)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ftruncate(0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x204, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000001c0)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r4, 0x0, 0x0}, 0x0)
dup2(r4, r0)
connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
r6 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
statx(r6, &(0x7f0000000000)='./file1\x00', 0x400, 0x40, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r7=>0x0, <r8=>0x0})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000b80)=ANY=[@ANYBLOB="a89bf0301bb31bfc1d2f45160479ef732f97f2", @ANYRES32=<r9=>r5, @ANYRES32=r7, @ANYRES32=r8, @ANYBLOB='./file0\x00'])
sendmsg$inet6(r9, &(0x7f0000000500)={&(0x7f00000003c0)={0xa, 0x4e23, 0x401, @remote, 0xffffff81}, 0x1c, &(0x7f0000000a00)=[{&(0x7f0000000400)="2c245b603ccd8ed499dffa4fc708f9a4687f22862ae206d3064e7ad6210d74d3047730b35a1e202382bf1238a5adc5d315119c8c25a304b2cb01c36d2f515a3c2d6f573377e28bbca52a0941cec57e44a5a2fe6294621e2231f35801a5342407a70fc38cc227792e23de92a8de2630c78c12069b7c4174e10d3b3ab86260398e7b63ee7334e9f7bdf2126576286aeaec023a251194dc3140f84d742a49f3d8abed7b16b89b92eee3a9422309403b14d50e2c6d53c7", 0xb5}, {&(0x7f0000000580)="6a52d057560b870754a20fe3bf28d27b7f3e95aa42d38baf3210ae4af3c5d0c85d029eb07102eab77e4f6620f9b04ef3ff7ccdffb57bddbb7170e84244cd3bea9ecbfc05b9e17030e28da8cef7ba128c46e6eacd02e3b0a135c178fd13e37c056ad4116335580b4d613ae1146990b2ab90655d1508fdcb6d80c406be90868be03156cbda49685ad04935b9cebb310d9ece240344d4c19bbbd9f1a67e080b69e67246feb22d605434cbaf7170e4c89045a65319b903fde89ecf388a92a999fa330cc1cdbcf6f79c172b22af9fa6ab90c805438382a2b83aefc0d0b216c2b7", 0xde}, {&(0x7f0000001e00)="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", 0x1000}, {&(0x7f0000000680)="2207688a8b862cd7d5ad304cbd4077c0f459691ffd09aa128df9b3dce1880450a252f5ef37ca1da9b3a5aa6354421bd36785db5694fe8993049a4ebf88334269f2f22ac52473e762f7373c2755c89e9e9d92e619d2275c6f3d72747434d35d86d3b6d70cc0cb99234f2923d74a967d7667a7e797c1410528609e301572bab792fadbf321cd70334a8267", 0x8a}, {&(0x7f0000000740)="bb609cd60f7e941417fbf651b038fd5ada762a72777a14d7585c5cd19429102dfd3bf27c39f689f7daa8e89d08bb6305ed909cf95e672d92a3c7e00e96e0a93fef59aab23484674e1ea2c0d942688867b6d419f48563d4bde98698162d33766f0a42ca0348972740d39395e788c413a03cfb5b03e0b5f8dbf65dc09e797291cf300edd5a1158e56c48b8b3eff5d860602fc218bfaa0fd2033e0e542a892dc486ef90882ca4f5e5bd9bd7e61fc1", 0xffffff14}, {&(0x7f00000004c0)="5f275b291e03e588e3d80b4c3ab0fb6a01a1b462552350465781edb4f5de0d2aa88e130f24d7539133e53338", 0x2c}, {&(0x7f0000000800)="fa0d5b4aa3a70acc6b28f9d5dc0bdfd22769d4f8fe3fe3c1f214454a98a54b22ef156ae5905166a0824f86f892984c20bf778c02e686da415b2ec51512fbba6a81d6245b88f7e12eb5f8dbc2ea796c5a97bcc8f9bf1c3947a2394d172780420b07470959c09ed925a4026340fee157c376fc4d276417ac7a08c32d244b6db18084b5ebf1c3ff3faed395e53c92b63f58d40245a6294f3141d48cc0ccf7f0b69e934f885e1f3d96c57f23a2b4462e10f620fc37c7be2013998734cf4c6fc514bd76f3142fb496e04ee7e3d534510f81d5a299146ea29555234866dc5510ecd84b", 0xe0}, {&(0x7f0000000900)="e36023d79dd929f8aa137979cbb76b8cc4bccae0afd7732e579ae4429b4da269836d7843d55d3b45722cebbb6468fe5dfd9d9997429789d2ac7b866f3414423c3c7dd99577bf7ba849e5e765d455327f5cd8ba178b136ab27d2fcfbfa1e95d152994cd9fad69b89d03888670ef3ede5df8125f03a2f94e1b2aec0e51b7f015332fa1a7b3fa88a761aeb65796b5c6bfda0335b4bfa796d74de6a7756b057fd7992336e2acc09103b97ed5836a0c5bfadf5e683d1316062ff1b7d0bcc76d5610f5c2df20d9291b7c745ed5b354bb8c24eb81bc876b29694603b04b27d74fe579a6e9fb428761b82af5a88ed84e7b744b0d09b4176b9d386e7cec", 0xf9}, {&(0x7f0000002e00)="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", 0x1000}], 0x9, &(0x7f0000000ac0)=[@rthdr={{0x58, 0x29, 0x39, {0x73, 0x8, 0x2, 0x0, 0x0, [@mcast2, @dev={0xfe, 0x80, '\x00', 0x32}, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}]}}}, @rthdr_2292={{0x48, 0x29, 0x39, {0xc, 0x6, 0x2, 0xd1, 0x0, [@remote, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x16}}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}}}, @hopopts_2292={{0x18, 0x29, 0x36, {0x3c}}}], 0xb8}, 0x48001)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000080)=0x29eb, 0x4)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000100), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r6, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r10=>r5, {0x4}}, './file0\x00'})
syz_io_uring_setup(0x1efa, &(0x7f00000002c0)={0x0, 0x86ac, 0x4, 0x1, 0x22d, 0x0, r10}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000340))
sendmmsg$inet6(r1, &(0x7f0000004d00), 0x2f, 0x0)

10:30:25 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 30)

10:30:25 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 39)
getresuid(0x0, 0x0, 0x0)

10:30:25 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r0, 0x0)

[ 2832.117774] FAULT_INJECTION: forcing a failure.
[ 2832.117774] name failslab, interval 1, probability 0, space 0, times 0
[ 2832.122288] CPU: 1 PID: 31718 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2832.124749] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2832.127763] Call Trace:
[ 2832.128726]  dump_stack+0x107/0x167
[ 2832.130063]  should_fail.cold+0x5/0xa
[ 2832.131398]  ? create_object.isra.0+0x3a/0xa20
[ 2832.133109]  should_failslab+0x5/0x20
[ 2832.134391]  kmem_cache_alloc+0x5b/0x310
[ 2832.135984]  create_object.isra.0+0x3a/0xa20
[ 2832.143964]  kmemleak_alloc_percpu+0xa0/0x100
[ 2832.145574]  pcpu_alloc+0x4e2/0x1240
[ 2832.147214]  __percpu_counter_init+0x10d/0x2d0
[ 2832.148805]  io_uring_alloc_task_context+0xcc/0x6a0
[ 2832.150549]  ? io_import_iovec+0x1120/0x1120
[ 2832.152212]  ? lock_downgrade+0x6d0/0x6d0
[ 2832.157314]  ? do_raw_spin_lock+0x121/0x260
[ 2832.157884]  ? rwlock_bug.part.0+0x90/0x90
[ 2832.159218]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2832.160623]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2832.162294]  ? alloc_fd+0x2e7/0x670
[ 2832.163445]  io_uring_setup+0x1fbb/0x2980
[ 2832.164804]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2832.166383]  ? wait_for_completion_io+0x270/0x270
[ 2832.167947]  do_syscall_64+0x33/0x40
[ 2832.169146]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2832.170753] RIP: 0033:0x7fb4a26afb19
[ 2832.171930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2832.177788] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2832.180211] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2832.182495] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2832.184732] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2832.187035] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2832.189309] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:30:25 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 50)

10:30:25 executing program 0:
mlock2(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x0)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 2832.286287] FAULT_INJECTION: forcing a failure.
[ 2832.286287] name failslab, interval 1, probability 0, space 0, times 0
[ 2832.290919] CPU: 1 PID: 31834 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2832.293698] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2832.297085] Call Trace:
[ 2832.298170]  dump_stack+0x107/0x167
[ 2832.299563]  should_fail.cold+0x5/0xa
[ 2832.301024]  ? vm_area_dup+0x78/0x290
[ 2832.302470]  should_failslab+0x5/0x20
[ 2832.303847]  kmem_cache_alloc+0x5b/0x310
[ 2832.305400]  vm_area_dup+0x78/0x290
[ 2832.306767]  ? avc_has_perm_noaudit+0x1c9/0x3e0
[ 2832.308458]  ? lock_downgrade+0x6d0/0x6d0
[ 2832.309914]  ? copy_page_range+0x24e9/0x3810
[ 2832.311454]  ? avc_has_perm_noaudit+0x1f7/0x3e0
[ 2832.313082]  ? avc_has_extended_perms+0xf40/0xf40
[ 2832.314777]  ? vm_area_alloc+0x110/0x110
[ 2832.316184]  ? find_held_lock+0x2c/0x110
[ 2832.317613]  ? selinux_vm_enough_memory+0x114/0x180
[ 2832.319353]  ? selinux_sb_statfs+0x250/0x250
[ 2832.320879]  ? percpu_counter_add_batch+0x8b/0x140
[ 2832.322644]  ? __vm_enough_memory+0x184/0x360
[ 2832.324204]  ? security_vm_enough_memory_mm+0x8b/0xc0
[ 2832.326015]  copy_process+0x298b/0x78b0
[ 2832.327393]  ? SOFTIRQ_verbose+0x10/0x10
[ 2832.328826]  ? __cleanup_sighand+0xb0/0xb0
[ 2832.330338]  ? _copy_from_user+0xfb/0x1b0
[ 2832.331851]  kernel_clone+0xe7/0x980
[ 2832.333154]  ? __lockdep_reset_lock+0x180/0x180
[ 2832.334770]  ? create_io_thread+0xf0/0xf0
[ 2832.336217]  ? ksys_write+0x21a/0x260
[ 2832.337548]  ? lock_downgrade+0x6d0/0x6d0
[ 2832.338993]  __do_sys_clone3+0x1e5/0x320
[ 2832.340398]  ? __do_sys_clone+0x110/0x110
[ 2832.341858]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2832.346667]  ? vfs_write+0x354/0xb10
[ 2832.348032]  ? fput_many+0x2f/0x1a0
[ 2832.349387]  ? ksys_write+0x1a9/0x260
[ 2832.350845]  ? __ia32_sys_read+0xb0/0xb0
[ 2832.352332]  do_syscall_64+0x33/0x40
[ 2832.353771]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2832.355875] RIP: 0033:0x7f862144ab19
[ 2832.357248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2832.366170] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2832.367170] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2832.368103] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2832.369034] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2832.370006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2832.370958] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:30:25 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2832.411381] FAULT_INJECTION: forcing a failure.
[ 2832.411381] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2832.414105] CPU: 0 PID: 31872 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2832.415073] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2832.416241] Call Trace:
[ 2832.416637]  dump_stack+0x107/0x167
[ 2832.417740]  should_fail.cold+0x5/0xa
[ 2832.418254]  _copy_to_user+0x2e/0x180
[ 2832.418815]  io_uring_setup+0x11b5/0x2980
[ 2832.419377]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2832.420116]  ? wait_for_completion_io+0x270/0x270
[ 2832.420838]  do_syscall_64+0x33/0x40
[ 2832.421346]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2832.422082] RIP: 0033:0x7fd22c24ab19
[ 2832.422575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2832.425123] RSP: 002b:00007fd22979f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2832.426174] RAX: ffffffffffffffda RBX: 00007fd22c35e020 RCX: 00007fd22c24ab19
[ 2832.428026] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2832.430590] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2832.433142] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
10:30:26 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 31)

[ 2832.435716] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:30:26 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 40)
getresuid(0x0, 0x0, 0x0)

10:30:26 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r0, 0x0)

10:30:26 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x5}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:30:26 executing program 4:
symlink(&(0x7f0000000180)='./file1\x00', &(0x7f0000000980)='./file1\x00')
r0 = socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0xc00)
creat(&(0x7f00000001c0)='./file1\x00', 0x80)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_SET_MPATH(r0, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000400)={&(0x7f00000005c0)=ANY=[@ANYBLOB="7c000000f04adb1210413440c8af82813e357b946ba8a45394624cbef6ea489d682abb23c1aaf2d6a4da85ee9544ce", @ANYRES16=0x0, @ANYBLOB="00226903000000004e070000000000000000", @ANYRES32=0x0, @ANYBLOB="0c009900040000006e0000000a00060008021100000100000a00060008021100000100000a001a0008021100000100000a001a0008021100000100000a001a0008021100000100000a0006000802110000010000"], 0x70}, 0x1, 0x0, 0x0, 0x10}, 0x4015)
sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000001c0)}, {&(0x7f00000000c0)="9a17e64cdc67bd627708c4", 0xb}, {&(0x7f0000000100)="11fa030674fe5d5c8842559152d3126c4249dfe24d8d98a6439e8cb160e171b641b5cd528f240594de4abf45957c095ea90b68d62f55fc64541601bff7e106fb023db64e8c15f6346c745da761ffee826727bd98b2bffae59c91c021ffc59f6081dbaa196e95a3b173cddce6b01c1e5bac179d6881414edcc12bf994d30576798a19d0f9db5d05", 0x87}, {&(0x7f0000000380)="d21e0ed1ee27c972fd2bef67c6a077b239514e0a205b38c982a5a6ca75c562f403f161f541cbc23b2e120f45812688f0de482c2bf16064f11091e836607a0e0217e4ccf2", 0x44}], 0x4}, 0x38008004)
dup2(r0, 0xffffffffffffffff)
lchown(&(0x7f0000000000)='./file1\x00', 0x0, 0xee00)

[ 2833.436035] FAULT_INJECTION: forcing a failure.
[ 2833.436035] name failslab, interval 1, probability 0, space 0, times 0
[ 2833.438068] CPU: 0 PID: 31941 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2833.439884] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2833.442229] Call Trace:
[ 2833.442899]  dump_stack+0x107/0x167
[ 2833.443824]  should_fail.cold+0x5/0xa
[ 2833.444799]  ? io_wq_create+0xeb/0xc00
[ 2833.445922]  should_failslab+0x5/0x20
[ 2833.446893]  __kmalloc+0x72/0x390
[ 2833.447777]  io_wq_create+0xeb/0xc00
[ 2833.448728]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2833.449585]  ? io_import_iovec+0x1120/0x1120
[ 2833.450167]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2833.450756]  ? __io_req_find_next+0x300/0x300
[ 2833.451353]  ? do_raw_spin_lock+0x121/0x260
[ 2833.461353]  ? rwlock_bug.part.0+0x90/0x90
[ 2833.461912]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2833.462553]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2833.463247]  ? alloc_fd+0x2e7/0x670
[ 2833.463736]  io_uring_setup+0x1fbb/0x2980
[ 2833.464290]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2833.464957]  ? wait_for_completion_io+0x270/0x270
[ 2833.465630]  do_syscall_64+0x33/0x40
[ 2833.466121]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2833.466802] RIP: 0033:0x7fb4a26afb19
[ 2833.467294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2833.469720] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2833.470720] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2833.471662] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2833.472598] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2833.473549] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2833.474486] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:30:27 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
sigaltstack(&(0x7f0000ffd000/0x2000)=nil, 0x0)

[ 2833.602627] FAULT_INJECTION: forcing a failure.
[ 2833.602627] name failslab, interval 1, probability 0, space 0, times 0
[ 2833.604105] CPU: 1 PID: 31946 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2833.605009] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2833.606126] Call Trace:
[ 2833.606477]  dump_stack+0x107/0x167
[ 2833.606958]  should_fail.cold+0x5/0xa
[ 2833.607456]  ? create_object.isra.0+0x3a/0xa20
[ 2833.608046]  should_failslab+0x5/0x20
[ 2833.608536]  kmem_cache_alloc+0x5b/0x310
[ 2833.609087]  create_object.isra.0+0x3a/0xa20
[ 2833.609675]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2833.610350]  kmem_cache_alloc+0x159/0x310
[ 2833.610899]  vm_area_dup+0x78/0x290
[ 2833.611386]  ? avc_has_perm_noaudit+0x1c9/0x3e0
[ 2833.612006]  ? lock_downgrade+0x6d0/0x6d0
[ 2833.612553]  ? copy_page_range+0x24e9/0x3810
[ 2833.613161]  ? avc_has_perm_noaudit+0x1f7/0x3e0
[ 2833.613782]  ? avc_has_extended_perms+0xf40/0xf40
[ 2833.614427]  ? vm_area_alloc+0x110/0x110
[ 2833.614957]  ? find_held_lock+0x2c/0x110
[ 2833.615508]  ? selinux_vm_enough_memory+0x114/0x180
[ 2833.616168]  ? selinux_sb_statfs+0x250/0x250
[ 2833.616753]  ? percpu_counter_add_batch+0x8b/0x140
[ 2833.617420]  ? __vm_enough_memory+0x184/0x360
[ 2833.618015]  ? security_vm_enough_memory_mm+0x8b/0xc0
[ 2833.618698]  copy_process+0x298b/0x78b0
[ 2833.619217]  ? SOFTIRQ_verbose+0x10/0x10
[ 2833.619790]  ? __cleanup_sighand+0xb0/0xb0
[ 2833.620366]  ? _copy_from_user+0xfb/0x1b0
[ 2833.620920]  kernel_clone+0xe7/0x980
[ 2833.621428]  ? __lockdep_reset_lock+0x180/0x180
[ 2833.622043]  ? create_io_thread+0xf0/0xf0
[ 2833.622606]  ? ksys_write+0x21a/0x260
[ 2833.623106]  ? lock_downgrade+0x6d0/0x6d0
[ 2833.623665]  __do_sys_clone3+0x1e5/0x320
[ 2833.624201]  ? __do_sys_clone+0x110/0x110
[ 2833.624768]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2833.625398]  ? vfs_write+0x354/0xb10
[ 2833.625893]  ? fput_many+0x2f/0x1a0
[ 2833.626379]  ? ksys_write+0x1a9/0x260
[ 2833.626880]  ? __ia32_sys_read+0xb0/0xb0
[ 2833.627426]  do_syscall_64+0x33/0x40
[ 2833.627923]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2833.628597] RIP: 0033:0x7f862144ab19
[ 2833.633108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2833.635527] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2833.636528] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2833.637483] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2833.638424] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2833.639353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2833.640299] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2833.824497] FAULT_INJECTION: forcing a failure.
[ 2833.824497] name failslab, interval 1, probability 0, space 0, times 0
[ 2833.826053] CPU: 0 PID: 31970 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2833.826958] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2833.828045] Call Trace:
[ 2833.828399]  dump_stack+0x107/0x167
[ 2833.828882]  should_fail.cold+0x5/0xa
[ 2833.829404]  ? __d_alloc+0x2a/0x990
[ 2833.829890]  should_failslab+0x5/0x20
[ 2833.830388]  kmem_cache_alloc+0x5b/0x310
[ 2833.830932]  __d_alloc+0x2a/0x990
[ 2833.831388]  ? find_held_lock+0x2c/0x110
[ 2833.831926]  d_alloc_pseudo+0x19/0x70
[ 2833.832427]  alloc_file_pseudo+0xce/0x250
[ 2833.832971]  ? trace_hardirqs_on+0x5b/0x180
[ 2833.833549]  ? alloc_file+0x5a0/0x5a0
[ 2833.834067]  anon_inode_getfile+0xc8/0x1f0
[ 2833.834625]  io_uring_setup+0x138b/0x2980
[ 2833.835184]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2833.835849]  ? wait_for_completion_io+0x270/0x270
[ 2833.836508]  do_syscall_64+0x33/0x40
[ 2833.837000]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2833.837688] RIP: 0033:0x7fd22c24ab19
[ 2833.838179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2833.840593] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2833.841606] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2833.842542] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2833.843484] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2833.844421] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2833.845371] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:30:44 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 51)

10:30:44 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, &(0x7f0000000000)=0x8, 0x3, 0x1)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:30:44 executing program 4:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r1)
sendmsg$IEEE802154_SCAN_REQ(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="2c9f570398c4809103ce7ba32f000000", @ANYRES16=0x0, @ANYBLOB="00032abd7000fedbdf250900000005001d000a0000000500130038000000080014000b000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4040}, 0xc0)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)

10:30:44 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x8}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:30:44 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 32)

10:30:44 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 41)
getresuid(0x0, 0x0, 0x0)

10:30:44 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000008c0)=ANY=[], 0x629)
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r0, 0x0)

10:30:44 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2851.651987] FAULT_INJECTION: forcing a failure.
[ 2851.651987] name failslab, interval 1, probability 0, space 0, times 0
[ 2851.653629] CPU: 0 PID: 32272 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2851.654542] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2851.655641] Call Trace:
[ 2851.656004]  dump_stack+0x107/0x167
[ 2851.656521]  should_fail.cold+0x5/0xa
[ 2851.657026]  ? create_object.isra.0+0x3a/0xa20
[ 2851.657731]  should_failslab+0x5/0x20
[ 2851.658238]  kmem_cache_alloc+0x5b/0x310
[ 2851.658782]  ? io_uring_alloc_task_context+0xf5/0x6a0
[ 2851.659467]  create_object.isra.0+0x3a/0xa20
[ 2851.660048]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2851.660738]  __kmalloc+0x16e/0x390
[ 2851.661214]  io_wq_create+0xeb/0xc00
[ 2851.661780]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2851.662454]  ? io_import_iovec+0x1120/0x1120
[ 2851.663037]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2851.663646]  ? __io_req_find_next+0x300/0x300
[ 2851.664234]  ? do_raw_spin_lock+0x121/0x260
[ 2851.664850]  ? rwlock_bug.part.0+0x90/0x90
[ 2851.665437]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2851.666078]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2851.666772]  ? alloc_fd+0x2e7/0x670
[ 2851.667264]  io_uring_setup+0x1fbb/0x2980
[ 2851.667852]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2851.668547]  ? wait_for_completion_io+0x270/0x270
[ 2851.669226]  do_syscall_64+0x33/0x40
[ 2851.669736]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2851.670415] RIP: 0033:0x7fb4a26afb19
[ 2851.670911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2851.673417] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2851.674421] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2851.675379] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2851.676333] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2851.677330] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2851.678277] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:30:45 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0xc}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

[ 2851.689403] FAULT_INJECTION: forcing a failure.
[ 2851.689403] name failslab, interval 1, probability 0, space 0, times 0
[ 2851.691089] CPU: 1 PID: 32281 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2851.692014] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2851.693149] Call Trace:
[ 2851.693537]  dump_stack+0x107/0x167
[ 2851.694049]  should_fail.cold+0x5/0xa
[ 2851.694533]  ? anon_vma_clone+0xdc/0x590
[ 2851.695145]  should_failslab+0x5/0x20
[ 2851.695681]  kmem_cache_alloc+0x5b/0x310
[ 2851.699209]  anon_vma_clone+0xdc/0x590
[ 2851.699776]  anon_vma_fork+0x82/0x640
[ 2851.700258]  ? __vm_enough_memory+0x184/0x360
[ 2851.700881]  copy_process+0x72c9/0x78b0
[ 2851.701414]  ? SOFTIRQ_verbose+0x10/0x10
[ 2851.702035]  ? __cleanup_sighand+0xb0/0xb0
[ 2851.702695]  ? _copy_from_user+0xfb/0x1b0
[ 2851.703237]  kernel_clone+0xe7/0x980
[ 2851.703769]  ? __lockdep_reset_lock+0x180/0x180
[ 2851.704358]  ? create_io_thread+0xf0/0xf0
[ 2851.704951]  ? ksys_write+0x21a/0x260
[ 2851.705467]  ? lock_downgrade+0x6d0/0x6d0
[ 2851.706063]  __do_sys_clone3+0x1e5/0x320
[ 2851.706692]  ? __do_sys_clone+0x110/0x110
[ 2851.707250]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2851.707896]  ? vfs_write+0x354/0xb10
[ 2851.708370]  ? fput_many+0x2f/0x1a0
[ 2851.708882]  ? ksys_write+0x1a9/0x260
[ 2851.709380]  ? __ia32_sys_read+0xb0/0xb0
[ 2851.710005]  do_syscall_64+0x33/0x40
[ 2851.710479]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2851.711205] RIP: 0033:0x7f862144ab19
[ 2851.711738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2851.714221] RSP: 002b:00007f861e99f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2851.715259] RAX: ffffffffffffffda RBX: 00007f862155e020 RCX: 00007f862144ab19
[ 2851.716216] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2851.717195] RBP: 00007f861e99f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2851.718250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2851.719229] R13: 00007ffc637b687f R14: 00007f861e99f300 R15: 0000000000022000
[ 2851.730136] FAULT_INJECTION: forcing a failure.
[ 2851.730136] name failslab, interval 1, probability 0, space 0, times 0
[ 2851.731738] CPU: 1 PID: 32191 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2851.732686] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2851.733809] Call Trace:
[ 2851.734144]  dump_stack+0x107/0x167
[ 2851.734681]  should_fail.cold+0x5/0xa
[ 2851.735166]  ? create_object.isra.0+0x3a/0xa20
[ 2851.735833]  should_failslab+0x5/0x20
[ 2851.736311]  kmem_cache_alloc+0x5b/0x310
[ 2851.736923]  create_object.isra.0+0x3a/0xa20
[ 2851.737497]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2851.738199]  kmem_cache_alloc+0x159/0x310
[ 2851.738825]  __d_alloc+0x2a/0x990
[ 2851.739263]  ? find_held_lock+0x2c/0x110
[ 2851.739865]  d_alloc_pseudo+0x19/0x70
[ 2851.740343]  alloc_file_pseudo+0xce/0x250
[ 2851.740961]  ? trace_hardirqs_on+0x5b/0x180
[ 2851.745569]  ? alloc_file+0x5a0/0x5a0
[ 2851.746205]  anon_inode_getfile+0xc8/0x1f0
[ 2851.746901]  io_uring_setup+0x138b/0x2980
[ 2851.747430]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2851.748133]  ? wait_for_completion_io+0x270/0x270
[ 2851.748816]  do_syscall_64+0x33/0x40
[ 2851.749299]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2851.750011] RIP: 0033:0x7fd22c24ab19
[ 2851.750483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2851.753007] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2851.754040] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2851.755043] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2851.756039] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2851.756990] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2851.758002] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:30:45 executing program 4:
r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpeername$unix(r0, &(0x7f0000000040)=@abs, &(0x7f00000000c0)=0x6e)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef", 0x3a, 0x400}, {&(0x7f0000010400)="03", 0x1, 0x800}], 0x0, &(0x7f00000003c0)=ANY=[])

10:30:45 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
munmap(&(0x7f0000ff4000/0x1000)=nil, 0x1000)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:30:45 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 42)
getresuid(0x0, 0x0, 0x0)

10:30:45 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 33)

10:30:45 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 52)

10:30:45 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e22, 0x3, @mcast2, 0xfffffffc}, 0x1c)
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r0, 0x0)

[ 2852.470765] FAULT_INJECTION: forcing a failure.
[ 2852.470765] name failslab, interval 1, probability 0, space 0, times 0
[ 2852.472336] CPU: 1 PID: 32409 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2852.473250] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2852.474360] Call Trace:
[ 2852.474717]  dump_stack+0x107/0x167
[ 2852.475205]  should_fail.cold+0x5/0xa
[ 2852.475710]  ? io_wq_create+0x6ef/0xc00
[ 2852.476246]  should_failslab+0x5/0x20
[ 2852.476750]  kmem_cache_alloc_node_trace+0x59/0x340
[ 2852.477624]  io_wq_create+0x6ef/0xc00
[ 2852.478610]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2852.479958]  ? io_import_iovec+0x1120/0x1120
[ 2852.481090]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2852.481802]  ? __io_req_find_next+0x300/0x300
[ 2852.482419]  ? do_raw_spin_lock+0x121/0x260
[ 2852.482992]  ? rwlock_bug.part.0+0x90/0x90
[ 2852.483586]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2852.484223]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2852.484923]  ? alloc_fd+0x2e7/0x670
[ 2852.489453]  io_uring_setup+0x1fbb/0x2980
[ 2852.490078]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2852.490831]  ? wait_for_completion_io+0x270/0x270
[ 2852.491568]  do_syscall_64+0x33/0x40
[ 2852.492148]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2852.492897] RIP: 0033:0x7fb4a26afb19
[ 2852.493506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2852.496287] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2852.498600] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2852.500863] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2852.507082] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2852.508934] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2852.511106] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2852.630201] FAULT_INJECTION: forcing a failure.
[ 2852.630201] name failslab, interval 1, probability 0, space 0, times 0
[ 2852.632725] CPU: 1 PID: 32449 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2852.633650] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2852.634775] Call Trace:
[ 2852.635132]  dump_stack+0x107/0x167
[ 2852.635626]  should_fail.cold+0x5/0xa
[ 2852.636137]  ? create_object.isra.0+0x3a/0xa20
[ 2852.636748]  should_failslab+0x5/0x20
[ 2852.637256]  kmem_cache_alloc+0x5b/0x310
[ 2852.641914]  create_object.isra.0+0x3a/0xa20
[ 2852.642504]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2852.643267]  kmem_cache_alloc+0x159/0x310
[ 2852.643827]  anon_vma_clone+0xdc/0x590
[ 2852.644435]  anon_vma_fork+0x82/0x640
[ 2852.644992]  ? __vm_enough_memory+0x184/0x360
[ 2852.649619]  copy_process+0x72c9/0x78b0
[ 2852.650146]  ? SOFTIRQ_verbose+0x10/0x10
[ 2852.650711]  ? __cleanup_sighand+0xb0/0xb0
[ 2852.651288]  ? _copy_from_user+0xfb/0x1b0
[ 2852.651848]  kernel_clone+0xe7/0x980
[ 2852.652340]  ? __lockdep_reset_lock+0x180/0x180
[ 2852.652956]  ? create_io_thread+0xf0/0xf0
[ 2852.653935]  ? ksys_write+0x21a/0x260
[ 2852.655084]  ? lock_downgrade+0x6d0/0x6d0
[ 2852.656351]  __do_sys_clone3+0x1e5/0x320
[ 2852.657636]  ? __do_sys_clone+0x110/0x110
[ 2852.658928]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2852.660338]  ? vfs_write+0x354/0xb10
[ 2852.661481]  ? fput_many+0x2f/0x1a0
[ 2852.662581]  ? ksys_write+0x1a9/0x260
[ 2852.663733]  ? __ia32_sys_read+0xb0/0xb0
[ 2852.664970]  do_syscall_64+0x33/0x40
[ 2852.673993]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2852.675544] RIP: 0033:0x7f862144ab19
[ 2852.676651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2852.679476] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2852.680490] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2852.681702] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2852.683838] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2852.685622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2852.686568] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2852.726938] FAULT_INJECTION: forcing a failure.
[ 2852.726938] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2852.728599] CPU: 1 PID: 32505 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2852.734098] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2852.735229] Call Trace:
[ 2852.735589]  dump_stack+0x107/0x167
[ 2852.736074]  should_fail.cold+0x5/0xa
[ 2852.736588]  _copy_to_user+0x2e/0x180
[ 2852.737098]  io_uring_setup+0x11b5/0x2980
[ 2852.741679]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2852.742349]  ? wait_for_completion_io+0x270/0x270
[ 2852.743008]  do_syscall_64+0x33/0x40
[ 2852.743505]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2852.744174] RIP: 0033:0x7fd22c24ab19
[ 2852.744673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2852.751113] RSP: 002b:00007fd22979f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2852.752126] RAX: ffffffffffffffda RBX: 00007fd22c35e020 RCX: 00007fd22c24ab19
[ 2852.753076] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2852.754049] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2852.755032] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2852.755974] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:31:03 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x0, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:31:03 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r0, 0x0)

10:31:03 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 43)
getresuid(0x0, 0x0, 0x0)

10:31:03 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 53)

10:31:03 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
munlock(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:31:03 executing program 4:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x2, "77004a6f20ff0000000008002600"})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0xa0040, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r1 = socket$inet(0x2, 0xa, 0x0)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
ioctl$TIOCL_BLANKSCREEN(r2, 0x541c, &(0x7f0000000040))
ioctl$TUNSETLINK(r0, 0x400454cd, 0x0)
dup3(r1, r0, 0x0)

10:31:03 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x10}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:31:03 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 34)

[ 2869.867792] FAULT_INJECTION: forcing a failure.
[ 2869.867792] name failslab, interval 1, probability 0, space 0, times 0
[ 2869.869303] CPU: 0 PID: 32517 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2869.870229] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2869.871356] Call Trace:
[ 2869.871711]  dump_stack+0x107/0x167
[ 2869.872193]  should_fail.cold+0x5/0xa
[ 2869.872712]  ? create_object.isra.0+0x3a/0xa20
[ 2869.873326]  should_failslab+0x5/0x20
[ 2869.873876]  kmem_cache_alloc+0x5b/0x310
[ 2869.874424]  ? io_wq_create+0x114/0xc00
[ 2869.874952]  create_object.isra.0+0x3a/0xa20
[ 2869.875529]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2869.876202]  kmem_cache_alloc_node_trace+0x16d/0x340
[ 2869.876914]  io_wq_create+0x6ef/0xc00
[ 2869.877428]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2869.878113]  ? io_import_iovec+0x1120/0x1120
[ 2869.878708]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2869.879311]  ? __io_req_find_next+0x300/0x300
[ 2869.879943]  ? do_raw_spin_lock+0x121/0x260
[ 2869.880510]  ? rwlock_bug.part.0+0x90/0x90
[ 2869.881073]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2869.881761]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2869.882460]  ? alloc_fd+0x2e7/0x670
[ 2869.882956]  io_uring_setup+0x1fbb/0x2980
[ 2869.883511]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2869.889531]  ? wait_for_completion_io+0x270/0x270
[ 2869.890224]  do_syscall_64+0x33/0x40
[ 2869.890712]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2869.891423] RIP: 0033:0x7fb4a26afb19
[ 2869.891917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2869.898359] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2869.899360] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2869.900331] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2869.901265] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2869.906262] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2869.907196] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2869.930627] FAULT_INJECTION: forcing a failure.
[ 2869.930627] name failslab, interval 1, probability 0, space 0, times 0
[ 2869.932250] CPU: 1 PID: 32522 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2869.933193] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2869.936169] Call Trace:
[ 2869.936523]  dump_stack+0x107/0x167
[ 2869.937112]  should_fail.cold+0x5/0xa
[ 2869.938413]  ? anon_vma_fork+0xf1/0x640
[ 2869.939038]  should_failslab+0x5/0x20
[ 2869.939535]  kmem_cache_alloc+0x5b/0x310
[ 2869.940184]  anon_vma_fork+0xf1/0x640
[ 2869.940682]  ? __vm_enough_memory+0x184/0x360
[ 2869.941334]  copy_process+0x72c9/0x78b0
[ 2869.942337]  ? SOFTIRQ_verbose+0x10/0x10
[ 2869.942987]  ? __cleanup_sighand+0xb0/0xb0
[ 2869.943587]  ? _copy_from_user+0xfb/0x1b0
[ 2869.944208]  kernel_clone+0xe7/0x980
[ 2869.944697]  ? __lockdep_reset_lock+0x180/0x180
[ 2869.945399]  ? create_io_thread+0xf0/0xf0
[ 2869.946179]  ? ksys_write+0x21a/0x260
[ 2869.946681]  ? lock_downgrade+0x6d0/0x6d0
[ 2869.947301]  __do_sys_clone3+0x1e5/0x320
[ 2869.947849]  ? __do_sys_clone+0x110/0x110
[ 2869.948503]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2869.949149]  ? vfs_write+0x354/0xb10
[ 2869.949842]  ? fput_many+0x2f/0x1a0
[ 2869.950320]  ? ksys_write+0x1a9/0x260
[ 2869.950820]  ? __ia32_sys_read+0xb0/0xb0
[ 2869.951362]  do_syscall_64+0x33/0x40
[ 2869.951848]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2869.952523] RIP: 0033:0x7f862144ab19
[ 2869.953404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2869.957787] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2869.959499] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2869.960972] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2869.962267] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2869.963640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2869.965054] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:31:03 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 54)

10:31:03 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
mlock2(&(0x7f0000ff2000/0x4000)=nil, 0x4000, 0x0)

10:31:03 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 35)

[ 2870.060381] FAULT_INJECTION: forcing a failure.
[ 2870.060381] name failslab, interval 1, probability 0, space 0, times 0
[ 2870.061955] CPU: 0 PID: 32545 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2870.062858] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2870.063958] Call Trace:
[ 2870.064319]  dump_stack+0x107/0x167
[ 2870.064802]  should_fail.cold+0x5/0xa
[ 2870.065306]  ? create_object.isra.0+0x3a/0xa20
[ 2870.065927]  should_failslab+0x5/0x20
[ 2870.066430]  kmem_cache_alloc+0x5b/0x310
[ 2870.066965]  create_object.isra.0+0x3a/0xa20
[ 2870.067587]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2870.068257]  kmem_cache_alloc+0x159/0x310
[ 2870.068808]  __alloc_file+0x21/0x320
[ 2870.069329]  alloc_empty_file+0x6d/0x170
[ 2870.069872]  alloc_file+0x5e/0x5a0
[ 2870.070349]  alloc_file_pseudo+0x16a/0x250
[ 2870.070903]  ? alloc_file+0x5a0/0x5a0
[ 2870.071419]  anon_inode_getfile+0xc8/0x1f0
[ 2870.071981]  io_uring_setup+0x138b/0x2980
[ 2870.072532]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2870.073221]  ? wait_for_completion_io+0x270/0x270
[ 2870.077870]  do_syscall_64+0x33/0x40
[ 2870.078362]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2870.079028] RIP: 0033:0x7fd22c24ab19
[ 2870.079527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2870.085951] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2870.086950] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2870.087931] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2870.088868] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2870.089841] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2870.090783] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:31:03 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 44)
getresuid(0x0, 0x0, 0x0)

10:31:03 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x14}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:31:03 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x0, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:31:03 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r0, 0x0)

10:31:03 executing program 4:
r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
pwrite64(r0, &(0x7f00000000c0)="a3", 0x1, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
open_by_handle_at(r1, &(0x7f0000000200)=@OVL_FILEID_V1={0xa8, 0xf8, {'\x00', {0x0, 0xfb, 0xa5, 0xa, 0x1f, "cb5dfc1eb25552b4c164a63ce785126f", "d6c15bc8b848d56b0fcaa65ffdf7a9da27819fc50addcbeeef266656d7fb832bc4eec5e91eef5c3d19f0ef42a3d2f1cae22425145ebdf936115c27fefec471e50f41ea5a8549d85d7ee3a477d902fa2063b7750e3b2e4b85db7e92e5fdab797f3d301301a02b81eb9a6dc8b7d66635133b530ee63e66ba6cd5ba0503651ed7224e13781b4b8b8ef81c9bea87c186fc6d"}}}, 0xd2000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x40c080, 0x10)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
perf_event_open(&(0x7f0000000040)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x10000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 2870.763711] FAULT_INJECTION: forcing a failure.
[ 2870.763711] name failslab, interval 1, probability 0, space 0, times 0
[ 2870.765225] CPU: 0 PID: 32737 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2870.771167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2870.773345] Call Trace:
[ 2870.774197]  dump_stack+0x107/0x167
[ 2870.775109]  should_fail.cold+0x5/0xa
[ 2870.776060]  ? __io_uring_add_tctx_node+0x15c/0x520
[ 2870.777340]  should_failslab+0x5/0x20
[ 2870.778514]  kmem_cache_alloc_trace+0x55/0x320
[ 2870.779726]  __io_uring_add_tctx_node+0x15c/0x520
[ 2870.781004]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2870.781949]  ? alloc_fd+0x2e7/0x670
[ 2870.782445]  io_uring_setup+0x1fbb/0x2980
[ 2870.782997]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2870.783705]  ? wait_for_completion_io+0x270/0x270
[ 2870.784368]  do_syscall_64+0x33/0x40
[ 2870.784862]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2870.785556] RIP: 0033:0x7fb4a26afb19
[ 2870.786054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2870.788504] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2870.789552] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2870.790502] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2870.791469] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2870.792406] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2870.793344] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2870.875155] FAULT_INJECTION: forcing a failure.
[ 2870.875155] name failslab, interval 1, probability 0, space 0, times 0
[ 2870.876672] CPU: 0 PID: 32742 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2870.877601] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2870.878689] Call Trace:
[ 2870.879043]  dump_stack+0x107/0x167
[ 2870.879529]  should_fail.cold+0x5/0xa
[ 2870.880034]  ? create_object.isra.0+0x3a/0xa20
[ 2870.880635]  should_failslab+0x5/0x20
[ 2870.881144]  kmem_cache_alloc+0x5b/0x310
[ 2870.881706]  create_object.isra.0+0x3a/0xa20
[ 2870.882282]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2870.882954]  kmem_cache_alloc+0x159/0x310
[ 2870.883505]  anon_vma_fork+0xf1/0x640
[ 2870.884012]  ? __vm_enough_memory+0x184/0x360
[ 2870.884606]  copy_process+0x72c9/0x78b0
[ 2870.885131]  ? SOFTIRQ_verbose+0x10/0x10
[ 2870.885714]  ? __cleanup_sighand+0xb0/0xb0
[ 2870.886291]  ? _copy_from_user+0xfb/0x1b0
[ 2870.886844]  kernel_clone+0xe7/0x980
[ 2870.887330]  ? __lockdep_reset_lock+0x180/0x180
[ 2870.887948]  ? create_io_thread+0xf0/0xf0
[ 2870.888507]  ? ksys_write+0x21a/0x260
[ 2870.889010]  ? lock_downgrade+0x6d0/0x6d0
[ 2870.893591]  __do_sys_clone3+0x1e5/0x320
[ 2870.894147]  ? __do_sys_clone+0x110/0x110
[ 2870.894729]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2870.895363]  ? vfs_write+0x354/0xb10
[ 2870.895856]  ? fput_many+0x2f/0x1a0
[ 2870.896338]  ? ksys_write+0x1a9/0x260
[ 2870.896870]  ? __ia32_sys_read+0xb0/0xb0
[ 2870.897415]  do_syscall_64+0x33/0x40
[ 2870.897927]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2870.898601] RIP: 0033:0x7f862144ab19
[ 2870.899093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2870.901500] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2870.902513] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2870.903451] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2870.904385] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2870.905328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2870.906275] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2871.148969] FAULT_INJECTION: forcing a failure.
[ 2871.148969] name failslab, interval 1, probability 0, space 0, times 0
[ 2871.154964] CPU: 1 PID: 32843 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2871.155879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2871.156968] Call Trace:
[ 2871.157324]  dump_stack+0x107/0x167
[ 2871.157824]  should_fail.cold+0x5/0xa
[ 2871.158373]  ? security_file_alloc+0x34/0x170
[ 2871.158970]  should_failslab+0x5/0x20
[ 2871.159473]  kmem_cache_alloc+0x5b/0x310
[ 2871.160014]  security_file_alloc+0x34/0x170
[ 2871.160613]  __alloc_file+0xb7/0x320
[ 2871.161103]  alloc_empty_file+0x6d/0x170
[ 2871.161707]  alloc_file+0x5e/0x5a0
[ 2871.162188]  alloc_file_pseudo+0x16a/0x250
[ 2871.162743]  ? alloc_file+0x5a0/0x5a0
[ 2871.163259]  anon_inode_getfile+0xc8/0x1f0
[ 2871.163822]  io_uring_setup+0x138b/0x2980
[ 2871.164404]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2871.165066]  ? wait_for_completion_io+0x270/0x270
[ 2871.173729]  do_syscall_64+0x33/0x40
[ 2871.174236]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2871.174942] RIP: 0033:0x7fd22c24ab19
[ 2871.175435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2871.185864] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2871.186888] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2871.187834] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2871.188772] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2871.193733] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2871.194675] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:31:21 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
openat(r2, &(0x7f0000000000)='./file0\x00', 0x195180, 0x10)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x5}, 0x4)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

10:31:21 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x22}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:31:21 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
mlock(&(0x7f0000fee000/0x1000)=nil, 0x1000)
r0 = pkey_alloc(0x0, 0x5)
r1 = pkey_alloc(0x0, 0x5)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r1)
r2 = pkey_alloc(0x0, 0x0)
pkey_mprotect(&(0x7f0000ff2000/0xe000)=nil, 0xe000, 0x1, r2)
pkey_free(r0)

10:31:21 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 36)

10:31:21 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 55)

10:31:21 executing program 1:
r0 = memfd_create(0x0, 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r0, 0x0)

10:31:21 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 45)
getresuid(0x0, 0x0, 0x0)

10:31:21 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x0, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2888.415853] FAULT_INJECTION: forcing a failure.
[ 2888.415853] name failslab, interval 1, probability 0, space 0, times 0
[ 2888.417387] CPU: 0 PID: 32968 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2888.418311] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2888.419404] Call Trace:
[ 2888.419759]  dump_stack+0x107/0x167
[ 2888.420243]  should_fail.cold+0x5/0xa
[ 2888.420751]  ? create_object.isra.0+0x3a/0xa20
[ 2888.421352]  should_failslab+0x5/0x20
[ 2888.425890]  kmem_cache_alloc+0x5b/0x310
[ 2888.426525]  create_object.isra.0+0x3a/0xa20
[ 2888.427091]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2888.427762]  kmem_cache_alloc_trace+0x151/0x320
[ 2888.428402]  __io_uring_add_tctx_node+0x15c/0x520
[ 2888.429026]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2888.429739]  ? alloc_fd+0x2e7/0x670
[ 2888.430232]  io_uring_setup+0x1fbb/0x2980
[ 2888.430788]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2888.431466]  ? wait_for_completion_io+0x270/0x270
[ 2888.432124]  do_syscall_64+0x33/0x40
[ 2888.432612]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2888.433301] RIP: 0033:0x7fb4a26afb19
[ 2888.433827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2888.436231] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2888.437222] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2888.438161] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2888.439080] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2888.439996] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2888.440831] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2888.471492] FAULT_INJECTION: forcing a failure.
[ 2888.471492] name failslab, interval 1, probability 0, space 0, times 0
[ 2888.472999] CPU: 1 PID: 32967 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2888.473927] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2888.475045] Call Trace:
[ 2888.475394]  dump_stack+0x107/0x167
[ 2888.475896]  should_fail.cold+0x5/0xa
[ 2888.476422]  ? anon_vma_fork+0x1ff/0x640
[ 2888.476963]  should_failslab+0x5/0x20
[ 2888.477467]  kmem_cache_alloc+0x5b/0x310
[ 2888.478028]  anon_vma_fork+0x1ff/0x640
[ 2888.478550]  copy_process+0x72c9/0x78b0
[ 2888.479102]  ? SOFTIRQ_verbose+0x10/0x10
[ 2888.479663]  ? __cleanup_sighand+0xb0/0xb0
[ 2888.480287]  ? _copy_from_user+0xfb/0x1b0
[ 2888.480877]  kernel_clone+0xe7/0x980
[ 2888.481365]  ? __lockdep_reset_lock+0x180/0x180
[ 2888.482036]  ? create_io_thread+0xf0/0xf0
[ 2888.482598]  ? ksys_write+0x21a/0x260
[ 2888.483103]  ? lock_downgrade+0x6d0/0x6d0
[ 2888.483655]  __do_sys_clone3+0x1e5/0x320
[ 2888.484193]  ? __do_sys_clone+0x110/0x110
[ 2888.484765]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2888.485394]  ? vfs_write+0x354/0xb10
[ 2888.489909]  ? fput_many+0x2f/0x1a0
[ 2888.490396]  ? ksys_write+0x1a9/0x260
[ 2888.490928]  ? __ia32_sys_read+0xb0/0xb0
[ 2888.491496]  do_syscall_64+0x33/0x40
[ 2888.492034]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2888.492708] RIP: 0033:0x7f862144ab19
[ 2888.493202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2888.495690] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2888.496702] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2888.497673] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2888.526628] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2888.527569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2888.528517] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:31:22 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 56)

[ 2888.544483] FAULT_INJECTION: forcing a failure.
[ 2888.544483] name failslab, interval 1, probability 0, space 0, times 0
[ 2888.545975] CPU: 0 PID: 32972 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2888.546857] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2888.547903] Call Trace:
[ 2888.548238]  dump_stack+0x107/0x167
[ 2888.548702]  should_fail.cold+0x5/0xa
[ 2888.549242]  ? create_object.isra.0+0x3a/0xa20
[ 2888.549859]  should_failslab+0x5/0x20
[ 2888.550374]  kmem_cache_alloc+0x5b/0x310
[ 2888.550899]  ? percpu_ref_put_many.constprop.0+0x4e/0x110
[ 2888.551624]  create_object.isra.0+0x3a/0xa20
[ 2888.552193]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2888.552851]  kmem_cache_alloc+0x159/0x310
[ 2888.553395]  security_file_alloc+0x34/0x170
[ 2888.554031]  __alloc_file+0xb7/0x320
[ 2888.554510]  alloc_empty_file+0x6d/0x170
[ 2888.555053]  alloc_file+0x5e/0x5a0
[ 2888.555537]  alloc_file_pseudo+0x16a/0x250
[ 2888.556085]  ? alloc_file+0x5a0/0x5a0
[ 2888.556600]  anon_inode_getfile+0xc8/0x1f0
[ 2888.557189]  io_uring_setup+0x138b/0x2980
[ 2888.557747]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2888.558412]  ? wait_for_completion_io+0x270/0x270
[ 2888.559070]  do_syscall_64+0x33/0x40
[ 2888.559559]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2888.560251] RIP: 0033:0x7fd22c24ab19
[ 2888.560736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2888.563182] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2888.564132] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2888.564995] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2888.565803] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2888.566578] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2888.567483] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:31:22 executing program 1:
r0 = memfd_create(0x0, 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r0, 0x0)

10:31:22 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
r0 = shmget$private(0x0, 0x2000, 0x20, &(0x7f0000ffe000/0x2000)=nil)
r1 = shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000)
shmctl$SHM_UNLOCK(r0, 0xc)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x2000)
shmdt(r1)
shmctl$SHM_INFO(r0, 0xe, &(0x7f00000002c0)=""/4096)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_INFO(r0, 0xe, &(0x7f0000000100)=""/182)
shmat(r0, &(0x7f0000ff5000/0x2000)=nil, 0x2000)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:31:22 executing program 4:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0xf9)
write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00000000c0)={0x4, 0x8000}, 0x4)
fallocate(r0, 0x10, 0x0, 0xbe93)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
sendfile(r1, r2, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
fallocate(r0, 0x3, 0x4077, 0x8000)

10:31:22 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 46)
getresuid(0x0, 0x0, 0x0)

10:31:22 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 37)

10:31:22 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2d000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:31:22 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x0, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2889.203029] FAULT_INJECTION: forcing a failure.
[ 2889.203029] name failslab, interval 1, probability 0, space 0, times 0
[ 2889.204904] CPU: 0 PID: 33183 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2889.205838] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2889.206923] Call Trace:
[ 2889.207280]  dump_stack+0x107/0x167
[ 2889.207759]  should_fail.cold+0x5/0xa
[ 2889.208267]  ? xas_alloc+0x336/0x440
[ 2889.208761]  should_failslab+0x5/0x20
[ 2889.209265]  kmem_cache_alloc+0x5b/0x310
[ 2889.209831]  ? stack_trace_consume_entry+0x160/0x160
[ 2889.210506]  xas_alloc+0x336/0x440
[ 2889.210978]  xas_create+0x34a/0x10d0
[ 2889.211481]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2889.212175]  xas_store+0x8c/0x1c40
[ 2889.212653]  __xa_store+0x164/0x2d0
[ 2889.213131]  ? xa_delete_node+0x280/0x280
[ 2889.217701]  ? trace_hardirqs_on+0x5b/0x180
[ 2889.218289]  xa_store+0x31/0x50
[ 2889.218727]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2889.219366]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2889.220056]  ? alloc_fd+0x2e7/0x670
[ 2889.220547]  io_uring_setup+0x1fbb/0x2980
[ 2889.221102]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2889.225782]  ? wait_for_completion_io+0x270/0x270
[ 2889.226443]  do_syscall_64+0x33/0x40
[ 2889.226934]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2889.227604] RIP: 0033:0x7fb4a26afb19
[ 2889.228091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2889.230508] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2889.231546] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2889.232479] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2889.233440] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2889.234393] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2889.235327] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2889.536358] FAULT_INJECTION: forcing a failure.
[ 2889.536358] name failslab, interval 1, probability 0, space 0, times 0
[ 2889.537953] CPU: 0 PID: 33193 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2889.538868] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2889.539957] Call Trace:
[ 2889.540310]  dump_stack+0x107/0x167
[ 2889.540798]  should_fail.cold+0x5/0xa
[ 2889.541344]  ? create_object.isra.0+0x3a/0xa20
[ 2889.541975]  should_failslab+0x5/0x20
[ 2889.542479]  kmem_cache_alloc+0x5b/0x310
[ 2889.543054]  create_object.isra.0+0x3a/0xa20
[ 2889.543627]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2889.544341]  kmem_cache_alloc+0x159/0x310
[ 2889.544902]  anon_vma_fork+0x1ff/0x640
[ 2889.545423]  copy_process+0x72c9/0x78b0
[ 2889.546003]  ? SOFTIRQ_verbose+0x10/0x10
[ 2889.546564]  ? __cleanup_sighand+0xb0/0xb0
[ 2889.547187]  ? _copy_from_user+0xfb/0x1b0
[ 2889.547741]  kernel_clone+0xe7/0x980
[ 2889.548232]  ? __lockdep_reset_lock+0x180/0x180
[ 2889.548877]  ? create_io_thread+0xf0/0xf0
[ 2889.549433]  ? ksys_write+0x21a/0x260
[ 2889.550001]  ? lock_downgrade+0x6d0/0x6d0
[ 2889.550558]  __do_sys_clone3+0x1e5/0x320
[ 2889.551095]  ? __do_sys_clone+0x110/0x110
[ 2889.551662]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2889.552304]  ? vfs_write+0x354/0xb10
[ 2889.552795]  ? fput_many+0x2f/0x1a0
[ 2889.553324]  ? ksys_write+0x1a9/0x260
[ 2889.553845]  ? __ia32_sys_read+0xb0/0xb0
[ 2889.554395]  do_syscall_64+0x33/0x40
[ 2889.554920]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2889.555590] RIP: 0033:0x7f862144ab19
[ 2889.556128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2889.558581] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2889.559631] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2889.560571] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2889.561540] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2889.570476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2889.571419] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2889.666467] FAULT_INJECTION: forcing a failure.
[ 2889.666467] name failslab, interval 1, probability 0, space 0, times 0
[ 2889.668015] CPU: 1 PID: 33210 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2889.668923] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2889.670065] Call Trace:
[ 2889.670457]  dump_stack+0x107/0x167
[ 2889.670941]  should_fail.cold+0x5/0xa
[ 2889.671451]  ? create_object.isra.0+0x3a/0xa20
[ 2889.672087]  should_failslab+0x5/0x20
[ 2889.672590]  kmem_cache_alloc+0x5b/0x310
[ 2889.673157]  create_object.isra.0+0x3a/0xa20
[ 2889.673772]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2889.674481]  kmem_cache_alloc+0x159/0x310
[ 2889.675032]  __d_alloc+0x2a/0x990
[ 2889.675529]  ? find_held_lock+0x2c/0x110
[ 2889.676070]  d_alloc_pseudo+0x19/0x70
[ 2889.676574]  alloc_file_pseudo+0xce/0x250
[ 2889.677152]  ? trace_hardirqs_on+0x5b/0x180
[ 2889.677734]  ? alloc_file+0x5a0/0x5a0
[ 2889.678305]  anon_inode_getfile+0xc8/0x1f0
[ 2889.678870]  io_uring_setup+0x138b/0x2980
[ 2889.679425]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2889.680095]  ? wait_for_completion_io+0x270/0x270
[ 2889.680753]  do_syscall_64+0x33/0x40
[ 2889.681251]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2889.681948] RIP: 0033:0x7fd22c24ab19
[ 2889.682447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2889.684926] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2889.689944] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2889.690930] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2889.691870] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2889.692840] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2889.693841] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:31:42 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 57)

10:31:42 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x0, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:31:42 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = dup2(r0, r0)
ioctl$HIDIOCINITREPORT(r1, 0x550c, 0x20000000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd_index=0x3, 0xffffffffffffffff}, 0x9)
r2 = mq_open(&(0x7f00000007c0)='\xc4fdn/\xda\x1ag\x92\x05\xdb\xe7\xf2\xaa5T\xb5\x0e@\xa5\x15M\x1b\xec\xbf\x97\x05\x00\x00\x00\x00\x00\xec\xa6t\xd7\x01\x81\xa7\x81\xc9\x8dNK\x02K\x89\xcc\xfd\xd4n\x06\x8e\xd3{\t\x1d\xf5f\x9e_\xb5sF\x90\xe0\xf4\xfc\xa7\x9a\x16{\x87K<\"\xb9\xea\xb3\xefh\xfd\v$\xda\xe8x\x1e\xe1\x97S)0q\xd3\xa0|\xe5\xd1\xd88\xfcZK.t\xe9\x831\xc9\xd9K\x9a\xfe\x14\x14yu\x86\xb2O\xffOO\xe4/\xb0\xc9\xbbB\x99\v\x19\x06\x95\xb5\xd3r\r\x91d0\x9b\xb8-\xbbx\xaf\x051*\x01\xa7\xfb\\\xc4\x1f\x1f\x81\x98\x9b\x1dz\xbc\xd2\xcdc\xa3\xda\xa0\x85\xccb\xe2\'\x04\xf3>\xc1f\xf0\xc5R\x04C\xbb\x9a\x94\xb6Si\x80\xf9\x02\xcans\xee(\x8f\xf8\xfb\xcf$YhQ\b\xa1:.\xc1O\xc8\x885\xf6V\xb8\xb3\x00}\xe4\x11`[\xda(\x94\xd7\r\x1eJ\xeb\x1f\xa4\xde\xd0\x9bo\x94y\x0e&\x01\x90#\xe2\xb3\b\xb0-\n\x90\xb8\x8a\xca\x95\xd2\xf7f\xbf\xdb\xcb~i\"\x98\xa24\xb4*;\xbb\x9f\xea\xf0}^\x16|5\x7fi\xc8\xb4t<s\xe3`\xb0q\xab\xe3[\xda\xc2@\xe0_H`o#\xbbe\xa8,U\xfaR-\xcb\xc4\v\x19vJ\xd8\xe1\xa0[\xd2\xc6\xe4\x84\x1f\xb1?\x01\x1b\xff\x11P\xc0I\x1b\x80\xfe(\x06\x82\xda\xd5SnH\xae\x94\xba%\x06\xbe\xc1\xe8\xb5\xb7-{\x89v\r$c\xc0l\xd2\x96q\xfa*?\x8c\xa7~[j3\x80e U/L_\x97\x0e\x80\x15R\xb5XM\x8b\xde\xcc\xcb\xfc&\x8e\xab\xa7\x14\xf3\xeb\x93\xcc\x0e\x8eo\xda\x99W\xa5\xb3JF\x98\xa7b\xc7\xbe\xb0\xea\xf4\xc0\x9c\x1d\x18\xc9whq\xf7S\f5\xc9/\xb8\x8ad\xbc\x8f]>\xfbv:R\xec\x8b\x8d\xa6\a\x8e,\x96\x8f|W@{\x99w\x1fD\x90\xc3k\x925\r\xa4T\x91\x1a}\x14\x87Q\xdd\xac@6XOC5\xa5\xdcj\xddG\x16w\xbc\xe1\xb7\x19\xd6n1\x84m\xc5\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x40, 0x83, &(0x7f0000000200)={0x6, 0x4, 0x4, 0x1})
write$binfmt_elf64(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"/658], 0x299)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000240)={'ip6tnl0\x00', &(0x7f00000001c0)={'syztnl2\x00', 0x0, 0x2d, 0x4, 0x1, 0x7ff, 0x0, @local, @private1, 0x8000, 0x20, 0x1f}})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000040)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}, 0x7})
ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000080)=0xc0)
r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$HIDIOCINITREPORT(r5, 0x550c, 0x20000000)
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x4e21, 0x6, @local, 0x9}, 0x1c)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_CLOSE={0x13, 0x4, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xc9)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000000))
mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}})

10:31:42 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 38)

10:31:42 executing program 1:
r0 = memfd_create(0x0, 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r0, 0x0)

10:31:42 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff)

10:31:42 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:31:42 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 47)
getresuid(0x0, 0x0, 0x0)

[ 2909.092257] FAULT_INJECTION: forcing a failure.
[ 2909.092257] name failslab, interval 1, probability 0, space 0, times 0
[ 2909.093774] CPU: 0 PID: 33417 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2909.094701] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2909.095788] Call Trace:
[ 2909.096141]  dump_stack+0x107/0x167
[ 2909.096622]  should_fail.cold+0x5/0xa
[ 2909.097136]  ? create_object.isra.0+0x3a/0xa20
[ 2909.097742]  should_failslab+0x5/0x20
[ 2909.098268]  kmem_cache_alloc+0x5b/0x310
[ 2909.098813]  create_object.isra.0+0x3a/0xa20
[ 2909.099390]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2909.100070]  kmem_cache_alloc+0x159/0x310
[ 2909.100627]  xas_alloc+0x336/0x440
[ 2909.101102]  xas_create+0x34a/0x10d0
[ 2909.101612]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2909.102322]  xas_store+0x8c/0x1c40
[ 2909.102811]  __xa_store+0x164/0x2d0
[ 2909.103295]  ? xa_delete_node+0x280/0x280
[ 2909.103850]  ? trace_hardirqs_on+0x5b/0x180
[ 2909.104428]  xa_store+0x31/0x50
[ 2909.104871]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2909.105503]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2909.106213]  ? alloc_fd+0x2e7/0x670
[ 2909.106705]  io_uring_setup+0x1fbb/0x2980
[ 2909.107260]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2909.107954]  ? wait_for_completion_io+0x270/0x270
[ 2909.108614]  do_syscall_64+0x33/0x40
[ 2909.109153]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2909.109828] RIP: 0033:0x7fb4a26afb19
[ 2909.110333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2909.112764] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2909.113773] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2909.114726] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2909.115657] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2909.116603] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2909.117548] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2909.159133] FAULT_INJECTION: forcing a failure.
[ 2909.159133] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2909.160791] CPU: 0 PID: 33419 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2909.161709] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2909.162822] Call Trace:
[ 2909.163175]  dump_stack+0x107/0x167
[ 2909.163657]  should_fail.cold+0x5/0xa
[ 2909.164174]  __alloc_pages_nodemask+0x182/0x600
[ 2909.164791]  ? __lockdep_reset_lock+0x180/0x180
[ 2909.165411]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 2909.166233]  ? copy_page_range+0x28e1/0x3810
[ 2909.166816]  alloc_pages_current+0x187/0x280
[ 2909.167410]  get_zeroed_page+0x14/0xb0
[ 2909.167926]  __pud_alloc+0x33/0x270
[ 2909.168414]  copy_page_range+0x2ca1/0x3810
[ 2909.168976]  ? perf_trace_lock+0xac/0x490
[ 2909.169518]  ? lock_chain_count+0x20/0x20
[ 2909.170105]  ? lock_downgrade+0x6d0/0x6d0
[ 2909.170669]  ? up_write+0x191/0x550
[ 2909.171151]  ? vm_iomap_memory+0x190/0x190
[ 2909.171710]  ? downgrade_write+0x3a0/0x3a0
[ 2909.172271]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 2909.172989]  ? __vma_link_rb+0x540/0x700
[ 2909.173536]  copy_process+0x7654/0x78b0
[ 2909.174072]  ? SOFTIRQ_verbose+0x10/0x10
[ 2909.174637]  ? __cleanup_sighand+0xb0/0xb0
[ 2909.175215]  ? _copy_from_user+0xfb/0x1b0
[ 2909.175770]  kernel_clone+0xe7/0x980
[ 2909.176261]  ? __lockdep_reset_lock+0x180/0x180
[ 2909.176870]  ? create_io_thread+0xf0/0xf0
[ 2909.177440]  ? ksys_write+0x21a/0x260
[ 2909.177951]  ? lock_downgrade+0x6d0/0x6d0
[ 2909.178511]  __do_sys_clone3+0x1e5/0x320
[ 2909.179047]  ? __do_sys_clone+0x110/0x110
[ 2909.179613]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2909.180268]  ? vfs_write+0x354/0xb10
[ 2909.180763]  ? fput_many+0x2f/0x1a0
[ 2909.181247]  ? ksys_write+0x1a9/0x260
[ 2909.181762]  ? __ia32_sys_read+0xb0/0xb0
[ 2909.182345]  do_syscall_64+0x33/0x40
[ 2909.182842]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2909.183552] RIP: 0033:0x7f862144ab19
[ 2909.184045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2909.186491] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2909.187538] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2909.188476] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2909.189440] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2909.190434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2909.191373] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:31:42 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r0, 0x0)

10:31:42 executing program 0:
r0 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffd, 0x1, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, r1)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ffc000/0x2000)=nil)
mbind(&(0x7f0000ff7000/0x3000)=nil, 0x3000, 0x3, &(0x7f0000000000)=0x200, 0x1, 0x2)
munlock(&(0x7f0000ff4000/0x1000)=nil, 0x1000)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 2909.260473] FAULT_INJECTION: forcing a failure.
[ 2909.260473] name failslab, interval 1, probability 0, space 0, times 0
[ 2909.262003] CPU: 0 PID: 33415 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2909.262904] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2909.263996] Call Trace:
[ 2909.264351]  dump_stack+0x107/0x167
[ 2909.264834]  should_fail.cold+0x5/0xa
[ 2909.265339]  ? create_object.isra.0+0x3a/0xa20
[ 2909.265948]  should_failslab+0x5/0x20
[ 2909.266474]  kmem_cache_alloc+0x5b/0x310
[ 2909.267014]  create_object.isra.0+0x3a/0xa20
[ 2909.267592]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2909.268264]  kmem_cache_alloc_trace+0x151/0x320
[ 2909.268884]  io_uring_alloc_task_context+0x99/0x6a0
[ 2909.269541]  ? io_import_iovec+0x1120/0x1120
[ 2909.270145]  ? lock_downgrade+0x6d0/0x6d0
[ 2909.270691]  ? do_raw_spin_lock+0x121/0x260
[ 2909.271259]  ? rwlock_bug.part.0+0x90/0x90
[ 2909.271822]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2909.272457]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2909.273149]  ? alloc_fd+0x2e7/0x670
[ 2909.273640]  io_uring_setup+0x1fbb/0x2980
[ 2909.274210]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2909.274876]  ? wait_for_completion_io+0x270/0x270
[ 2909.275534]  do_syscall_64+0x33/0x40
[ 2909.276022]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2909.276703] RIP: 0033:0x7fd22c24ab19
[ 2909.277197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2909.279629] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2909.280630] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2909.281566] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2909.286532] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2909.287469] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2909.288405] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:31:42 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 58)

10:31:42 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000002, 0x10, r1, 0x3b628000)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000d40)=ANY=[@ANYBLOB="7f454c4605070909060000000000000003000600090000008f0100000000000040000000000000002b01000000000000ffffff7fd1053800020022e480000200"/2608], 0xfffffffffffffe6c)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x8000)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x24, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0x8, 0x0, 0x0, 0x1, [@typed={0x4, 0x19, 0x0, 0x0, @binary}]}]}, 0x24}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x4008040}, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r3, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, 0x0, 0x8, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @void}}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x48000}, 0x48000)
sendfile(r3, r4, 0x0, 0x2)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
dup2(r5, r2)
ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2})
sendfile(r2, r5, 0x0, 0x6)
poll(&(0x7f00000001c0), 0x0, 0x1)

10:31:42 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 39)

10:31:43 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 48)
getresuid(0x0, 0x0, 0x0)

10:31:43 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:31:43 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x0, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:31:43 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
mbind(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3, &(0x7f0000000000)=0x7, 0x1, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 2909.790589] FAULT_INJECTION: forcing a failure.
[ 2909.790589] name failslab, interval 1, probability 0, space 0, times 0
[ 2909.798213] CPU: 1 PID: 33638 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2909.801204] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2909.802684] Call Trace:
[ 2909.803028]  dump_stack+0x107/0x167
[ 2909.803500]  should_fail.cold+0x5/0xa
[ 2909.803989]  ? xas_alloc+0x336/0x440
[ 2909.804469]  should_failslab+0x5/0x20
[ 2909.804952]  kmem_cache_alloc+0x5b/0x310
[ 2909.805473]  xas_alloc+0x336/0x440
[ 2909.806089]  xas_create+0x34a/0x10d0
[ 2909.806630]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2909.807337]  xas_store+0x8c/0x1c40
[ 2909.807843]  __xa_store+0x164/0x2d0
[ 2909.808325]  ? xa_delete_node+0x280/0x280
[ 2909.808879]  ? trace_hardirqs_on+0x5b/0x180
[ 2909.809451]  xa_store+0x31/0x50
[ 2909.809886]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2909.810543]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2909.811231]  ? alloc_fd+0x2e7/0x670
[ 2909.811720]  io_uring_setup+0x1fbb/0x2980
[ 2909.812272]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2909.812931]  ? wait_for_completion_io+0x270/0x270
[ 2909.813599]  do_syscall_64+0x33/0x40
[ 2909.814121]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2909.814810] RIP: 0033:0x7fb4a26afb19
[ 2909.815304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2909.817725] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2909.819689] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2909.821488] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2909.822686] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2909.823659] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2909.824605] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2909.833321] FAULT_INJECTION: forcing a failure.
[ 2909.833321] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2909.834908] CPU: 0 PID: 33641 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2909.835823] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2909.836911] Call Trace:
[ 2909.837261]  dump_stack+0x107/0x167
[ 2909.837742]  should_fail.cold+0x5/0xa
[ 2909.838284]  __alloc_pages_nodemask+0x182/0x600
[ 2909.838902]  ? lock_acquire+0x197/0x470
[ 2909.839429]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 2909.840242]  ? lock_downgrade+0x6d0/0x6d0
[ 2909.840805]  ? do_raw_spin_lock+0x121/0x260
[ 2909.841401]  alloc_pages_current+0x187/0x280
[ 2909.842014]  __pmd_alloc+0x37/0x5e0
[ 2909.842540]  copy_page_range+0x2bd8/0x3810
[ 2909.843113]  ? perf_trace_lock+0xac/0x490
[ 2909.843673]  ? lock_chain_count+0x20/0x20
[ 2909.844277]  ? up_write+0x191/0x550
[ 2909.844770]  ? vm_iomap_memory+0x190/0x190
[ 2909.845350]  ? downgrade_write+0x3a0/0x3a0
[ 2909.845937]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 2909.847717]  ? __vma_link_rb+0x540/0x700
[ 2909.849028]  copy_process+0x7654/0x78b0
[ 2909.850131]  ? SOFTIRQ_verbose+0x10/0x10
[ 2909.850722]  ? __cleanup_sighand+0xb0/0xb0
[ 2909.851322]  ? _copy_from_user+0xfb/0x1b0
[ 2909.851896]  kernel_clone+0xe7/0x980
[ 2909.852404]  ? __lockdep_reset_lock+0x180/0x180
[ 2909.853042]  ? create_io_thread+0xf0/0xf0
[ 2909.853634]  ? ksys_write+0x21a/0x260
[ 2909.854573]  ? lock_downgrade+0x6d0/0x6d0
[ 2909.855912]  __do_sys_clone3+0x1e5/0x320
[ 2909.857181]  ? __do_sys_clone+0x110/0x110
[ 2909.858199]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2909.858811]  ? vfs_write+0x354/0xb10
[ 2909.859305]  ? fput_many+0x2f/0x1a0
[ 2909.859783]  ? ksys_write+0x1a9/0x260
[ 2909.860292]  ? __ia32_sys_read+0xb0/0xb0
[ 2909.860838]  do_syscall_64+0x33/0x40
[ 2909.861329]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2909.862188] RIP: 0033:0x7f862144ab19
[ 2909.863287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2909.867882] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2909.868874] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2909.869799] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2909.870752] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2909.871689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2909.872620] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2910.230397] FAULT_INJECTION: forcing a failure.
[ 2910.230397] name failslab, interval 1, probability 0, space 0, times 0
[ 2910.232346] CPU: 0 PID: 33678 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2910.233259] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2910.234358] Call Trace:
[ 2910.234713]  dump_stack+0x107/0x167
[ 2910.235196]  should_fail.cold+0x5/0xa
[ 2910.235699]  ? create_object.isra.0+0x3a/0xa20
[ 2910.236311]  should_failslab+0x5/0x20
[ 2910.236813]  kmem_cache_alloc+0x5b/0x310
[ 2910.237353]  create_object.isra.0+0x3a/0xa20
[ 2910.237947]  kmemleak_alloc_percpu+0xa0/0x100
[ 2910.238542]  pcpu_alloc+0x4e2/0x1240
[ 2910.239050]  __percpu_counter_init+0x10d/0x2d0
[ 2910.239651]  io_uring_alloc_task_context+0xcc/0x6a0
[ 2910.240313]  ? io_import_iovec+0x1120/0x1120
[ 2910.240894]  ? lock_downgrade+0x6d0/0x6d0
[ 2910.241438]  ? do_raw_spin_lock+0x121/0x260
[ 2910.246044]  ? rwlock_bug.part.0+0x90/0x90
[ 2910.246601]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2910.247238]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2910.247921]  ? alloc_fd+0x2e7/0x670
[ 2910.248408]  io_uring_setup+0x1fbb/0x2980
[ 2910.248956]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2910.249614]  ? wait_for_completion_io+0x270/0x270
[ 2910.250283]  do_syscall_64+0x33/0x40
[ 2910.250768]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2910.251444] RIP: 0033:0x7fd22c24ab19
[ 2910.251934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2910.254339] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2910.255375] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2910.256314] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2910.257244] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2910.258197] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2910.259128] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2910.265086] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=33711 comm=syz-executor.4
[ 2910.327791] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=33656 comm=syz-executor.4
10:32:01 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r0, 0x0)

10:32:01 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:32:01 executing program 0:
mlock2(&(0x7f0000ff6000/0x4000)=nil, 0x4000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:32:01 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 49)
getresuid(0x0, 0x0, 0x0)

10:32:01 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 59)

10:32:01 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 40)

10:32:01 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x8}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:32:01 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
r1 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x2a7b, &(0x7f00000002c0)={0x0, 0x504, 0x0, 0x0, 0xfffffffe, 0x0, r1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000018c0), 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x13, r1, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4ea0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080)={0x2, 0x8000}, 0x4)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x80, 0xc9, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpeername(r0, &(0x7f0000000400)=@xdp, &(0x7f0000000180)=0x80)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000100)=@IORING_OP_WRITE={0x17, 0x2, 0x6000, @fd_index=0x5, 0x9d, &(0x7f0000000200)="74885f6036f752c7d139333fc5962030e94e63c4f1a6ecab5e1ef80f67bef63129b8b5070210d25c7ee44c39e45e2433da147abdc833bbc12a1e1c17628033137df87fb31702515cf2040786986b062f0fb18df5933ee993387cd70c7b4d07d8ba5c0674eaa6d121fb86fc61e11828be2f4debf0f8f1e8b56f8b857f0150ac4eec0c0df4bdd7f27606a0", 0x8a, 0x6, 0x1}, 0x2)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x200000d, 0x13, r1, 0x0)
sendmmsg$inet6(r4, &(0x7f0000008e80)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000640)="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", 0xff0}, {&(0x7f0000000040)="32760156545e0747971a", 0xa}], 0x2}}, {{0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000180)="c09317691589b78da6f35425aaac7a0d6b59ec86779f1cbbe6fd67dc208f08c6164e58aa32c051fa4978e1acd38de00ca57ce3208ad43a6835e441ff38dd225a9532bde2c1a38053509df1103f6d7195c842fb42f73379f6a8febb1fc0e47033c8d53364df9b9959760f3c2ceb34978ac1b05399f2", 0x75}, {0x0}, {&(0x7f0000000440)}, {0x0, 0x64}, {0x0}, {0x0}], 0x6}}], 0x2, 0x8001)
write$binfmt_script(r4, &(0x7f0000000580)=ANY=[], 0xe3)
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0)

[ 2928.175819] FAULT_INJECTION: forcing a failure.
[ 2928.175819] name failslab, interval 1, probability 0, space 0, times 0
[ 2928.177335] CPU: 0 PID: 33875 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2928.178265] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2928.179366] Call Trace:
[ 2928.179721]  dump_stack+0x107/0x167
[ 2928.180207]  should_fail.cold+0x5/0xa
[ 2928.180717]  ? create_object.isra.0+0x3a/0xa20
[ 2928.181320]  should_failslab+0x5/0x20
[ 2928.181830]  kmem_cache_alloc+0x5b/0x310
[ 2928.182063] FAULT_INJECTION: forcing a failure.
[ 2928.182063] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2928.182385]  ? mark_held_locks+0x9e/0xe0
[ 2928.184512]  create_object.isra.0+0x3a/0xa20
[ 2928.185098]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2928.185771]  kmem_cache_alloc+0x159/0x310
[ 2928.186350]  xas_alloc+0x336/0x440
[ 2928.186824]  xas_create+0x34a/0x10d0
[ 2928.187328]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2928.188021]  xas_store+0x8c/0x1c40
[ 2928.188502]  __xa_store+0x164/0x2d0
[ 2928.188993]  ? xa_delete_node+0x280/0x280
[ 2928.189549]  ? trace_hardirqs_on+0x5b/0x180
[ 2928.190126]  xa_store+0x31/0x50
[ 2928.190584]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2928.191219]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2928.191913]  ? alloc_fd+0x2e7/0x670
[ 2928.192406]  io_uring_setup+0x1fbb/0x2980
[ 2928.192962]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2928.193633]  ? wait_for_completion_io+0x270/0x270
[ 2928.194308]  do_syscall_64+0x33/0x40
[ 2928.194805]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2928.195479] RIP: 0033:0x7fb4a26afb19
[ 2928.195972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2928.198391] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2928.199399] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2928.200337] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2928.201272] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2928.202223] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2928.203166] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2928.204131] CPU: 1 PID: 33869 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2928.205068] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2928.206167] Call Trace:
[ 2928.206533]  dump_stack+0x107/0x167
[ 2928.207019]  should_fail.cold+0x5/0xa
[ 2928.207525]  __alloc_pages_nodemask+0x182/0x600
[ 2928.208158]  ? __lockdep_reset_lock+0x180/0x180
[ 2928.208780]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 2928.209584]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2928.210296]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2928.211005]  ? trace_hardirqs_on+0x5b/0x180
[ 2928.211577]  alloc_pages_current+0x187/0x280
[ 2928.212169]  get_zeroed_page+0x14/0xb0
[ 2928.212683]  ? copy_page_range+0x597/0x3810
[ 2928.213249]  __pud_alloc+0x33/0x270
[ 2928.213736]  copy_page_range+0x2ca1/0x3810
[ 2928.222302]  ? perf_trace_lock+0xac/0x490
[ 2928.222848]  ? lock_chain_count+0x20/0x20
[ 2928.223413]  ? lock_downgrade+0x6d0/0x6d0
[ 2928.223975]  ? up_write+0x191/0x550
[ 2928.224454]  ? vm_iomap_memory+0x190/0x190
[ 2928.225016]  ? downgrade_write+0x3a0/0x3a0
[ 2928.225577]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 2928.230318]  ? __vma_link_rb+0x540/0x700
[ 2928.230864]  copy_process+0x7654/0x78b0
[ 2928.231383]  ? SOFTIRQ_verbose+0x10/0x10
[ 2928.231951]  ? __cleanup_sighand+0xb0/0xb0
[ 2928.232529]  ? _copy_from_user+0xfb/0x1b0
[ 2928.233083]  kernel_clone+0xe7/0x980
[ 2928.233574]  ? __lockdep_reset_lock+0x180/0x180
[ 2928.238206]  ? create_io_thread+0xf0/0xf0
[ 2928.238770]  ? ksys_write+0x21a/0x260
[ 2928.239276]  ? lock_downgrade+0x6d0/0x6d0
[ 2928.239830]  __do_sys_clone3+0x1e5/0x320
[ 2928.240369]  ? __do_sys_clone+0x110/0x110
[ 2928.240936]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2928.241544]  ? vfs_write+0x354/0xb10
[ 2928.242048]  ? fput_many+0x2f/0x1a0
[ 2928.242557]  ? ksys_write+0x1a9/0x260
[ 2928.243061]  ? __ia32_sys_read+0xb0/0xb0
[ 2928.243610]  do_syscall_64+0x33/0x40
[ 2928.244103]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2928.244774] RIP: 0033:0x7f862144ab19
[ 2928.245276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2928.255689] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2928.256692] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2928.257628] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2928.266569] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2928.267507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2928.268441] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2928.286626] FAULT_INJECTION: forcing a failure.
[ 2928.286626] name failslab, interval 1, probability 0, space 0, times 0
[ 2928.288256] CPU: 0 PID: 33867 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2928.289170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2928.294285] Call Trace:
[ 2928.294674]  dump_stack+0x107/0x167
[ 2928.302564]  should_fail.cold+0x5/0xa
[ 2928.303070]  ? create_object.isra.0+0x3a/0xa20
[ 2928.303676]  should_failslab+0x5/0x20
[ 2928.304178]  kmem_cache_alloc+0x5b/0x310
[ 2928.304718]  create_object.isra.0+0x3a/0xa20
[ 2928.305303]  kmemleak_alloc_percpu+0xa0/0x100
[ 2928.305895]  pcpu_alloc+0x4e2/0x1240
[ 2928.306425]  __percpu_counter_init+0x10d/0x2d0
[ 2928.307031]  io_uring_alloc_task_context+0xcc/0x6a0
[ 2928.307690]  ? io_import_iovec+0x1120/0x1120
[ 2928.308270]  ? lock_downgrade+0x6d0/0x6d0
[ 2928.308813]  ? do_raw_spin_lock+0x121/0x260
[ 2928.309389]  ? rwlock_bug.part.0+0x90/0x90
[ 2928.309953]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2928.310609]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2928.311298]  ? alloc_fd+0x2e7/0x670
[ 2928.311787]  io_uring_setup+0x1fbb/0x2980
[ 2928.312348]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2928.313013]  ? wait_for_completion_io+0x270/0x270
[ 2928.313672]  do_syscall_64+0x33/0x40
[ 2928.314173]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2928.314855] RIP: 0033:0x7fd22c24ab19
[ 2928.315344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2928.317752] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2928.318766] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2928.319709] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2928.320645] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2928.321584] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2928.326544] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:32:01 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 60)

10:32:01 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3000001, 0x1f013, r0, 0x0)

10:32:02 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
r0 = pkey_alloc(0x0, 0x5)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0)
pkey_mprotect(&(0x7f0000ff2000/0x3000)=nil, 0x3000, 0x1000007, r0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, &(0x7f0000000000)=0x101, 0x5d5, 0x2)

10:32:02 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x21}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:32:02 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:32:02 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 50)
getresuid(0x0, 0x0, 0x0)

10:32:02 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 41)

[ 2929.067643] FAULT_INJECTION: forcing a failure.
[ 2929.067643] name failslab, interval 1, probability 0, space 0, times 0
[ 2929.069174] CPU: 1 PID: 34087 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2929.070086] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2929.071188] Call Trace:
[ 2929.071552]  dump_stack+0x107/0x167
[ 2929.072038]  should_fail.cold+0x5/0xa
[ 2929.072547]  ? xas_alloc+0x336/0x440
[ 2929.073044]  should_failslab+0x5/0x20
[ 2929.073552]  kmem_cache_alloc+0x5b/0x310
[ 2929.074091]  xas_alloc+0x336/0x440
[ 2929.074587]  xas_create+0x34a/0x10d0
[ 2929.075095]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2929.075791]  xas_store+0x8c/0x1c40
[ 2929.076278]  __xa_store+0x164/0x2d0
[ 2929.076765]  ? xa_delete_node+0x280/0x280
[ 2929.077325]  ? trace_hardirqs_on+0x5b/0x180
[ 2929.077901]  xa_store+0x31/0x50
[ 2929.078354]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2929.079002]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2929.079694]  ? alloc_fd+0x2e7/0x670
[ 2929.080189]  io_uring_setup+0x1fbb/0x2980
[ 2929.080746]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2929.081411]  ? wait_for_completion_io+0x270/0x270
[ 2929.082083]  do_syscall_64+0x33/0x40
[ 2929.082593]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2929.083270] RIP: 0033:0x7fb4a26afb19
[ 2929.083762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2929.086197] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2929.087203] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2929.088140] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2929.089089] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2929.090031] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2929.094991] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2929.139169] FAULT_INJECTION: forcing a failure.
[ 2929.139169] name failslab, interval 1, probability 0, space 0, times 0
[ 2929.140760] CPU: 1 PID: 34094 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2929.141675] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2929.142786] Call Trace:
[ 2929.143143]  dump_stack+0x107/0x167
[ 2929.143635]  should_fail.cold+0x5/0xa
[ 2929.144145]  ? create_object.isra.0+0x3a/0xa20
[ 2929.144756]  should_failslab+0x5/0x20
[ 2929.145264]  kmem_cache_alloc+0x5b/0x310
[ 2929.145809]  create_object.isra.0+0x3a/0xa20
[ 2929.146407]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2929.147084]  kmem_cache_alloc+0x159/0x310
[ 2929.147646]  __pmd_alloc+0x94/0x5e0
[ 2929.148137]  copy_page_range+0x2bd8/0x3810
[ 2929.148703]  ? perf_trace_lock+0xac/0x490
[ 2929.149253]  ? lock_chain_count+0x20/0x20
[ 2929.149841]  ? up_write+0x191/0x550
[ 2929.150339]  ? vm_iomap_memory+0x190/0x190
[ 2929.150911]  ? downgrade_write+0x3a0/0x3a0
[ 2929.151477]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 2929.152197]  ? __vma_link_rb+0x540/0x700
[ 2929.152746]  copy_process+0x7654/0x78b0
[ 2929.153274]  ? SOFTIRQ_verbose+0x10/0x10
[ 2929.153844]  ? __cleanup_sighand+0xb0/0xb0
[ 2929.154438]  ? _copy_from_user+0xfb/0x1b0
[ 2929.155003]  kernel_clone+0xe7/0x980
[ 2929.155499]  ? __lockdep_reset_lock+0x180/0x180
[ 2929.156116]  ? create_io_thread+0xf0/0xf0
[ 2929.156681]  ? ksys_write+0x21a/0x260
[ 2929.157184]  ? lock_downgrade+0x6d0/0x6d0
[ 2929.157743]  __do_sys_clone3+0x1e5/0x320
[ 2929.158296]  ? __do_sys_clone+0x110/0x110
[ 2929.158864]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2929.159481]  ? vfs_write+0x354/0xb10
[ 2929.159976]  ? fput_many+0x2f/0x1a0
[ 2929.160463]  ? ksys_write+0x1a9/0x260
[ 2929.160968]  ? __ia32_sys_read+0xb0/0xb0
[ 2929.161517]  do_syscall_64+0x33/0x40
[ 2929.162020]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2929.162716] RIP: 0033:0x7f862144ab19
[ 2929.163211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2929.165639] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2929.166658] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2929.167604] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2929.168540] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2929.169489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2929.170441] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2929.197869] FAULT_INJECTION: forcing a failure.
[ 2929.197869] name failslab, interval 1, probability 0, space 0, times 0
[ 2929.199729] CPU: 1 PID: 34117 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2929.200919] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2929.202008] Call Trace:
[ 2929.202376]  dump_stack+0x107/0x167
[ 2929.202877]  should_fail.cold+0x5/0xa
[ 2929.203386]  ? io_wq_create+0xeb/0xc00
[ 2929.203906]  should_failslab+0x5/0x20
[ 2929.204452]  __kmalloc+0x72/0x390
[ 2929.205071]  io_wq_create+0xeb/0xc00
[ 2929.205879]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2929.206572]  ? io_import_iovec+0x1120/0x1120
[ 2929.207156]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2929.207749]  ? __io_req_find_next+0x300/0x300
[ 2929.208341]  ? do_raw_spin_lock+0x121/0x260
[ 2929.208912]  ? rwlock_bug.part.0+0x90/0x90
[ 2929.209474]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2929.210302]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2929.211253]  ? alloc_fd+0x2e7/0x670
[ 2929.211748]  io_uring_setup+0x1fbb/0x2980
[ 2929.212302]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2929.212976]  ? wait_for_completion_io+0x270/0x270
[ 2929.213643]  do_syscall_64+0x33/0x40
[ 2929.214138]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2929.214829] RIP: 0033:0x7fd22c24ab19
[ 2929.215525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2929.218260] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2929.219412] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2929.220361] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2929.221494] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2929.222740] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2929.223673] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:32:19 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"])

10:32:19 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:32:19 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 51)
getresuid(0x0, 0x0, 0x0)

10:32:19 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, r0, 0x0)

10:32:19 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0xc, 0xffffffffffffffff)

10:32:19 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 61)

10:32:19 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x7e}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:32:19 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 42)

[ 2945.988223] FAULT_INJECTION: forcing a failure.
[ 2945.988223] name failslab, interval 1, probability 0, space 0, times 0
[ 2945.989731] CPU: 1 PID: 34318 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2945.990670] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2945.991771] Call Trace:
[ 2945.992127]  dump_stack+0x107/0x167
[ 2945.992613]  should_fail.cold+0x5/0xa
[ 2945.993118]  ? create_object.isra.0+0x3a/0xa20
[ 2945.993733]  should_failslab+0x5/0x20
[ 2945.994240]  kmem_cache_alloc+0x5b/0x310
[ 2945.994793]  ? mark_held_locks+0x9e/0xe0
[ 2945.995338]  create_object.isra.0+0x3a/0xa20
[ 2945.995915]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2945.996643]  kmem_cache_alloc+0x159/0x310
[ 2945.997199]  xas_alloc+0x336/0x440
[ 2945.997672]  xas_create+0x34a/0x10d0
[ 2945.998176]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2946.002888]  xas_store+0x8c/0x1c40
[ 2946.003378]  __xa_store+0x164/0x2d0
[ 2946.003864]  ? xa_delete_node+0x280/0x280
[ 2946.004423]  ? trace_hardirqs_on+0x5b/0x180
[ 2946.005001]  xa_store+0x31/0x50
[ 2946.005443]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2946.006076]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2946.006823]  ? alloc_fd+0x2e7/0x670
[ 2946.007322]  io_uring_setup+0x1fbb/0x2980
[ 2946.007879]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2946.008547]  ? wait_for_completion_io+0x270/0x270
[ 2946.009233]  do_syscall_64+0x33/0x40
[ 2946.009739]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2946.010474] RIP: 0033:0x7fb4a26afb19
[ 2946.010969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2946.013430] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2946.014454] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2946.015400] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2946.016340] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2946.017288] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2946.018232] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2946.031720] FAULT_INJECTION: forcing a failure.
[ 2946.031720] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2946.033275] CPU: 1 PID: 34313 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2946.034194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2946.040731] Call Trace:
[ 2946.041539]  dump_stack+0x107/0x167
[ 2946.042583]  should_fail.cold+0x5/0xa
[ 2946.043109]  __alloc_pages_nodemask+0x182/0x600
[ 2946.043799]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 2946.044620]  ? find_held_lock+0x2c/0x110
[ 2946.045182]  ? __pmd_alloc+0x2db/0x5e0
[ 2946.045748]  ? lock_downgrade+0x6d0/0x6d0
[ 2946.046314]  ? do_raw_spin_lock+0x121/0x260
[ 2946.046948]  alloc_pages_current+0x187/0x280
[ 2946.047536]  pte_alloc_one+0x16/0x1a0
[ 2946.048042]  __pte_alloc+0x1d/0x330
[ 2946.048534]  copy_page_range+0x1b62/0x3810
[ 2946.049094]  ? perf_trace_lock+0xac/0x490
[ 2946.049672]  ? lock_chain_count+0x20/0x20
[ 2946.050250]  ? up_write+0x191/0x550
[ 2946.050791]  ? vm_iomap_memory+0x190/0x190
[ 2946.051351]  ? downgrade_write+0x3a0/0x3a0
[ 2946.051910]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 2946.052660]  ? __vma_link_rb+0x540/0x700
[ 2946.053200]  copy_process+0x7654/0x78b0
[ 2946.053763]  ? SOFTIRQ_verbose+0x10/0x10
[ 2946.054329]  ? __cleanup_sighand+0xb0/0xb0
[ 2946.054950]  ? _copy_from_user+0xfb/0x1b0
[ 2946.055530]  kernel_clone+0xe7/0x980
[ 2946.056021]  ? __lockdep_reset_lock+0x180/0x180
[ 2946.056672]  ? create_io_thread+0xf0/0xf0
[ 2946.057236]  ? ksys_write+0x21a/0x260
[ 2946.057746]  ? lock_downgrade+0x6d0/0x6d0
[ 2946.058299]  __do_sys_clone3+0x1e5/0x320
[ 2946.058857]  ? __do_sys_clone+0x110/0x110
[ 2946.059430]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2946.060037]  ? vfs_write+0x354/0xb10
[ 2946.060570]  ? fput_many+0x2f/0x1a0
[ 2946.061054]  ? ksys_write+0x1a9/0x260
[ 2946.061559]  ? __ia32_sys_read+0xb0/0xb0
[ 2946.062108]  do_syscall_64+0x33/0x40
[ 2946.062648]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2946.063318] RIP: 0033:0x7f862144ab19
[ 2946.063854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2946.066270] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2946.067330] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2946.068273] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2946.069227] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2946.070208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2946.071160] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2946.084533] FAULT_INJECTION: forcing a failure.
[ 2946.084533] name failslab, interval 1, probability 0, space 0, times 0
[ 2946.086022] CPU: 1 PID: 34326 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2946.086970] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2946.088057] Call Trace:
[ 2946.088408]  dump_stack+0x107/0x167
[ 2946.088888]  should_fail.cold+0x5/0xa
[ 2946.089387]  ? create_object.isra.0+0x3a/0xa20
[ 2946.089997]  should_failslab+0x5/0x20
[ 2946.090527]  kmem_cache_alloc+0x5b/0x310
[ 2946.091064]  ? io_uring_alloc_task_context+0xf5/0x6a0
[ 2946.091746]  create_object.isra.0+0x3a/0xa20
[ 2946.092319]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2946.092996]  __kmalloc+0x16e/0x390
[ 2946.093472]  io_wq_create+0xeb/0xc00
[ 2946.093970]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2946.094663]  ? io_import_iovec+0x1120/0x1120
[ 2946.095241]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2946.095837]  ? __io_req_find_next+0x300/0x300
[ 2946.096425]  ? do_raw_spin_lock+0x121/0x260
[ 2946.096992]  ? rwlock_bug.part.0+0x90/0x90
[ 2946.097555]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2946.098191]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2946.098896]  ? alloc_fd+0x2e7/0x670
[ 2946.099384]  io_uring_setup+0x1fbb/0x2980
[ 2946.099945]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2946.100611]  ? wait_for_completion_io+0x270/0x270
[ 2946.101270]  do_syscall_64+0x33/0x40
[ 2946.101762]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2946.102457] RIP: 0033:0x7fd22c24ab19
[ 2946.102963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2946.105365] RSP: 002b:00007fd22979f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2946.106386] RAX: ffffffffffffffda RBX: 00007fd22c35e020 RCX: 00007fd22c24ab19
[ 2946.107328] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2946.108265] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2946.109198] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2946.110141] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:32:19 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x10, r0, 0x0)

10:32:19 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r1 = syz_open_procfs$userns(0x0, &(0x7f0000001880))
ioctl$BTRFS_IOC_RESIZE(r1, 0x50009403, &(0x7f00000018c0)={{r0}, {@void, @actul_num={@val=0x2b, 0x6e, 0x6b}}})
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000000000)=""/124, 0x7c, 0x0, &(0x7f0000000080)=""/29, 0x1d}, &(0x7f0000000100)=0x40)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
stat(&(0x7f0000001900)='./file0\x00', &(0x7f00000019c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0x0, r2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000001800)={0x0, <r3=>0x0}, &(0x7f0000001840)=0xc)
syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f0000000180)='./file0\x00', 0x3, 0x9, &(0x7f0000001700)=[{&(0x7f0000001c00)="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", 0x10b7, 0x9}, {&(0x7f00000011c0)="c2107e6fb035f9075951668b8b69bf31bfed059bac992bcb6bf7c116fed5555c8495cd78f6bb9a7ff3e65f51a1249664a73e3e0532e6d0a9aaffe3e7ffbe6c0222efd8d7cc05bad23f51ea236cd37c901aa1c9527551e7c64089f4aea379", 0x5e, 0x2}, {&(0x7f0000001240)="72d8436fcb1d4d8ada5cd50f5d42ff3c7d8e7adab96b8dacf7762599b979367be3fba4f9aac5edf30db3eea42d4a46c4400e78e146299ce8e9d546be0bb9ed727e5eb5443a2192f50db4294870569c5263050d497b2ac43b8aaf765059b61a5e5ea72c4259f2668c1d45acb8517caf732baee127", 0x74, 0x5}, {&(0x7f00000012c0)="20bb11fd9f9f09b15816c9666cd0ed43dc8a15e0f16c86a1c60527664fab639988e41c5a8b83c720bff945b9ed44da97d00873fd4a3dee277fd678a19544f58fcca04969d41b87aa7d73042329f2c08113f222676e975a436ec4fbb4c7dff5b09c2755784ec15e5c885497a00c5d92c3fa80f3af124a31617ff74566b69ad959b86d4e5a2b4f34ce28b6da610d0abf2fbd2d991202e16bd50408fd332ef7cc387710a732d2bab6a8b1e39b23e38a17cacc31ee2095aab98e963ec9028be5c138175a8899c57480d40f95749a9ffc0ce85b19", 0xd2, 0x5}, {&(0x7f00000013c0)="0bba46108af868c296093b2a4c9ed2af8c29af39bb44779b865eade476cd07df03bfe48da2b73398fe3898f70f3c7579785b147747d90047c6e3e90441a4eed3abae41d1e0f51bd73f23b5f0d81780c11935381a4e666e394765e8f4f3cf57fe01e1b1b205f530c380cebea0e33e0d6c0adb5fb6b2c1fbf5c2be35e340da0f8f0592dbdd61646f4c8b2c36348208c527ed887d14915c34707346690d80e7ee7f8c264f6850bb55d379f0a4e50b518ab2e582d1cf75cb9847be08faf4561a9fc5eaccd836626744c58ba58fcd9c615ebc64599e58c45b7377b515da19a26360a795cb9be1508d3abaa508bb254f7cf8df806235d60875dbdae0ad", 0xfa, 0x81}, {&(0x7f00000014c0)="14786ca77965b187e0950b2429175845206d5f08c5059645", 0x18, 0x1f}, {&(0x7f0000001500)="afe1de3014bcda91df1bc7b2a4f0b2f241915c61e245fcd806871ebba21543fe4d8e970c00b3566762f6e828f43ea44e860a3d8b2edb7518f6e660fcecdd71c2cac5b7c7f062c4469b1f12b1f1686ecef8b1ae82402f41ea4fc566cd85f0d6234e84e2b606bf5dd4edf23225586bffabcaa440fa616c1ea2ba23cecb4e54d729782ae4198dcdd1ecd5a1a7e7c445149443e88c5d46773ae1d332d1612a861815c50598399027", 0xa6, 0x3ff}, {&(0x7f00000015c0)="cbf6e47a36e7f2142627e0cf23b819217d4d75f79bcc2e649b77ffebb43f35d8f8741388bbad541b0556b0fcf025e718d0af612e48283ad84d1f7b627638655122d3a82ad41277b4694b6b102c264b873deda5d6186d3868ff6f61785d263dfe61bd79ae0f1f3452844a6eb1057ca77c97b37aa8b6e97c0b7059da97b3303db4400a36eab11f6e701e1dc0f0f4e33a4e2e47eeccd4946906c2b7c895ed269b172d0741603e259d463b14a3fe1570d6f611862b4aadbad8275126c43edf289a681efc4ecba89af0c49f79dbc5ded3993ddfa0e67c7f1e175cf7ba3be4e801876e2690e6632b7f75c1c4bc2c9fa9c976f81a8a74ac0c", 0xf5, 0x33}, {&(0x7f00000016c0)="8a3dcad6c0fa5bf8c50b1cf18a9006631d27962eec07bdab352db2d982e56be1363be583667e77db8e9e29b3c9e701ab51392657", 0x34, 0x380000000000000}], 0x1a0000, &(0x7f0000001a40)=ANY=[@ANYBLOB='acl,mblk_io_submit,barrier,grpjquota=,errors=remount-ro,min_batch_time=0x0000000000000008,errors=continue,i_version,notid32,init_itable,euid>', @ANYRESDEC=r2, @ANYBLOB=',fowner=', @ANYRESDEC=0x0, @ANYBLOB="2c736d61636b6673666c6f6f723d282c61707072616973655f747970653d696d617369672c666f776e65723ef8570fcc84dbe57e0cfff886124baeae263b242c82b2d26af4bbe77c8da6dd3f1688d0c330c2c0e1fc61feb525522409a2d753b7eaf541bb68752f660d697eb4eee2553952877b82ec86a2f404b945d16c0c97a50627c396226ed9ae74f15458c0ea5bf89badd5935906cc61e8964dd29a4badb81af567527291c95fc9c4d3b5812f420f738e0ba2aab9bf", @ANYRESDEC=r3, @ANYBLOB="2c736d61636b66736465663d5e21f5275e5c2e292c00"])
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:32:19 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 62)

10:32:19 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x85f}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:32:19 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x4440, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x4, @perf_config_ext={0x0, 0x4}}, 0x0, 0x2, 0xffffffffffffffff, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000017c0)=@abs, 0x6e, &(0x7f0000000000)=[{&(0x7f0000001840)=""/216, 0xd8}], 0x1, &(0x7f0000001940)=[@cred={{0x1c, 0x1, 0x2, {<r0=>0x0, <r1=>0x0}}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}, 0x10000)
perf_event_open(&(0x7f0000001740)={0x2, 0x80, 0x80, 0x81, 0xdf, 0x5, 0x0, 0xa2c, 0x0, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0f1, 0x0, @perf_config_ext, 0x200, 0x1, 0x8, 0x1, 0x0, 0x1, 0x0, 0x0, 0x40, 0x0, 0xf3c}, r0, 0x1, 0xffffffffffffffff, 0xa)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendto$unix(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000540)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r3, @ANYBLOB="000000000000000000009facbf44951b164b1a000000"])
connect$inet(r4, &(0x7f00000000c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x33}}, 0x10)
r5 = dup(r3)
recvmmsg(r5, &(0x7f0000007940)=[{{0x0, 0x200000, 0x0}}], 0x500, 0x20000022, 0x0)
getresgid(&(0x7f00000010c0), &(0x7f0000001100), &(0x7f0000001140)=<r6=>0x0)
r7 = semget(0x2, 0x0, 0x20b)
r8 = getuid()
stat(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
semctl$IPC_SET(r7, 0x0, 0x1, &(0x7f00000002c0)={{0x1, r8, r6, r9, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7})
sendmsg$unix(r3, &(0x7f0000000500)={&(0x7f0000000140)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000003c0)=[{&(0x7f00000001c0)="c366c5b35185854fff7ff249f0dda79389b7d88fee7e75c8d5b5a260bd7f60b8e93c53824828cbb3de50c1d1fcbe69a86fa58d22848751284a134b4e52682d9064c96ea1c253a921cff2ccc92baa1805fc9356677d20a89920164259a776a275336d3dd28d2559683841c3ca958cd650bda22f8541e698dd94c2225a4a7d13999dabc6bc089aa26063262f62814fdb36b9cbbf83ba1a209144585cfba9d78c846ad9b8ebd60a0c95ca6f01c0f4061277ec91e7799a9f6c7322b305bbb56d57c930d21a4270212c2091dc88f9124ff02e3f1dcb2d933a55ab035968e386", 0xdd}, {&(0x7f00000002c0)="f9e6ab4f99b50da4e434691b0aaff2620486ff8b7f4b6b0f", 0x18}, {&(0x7f0000000300)="443c89185aa937415b134d5362568acf6bf4fb2d7feb2072b997ffec43255c78cf2927767f29c541fbe0a41175486bf5c5d027fe0c10c151534945331e4cb1aa104d98b02bc34b6922dd05ab5d3d25ef2ef10ae41941", 0x56}, {&(0x7f0000000380)="ee5279985bca8d32fb4b5bc7c7b9cd8c7664d53870dd71bb4d35ca943dc19de015e7d27fceb16ef2748b402526f20a", 0x2f}], 0x4, &(0x7f0000000400)=[@cred={{0x1c, 0x1, 0x2, {r0, r1, r6}}}], 0x20}, 0x800)
getpeername$unix(0xffffffffffffffff, 0x0, &(0x7f0000000100))
syz_open_procfs$userns(r0, &(0x7f00000019c0))

10:32:19 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, 0x0, 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:32:19 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 43)

10:32:19 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 52)
getresuid(0x0, 0x0, 0x0)

[ 2946.679676] FAULT_INJECTION: forcing a failure.
[ 2946.679676] name failslab, interval 1, probability 0, space 0, times 0
[ 2946.681187] CPU: 1 PID: 34537 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2946.682095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2946.683208] Call Trace:
[ 2946.683568]  dump_stack+0x107/0x167
[ 2946.684054]  should_fail.cold+0x5/0xa
[ 2946.684563]  ? xas_alloc+0x336/0x440
[ 2946.685055]  should_failslab+0x5/0x20
[ 2946.685571]  kmem_cache_alloc+0x5b/0x310
[ 2946.686140]  xas_alloc+0x336/0x440
[ 2946.686628]  xas_create+0x34a/0x10d0
[ 2946.687133]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2946.687825]  xas_store+0x8c/0x1c40
[ 2946.688309]  __xa_store+0x164/0x2d0
[ 2946.688816]  ? xa_delete_node+0x280/0x280
[ 2946.689366]  ? trace_hardirqs_on+0x5b/0x180
[ 2946.689988]  xa_store+0x31/0x50
[ 2946.690440]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2946.691076]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2946.691792]  ? alloc_fd+0x2e7/0x670
[ 2946.692280]  io_uring_setup+0x1fbb/0x2980
[ 2946.692840]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2946.693507]  ? wait_for_completion_io+0x270/0x270
[ 2946.694170]  do_syscall_64+0x33/0x40
[ 2946.698746]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2946.699433] RIP: 0033:0x7fb4a26afb19
[ 2946.699984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2946.702489] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2946.703567] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2946.704572] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2946.705527] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2946.706510] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2946.707471] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2946.727456] FAULT_INJECTION: forcing a failure.
[ 2946.727456] name failslab, interval 1, probability 0, space 0, times 0
[ 2946.728967] CPU: 0 PID: 34582 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2946.729872] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2946.730968] Call Trace:
[ 2946.731319]  dump_stack+0x107/0x167
[ 2946.731807]  should_fail.cold+0x5/0xa
[ 2946.732312]  ? ptlock_alloc+0x1d/0x70
[ 2946.732817]  should_failslab+0x5/0x20
[ 2946.733319]  kmem_cache_alloc+0x5b/0x310
[ 2946.733861]  ptlock_alloc+0x1d/0x70
[ 2946.734342]  pte_alloc_one+0x68/0x1a0
[ 2946.734887]  __pte_alloc+0x1d/0x330
[ 2946.735368]  copy_page_range+0x1b62/0x3810
[ 2946.735969]  ? perf_trace_lock+0xac/0x490
[ 2946.736512]  ? lock_chain_count+0x20/0x20
[ 2946.737092]  ? up_write+0x191/0x550
[ 2946.737589]  ? vm_iomap_memory+0x190/0x190
[ 2946.738153]  ? downgrade_write+0x3a0/0x3a0
[ 2946.738727]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 2946.739444]  ? __vma_link_rb+0x540/0x700
[ 2946.739986]  copy_process+0x7654/0x78b0
[ 2946.740507]  ? SOFTIRQ_verbose+0x10/0x10
[ 2946.741070]  ? __cleanup_sighand+0xb0/0xb0
[ 2946.741641]  ? _copy_from_user+0xfb/0x1b0
[ 2946.742202]  kernel_clone+0xe7/0x980
[ 2946.742703]  ? __lockdep_reset_lock+0x180/0x180
[ 2946.743316]  ? create_io_thread+0xf0/0xf0
[ 2946.743877]  ? ksys_write+0x21a/0x260
[ 2946.744374]  ? lock_downgrade+0x6d0/0x6d0
[ 2946.744929]  __do_sys_clone3+0x1e5/0x320
[ 2946.745462]  ? __do_sys_clone+0x110/0x110
[ 2946.746026]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2946.746647]  ? vfs_write+0x354/0xb10
[ 2946.747148]  ? fput_many+0x2f/0x1a0
[ 2946.747630]  ? ksys_write+0x1a9/0x260
[ 2946.748129]  ? __ia32_sys_read+0xb0/0xb0
[ 2946.748690]  do_syscall_64+0x33/0x40
[ 2946.749209]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2946.749886] RIP: 0033:0x7f862144ab19
[ 2946.750385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2946.752831] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2946.753843] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2946.754791] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2946.755724] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2946.756660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2946.757585] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2946.785708] FAULT_INJECTION: forcing a failure.
[ 2946.785708] name failslab, interval 1, probability 0, space 0, times 0
[ 2946.787343] CPU: 0 PID: 34615 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2946.788248] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2946.789330] Call Trace:
[ 2946.789683]  dump_stack+0x107/0x167
[ 2946.790165]  should_fail.cold+0x5/0xa
[ 2946.790683]  ? io_wq_create+0xeb/0xc00
[ 2946.791207]  should_failslab+0x5/0x20
[ 2946.791708]  __kmalloc+0x72/0x390
[ 2946.792171]  io_wq_create+0xeb/0xc00
[ 2946.792669]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2946.793335]  ? io_import_iovec+0x1120/0x1120
[ 2946.793956]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2946.794556]  ? __io_req_find_next+0x300/0x300
[ 2946.795144]  ? do_raw_spin_lock+0x121/0x260
[ 2946.795733]  ? rwlock_bug.part.0+0x90/0x90
[ 2946.796297]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2946.796972]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2946.797658]  ? alloc_fd+0x2e7/0x670
[ 2946.798146]  io_uring_setup+0x1fbb/0x2980
[ 2946.798726]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2946.799399]  ? wait_for_completion_io+0x270/0x270
[ 2946.800102]  do_syscall_64+0x33/0x40
[ 2946.800593]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2946.801264] RIP: 0033:0x7fd22c24ab19
[ 2946.801755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2946.804243] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2946.805241] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2946.806175] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2946.807162] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2946.808097] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2946.809063] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:32:37 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x10, r0, 0x0)

10:32:37 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, 0x0, 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:32:37 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 53)
getresuid(0x0, 0x0, 0x0)

10:32:37 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
fchmodat(r0, &(0x7f0000000000)='./file0/../file0\x00', 0x9e)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@loose}]}})
r3 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, r4)
fcntl$setpipe(r3, 0x407, 0x100000001)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)

10:32:37 executing program 0:
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:32:37 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 63)

10:32:37 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 44)

10:32:37 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x2000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:32:37 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
mlock(&(0x7f0000ff0000/0x4000)=nil, 0x4000)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 2963.735584] FAULT_INJECTION: forcing a failure.
[ 2963.735584] name failslab, interval 1, probability 0, space 0, times 0
[ 2963.737098] CPU: 1 PID: 34765 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2963.738008] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2963.739167] Call Trace:
[ 2963.739521]  dump_stack+0x107/0x167
[ 2963.740050]  should_fail.cold+0x5/0xa
[ 2963.740558]  ? create_object.isra.0+0x3a/0xa20
[ 2963.741167]  should_failslab+0x5/0x20
[ 2963.741671]  kmem_cache_alloc+0x5b/0x310
[ 2963.742210]  ? mark_held_locks+0x9e/0xe0
[ 2963.742770]  create_object.isra.0+0x3a/0xa20
[ 2963.743352]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2963.744029]  kmem_cache_alloc+0x159/0x310
[ 2963.744582]  xas_alloc+0x336/0x440
[ 2963.745100]  xas_create+0x34a/0x10d0
[ 2963.745605]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2963.746302]  xas_store+0x8c/0x1c40
[ 2963.746824]  __xa_store+0x164/0x2d0
[ 2963.747309]  ? xa_delete_node+0x280/0x280
[ 2963.747893]  ? trace_hardirqs_on+0x5b/0x180
[ 2963.748465]  xa_store+0x31/0x50
[ 2963.748949]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2963.749585]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2963.750276]  ? alloc_fd+0x2e7/0x670
[ 2963.750776]  io_uring_setup+0x1fbb/0x2980
[ 2963.751332]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2963.752000]  ? wait_for_completion_io+0x270/0x270
[ 2963.752686]  do_syscall_64+0x33/0x40
[ 2963.753189]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2963.753871] RIP: 0033:0x7fb4a26afb19
[ 2963.754365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2963.759283] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2963.761207] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2963.763159] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2963.765006] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2963.766894] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2963.768727] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2963.790374] FAULT_INJECTION: forcing a failure.
[ 2963.790374] name failslab, interval 1, probability 0, space 0, times 0
[ 2963.796453] CPU: 0 PID: 34767 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2963.797513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2963.798806] Call Trace:
[ 2963.799232]  dump_stack+0x107/0x167
[ 2963.799848]  should_fail.cold+0x5/0xa
[ 2963.800452]  ? create_object.isra.0+0x3a/0xa20
[ 2963.801186]  should_failslab+0x5/0x20
[ 2963.801790]  kmem_cache_alloc+0x5b/0x310
[ 2963.802437]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 2963.803341]  create_object.isra.0+0x3a/0xa20
[ 2963.804037]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2963.804855]  kmem_cache_alloc+0x159/0x310
[ 2963.805519]  ptlock_alloc+0x1d/0x70
[ 2963.806136]  pte_alloc_one+0x68/0x1a0
[ 2963.806734]  __pte_alloc+0x1d/0x330
[ 2963.807321]  copy_page_range+0x1b62/0x3810
[ 2963.807994]  ? perf_trace_lock+0xac/0x490
[ 2963.808651]  ? lock_chain_count+0x20/0x20
[ 2963.809377]  ? up_write+0x191/0x550
[ 2963.809999]  ? vm_iomap_memory+0x190/0x190
[ 2963.814661]  ? downgrade_write+0x3a0/0x3a0
[ 2963.815284]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 2963.816018]  ? __vma_link_rb+0x540/0x700
[ 2963.816578]  copy_process+0x7654/0x78b0
[ 2963.817101]  ? SOFTIRQ_verbose+0x10/0x10
[ 2963.817622]  ? __cleanup_sighand+0xb0/0xb0
[ 2963.818205]  ? _copy_from_user+0xfb/0x1b0
[ 2963.818795]  kernel_clone+0xe7/0x980
[ 2963.819307]  ? __lockdep_reset_lock+0x180/0x180
[ 2963.819936]  ? create_io_thread+0xf0/0xf0
[ 2963.820487]  ? ksys_write+0x21a/0x260
[ 2963.820948]  ? lock_downgrade+0x6d0/0x6d0
[ 2963.821479]  __do_sys_clone3+0x1e5/0x320
[ 2963.822026]  ? __do_sys_clone+0x110/0x110
[ 2963.822594]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2963.823193]  ? vfs_write+0x354/0xb10
[ 2963.823657]  ? fput_many+0x2f/0x1a0
[ 2963.824197]  ? ksys_write+0x1a9/0x260
[ 2963.824714]  ? __ia32_sys_read+0xb0/0xb0
[ 2963.825281]  do_syscall_64+0x33/0x40
[ 2963.825790]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2963.826418] RIP: 0033:0x7f862144ab19
[ 2963.826896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2963.829348] RSP: 002b:00007f861e99f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2963.830270] RAX: ffffffffffffffda RBX: 00007f862155e020 RCX: 00007f862144ab19
[ 2963.831233] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2963.832149] RBP: 00007f861e99f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2963.833083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2963.834033] R13: 00007ffc637b687f R14: 00007f861e99f300 R15: 0000000000022000
[ 2963.839532] FAULT_INJECTION: forcing a failure.
[ 2963.839532] name failslab, interval 1, probability 0, space 0, times 0
[ 2963.841059] CPU: 1 PID: 34760 Comm: syz-executor.2 Not tainted 5.10.238 #1
10:32:37 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x10, r0, 0x0)

[ 2963.842009] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2963.855166] Call Trace:
[ 2963.855532]  dump_stack+0x107/0x167
[ 2963.856073]  should_fail.cold+0x5/0xa
[ 2963.856591]  ? io_wq_create+0x6ef/0xc00
[ 2963.871038]  should_failslab+0x5/0x20
[ 2963.871547]  kmem_cache_alloc_node_trace+0x59/0x340
[ 2963.872232]  io_wq_create+0x6ef/0xc00
[ 2963.878763]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2963.879405]  ? io_import_iovec+0x1120/0x1120
[ 2963.879957]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2963.880518]  ? __io_req_find_next+0x300/0x300
[ 2963.881082]  ? do_raw_spin_lock+0x121/0x260
[ 2963.881616]  ? rwlock_bug.part.0+0x90/0x90
[ 2963.882197]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2963.882812]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2963.883465]  ? alloc_fd+0x2e7/0x670
[ 2963.883932]  io_uring_setup+0x1fbb/0x2980
[ 2963.884460]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2963.885094]  ? wait_for_completion_io+0x270/0x270
[ 2963.885729]  do_syscall_64+0x33/0x40
[ 2963.886228]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2963.886876] RIP: 0033:0x7fd22c24ab19
[ 2963.887391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2963.889711] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2963.890709] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2963.891638] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2963.892523] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2963.893408] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2963.894291] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:32:37 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 64)

10:32:37 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 45)

10:32:37 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x3f00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:32:37 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 54)
getresuid(0x0, 0x0, 0x0)

10:32:37 executing program 4:
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1ffffffffffffffd}, 0x0, 0x20, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffc000/0x1000)=nil)
sigaltstack(&(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000000))
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r3=>0x0})
bind$packet(r1, &(0x7f0000000100)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @random="2729c72b7f49"}, 0x14)
ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000040)={@mcast1, @ipv4={'\x00', '\xff\xff', @local}, @ipv4={'\x00', '\xff\xff', @loopback}, 0xfab, 0x8, 0x1fd1, 0x100, 0x1d, 0x20, r3})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000100)={'syztnl1\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x2f, 0x2, 0xcb, 0x5, 0x4f, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, 0x700, 0x7800, 0x7, 0x1}})
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x7f, 0x52, 0x8, 0x4, 0x0, 0x8, 0x40094, 0x9, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xffff, 0x7, @perf_config_ext={0x7fffffff, 0xfff}, 0x0, 0x0, 0x1, 0x8, 0xff, 0x10000, 0x4, 0x0, 0x0, 0x0, 0x8d78}, 0xffffffffffffffff, 0xf, r0, 0x2)
sendmsg$inet6(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000080)="3bb31d6a", 0x4}], 0x1, &(0x7f0000000280)=[@flowinfo={{0x14, 0x29, 0xb, 0x4}}], 0x18}, 0x0)
socket$packet(0x11, 0x2, 0x300)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
mlock(&(0x7f0000ffa000/0x1000)=nil, 0x1000)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r6=>0x0})
ioctl$sock_inet6_SIOCDELRT(r4, 0x890c, &(0x7f0000000040)={@mcast1, @ipv4={'\x00', '\xff\xff', @local}, @ipv4={'\x00', '\xff\xff', @loopback}, 0xfab, 0x8, 0x1fd1, 0x100, 0x1d, 0x20, r6})

10:32:37 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, 0x0, 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2964.681561] FAULT_INJECTION: forcing a failure.
[ 2964.681561] name failslab, interval 1, probability 0, space 0, times 0
[ 2964.683796] FAULT_INJECTION: forcing a failure.
[ 2964.683796] name failslab, interval 1, probability 0, space 0, times 0
[ 2964.687096] CPU: 1 PID: 35008 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2964.689430] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2964.690525] Call Trace:
[ 2964.690893]  dump_stack+0x107/0x167
[ 2964.691379]  should_fail.cold+0x5/0xa
[ 2964.691883]  ? vm_area_dup+0x78/0x290
[ 2964.692389]  should_failslab+0x5/0x20
[ 2964.692892]  kmem_cache_alloc+0x5b/0x310
[ 2964.693424]  ? lock_downgrade+0x6d0/0x6d0
[ 2964.693983]  vm_area_dup+0x78/0x290
[ 2964.694476]  ? _cond_resched+0x10/0x30
[ 2964.695005]  ? copy_page_range+0x24e9/0x3810
[ 2964.695616]  ? vm_area_alloc+0x110/0x110
[ 2964.696154]  ? up_write+0x191/0x550
[ 2964.696637]  ? vm_iomap_memory+0x190/0x190
[ 2964.697190]  ? downgrade_write+0x3a0/0x3a0
[ 2964.697756]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 2964.698471]  ? __vma_link_rb+0x540/0x700
[ 2964.699029]  copy_process+0x298b/0x78b0
[ 2964.699553]  ? SOFTIRQ_verbose+0x10/0x10
[ 2964.700127]  ? __cleanup_sighand+0xb0/0xb0
[ 2964.700724]  ? _copy_from_user+0xfb/0x1b0
[ 2964.701274]  kernel_clone+0xe7/0x980
[ 2964.701810]  ? __lockdep_reset_lock+0x180/0x180
[ 2964.702424]  ? create_io_thread+0xf0/0xf0
[ 2964.702995]  ? ksys_write+0x21a/0x260
[ 2964.703500]  ? lock_downgrade+0x6d0/0x6d0
[ 2964.704055]  __do_sys_clone3+0x1e5/0x320
[ 2964.704590]  ? __do_sys_clone+0x110/0x110
[ 2964.705156]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2964.705795]  ? vfs_write+0x354/0xb10
[ 2964.706285]  ? fput_many+0x2f/0x1a0
[ 2964.706786]  ? ksys_write+0x1a9/0x260
[ 2964.707290]  ? __ia32_sys_read+0xb0/0xb0
[ 2964.707837]  do_syscall_64+0x33/0x40
[ 2964.708330]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2964.709005] RIP: 0033:0x7f862144ab19
[ 2964.709500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2964.711922] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2964.712924] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2964.713889] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2964.718836] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2964.719818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2964.720757] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2964.721721] CPU: 0 PID: 35007 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2964.722646] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2964.723729] Call Trace:
[ 2964.724077]  dump_stack+0x107/0x167
[ 2964.724558]  should_fail.cold+0x5/0xa
[ 2964.725060]  ? xas_alloc+0x336/0x440
[ 2964.725552]  should_failslab+0x5/0x20
[ 2964.726053]  kmem_cache_alloc+0x5b/0x310
[ 2964.726603]  xas_alloc+0x336/0x440
[ 2964.727074]  xas_create+0x34a/0x10d0
[ 2964.727572]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2964.728271]  xas_store+0x8c/0x1c40
[ 2964.728752]  __xa_store+0x164/0x2d0
[ 2964.729235]  ? xa_delete_node+0x280/0x280
[ 2964.729789]  ? trace_hardirqs_on+0x5b/0x180
[ 2964.730364]  xa_store+0x31/0x50
[ 2964.730812]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2964.731443]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2964.732172]  ? alloc_fd+0x2e7/0x670
[ 2964.732662]  io_uring_setup+0x1fbb/0x2980
[ 2964.733217]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2964.733880]  ? wait_for_completion_io+0x270/0x270
[ 2964.734541]  do_syscall_64+0x33/0x40
[ 2964.735041]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2964.735736] RIP: 0033:0x7fb4a26afb19
[ 2964.736221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2964.738677] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2964.739709] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2964.740640] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2964.741580] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2964.742515] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2964.743459] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2964.953618] FAULT_INJECTION: forcing a failure.
[ 2964.953618] name failslab, interval 1, probability 0, space 0, times 0
[ 2964.955199] CPU: 0 PID: 35095 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2964.956143] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2964.957224] Call Trace:
[ 2964.957576]  dump_stack+0x107/0x167
[ 2964.958057]  should_fail.cold+0x5/0xa
[ 2964.958569]  ? __io_uring_add_tctx_node+0x15c/0x520
[ 2964.959285]  should_failslab+0x5/0x20
[ 2964.959801]  kmem_cache_alloc_trace+0x55/0x320
[ 2964.960451]  __io_uring_add_tctx_node+0x15c/0x520
[ 2964.961081]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2964.961765]  ? alloc_fd+0x2e7/0x670
[ 2964.962251]  io_uring_setup+0x1fbb/0x2980
[ 2964.962818]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2964.963480]  ? wait_for_completion_io+0x270/0x270
[ 2964.964179]  do_syscall_64+0x33/0x40
[ 2964.964668]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2964.965338] RIP: 0033:0x7fd22c24ab19
[ 2964.965828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2964.968251] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2964.969286] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2964.970217] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2964.971168] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2964.972133] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2964.973057] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:32:55 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000000)=0x8, 0x8, 0x1)

10:32:55 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:32:55 executing program 4:
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=[&(0x7f0000000040)='\x00', &(0x7f00000000c0)='\x00', &(0x7f0000000100)='\x00', &(0x7f0000000180)='\x00', &(0x7f00000001c0)='\x00', &(0x7f0000000200)='\x00', &(0x7f0000000240)='\x00'], &(0x7f0000000440)=[&(0x7f00000002c0)='-[)$#,**,\x00', &(0x7f0000000300)='\x00', &(0x7f0000000340)='\x00', &(0x7f0000000380)='@/*\x00', &(0x7f00000003c0)='\x00', &(0x7f0000000400)='\x00'])
r0 = socket$netlink(0x10, 0x3, 0x0)
execve(&(0x7f0000000480)='./file0\x00', &(0x7f0000000500)=[&(0x7f00000004c0)='-\x00'], &(0x7f0000000640)=[&(0x7f0000000540)='$]\x00', &(0x7f00000005c0)='@/*\x00', &(0x7f0000000600)='\x00'])
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x28, 0x13, 0x1, 0x0, 0x0, {0x20}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x3, 0x0, 0x0, @fd}]}]}, 0x28}}, 0x0)

10:32:55 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 65)

10:32:55 executing program 1:
memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, 0xffffffffffffffff, 0x0)

10:32:55 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 46)

10:32:55 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 55)
getresuid(0x0, 0x0, 0x0)

10:32:55 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x4000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

[ 2981.772105] FAULT_INJECTION: forcing a failure.
[ 2981.772105] name failslab, interval 1, probability 0, space 0, times 0
[ 2981.773609] CPU: 1 PID: 35214 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2981.774525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2981.775629] Call Trace:
[ 2981.775986]  dump_stack+0x107/0x167
[ 2981.776471]  should_fail.cold+0x5/0xa
[ 2981.776979]  ? create_object.isra.0+0x3a/0xa20
[ 2981.777588]  should_failslab+0x5/0x20
[ 2981.778092]  kmem_cache_alloc+0x5b/0x310
[ 2981.778629]  ? mark_held_locks+0x9e/0xe0
[ 2981.779193]  create_object.isra.0+0x3a/0xa20
[ 2981.779774]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2981.780449]  kmem_cache_alloc+0x159/0x310
[ 2981.781005]  xas_alloc+0x336/0x440
[ 2981.781480]  xas_create+0x34a/0x10d0
[ 2981.781985]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2981.782674]  xas_store+0x8c/0x1c40
[ 2981.783178]  __xa_store+0x164/0x2d0
[ 2981.783662]  ? xa_delete_node+0x280/0x280
[ 2981.784220]  ? trace_hardirqs_on+0x5b/0x180
[ 2981.784797]  xa_store+0x31/0x50
[ 2981.785238]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2981.785877]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2981.786562]  ? alloc_fd+0x2e7/0x670
[ 2981.787078]  io_uring_setup+0x1fbb/0x2980
[ 2981.787634]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2981.788303]  ? wait_for_completion_io+0x270/0x270
[ 2981.788980]  do_syscall_64+0x33/0x40
[ 2981.789474]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2981.790149] RIP: 0033:0x7fb4a26afb19
[ 2981.790640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2981.793080] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2981.794086] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2981.795045] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2981.795989] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2981.796929] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2981.797871] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2981.814139] mac80211_hwsim hwsim6 ÿÿÿÿ: renamed from wlan1
10:32:55 executing program 0:
sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000129bd7000ffdbdf256900000008000300", @ANYRES32=0x0, @ANYBLOB="05001cd5e636000005000080000000000000d300040000000a000600ffffffffffff000099048e1c9644c25feee795a1dc5a505c0cc568165a7aa4b52772a0fe970daf7a67dec1dc65d139a98aa30642e4e1867c87a3d733f36fcedc1c32c8dc092004a876b6df38ad7497b403c126f7419e71ef8b7ab935e85167eee66288b2bb5368061c73224f41a0b51b798b6ab1bce572902f083c0893942e098f3ccbba978da5ef025ea525eed0a3962d07f55a39e78dab8c4dec22c1be28c8a847d7a29b49940d5a61682fd87605aeaf218708300f62e5567ad56615b16db7c408c9a196292a6d2af9ec00b1e40cd31ad7f3d2f1651114"], 0x40}, 0x1, 0x0, 0x0, 0x8091}, 0x40)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
sendmsg$NFT_MSG_GETGEN(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x10, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x8}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40041}, 0xa82c0a14faa0f1d2)
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r1)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
mlock(&(0x7f0000ff5000/0x1000)=nil, 0x1000)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 2981.827715] FAULT_INJECTION: forcing a failure.
[ 2981.827715] name failslab, interval 1, probability 0, space 0, times 0
[ 2981.829225] CPU: 1 PID: 35242 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2981.830140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2981.831248] Call Trace:
[ 2981.831602]  dump_stack+0x107/0x167
[ 2981.832086]  should_fail.cold+0x5/0xa
[ 2981.832591]  ? create_object.isra.0+0x3a/0xa20
[ 2981.833198]  should_failslab+0x5/0x20
[ 2981.833701]  kmem_cache_alloc+0x5b/0x310
[ 2981.834238]  ? io_wq_create+0x114/0xc00
[ 2981.834774]  create_object.isra.0+0x3a/0xa20
[ 2981.835370]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2981.836045]  kmem_cache_alloc_node_trace+0x16d/0x340
[ 2981.836720]  io_wq_create+0x6ef/0xc00
[ 2981.837232]  io_uring_alloc_task_context+0x1f1/0x6a0
[ 2981.837904]  ? io_import_iovec+0x1120/0x1120
[ 2981.838482]  ? io_apoll_task_func+0x2d0/0x2d0
[ 2981.839101]  ? __io_req_find_next+0x300/0x300
[ 2981.839694]  ? do_raw_spin_lock+0x121/0x260
[ 2981.840264]  ? rwlock_bug.part.0+0x90/0x90
[ 2981.840827]  __io_uring_add_tctx_node+0x2c6/0x520
[ 2981.841465]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2981.842156]  ? alloc_fd+0x2e7/0x670
[ 2981.842646]  io_uring_setup+0x1fbb/0x2980
[ 2981.843221]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2981.843886]  ? wait_for_completion_io+0x270/0x270
[ 2981.844552]  do_syscall_64+0x33/0x40
[ 2981.845044]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2981.845718] RIP: 0033:0x7fd22c24ab19
[ 2981.846211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2981.848663] RSP: 002b:00007fd22979f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2981.849665] RAX: ffffffffffffffda RBX: 00007fd22c35e020 RCX: 00007fd22c24ab19
[ 2981.850606] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2981.851565] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2981.852556] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2981.853528] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2981.856651] FAULT_INJECTION: forcing a failure.
[ 2981.856651] name failslab, interval 1, probability 0, space 0, times 0
[ 2981.858178] CPU: 0 PID: 35218 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2981.859108] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2981.860196] Call Trace:
[ 2981.860544]  dump_stack+0x107/0x167
[ 2981.861033]  should_fail.cold+0x5/0xa
[ 2981.861539]  ? create_object.isra.0+0x3a/0xa20
[ 2981.862144]  should_failslab+0x5/0x20
[ 2981.862647]  kmem_cache_alloc+0x5b/0x310
[ 2981.863218]  create_object.isra.0+0x3a/0xa20
[ 2981.863797]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2981.864472]  kmem_cache_alloc+0x159/0x310
[ 2981.865052]  vm_area_dup+0x78/0x290
[ 2981.865541]  ? _cond_resched+0x10/0x30
[ 2981.866097]  ? copy_page_range+0x24e9/0x3810
[ 2981.866710]  ? vm_area_alloc+0x110/0x110
[ 2981.867277]  ? up_write+0x191/0x550
[ 2981.867761]  ? vm_iomap_memory+0x190/0x190
[ 2981.868320]  ? downgrade_write+0x3a0/0x3a0
[ 2981.868914]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 2981.869626]  ? __vma_link_rb+0x540/0x700
[ 2981.870176]  copy_process+0x298b/0x78b0
[ 2981.870701]  ? SOFTIRQ_verbose+0x10/0x10
[ 2981.871288]  ? __cleanup_sighand+0xb0/0xb0
[ 2981.871865]  ? _copy_from_user+0xfb/0x1b0
[ 2981.872421]  kernel_clone+0xe7/0x980
[ 2981.872939]  ? __lockdep_reset_lock+0x180/0x180
[ 2981.879295]  ? create_io_thread+0xf0/0xf0
[ 2981.879857]  ? ksys_write+0x21a/0x260
[ 2981.880361]  ? lock_downgrade+0x6d0/0x6d0
[ 2981.880912]  __do_sys_clone3+0x1e5/0x320
[ 2981.881448]  ? __do_sys_clone+0x110/0x110
[ 2981.882038]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2981.882645]  ? vfs_write+0x354/0xb10
[ 2981.883173]  ? fput_many+0x2f/0x1a0
[ 2981.883655]  ? ksys_write+0x1a9/0x260
[ 2981.884159]  ? __ia32_sys_read+0xb0/0xb0
[ 2981.884707]  do_syscall_64+0x33/0x40
[ 2981.885205]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2981.885879] RIP: 0033:0x7f862144ab19
[ 2981.886372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2981.888832] RSP: 002b:00007f861e99f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2981.889835] RAX: ffffffffffffffda RBX: 00007f862155e020 RCX: 00007f862144ab19
[ 2981.890780] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2981.891717] RBP: 00007f861e99f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2981.892661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2981.893600] R13: 00007ffc637b687f R14: 00007f861e99f300 R15: 0000000000022000
10:32:55 executing program 1:
memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, 0xffffffffffffffff, 0x0)

10:32:55 executing program 4:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000440)=ANY=[])
mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000200)={{0x1, 0x1, 0x18, r0, {0xda4b}}, './file0/file1\x00'})
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x1000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000400)='./file0/../file0\x00', 0x0, 0x1001000, 0x0)

10:32:55 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x59fe}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:32:55 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 66)

10:32:55 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 56)
getresuid(0x0, 0x0, 0x0)

10:32:55 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 47)

10:32:55 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

[ 2982.312876] FAULT_INJECTION: forcing a failure.
[ 2982.312876] name failslab, interval 1, probability 0, space 0, times 0
[ 2982.314571] CPU: 1 PID: 35437 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2982.315569] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2982.316694] Call Trace:
[ 2982.317057]  dump_stack+0x107/0x167
[ 2982.317558]  should_fail.cold+0x5/0xa
[ 2982.318118]  ? xas_alloc+0x336/0x440
[ 2982.318630]  should_failslab+0x5/0x20
[ 2982.319211]  kmem_cache_alloc+0x5b/0x310
[ 2982.319786]  xas_alloc+0x336/0x440
[ 2982.320273]  xas_create+0x34a/0x10d0
[ 2982.320803]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2982.321515]  xas_store+0x8c/0x1c40
[ 2982.322026]  __xa_store+0x164/0x2d0
[ 2982.322524]  ? xa_delete_node+0x280/0x280
[ 2982.323168]  ? trace_hardirqs_on+0x5b/0x180
[ 2982.323773]  xa_store+0x31/0x50
[ 2982.331153]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2982.331818]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2982.332520]  ? alloc_fd+0x2e7/0x670
[ 2982.338950]  io_uring_setup+0x1fbb/0x2980
[ 2982.339530]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2982.340228]  ? wait_for_completion_io+0x270/0x270
[ 2982.340956]  do_syscall_64+0x33/0x40
[ 2982.346846]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2982.347535] RIP: 0033:0x7fb4a26afb19
[ 2982.348048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2982.359011] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2982.360042] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2982.361006] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2982.361973] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2982.367381] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2982.368374] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2982.390585] FAULT_INJECTION: forcing a failure.
[ 2982.390585] name failslab, interval 1, probability 0, space 0, times 0
[ 2982.402933] CPU: 1 PID: 35443 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2982.403880] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2982.405013] Call Trace:
[ 2982.405362]  dump_stack+0x107/0x167
[ 2982.405873]  should_fail.cold+0x5/0xa
[ 2982.406411]  ? vm_area_dup+0x78/0x290
[ 2982.406946]  should_failslab+0x5/0x20
[ 2982.407448]  kmem_cache_alloc+0x5b/0x310
[ 2982.408003]  ? lock_downgrade+0x6d0/0x6d0
[ 2982.408553]  vm_area_dup+0x78/0x290
[ 2982.409085]  ? _cond_resched+0x10/0x30
[ 2982.409597]  ? copy_page_range+0x24e9/0x3810
[ 2982.410276]  ? vm_area_alloc+0x110/0x110
[ 2982.410844]  ? up_write+0x191/0x550
[ 2982.411330]  ? vm_iomap_memory+0x190/0x190
[ 2982.411910]  ? downgrade_write+0x3a0/0x3a0
[ 2982.412486]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 2982.413234]  ? __vma_link_rb+0x540/0x700
[ 2982.413801]  copy_process+0x298b/0x78b0
[ 2982.414370]  ? SOFTIRQ_verbose+0x10/0x10
[ 2982.414972]  ? __cleanup_sighand+0xb0/0xb0
[ 2982.415550]  ? _copy_from_user+0xfb/0x1b0
[ 2982.416156]  kernel_clone+0xe7/0x980
[ 2982.416666]  ? __lockdep_reset_lock+0x180/0x180
[ 2982.417331]  ? create_io_thread+0xf0/0xf0
[ 2982.417919]  ? ksys_write+0x21a/0x260
[ 2982.418430]  ? lock_downgrade+0x6d0/0x6d0
[ 2982.419033]  __do_sys_clone3+0x1e5/0x320
[ 2982.419582]  ? __do_sys_clone+0x110/0x110
[ 2982.420226]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2982.420855]  ? vfs_write+0x354/0xb10
[ 2982.421398]  ? fput_many+0x2f/0x1a0
[ 2982.421904]  ? ksys_write+0x1a9/0x260
[ 2982.422414]  ? __ia32_sys_read+0xb0/0xb0
[ 2982.423006]  do_syscall_64+0x33/0x40
[ 2982.423518]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2982.424237] RIP: 0033:0x7f862144ab19
[ 2982.424745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2982.427262] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2982.428307] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 2982.429303] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2982.430261] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2982.431264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2982.432225] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 2982.523946] FAULT_INJECTION: forcing a failure.
[ 2982.523946] name failslab, interval 1, probability 0, space 0, times 0
[ 2982.525777] CPU: 1 PID: 35477 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2982.526731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2982.531839] Call Trace:
[ 2982.532217]  dump_stack+0x107/0x167
[ 2982.532693]  should_fail.cold+0x5/0xa
[ 2982.533220]  ? xas_alloc+0x336/0x440
[ 2982.533724]  should_failslab+0x5/0x20
[ 2982.534223]  kmem_cache_alloc+0x5b/0x310
[ 2982.534769]  ? stack_trace_consume_entry+0x160/0x160
[ 2982.535448]  xas_alloc+0x336/0x440
[ 2982.535919]  xas_create+0x34a/0x10d0
[ 2982.536422]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2982.537116]  xas_store+0x8c/0x1c40
[ 2982.537631]  __xa_store+0x164/0x2d0
[ 2982.538112]  ? xa_delete_node+0x280/0x280
[ 2982.538663]  ? trace_hardirqs_on+0x5b/0x180
[ 2982.539259]  xa_store+0x31/0x50
[ 2982.539696]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2982.540372]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2982.541059]  ? alloc_fd+0x2e7/0x670
[ 2982.541554]  io_uring_setup+0x1fbb/0x2980
[ 2982.542106]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2982.542778]  ? wait_for_completion_io+0x270/0x270
[ 2982.543450]  do_syscall_64+0x33/0x40
[ 2982.543938]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2982.544654] RIP: 0033:0x7fd22c24ab19
[ 2982.545145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2982.563585] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2982.564612] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2982.565580] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2982.566511] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2982.567439] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2982.568376] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:33:12 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:33:12 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 57)
getresuid(0x0, 0x0, 0x0)

10:33:12 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:33:12 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 67)

10:33:12 executing program 1:
memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, 0xffffffffffffffff, 0x0)

10:33:12 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x5f08}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:33:12 executing program 4:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000000000004000000000002000020000020000000def4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000e58ca12e13a240e2b1a22f8d07e8e55f010040", 0x1f, 0x4e0}, {&(0x7f0000010300)="030000000400000005", 0x9, 0x800}, {0x0, 0x0, 0x1000000000c00}, {&(0x7f0000010d00)="ed41000000040000ddf4655fdef4655fdef4655f000000000000040020", 0x1d, 0x1480}], 0x1, &(0x7f0000012b00)=ANY=[])
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x7c2, 0xed)

10:33:12 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 48)

[ 2999.256485] FAULT_INJECTION: forcing a failure.
[ 2999.256485] name failslab, interval 1, probability 0, space 0, times 0
[ 2999.258057] CPU: 1 PID: 35663 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 2999.259005] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2999.260137] Call Trace:
[ 2999.260491]  dump_stack+0x107/0x167
[ 2999.260977]  should_fail.cold+0x5/0xa
[ 2999.261485]  ? create_object.isra.0+0x3a/0xa20
[ 2999.262090]  should_failslab+0x5/0x20
[ 2999.262613]  kmem_cache_alloc+0x5b/0x310
[ 2999.263181]  ? mark_held_locks+0x9e/0xe0
[ 2999.263722]  create_object.isra.0+0x3a/0xa20
[ 2999.264306]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2999.264978]  kmem_cache_alloc+0x159/0x310
[ 2999.265532]  xas_alloc+0x336/0x440
[ 2999.266005]  xas_create+0x34a/0x10d0
[ 2999.266503]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2999.267260]  xas_store+0x8c/0x1c40
[ 2999.267742]  __xa_store+0x164/0x2d0
[ 2999.268226]  ? xa_delete_node+0x280/0x280
[ 2999.268811]  ? trace_hardirqs_on+0x5b/0x180
[ 2999.269382]  xa_store+0x31/0x50
[ 2999.269863]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2999.270500]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2999.271207]  ? alloc_fd+0x2e7/0x670
[ 2999.271730]  io_uring_setup+0x1fbb/0x2980
[ 2999.272282]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2999.272994]  ? wait_for_completion_io+0x270/0x270
[ 2999.273658]  do_syscall_64+0x33/0x40
[ 2999.274152]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2999.274856] RIP: 0033:0x7fb4a26afb19
[ 2999.275363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2999.277821] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2999.278858] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 2999.279854] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2999.280795] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2999.281761] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2999.282712] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 2999.330188] FAULT_INJECTION: forcing a failure.
[ 2999.330188] name failslab, interval 1, probability 0, space 0, times 0
[ 2999.331737] CPU: 1 PID: 35669 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 2999.332643] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2999.333759] Call Trace:
[ 2999.334152]  dump_stack+0x107/0x167
[ 2999.334635]  should_fail.cold+0x5/0xa
[ 2999.339548]  ? create_object.isra.0+0x3a/0xa20
[ 2999.340988]  should_failslab+0x5/0x20
[ 2999.342140]  kmem_cache_alloc+0x5b/0x310
[ 2999.359168]  create_object.isra.0+0x3a/0xa20
[ 2999.359746]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2999.360418]  kmem_cache_alloc+0x159/0x310
[ 2999.368220]  xas_alloc+0x336/0x440
[ 2999.369337]  xas_create+0x34a/0x10d0
[ 2999.370473]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2999.372334]  xas_store+0x8c/0x1c40
[ 2999.373421]  __xa_store+0x164/0x2d0
[ 2999.374549]  ? xa_delete_node+0x280/0x280
[ 2999.375992]  ? trace_hardirqs_on+0x5b/0x180
[ 2999.377333]  xa_store+0x31/0x50
[ 2999.378373]  __io_uring_add_tctx_node+0x1cf/0x520
[ 2999.379366]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 2999.380055]  ? alloc_fd+0x2e7/0x670
[ 2999.380547]  io_uring_setup+0x1fbb/0x2980
[ 2999.381134]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 2999.381797]  ? wait_for_completion_io+0x270/0x270
[ 2999.382524]  do_syscall_64+0x33/0x40
[ 2999.387039]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2999.387712] RIP: 0033:0x7fd22c24ab19
[ 2999.388210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2999.390650] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 2999.391708] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 2999.392646] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 2999.393582] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 2999.394526] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2999.395495] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:33:13 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 68)

10:33:13 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000fee000/0x4000)=nil, 0x4000, 0x2000, 0x4, &(0x7f0000fed000/0x2000)=nil)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ff1000/0x2000)=nil, 0x2000, 0x4000, &(0x7f0000000000)=0x7ff, 0x4, 0x2)

[ 2999.426654] FAULT_INJECTION: forcing a failure.
[ 2999.426654] name failslab, interval 1, probability 0, space 0, times 0
[ 2999.431811] CPU: 1 PID: 35776 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 2999.432764] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2999.433852] Call Trace:
[ 2999.434236]  dump_stack+0x107/0x167
[ 2999.434718]  should_fail.cold+0x5/0xa
[ 2999.439225]  ? create_object.isra.0+0x3a/0xa20
[ 2999.439829]  should_failslab+0x5/0x20
[ 2999.440361]  kmem_cache_alloc+0x5b/0x310
[ 2999.440899]  create_object.isra.0+0x3a/0xa20
[ 2999.441484]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2999.442156]  kmem_cache_alloc+0x159/0x310
[ 2999.442710]  vm_area_dup+0x78/0x290
[ 2999.443248]  ? copy_page_range+0x24e9/0x3810
[ 2999.443855]  ? vm_area_alloc+0x110/0x110
[ 2999.444433]  ? vm_iomap_memory+0x190/0x190
[ 2999.445002]  ? __vma_link_rb+0x540/0x700
[ 2999.445545]  copy_process+0x298b/0x78b0
[ 2999.446069]  ? SOFTIRQ_verbose+0x10/0x10
[ 2999.446635]  ? __cleanup_sighand+0xb0/0xb0
[ 2999.447265]  ? _copy_from_user+0xfb/0x1b0
[ 2999.447815]  kernel_clone+0xe7/0x980
[ 2999.448349]  ? __lockdep_reset_lock+0x180/0x180
[ 2999.448962]  ? create_io_thread+0xf0/0xf0
[ 2999.449523]  ? ksys_write+0x21a/0x260
[ 2999.450060]  ? lock_downgrade+0x6d0/0x6d0
[ 2999.450609]  __do_sys_clone3+0x1e5/0x320
[ 2999.451171]  ? __do_sys_clone+0x110/0x110
[ 2999.451737]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2999.452347]  ? vfs_write+0x354/0xb10
[ 2999.452840]  ? fput_many+0x2f/0x1a0
[ 2999.453353]  ? ksys_write+0x1a9/0x260
[ 2999.453853]  ? __ia32_sys_read+0xb0/0xb0
[ 2999.454444]  do_syscall_64+0x33/0x40
[ 2999.454935]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2999.455630] RIP: 0033:0x7f862144ab19
[ 2999.456156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2999.458602] RSP: 002b:00007f861e99f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2999.459653] RAX: ffffffffffffffda RBX: 00007f862155e020 RCX: 00007f862144ab19
[ 2999.460632] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 2999.461569] RBP: 00007f861e99f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2999.462505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2999.471456] R13: 00007ffc637b687f R14: 00007f861e99f300 R15: 0000000000022000
10:33:13 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x20)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_CLOSE={0x13, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xfffffffe)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x211}}, 0x8001)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000100)=@IORING_OP_POLL_REMOVE={0x7, 0x3}, 0x80000001)
r2 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0xa, 0x0, r3)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r3}}, 0x2)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000a00)=ANY=[@ANYRES16, @ANYBLOB="585f2b67ac56240dee1fe5701f456996918e38e0ee289b4dcdb129c837d482cee2e52894a3e1c52660c95c53f45cf2f10419c1516a1227344fac8b23879fc68a07a42989701f6a77e4e178a0b461c79ef4665d1a3654b5c16a270906d7ca07f1f94c41ae1430250e2b1c12dec380377e2aa905e13caef9292d4ab1c6478697d2ae3152432b2f5be0911d1f8a256f80695a4bbecb78c0187871fbb00c3a53f80df2ed68e6869b849299efde213dab8b5ae54a6536b419276355e3efc6eaea745c0e399ed762ca5f48f5636d881acace2e541256a20e7ad78988a8620e1515", @ANYRES32])
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0)
fallocate(r4, 0x10, 0x7e10, 0x6)
preadv(r4, &(0x7f0000001580)=[{&(0x7f00000015c0)=""/4106, 0x100a}], 0x1, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan1\x00'})
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r4, 0x4008240b, &(0x7f0000000380)={0x0, 0x80, 0x8, 0x5, 0xe8, 0x81, 0x0, 0x6, 0x4200, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x4, @perf_config_ext={0x8, 0x7}, 0x2000, 0x100, 0x800, 0x0, 0x10000, 0x8001, 0x0, 0x0, 0x3, 0x0, 0x800})
writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000040)="bab515261d85e43b8675ff358be1c7", 0xf}, {&(0x7f0000000480)="16e472b3351e702c1c572cdea6d5e8abcff600f5bd27d59ecf81aa450800940be3801843bb8cd06d6f20add7fff554bced17f7b9ad4312ba8d017c0452e18cf134ce9a6ef5b4f722eff7a398deb46c27afbb416dc0178e60c83593760002d52ccf3e26178963e15c5a615ef0a14b93028d76b7bcf50aef6f354433c9f00647d6198c6efcf2d4d62e3c52b9eddab6f03e9dc83f938ecbb9a2e6752b0bd8a140335cd7fd31207ac416f9b3e789c8c13701535856665a84640870a4552f7cf9ee5bed893e9865642360c125a322344473722293af9d5f729681", 0xd8}, {&(0x7f0000000580)="99642337dedde311c2df69a529ffdb67e76450baf7b5d660cfbc0a4193f0de053fd742c7e91c3cfcf35a62b048594b52d647754f0ed20cccc612912cdedad642ab6de4f2e9680219acbe2dd8f762a5220647827211edbc815c2484529547f72e4bc30e362e9eb8db35fbf9769b4f38727eb45f3a5d78d4242c90a8dc20f238b55855002ab84ddb5d99908890efe8", 0x8e}, {&(0x7f0000000740)="4973a15746a8f3267244dde0d2f4f27e0a3b846b4b4ed9ca9cf324be75465edd5e9a26e1e4bc6b3b08c23aab9ad51066cd03c668c018c57d7bcc3ffa7e9340f583c780e446b29cb44cb6a603690b692830deca10179bea201f9a49aa958083a92b4975896cde59fc898c7d2f89f31ee849695ccfc8af1b660a9cc633aef4ab5d339f3d04d6e107095c2f1871982dcdf234547c7dd9f54e2065615cdcfdb9f259610a5f092e19211b378b2d28cf663ec9bfdd722d73bf5031d4c7c25b1ca8f7b515e0fdc9b902486be1", 0xc9}], 0x4)

10:33:13 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, r0, 0x0) (fail_nth: 1)

10:33:13 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x60ff}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:33:13 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 58)
getresuid(0x0, 0x0, 0x0)

10:33:13 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:33:13 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 49)

10:33:13 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 3000.284261] FAULT_INJECTION: forcing a failure.
[ 3000.284261] name failslab, interval 1, probability 0, space 0, times 0
[ 3000.285833] CPU: 1 PID: 35892 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3000.286744] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3000.295836] Call Trace:
[ 3000.296193]  dump_stack+0x107/0x167
[ 3000.296713]  should_fail.cold+0x5/0xa
[ 3000.297217]  ? xas_alloc+0x336/0x440
[ 3000.297719]  should_failslab+0x5/0x20
[ 3000.298226]  kmem_cache_alloc+0x5b/0x310
[ 3000.298769]  xas_alloc+0x336/0x440
[ 3000.299265]  xas_create+0x34a/0x10d0
[ 3000.299803]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3000.300492]  xas_store+0x8c/0x1c40
[ 3000.301021]  __xa_store+0x164/0x2d0
[ 3000.301506]  ? xa_delete_node+0x280/0x280
[ 3000.302064]  ? trace_hardirqs_on+0x5b/0x180
[ 3000.302676]  xa_store+0x31/0x50
[ 3000.303133]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3000.303813]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3000.304505]  ? alloc_fd+0x2e7/0x670
[ 3000.304997]  io_uring_setup+0x1fbb/0x2980
[ 3000.305572]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3000.306249]  ? wait_for_completion_io+0x270/0x270
[ 3000.306957]  do_syscall_64+0x33/0x40
[ 3000.311462]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3000.312167] RIP: 0033:0x7fb4a26afb19
[ 3000.312680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3000.315168] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3000.316219] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 3000.317162] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3000.318134] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3000.319094] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3000.320037] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3000.331539] FAULT_INJECTION: forcing a failure.
[ 3000.331539] name failslab, interval 1, probability 0, space 0, times 0
[ 3000.333129] CPU: 0 PID: 35894 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 3000.334078] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3000.335181] Call Trace:
[ 3000.335532]  dump_stack+0x107/0x167
[ 3000.336043]  should_fail.cold+0x5/0xa
[ 3000.336543]  ? vm_area_dup+0x78/0x290
[ 3000.337094]  should_failslab+0x5/0x20
[ 3000.337595]  kmem_cache_alloc+0x5b/0x310
[ 3000.338135]  vm_area_dup+0x78/0x290
[ 3000.338620]  ? __lockdep_reset_lock+0x180/0x180
[ 3000.339247]  ? mark_lock+0xf5/0x2df0
[ 3000.339744]  ? lock_chain_count+0x20/0x20
[ 3000.340298]  ? avc_has_extended_perms+0xf40/0xf40
[ 3000.340935]  ? avc_has_perm_noaudit+0x1c9/0x3e0
[ 3000.341547]  ? lock_downgrade+0x6d0/0x6d0
[ 3000.342119]  ? __lock_acquire+0x1657/0x5b00
[ 3000.342695]  ? vm_area_alloc+0x110/0x110
[ 3000.343281]  ? __lock_acquire+0x1657/0x5b00
[ 3000.343865]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3000.344552]  ? SOFTIRQ_verbose+0x10/0x10
[ 3000.345115]  ? vmacache_find+0x55/0x2a0
[ 3000.345636]  __split_vma+0xa8/0x4e0
[ 3000.346162]  __do_munmap+0xfae/0x1260
[ 3000.346663]  ? pud_huge+0xd0/0xd0
[ 3000.347144]  ? lock_release+0x680/0x680
[ 3000.347699]  mmap_region+0x7c8/0x1500
[ 3000.348215]  do_mmap+0xcdb/0x11e0
[ 3000.348678]  vm_mmap_pgoff+0x198/0x1f0
[ 3000.349204]  ? randomize_page+0xb0/0xb0
[ 3000.349742]  ksys_mmap_pgoff+0x41c/0x560
[ 3000.350280]  ? find_mergeable_anon_vma+0x250/0x250
[ 3000.354979]  do_syscall_64+0x33/0x40
[ 3000.355481]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3000.356156] RIP: 0033:0x7f19f3545b19
[ 3000.356666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3000.359169] RSP: 002b:00007f19f0abb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 3000.360199] RAX: ffffffffffffffda RBX: 00007f19f3658f60 RCX: 00007f19f3545b19
[ 3000.361167] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000000020000000
[ 3000.362100] RBP: 00007f19f0abb1d0 R08: 0000000000000003 R09: 0000000000000000
[ 3000.363080] R10: 000000000001f013 R11: 0000000000000246 R12: 0000000000000001
[ 3000.364055] R13: 00007fff4d583eff R14: 00007f19f0abb300 R15: 0000000000022000
[ 3000.474112] FAULT_INJECTION: forcing a failure.
[ 3000.474112] name failslab, interval 1, probability 0, space 0, times 0
[ 3000.479676] CPU: 1 PID: 35935 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3000.480588] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3000.481707] Call Trace:
[ 3000.482098]  dump_stack+0x107/0x167
[ 3000.482588]  should_fail.cold+0x5/0xa
[ 3000.483124]  ? vm_area_dup+0x78/0x290
[ 3000.483632]  should_failslab+0x5/0x20
[ 3000.484170]  kmem_cache_alloc+0x5b/0x310
[ 3000.484708]  vm_area_dup+0x78/0x290
[ 3000.485238]  ? avc_has_perm_noaudit+0x1c9/0x3e0
[ 3000.485853]  ? lock_downgrade+0x6d0/0x6d0
[ 3000.486400]  ? perf_trace_lock+0xac/0x490
[ 3000.486981]  ? copy_page_range+0x24e9/0x3810
[ 3000.487572]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3000.488309]  ? __lockdep_reset_lock+0x180/0x180
[ 3000.488929]  ? avc_has_perm_noaudit+0x1f7/0x3e0
[ 3000.489545]  ? avc_has_extended_perms+0xf40/0xf40
[ 3000.490209]  ? copy_process+0x2bdd/0x78b0
[ 3000.490756]  ? vm_area_alloc+0x110/0x110
[ 3000.499310]  ? selinux_vm_enough_memory+0x114/0x180
[ 3000.499965]  ? selinux_sb_statfs+0x250/0x250
[ 3000.500548]  ? up_write+0x191/0x550
[ 3000.501066]  ? percpu_counter_add_batch+0x8b/0x140
[ 3000.501715]  ? __vm_enough_memory+0x184/0x360
[ 3000.502347]  ? security_vm_enough_memory_mm+0x8b/0xc0
[ 3000.503044]  copy_process+0x298b/0x78b0
[ 3000.503604]  ? __cleanup_sighand+0xb0/0xb0
[ 3000.504182]  ? _copy_from_user+0xfb/0x1b0
[ 3000.504737]  kernel_clone+0xe7/0x980
[ 3000.505259]  ? __lockdep_reset_lock+0x180/0x180
[ 3000.505871]  ? create_io_thread+0xf0/0xf0
[ 3000.506478]  ? ksys_write+0x21a/0x260
[ 3000.507026]  ? lock_downgrade+0x6d0/0x6d0
[ 3000.507577]  __do_sys_clone3+0x1e5/0x320
[ 3000.508153]  ? __do_sys_clone+0x110/0x110
[ 3000.508722]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3000.509333]  ? vfs_write+0x354/0xb10
[ 3000.509828]  ? fput_many+0x2f/0x1a0
[ 3000.510312]  ? ksys_write+0x1a9/0x260
[ 3000.510815]  ? __ia32_sys_read+0xb0/0xb0
[ 3000.511415]  do_syscall_64+0x33/0x40
[ 3000.511903]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3000.512622] RIP: 0033:0x7f862144ab19
[ 3000.513147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3000.515604] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3000.516607] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3000.517574] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3000.518553] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3000.519541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3000.520517] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 3000.719029] FAULT_INJECTION: forcing a failure.
[ 3000.719029] name failslab, interval 1, probability 0, space 0, times 0
[ 3000.727487] CPU: 0 PID: 36003 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3000.728398] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3000.729503] Call Trace:
[ 3000.729876]  dump_stack+0x107/0x167
[ 3000.730359]  should_fail.cold+0x5/0xa
[ 3000.730864]  ? xas_alloc+0x336/0x440
[ 3000.731400]  should_failslab+0x5/0x20
[ 3000.731906]  kmem_cache_alloc+0x5b/0x310
[ 3000.732463]  xas_alloc+0x336/0x440
[ 3000.732961]  xas_create+0x34a/0x10d0
[ 3000.733464]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3000.734155]  xas_store+0x8c/0x1c40
[ 3000.734662]  __xa_store+0x164/0x2d0
[ 3000.739202]  ? xa_delete_node+0x280/0x280
[ 3000.739758]  ? trace_hardirqs_on+0x5b/0x180
[ 3000.740341]  xa_store+0x31/0x50
[ 3000.740800]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3000.741442]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3000.742164]  ? alloc_fd+0x2e7/0x670
[ 3000.742657]  io_uring_setup+0x1fbb/0x2980
[ 3000.743553]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3000.745099]  ? wait_for_completion_io+0x270/0x270
[ 3000.746616]  do_syscall_64+0x33/0x40
[ 3000.747937]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3000.749502] RIP: 0033:0x7fd22c24ab19
[ 3000.750625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3000.757217] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3000.759784] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3000.761956] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3000.764401] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3000.766584] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3000.769064] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:33:32 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 69)

10:33:32 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, r0, 0x0) (fail_nth: 2)

10:33:32 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:33:32 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000005, 0x10, 0xffffffffffffffff, 0x8000000)
r1 = syz_io_uring_setup(0x4d53, &(0x7f00000002c0), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x23456}, 0x0)
syz_io_uring_submit(r4, r3, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index}, 0x8001)
pkey_mprotect(&(0x7f0000ff2000/0x2000)=nil, 0x2000, 0x2, 0xffffffffffffffff)
r5 = syz_open_dev$vcsu(&(0x7f0000000500), 0x100, 0x1094c1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000540)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index=0x2, 0xfe, {}, 0x8, 0xe, 0xb6ee2e50cea92e6f, {0x0, 0x0, r5}}, 0x8)
r6 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x4, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r7}}, 0x2)
syz_io_uring_submit(r0, r3, &(0x7f0000000180)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x3, 0x2, &(0x7f0000002040)="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", 0x1f, 0x0, 0x0, {0x0, r7}}, 0x6)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
syz_io_uring_setup(0x4d53, &(0x7f00000002c0), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_submit(r8, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000240)=@l2tp={0x2, 0x0, @private=0xa010102, 0x4}}, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:33:32 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 50)

10:33:32 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x7e00}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:33:32 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 59)
getresuid(0x0, 0x0, 0x0)

10:33:32 executing program 4:
ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f0000000540))
pipe(0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xe, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_config_ext, 0x1, 0x4, 0x1002, 0x5, 0x7, 0x0, 0xd395}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e24, @dev}, {0x2, 0x0, @loopback}, {0x2, 0x4e23, @loopback}, 0x155, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
creat(&(0x7f0000000240)='./file0\x00', 0x49)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0xc244, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, @perf_bp={&(0x7f0000000380), 0xb}, 0x1a408, 0x0, 0xfffffffd, 0x2, 0x0, 0x2, 0xffff, 0x0, 0x2}, 0x0, 0x3, 0xffffffffffffffff, 0x3)
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x0, @remote}}, 0x0, 0x0, 0x4f, 0x0, "3c1c2fd629c4af55a8680f7a892e0865c7fbba0cdfa184016bc00618cdb5732d900802764f98b1af0cd43f34e89ab87a13a460acbb4433cb8a7aaa5797c2f5b5cc15058fbbef4c13daa3094bf3e22ec6"}, 0xd8)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
fstatfs(0xffffffffffffffff, &(0x7f0000002e00)=""/4102)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000003c0)={0x245, 0xfff, 0x3})
r2 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0)
open_by_handle_at(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000002000000080000000100000000e6ff000000000000e33414c300003465b0d37f61a9c3a212d8468ff2a7a1a3221c1f1becb291c17d15bb28029c6e3e2d4c824328f22f4f43e8d0b0507d9e6d2b93eef198141a877411"], 0x0)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000780)=ANY=[@ANYBLOB="00001b0000ce7c00cd97d723f5bd14b2e26fa8fe47306108513cf72a4f7f8945ae13f8c51ab684c8e62ebeef10818a8a57bfa1f641e5af396f4e2ca45aff190445d871fb52abcb68036e9988c175d7fb214e9934208d28305ed2fcca68b61e9c1c98fd525244", @ANYRESOCT=r2, @ANYBLOB="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"], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x20004800)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000002c0)={0xfffffffffffffffe, 0xf4, 0xfffffffffffffff9})
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd})

[ 3018.612694] FAULT_INJECTION: forcing a failure.
[ 3018.612694] name failslab, interval 1, probability 0, space 0, times 0
[ 3018.614445] CPU: 1 PID: 36120 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3018.615501] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3018.616833] Call Trace:
[ 3018.617291]  dump_stack+0x107/0x167
[ 3018.617874]  should_fail.cold+0x5/0xa
[ 3018.618477]  ? create_object.isra.0+0x3a/0xa20
[ 3018.619212]  should_failslab+0x5/0x20
[ 3018.619799]  kmem_cache_alloc+0x5b/0x310
[ 3018.620447]  ? mark_held_locks+0x9e/0xe0
[ 3018.621072]  create_object.isra.0+0x3a/0xa20
[ 3018.621755]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3018.622539]  kmem_cache_alloc+0x159/0x310
[ 3018.623214]  xas_alloc+0x336/0x440
[ 3018.623771]  xas_create+0x34a/0x10d0
[ 3018.624363]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3018.625191]  xas_store+0x8c/0x1c40
[ 3018.625767]  __xa_store+0x164/0x2d0
[ 3018.626345]  ? xa_delete_node+0x280/0x280
[ 3018.627006]  ? trace_hardirqs_on+0x5b/0x180
[ 3018.627686]  xa_store+0x31/0x50
[ 3018.628206]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3018.628979]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3018.629785]  ? alloc_fd+0x2e7/0x670
[ 3018.630348]  io_uring_setup+0x1fbb/0x2980
[ 3018.630991]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3018.631761]  ? wait_for_completion_io+0x270/0x270
[ 3018.632542]  do_syscall_64+0x33/0x40
[ 3018.633123]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3018.633925] RIP: 0033:0x7fb4a26afb19
[ 3018.634509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3018.637219] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3018.638226] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 3018.639164] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3018.640116] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3018.640840] FAULT_INJECTION: forcing a failure.
[ 3018.640840] name failslab, interval 1, probability 0, space 0, times 0
[ 3018.641057] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3018.641066] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3018.644547] CPU: 0 PID: 36123 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 3018.645498] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3018.646590] Call Trace:
[ 3018.646948]  dump_stack+0x107/0x167
[ 3018.647759]  should_fail.cold+0x5/0xa
[ 3018.648863]  ? create_object.isra.0+0x3a/0xa20
[ 3018.650197]  should_failslab+0x5/0x20
[ 3018.651264]  kmem_cache_alloc+0x5b/0x310
[ 3018.651809]  create_object.isra.0+0x3a/0xa20
[ 3018.652432]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3018.653106]  kmem_cache_alloc+0x159/0x310
[ 3018.653662]  vm_area_dup+0x78/0x290
[ 3018.654152]  ? __lockdep_reset_lock+0x180/0x180
[ 3018.654767]  ? mark_lock+0xf5/0x2df0
[ 3018.655455]  ? lock_chain_count+0x20/0x20
[ 3018.656664]  ? avc_has_extended_perms+0xf40/0xf40
[ 3018.658022]  ? avc_has_perm_noaudit+0x1c9/0x3e0
[ 3018.659455]  ? lock_downgrade+0x6d0/0x6d0
[ 3018.660594]  ? __lock_acquire+0x1657/0x5b00
[ 3018.661816]  ? vm_area_alloc+0x110/0x110
[ 3018.662929]  ? __lock_acquire+0x1657/0x5b00
[ 3018.663672]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3018.664369]  ? SOFTIRQ_verbose+0x10/0x10
[ 3018.664908]  ? vmacache_find+0x55/0x2a0
[ 3018.665469]  __split_vma+0xa8/0x4e0
[ 3018.665952]  __do_munmap+0xfae/0x1260
[ 3018.666502]  ? pud_huge+0xd0/0xd0
[ 3018.666965]  ? lock_release+0x680/0x680
[ 3018.667994]  mmap_region+0x7c8/0x1500
[ 3018.669051]  do_mmap+0xcdb/0x11e0
[ 3018.670026]  vm_mmap_pgoff+0x198/0x1f0
[ 3018.671098]  ? randomize_page+0xb0/0xb0
[ 3018.671693]  ksys_mmap_pgoff+0x41c/0x560
[ 3018.672235]  ? find_mergeable_anon_vma+0x250/0x250
[ 3018.672893]  do_syscall_64+0x33/0x40
[ 3018.673433]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3018.674108] RIP: 0033:0x7f19f3545b19
[ 3018.674603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3018.679913] RSP: 002b:00007f19f0abb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 3018.680918] RAX: ffffffffffffffda RBX: 00007f19f3658f60 RCX: 00007f19f3545b19
[ 3018.681861] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000000020000000
[ 3018.682800] RBP: 00007f19f0abb1d0 R08: 0000000000000003 R09: 0000000000000000
[ 3018.683782] R10: 000000000001f013 R11: 0000000000000246 R12: 0000000000000001
[ 3018.684726] R13: 00007fff4d583eff R14: 00007f19f0abb300 R15: 0000000000022000
[ 3018.697717] FAULT_INJECTION: forcing a failure.
[ 3018.697717] name failslab, interval 1, probability 0, space 0, times 0
[ 3018.699364] CPU: 1 PID: 36121 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3018.700279] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3018.701375] Call Trace:
[ 3018.701729]  dump_stack+0x107/0x167
[ 3018.702213]  should_fail.cold+0x5/0xa
[ 3018.702762]  ? create_object.isra.0+0x3a/0xa20
[ 3018.703388]  should_failslab+0x5/0x20
[ 3018.703892]  kmem_cache_alloc+0x5b/0x310
[ 3018.704463]  create_object.isra.0+0x3a/0xa20
[ 3018.705038]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3018.705759]  kmem_cache_alloc+0x159/0x310
[ 3018.706315]  vm_area_dup+0x78/0x290
[ 3018.706805]  ? avc_has_perm_noaudit+0x1c9/0x3e0
[ 3018.707443]  ? lock_downgrade+0x6d0/0x6d0
[ 3018.707990]  ? perf_trace_lock+0xac/0x490
[ 3018.708574]  ? copy_page_range+0x24e9/0x3810
[ 3018.709153]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3018.709896]  ? __lockdep_reset_lock+0x180/0x180
[ 3018.710529]  ? avc_has_perm_noaudit+0x1f7/0x3e0
[ 3018.711150]  ? avc_has_extended_perms+0xf40/0xf40
[ 3018.711828]  ? copy_process+0x2bdd/0x78b0
[ 3018.712417]  ? vm_area_alloc+0x110/0x110
[ 3018.712978]  ? selinux_vm_enough_memory+0x114/0x180
[ 3018.713647]  ? selinux_sb_statfs+0x250/0x250
[ 3018.714228]  ? up_write+0x191/0x550
[ 3018.714715]  ? percpu_counter_add_batch+0x8b/0x140
[ 3018.715417]  ? __vm_enough_memory+0x184/0x360
[ 3018.716008]  ? security_vm_enough_memory_mm+0x8b/0xc0
[ 3018.716740]  copy_process+0x298b/0x78b0
[ 3018.717301]  ? __cleanup_sighand+0xb0/0xb0
[ 3018.717882]  ? _copy_from_user+0xfb/0x1b0
[ 3018.718472]  kernel_clone+0xe7/0x980
[ 3018.718962]  ? __lockdep_reset_lock+0x180/0x180
[ 3018.719648]  ? create_io_thread+0xf0/0xf0
[ 3018.720213]  ? ksys_write+0x21a/0x260
[ 3018.720724]  ? lock_downgrade+0x6d0/0x6d0
[ 3018.721281]  __do_sys_clone3+0x1e5/0x320
[ 3018.721831]  ? __do_sys_clone+0x110/0x110
[ 3018.722404]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3018.723015]  ? vfs_write+0x354/0xb10
[ 3018.723533]  ? fput_many+0x2f/0x1a0
[ 3018.724019]  ? ksys_write+0x1a9/0x260
[ 3018.724525]  ? __ia32_sys_read+0xb0/0xb0
[ 3018.725078]  do_syscall_64+0x33/0x40
[ 3018.725574]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3018.726249] RIP: 0033:0x7f862144ab19
[ 3018.726763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3018.729209] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3018.730215] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3018.731213] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3018.732163] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3018.733133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3018.734122] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 3018.737086] FAULT_INJECTION: forcing a failure.
[ 3018.737086] name failslab, interval 1, probability 0, space 0, times 0
[ 3018.744580] CPU: 1 PID: 36119 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3018.745504] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3018.752041] Call Trace:
[ 3018.752397]  dump_stack+0x107/0x167
[ 3018.752871]  should_fail.cold+0x5/0xa
[ 3018.753364]  ? create_object.isra.0+0x3a/0xa20
[ 3018.753952]  should_failslab+0x5/0x20
[ 3018.754476]  kmem_cache_alloc+0x5b/0x310
[ 3018.755001]  create_object.isra.0+0x3a/0xa20
[ 3018.755630]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3018.756287]  kmem_cache_alloc+0x159/0x310
[ 3018.756827]  xas_alloc+0x336/0x440
[ 3018.757291]  xas_create+0x34a/0x10d0
[ 3018.757804]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3018.758510]  xas_store+0x8c/0x1c40
[ 3018.758995]  __xa_store+0x164/0x2d0
[ 3018.763490]  ? xa_delete_node+0x280/0x280
[ 3018.764048]  ? trace_hardirqs_on+0x5b/0x180
[ 3018.764628]  xa_store+0x31/0x50
[ 3018.765066]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3018.765749]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3018.766439]  ? alloc_fd+0x2e7/0x670
[ 3018.766933]  io_uring_setup+0x1fbb/0x2980
[ 3018.767505]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3018.768172]  ? wait_for_completion_io+0x270/0x270
[ 3018.768863]  do_syscall_64+0x33/0x40
[ 3018.769352]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3018.770074] RIP: 0033:0x7fd22c24ab19
[ 3018.770569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3018.773069] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3018.774073] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3018.775015] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3018.775991] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3018.776975] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3018.777915] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:33:32 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, r0, 0x0) (fail_nth: 3)

10:33:32 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 70)

10:33:32 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0xfe59}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:33:32 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 60)
getresuid(0x0, 0x0, 0x0)

10:33:32 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0)
timer_delete(0x0)
timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_create(0x5, &(0x7f0000000240)={0x0, 0x37, 0x0, @tid=0xffffffffffffffff}, 0x0)
timer_gettime(0x0, &(0x7f0000000400))
timer_delete(r0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$MON_IOCQ_RING_SIZE(0xffffffffffffffff, 0x9205)
syz_usb_connect$hid(0x3, 0x3f, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x8, 0x1477, 0x1022, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x8, 0x0, 0x7f, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x1, 0x8, 0x1, {0x22, 0xdcf}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x3f, 0x7, 0x59}}, [{{0x9, 0x5, 0x2, 0x3, 0x8, 0x9, 0xfc, 0xa1}}]}}}]}}]}}, &(0x7f00000002c0)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x310, 0x2, 0xff, 0x0, 0x40, 0x8}, 0x1b, &(0x7f0000000280)={0x5, 0xf, 0x1b, 0x2, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x2, 0x0, 0x14, 0x4}, @ssp_cap={0xc, 0x10, 0xa, 0x5, 0x0, 0x6, 0xff0f, 0x9}]}})
capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1)
timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1}, &(0x7f0000000340))
fcntl$getown(r1, 0x9)
ioctl$EXT4_IOC_GETSTATE(r1, 0x40046629, &(0x7f0000000300))
clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:33:32 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 51)

[ 3019.119692] FAULT_INJECTION: forcing a failure.
[ 3019.119692] name failslab, interval 1, probability 0, space 0, times 0
[ 3019.121247] CPU: 1 PID: 36339 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3019.122163] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3019.123272] Call Trace:
[ 3019.123630]  dump_stack+0x107/0x167
[ 3019.124119]  should_fail.cold+0x5/0xa
[ 3019.124622]  ? xas_alloc+0x336/0x440
[ 3019.125138]  should_failslab+0x5/0x20
[ 3019.125667]  kmem_cache_alloc+0x5b/0x310
[ 3019.126209]  xas_alloc+0x336/0x440
[ 3019.126682]  xas_create+0x34a/0x10d0
[ 3019.127196]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3019.127894]  xas_store+0x8c/0x1c40
[ 3019.128396]  __xa_store+0x164/0x2d0
[ 3019.128877]  ? xa_delete_node+0x280/0x280
[ 3019.129441]  ? trace_hardirqs_on+0x5b/0x180
[ 3019.130018]  xa_store+0x31/0x50
[ 3019.130460]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3019.131102]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3019.131807]  ? alloc_fd+0x2e7/0x670
[ 3019.132307]  io_uring_setup+0x1fbb/0x2980
[ 3019.132863]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3019.133532]  ? wait_for_completion_io+0x270/0x270
[ 3019.134197]  do_syscall_64+0x33/0x40
[ 3019.134690]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3019.135509] RIP: 0033:0x7fb4a26afb19
[ 3019.136000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3019.138488] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3019.139545] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 3019.140486] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3019.141423] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3019.142392] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3019.143380] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3019.294259] FAULT_INJECTION: forcing a failure.
[ 3019.294259] name failslab, interval 1, probability 0, space 0, times 0
[ 3019.295797] CPU: 0 PID: 36344 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 3019.296731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3019.297861] Call Trace:
[ 3019.298217]  dump_stack+0x107/0x167
[ 3019.298703]  should_fail.cold+0x5/0xa
[ 3019.299221]  ? anon_vma_clone+0xdc/0x590
[ 3019.299768]  should_failslab+0x5/0x20
[ 3019.300273]  kmem_cache_alloc+0x5b/0x310
[ 3019.300817]  anon_vma_clone+0xdc/0x590
[ 3019.301336]  __split_vma+0x17c/0x4e0
[ 3019.301874]  __do_munmap+0xfae/0x1260
[ 3019.302379]  ? pud_huge+0xd0/0xd0
[ 3019.302842]  ? lock_release+0x680/0x680
[ 3019.303392]  mmap_region+0x7c8/0x1500
[ 3019.303907]  do_mmap+0xcdb/0x11e0
[ 3019.304372]  vm_mmap_pgoff+0x198/0x1f0
[ 3019.304900]  ? randomize_page+0xb0/0xb0
[ 3019.305441]  ksys_mmap_pgoff+0x41c/0x560
[ 3019.305981]  ? find_mergeable_anon_vma+0x250/0x250
[ 3019.306641]  do_syscall_64+0x33/0x40
[ 3019.307136]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3019.307829] RIP: 0033:0x7f19f3545b19
[ 3019.308319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3019.310782] RSP: 002b:00007f19f0abb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 3019.311846] RAX: ffffffffffffffda RBX: 00007f19f3658f60 RCX: 00007f19f3545b19
[ 3019.312784] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000000020000000
[ 3019.313722] RBP: 00007f19f0abb1d0 R08: 0000000000000003 R09: 0000000000000000
[ 3019.314692] R10: 000000000001f013 R11: 0000000000000246 R12: 0000000000000001
[ 3019.315687] R13: 00007fff4d583eff R14: 00007f19f0abb300 R15: 0000000000022000
[ 3019.343646] udc-core: couldn't find an available UDC or it's busy
[ 3019.344557] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[ 3019.387652] FAULT_INJECTION: forcing a failure.
[ 3019.387652] name failslab, interval 1, probability 0, space 0, times 0
[ 3019.389705] CPU: 0 PID: 36450 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3019.390618] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3019.391732] Call Trace:
[ 3019.392087]  dump_stack+0x107/0x167
[ 3019.392573]  should_fail.cold+0x5/0xa
[ 3019.393080]  ? anon_vma_clone+0xdc/0x590
[ 3019.393622]  should_failslab+0x5/0x20
[ 3019.394121]  kmem_cache_alloc+0x5b/0x310
[ 3019.394668]  anon_vma_clone+0xdc/0x590
[ 3019.395200]  anon_vma_fork+0x82/0x640
[ 3019.395778]  ? __vm_enough_memory+0x184/0x360
[ 3019.396378]  copy_process+0x72c9/0x78b0
[ 3019.396934]  ? __cleanup_sighand+0xb0/0xb0
[ 3019.397509]  ? _copy_from_user+0xfb/0x1b0
[ 3019.398076]  kernel_clone+0xe7/0x980
[ 3019.398571]  ? __lockdep_reset_lock+0x180/0x180
[ 3019.399202]  ? create_io_thread+0xf0/0xf0
[ 3019.399777]  ? ksys_write+0x21a/0x260
[ 3019.400282]  ? lock_downgrade+0x6d0/0x6d0
[ 3019.400864]  __do_sys_clone3+0x1e5/0x320
[ 3019.401398]  ? __do_sys_clone+0x110/0x110
[ 3019.402012]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3019.402625]  ? vfs_write+0x354/0xb10
[ 3019.403120]  ? fput_many+0x2f/0x1a0
[ 3019.403648]  ? ksys_write+0x1a9/0x260
[ 3019.404149]  ? __ia32_sys_read+0xb0/0xb0
[ 3019.404732]  do_syscall_64+0x33/0x40
[ 3019.405238]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3019.405913] RIP: 0033:0x7f862144ab19
[ 3019.406408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3019.408844] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3019.409848] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3019.410788] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3019.411742] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3019.412681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3019.413621] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 3019.452616] FAULT_INJECTION: forcing a failure.
[ 3019.452616] name failslab, interval 1, probability 0, space 0, times 0
[ 3019.454238] CPU: 0 PID: 36453 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3019.455191] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3019.456284] Call Trace:
[ 3019.457236]  dump_stack+0x107/0x167
[ 3019.458457]  should_fail.cold+0x5/0xa
[ 3019.459631]  ? create_object.isra.0+0x3a/0xa20
[ 3019.461020]  should_failslab+0x5/0x20
[ 3019.462164]  kmem_cache_alloc+0x5b/0x310
[ 3019.463510]  create_object.isra.0+0x3a/0xa20
[ 3019.464870]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3019.466477]  kmem_cache_alloc+0x159/0x310
[ 3019.467832]  xas_alloc+0x336/0x440
[ 3019.468909]  xas_create+0x34a/0x10d0
[ 3019.470083]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3019.471801]  xas_store+0x8c/0x1c40
[ 3019.472887]  __xa_store+0x164/0x2d0
[ 3019.473986]  ? xa_delete_node+0x280/0x280
[ 3019.475270]  ? trace_hardirqs_on+0x5b/0x180
[ 3019.476604]  xa_store+0x31/0x50
[ 3019.477631]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3019.479093]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3019.480996]  ? alloc_fd+0x2e7/0x670
[ 3019.482103]  io_uring_setup+0x1fbb/0x2980
[ 3019.483428]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3019.485007]  ? wait_for_completion_io+0x270/0x270
[ 3019.486496]  do_syscall_64+0x33/0x40
[ 3019.487712]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3019.489278] RIP: 0033:0x7fd22c24ab19
[ 3019.490411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3019.496943] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3019.499339] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3019.501541] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3019.503891] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3019.506108] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3019.508499] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:33:49 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 61)
getresuid(0x0, 0x0, 0x0)

10:33:49 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:33:49 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 52)

10:33:49 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x20000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:33:49 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:33:49 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 71)

10:33:49 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, r0, 0x0) (fail_nth: 4)

10:33:49 executing program 0:
mlock2(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 3036.357484] FAULT_INJECTION: forcing a failure.
[ 3036.357484] name failslab, interval 1, probability 0, space 0, times 0
[ 3036.358994] CPU: 0 PID: 36468 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3036.363779] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3036.364911] Call Trace:
[ 3036.365268]  dump_stack+0x107/0x167
[ 3036.365760]  should_fail.cold+0x5/0xa
[ 3036.366272]  ? create_object.isra.0+0x3a/0xa20
[ 3036.366889]  should_failslab+0x5/0x20
[ 3036.367404]  kmem_cache_alloc+0x5b/0x310
[ 3036.368035]  create_object.isra.0+0x3a/0xa20
[ 3036.368687]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3036.369460]  kmem_cache_alloc+0x159/0x310
[ 3036.370078]  anon_vma_clone+0xdc/0x590
[ 3036.370662]  anon_vma_fork+0x82/0x640
[ 3036.371221]  ? __vm_enough_memory+0x184/0x360
[ 3036.371851]  copy_process+0x72c9/0x78b0
[ 3036.372404]  ? __cleanup_sighand+0xb0/0xb0
[ 3036.372979]  ? _copy_from_user+0xfb/0x1b0
[ 3036.373530]  kernel_clone+0xe7/0x980
[ 3036.374033]  ? __lockdep_reset_lock+0x180/0x180
[ 3036.374648]  ? create_io_thread+0xf0/0xf0
[ 3036.375211]  ? ksys_write+0x21a/0x260
[ 3036.375733]  ? lock_downgrade+0x6d0/0x6d0
[ 3036.376286]  __do_sys_clone3+0x1e5/0x320
[ 3036.376822]  ? __do_sys_clone+0x110/0x110
[ 3036.377390]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3036.378002]  ? vfs_write+0x354/0xb10
[ 3036.378496]  ? fput_many+0x2f/0x1a0
[ 3036.378980]  ? ksys_write+0x1a9/0x260
[ 3036.379498]  ? __ia32_sys_read+0xb0/0xb0
[ 3036.380048]  do_syscall_64+0x33/0x40
[ 3036.380543]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3036.381217] RIP: 0033:0x7f862144ab19
[ 3036.381742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3036.384204] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3036.385203] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3036.386167] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3036.387106] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3036.392057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3036.392992] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:33:50 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 53)

[ 3036.420359] FAULT_INJECTION: forcing a failure.
[ 3036.420359] name failslab, interval 1, probability 0, space 0, times 0
[ 3036.421106] FAULT_INJECTION: forcing a failure.
[ 3036.421106] name failslab, interval 1, probability 0, space 0, times 0
[ 3036.421896] CPU: 1 PID: 36474 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 3036.424281] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3036.425383] Call Trace:
[ 3036.425742]  dump_stack+0x107/0x167
[ 3036.426229]  should_fail.cold+0x5/0xa
[ 3036.426740]  ? create_object.isra.0+0x3a/0xa20
[ 3036.427349]  should_failslab+0x5/0x20
[ 3036.427907]  kmem_cache_alloc+0x5b/0x310
[ 3036.428448]  create_object.isra.0+0x3a/0xa20
[ 3036.429072]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3036.429753]  kmem_cache_alloc+0x159/0x310
[ 3036.430313]  anon_vma_clone+0xdc/0x590
[ 3036.430839]  __split_vma+0x17c/0x4e0
[ 3036.431337]  __do_munmap+0xfae/0x1260
[ 3036.431892]  ? pud_huge+0xd0/0xd0
[ 3036.432354]  ? lock_release+0x680/0x680
[ 3036.432928]  mmap_region+0x7c8/0x1500
[ 3036.433447]  do_mmap+0xcdb/0x11e0
[ 3036.433917]  vm_mmap_pgoff+0x198/0x1f0
[ 3036.434439]  ? randomize_page+0xb0/0xb0
[ 3036.435017]  ksys_mmap_pgoff+0x41c/0x560
[ 3036.435573]  ? find_mergeable_anon_vma+0x250/0x250
[ 3036.436289]  do_syscall_64+0x33/0x40
[ 3036.436787]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3036.437475] RIP: 0033:0x7f19f3545b19
[ 3036.437973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3036.440485] RSP: 002b:00007f19f0abb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 3036.441497] RAX: ffffffffffffffda RBX: 00007f19f3658f60 RCX: 00007f19f3545b19
[ 3036.442442] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000000020000000
[ 3036.443422] RBP: 00007f19f0abb1d0 R08: 0000000000000003 R09: 0000000000000000
[ 3036.444419] R10: 000000000001f013 R11: 0000000000000246 R12: 0000000000000001
[ 3036.445364] R13: 00007fff4d583eff R14: 00007f19f0abb300 R15: 0000000000022000
[ 3036.446332] CPU: 0 PID: 36475 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3036.447276] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3036.448379] Call Trace:
[ 3036.448728]  dump_stack+0x107/0x167
[ 3036.449212]  should_fail.cold+0x5/0xa
[ 3036.449716]  ? create_object.isra.0+0x3a/0xa20
[ 3036.450320]  should_failslab+0x5/0x20
[ 3036.450856]  kmem_cache_alloc+0x5b/0x310
[ 3036.451394]  ? mark_held_locks+0x9e/0xe0
[ 3036.451948]  create_object.isra.0+0x3a/0xa20
[ 3036.452524]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3036.453196]  kmem_cache_alloc+0x159/0x310
[ 3036.453781]  xas_alloc+0x336/0x440
[ 3036.454253]  xas_create+0x34a/0x10d0
[ 3036.454765]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3036.455505]  xas_store+0x8c/0x1c40
[ 3036.455988]  __xa_store+0x164/0x2d0
[ 3036.456471]  ? xa_delete_node+0x280/0x280
[ 3036.457026]  ? trace_hardirqs_on+0x5b/0x180
[ 3036.457600]  xa_store+0x31/0x50
[ 3036.458073]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3036.458702]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3036.459491]  ? alloc_fd+0x2e7/0x670
[ 3036.459982]  io_uring_setup+0x1fbb/0x2980
[ 3036.460536]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3036.461199]  ? wait_for_completion_io+0x270/0x270
[ 3036.461892]  do_syscall_64+0x33/0x40
[ 3036.462380]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3036.463059] RIP: 0033:0x7fb4a26afb19
[ 3036.463565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3036.466047] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3036.467046] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 3036.467998] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3036.468963] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3036.469933] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3036.470874] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3036.496073] FAULT_INJECTION: forcing a failure.
[ 3036.496073] name failslab, interval 1, probability 0, space 0, times 0
[ 3036.497701] CPU: 1 PID: 36473 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3036.498609] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3036.499713] Call Trace:
[ 3036.500100]  dump_stack+0x107/0x167
[ 3036.500580]  should_fail.cold+0x5/0xa
[ 3036.501102]  ? ___slab_alloc+0x360/0x700
[ 3036.501642]  ? create_object.isra.0+0x3a/0xa20
[ 3036.502249]  should_failslab+0x5/0x20
10:33:50 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 3036.502753]  kmem_cache_alloc+0x5b/0x310
[ 3036.515786]  create_object.isra.0+0x3a/0xa20
[ 3036.516415]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3036.517089]  kmem_cache_alloc+0x159/0x310
[ 3036.517644]  xas_alloc+0x336/0x440
[ 3036.518123]  xas_create+0x34a/0x10d0
[ 3036.518629]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3036.519348]  xas_store+0x8c/0x1c40
[ 3036.519846]  __xa_store+0x164/0x2d0
[ 3036.520374]  ? xa_delete_node+0x280/0x280
[ 3036.520931]  ? trace_hardirqs_on+0x5b/0x180
[ 3036.521517]  xa_store+0x31/0x50
[ 3036.521958]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3036.522603]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3036.523293]  ? alloc_fd+0x2e7/0x670
[ 3036.535427]  io_uring_setup+0x1fbb/0x2980
[ 3036.535990]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3036.536659]  ? wait_for_completion_io+0x270/0x270
[ 3036.537324]  do_syscall_64+0x33/0x40
[ 3036.537828]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3036.538522] RIP: 0033:0x7fd22c24ab19
[ 3036.539053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3036.541503] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3036.542509] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3036.543507] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3036.544473] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3036.545407] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3036.546340] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:33:50 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 72)

10:33:50 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x200000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:33:50 executing program 0:
creat(&(0x7f0000000000)='./file0\x00', 0x100)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x1000008, 0xffffffffffffffff)

10:33:50 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:33:50 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 62)
getresuid(0x0, 0x0, 0x0)

10:33:50 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, r0, 0x0) (fail_nth: 5)

[ 3037.197329] FAULT_INJECTION: forcing a failure.
[ 3037.197329] name failslab, interval 1, probability 0, space 0, times 0
[ 3037.199277] CPU: 1 PID: 36685 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3037.208200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3037.209325] Call Trace:
[ 3037.209688]  dump_stack+0x107/0x167
[ 3037.210174]  should_fail.cold+0x5/0xa
[ 3037.210677]  ? down_write+0xe0/0x160
[ 3037.211177]  ? anon_vma_clone+0xdc/0x590
[ 3037.211733]  should_failslab+0x5/0x20
[ 3037.212272]  kmem_cache_alloc+0x5b/0x310
[ 3037.212813]  anon_vma_clone+0xdc/0x590
[ 3037.213372]  anon_vma_fork+0x82/0x640
[ 3037.213875]  ? __vm_enough_memory+0x184/0x360
[ 3037.214473]  copy_process+0x72c9/0x78b0
[ 3037.215031]  ? __cleanup_sighand+0xb0/0xb0
[ 3037.215627]  ? _copy_from_user+0xfb/0x1b0
[ 3037.216216]  kernel_clone+0xe7/0x980
[ 3037.216711]  ? __lockdep_reset_lock+0x180/0x180
[ 3037.217363]  ? create_io_thread+0xf0/0xf0
[ 3037.217929]  ? ksys_write+0x21a/0x260
[ 3037.218436]  ? lock_downgrade+0x6d0/0x6d0
[ 3037.218989]  __do_sys_clone3+0x1e5/0x320
[ 3037.219539]  ? __do_sys_clone+0x110/0x110
[ 3037.220115]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3037.220747]  ? vfs_write+0x354/0xb10
[ 3037.221266]  ? fput_many+0x2f/0x1a0
[ 3037.221772]  ? ksys_write+0x1a9/0x260
[ 3037.222277]  ? __ia32_sys_read+0xb0/0xb0
[ 3037.222830]  do_syscall_64+0x33/0x40
[ 3037.223325]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3037.224017] RIP: 0033:0x7f862144ab19
[ 3037.224536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3037.226997] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3037.228017] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3037.228977] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3037.229962] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3037.230902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3037.231855] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:33:50 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 54)

[ 3037.455997] FAULT_INJECTION: forcing a failure.
[ 3037.455997] name failslab, interval 1, probability 0, space 0, times 0
[ 3037.457542] CPU: 0 PID: 36694 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3037.458454] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3037.459569] Call Trace:
[ 3037.459948]  dump_stack+0x107/0x167
[ 3037.460429]  should_fail.cold+0x5/0xa
[ 3037.460976]  ? xas_alloc+0x336/0x440
[ 3037.461470]  should_failslab+0x5/0x20
[ 3037.461970]  kmem_cache_alloc+0x5b/0x310
[ 3037.462508]  xas_alloc+0x336/0x440
[ 3037.462979]  xas_create+0x34a/0x10d0
[ 3037.463505]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3037.464240]  xas_store+0x8c/0x1c40
[ 3037.464753]  __xa_store+0x164/0x2d0
[ 3037.465252]  ? xa_delete_node+0x280/0x280
[ 3037.465806]  ? trace_hardirqs_on+0x5b/0x180
[ 3037.466380]  xa_store+0x31/0x50
[ 3037.466819]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3037.467472]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3037.468198]  ? alloc_fd+0x2e7/0x670
[ 3037.468704]  io_uring_setup+0x1fbb/0x2980
[ 3037.469282]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3037.469946]  ? wait_for_completion_io+0x270/0x270
[ 3037.470604]  do_syscall_64+0x33/0x40
[ 3037.471094]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3037.471820] RIP: 0033:0x7fb4a26afb19
[ 3037.472308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3037.474748] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3037.475797] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 3037.476752] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3037.477706] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3037.478639] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3037.479604] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3037.621222] FAULT_INJECTION: forcing a failure.
[ 3037.621222] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3037.622806] CPU: 0 PID: 36696 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 3037.628097] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3037.629180] Call Trace:
[ 3037.629533]  dump_stack+0x107/0x167
[ 3037.630016]  should_fail.cold+0x5/0xa
[ 3037.630524]  __alloc_pages_nodemask+0x182/0x600
[ 3037.631139]  ? mark_held_locks+0x9e/0xe0
[ 3037.631686]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 3037.632482]  ? kmem_cache_free+0xa7/0x2d0
[ 3037.633033]  alloc_pages_current+0x187/0x280
[ 3037.633616]  __get_free_pages+0xc/0xa0
[ 3037.634128]  ? kmem_cache_free+0x249/0x2d0
[ 3037.634681]  tlb_remove_table+0x3ca/0xcb0
[ 3037.635234]  ___pte_free_tlb+0x86/0xb0
[ 3037.635766]  free_pgd_range+0x747/0x1380
[ 3037.636327]  free_pgtables+0x230/0x2f0
[ 3037.636844]  unmap_region+0x308/0x400
[ 3037.637347]  ? find_vma+0x180/0x180
[ 3037.637838]  ? __vma_rb_erase+0x775/0xfa0
[ 3037.638392]  __do_munmap+0x891/0x1260
[ 3037.638905]  mmap_region+0x7c8/0x1500
[ 3037.639427]  do_mmap+0xcdb/0x11e0
[ 3037.639896]  vm_mmap_pgoff+0x198/0x1f0
[ 3037.640412]  ? randomize_page+0xb0/0xb0
[ 3037.640948]  ksys_mmap_pgoff+0x41c/0x560
[ 3037.641483]  ? find_mergeable_anon_vma+0x250/0x250
[ 3037.642143]  do_syscall_64+0x33/0x40
[ 3037.642634]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3037.643305] RIP: 0033:0x7f19f3545b19
[ 3037.643809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3037.646209] RSP: 002b:00007f19f0abb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 3037.647238] RAX: ffffffffffffffda RBX: 00007f19f3658f60 RCX: 00007f19f3545b19
[ 3037.648186] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000000020000000
[ 3037.649120] RBP: 00007f19f0abb1d0 R08: 0000000000000003 R09: 0000000000000000
[ 3037.650047] R10: 000000000001f013 R11: 0000000000000246 R12: 0000000000000001
[ 3037.650975] R13: 00007fff4d583eff R14: 00007f19f0abb300 R15: 0000000000022000
[ 3037.773487] FAULT_INJECTION: forcing a failure.
[ 3037.773487] name failslab, interval 1, probability 0, space 0, times 0
[ 3037.774992] CPU: 0 PID: 36801 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3037.775917] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3037.777007] Call Trace:
[ 3037.777363]  dump_stack+0x107/0x167
[ 3037.777847]  should_fail.cold+0x5/0xa
[ 3037.778354]  ? xas_alloc+0x336/0x440
[ 3037.778851]  should_failslab+0x5/0x20
[ 3037.779355]  kmem_cache_alloc+0x5b/0x310
[ 3037.791941]  xas_alloc+0x336/0x440
[ 3037.792409]  xas_create+0x34a/0x10d0
[ 3037.792905]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3037.793634]  xas_store+0x8c/0x1c40
[ 3037.794113]  __xa_store+0x164/0x2d0
[ 3037.794591]  ? xa_delete_node+0x280/0x280
[ 3037.795141]  ? trace_hardirqs_on+0x5b/0x180
[ 3037.795750]  xa_store+0x31/0x50
[ 3037.796162]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3037.796760]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3037.797432]  ? alloc_fd+0x2e7/0x670
[ 3037.797914]  io_uring_setup+0x1fbb/0x2980
[ 3037.798444]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3037.799080]  ? wait_for_completion_io+0x270/0x270
[ 3037.799751]  do_syscall_64+0x33/0x40
[ 3037.800257]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3037.800944] RIP: 0033:0x7fd22c24ab19
[ 3037.801451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3037.803930] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3037.804953] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3037.805906] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3037.806881] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3037.807848] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3037.808797] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3038.022981] FAULT_INJECTION: forcing a failure.
[ 3038.022981] name failslab, interval 1, probability 0, space 0, times 0
[ 3038.024515] CPU: 0 PID: 36905 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3038.025424] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3038.026509] Call Trace:
[ 3038.026892]  dump_stack+0x107/0x167
[ 3038.027372]  should_fail.cold+0x5/0xa
[ 3038.027892]  ? create_object.isra.0+0x3a/0xa20
[ 3038.028494]  should_failslab+0x5/0x20
[ 3038.028998]  kmem_cache_alloc+0x5b/0x310
[ 3038.029537]  create_object.isra.0+0x3a/0xa20
[ 3038.030111]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3038.030803]  kmem_cache_alloc+0x159/0x310
[ 3038.031377]  anon_vma_clone+0xdc/0x590
[ 3038.031916]  anon_vma_fork+0x82/0x640
[ 3038.032419]  ? __vm_enough_memory+0x184/0x360
[ 3038.033017]  copy_process+0x72c9/0x78b0
[ 3038.033573]  ? __cleanup_sighand+0xb0/0xb0
[ 3038.034152]  ? _copy_from_user+0xfb/0x1b0
[ 3038.034708]  kernel_clone+0xe7/0x980
[ 3038.035207]  ? __lockdep_reset_lock+0x180/0x180
[ 3038.035839]  ? create_io_thread+0xf0/0xf0
[ 3038.036401]  ? ksys_write+0x21a/0x260
[ 3038.036906]  ? lock_downgrade+0x6d0/0x6d0
[ 3038.037454]  __do_sys_clone3+0x1e5/0x320
[ 3038.037985]  ? __do_sys_clone+0x110/0x110
[ 3038.038548]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3038.039155]  ? vfs_write+0x354/0xb10
[ 3038.039662]  ? fput_many+0x2f/0x1a0
[ 3038.040191]  ? ksys_write+0x1a9/0x260
[ 3038.040695]  ? __ia32_sys_read+0xb0/0xb0
[ 3038.041245]  do_syscall_64+0x33/0x40
[ 3038.041738]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3038.042413] RIP: 0033:0x7f862144ab19
[ 3038.042932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3038.045392] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3038.046394] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3038.047355] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3038.048375] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3038.049311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3038.050247] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:34:08 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:34:08 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, r0, 0x0) (fail_nth: 6)

10:34:08 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 55)

10:34:08 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 73)

10:34:08 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0xf0ff1f}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:34:08 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
madvise(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x12)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
r0 = pkey_alloc(0x0, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0)
pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0)
pkey_mprotect(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x8, r0)
mlock2(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1)
pkey_mprotect(&(0x7f0000ff6000/0x2000)=nil, 0x2000, 0x3000002, r0)
pkey_mprotect(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x0, r0)

10:34:08 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 63)
getresuid(0x0, 0x0, 0x0)

10:34:08 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:34:08 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 3055.277912] FAULT_INJECTION: forcing a failure.
[ 3055.277912] name failslab, interval 1, probability 0, space 0, times 0
[ 3055.279659] CPU: 0 PID: 36917 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 3055.280613] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3055.281677] FAULT_INJECTION: forcing a failure.
[ 3055.281677] name failslab, interval 1, probability 0, space 0, times 0
[ 3055.281730] Call Trace:
[ 3055.281757]  dump_stack+0x107/0x167
[ 3055.284135]  should_fail.cold+0x5/0xa
[ 3055.284688]  ? vm_area_alloc+0x1c/0x110
[ 3055.285280]  should_failslab+0x5/0x20
[ 3055.285831]  kmem_cache_alloc+0x5b/0x310
[ 3055.286447]  vm_area_alloc+0x1c/0x110
[ 3055.287024]  mmap_region+0x97e/0x1500
[ 3055.287611]  do_mmap+0xcdb/0x11e0
[ 3055.288082]  vm_mmap_pgoff+0x198/0x1f0
[ 3055.288602]  ? randomize_page+0xb0/0xb0
[ 3055.289142]  ksys_mmap_pgoff+0x41c/0x560
[ 3055.289681]  ? find_mergeable_anon_vma+0x250/0x250
[ 3055.290342]  do_syscall_64+0x33/0x40
[ 3055.290836]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3055.291514] RIP: 0033:0x7f19f3545b19
[ 3055.292057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3055.294901] RSP: 002b:00007f19f0abb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 3055.296653] RAX: ffffffffffffffda RBX: 00007f19f3658f60 RCX: 00007f19f3545b19
[ 3055.298488] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000000020000000
[ 3055.300436] RBP: 00007f19f0abb1d0 R08: 0000000000000003 R09: 0000000000000000
[ 3055.302287] R10: 000000000001f013 R11: 0000000000000246 R12: 0000000000000001
[ 3055.304217] R13: 00007fff4d583eff R14: 00007f19f0abb300 R15: 0000000000022000
[ 3055.306072] CPU: 1 PID: 36918 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3055.307159] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3055.308442] Call Trace:
[ 3055.308846]  dump_stack+0x107/0x167
[ 3055.309398]  should_fail.cold+0x5/0xa
[ 3055.309973]  ? ___slab_alloc+0x155/0x700
[ 3055.310593]  ? create_object.isra.0+0x3a/0xa20
[ 3055.311300]  should_failslab+0x5/0x20
[ 3055.311885]  kmem_cache_alloc+0x5b/0x310
[ 3055.312427]  create_object.isra.0+0x3a/0xa20
[ 3055.313004]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3055.313696]  kmem_cache_alloc+0x159/0x310
[ 3055.314247]  xas_alloc+0x336/0x440
[ 3055.314765]  xas_create+0x34a/0x10d0
[ 3055.315274]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3055.316019]  xas_store+0x8c/0x1c40
[ 3055.316571]  __xa_store+0x164/0x2d0
[ 3055.317128]  ? xa_delete_node+0x280/0x280
[ 3055.317820]  ? trace_hardirqs_on+0x5b/0x180
[ 3055.318529]  xa_store+0x31/0x50
[ 3055.319033]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3055.319790]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3055.320636]  ? alloc_fd+0x2e7/0x670
[ 3055.321216]  io_uring_setup+0x1fbb/0x2980
[ 3055.321871]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3055.322671]  ? wait_for_completion_io+0x270/0x270
[ 3055.323460]  do_syscall_64+0x33/0x40
[ 3055.324020]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3055.324854] RIP: 0033:0x7fb4a26afb19
[ 3055.325421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3055.328208] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3055.329390] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 3055.330555] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3055.331675] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3055.332613] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3055.333547] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3055.385349] FAULT_INJECTION: forcing a failure.
[ 3055.385349] name failslab, interval 1, probability 0, space 0, times 0
[ 3055.386860] CPU: 0 PID: 36925 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3055.391822] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3055.392909] Call Trace:
[ 3055.393267]  dump_stack+0x107/0x167
[ 3055.393753]  should_fail.cold+0x5/0xa
[ 3055.394256]  ? create_object.isra.0+0x3a/0xa20
[ 3055.394871]  should_failslab+0x5/0x20
[ 3055.395374]  kmem_cache_alloc+0x5b/0x310
[ 3055.396459]  create_object.isra.0+0x3a/0xa20
[ 3055.397799]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3055.399307]  kmem_cache_alloc+0x159/0x310
[ 3055.400714]  anon_vma_clone+0xdc/0x590
[ 3055.401896]  anon_vma_fork+0x82/0x640
[ 3055.403066]  ? __vm_enough_memory+0x184/0x360
[ 3055.404561]  copy_process+0x72c9/0x78b0
[ 3055.405789]  ? __cleanup_sighand+0xb0/0xb0
[ 3055.407094]  ? _copy_from_user+0xfb/0x1b0
[ 3055.408490]  kernel_clone+0xe7/0x980
[ 3055.409614]  ? __lockdep_reset_lock+0x180/0x180
[ 3055.411014]  ? create_io_thread+0xf0/0xf0
[ 3055.411932]  ? ksys_write+0x21a/0x260
[ 3055.412431]  ? lock_downgrade+0x6d0/0x6d0
[ 3055.413028]  __do_sys_clone3+0x1e5/0x320
[ 3055.413563]  ? __do_sys_clone+0x110/0x110
[ 3055.414130]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3055.414739]  ? vfs_write+0x354/0xb10
[ 3055.415233]  ? fput_many+0x2f/0x1a0
[ 3055.415906]  ? ksys_write+0x1a9/0x260
[ 3055.417051]  ? __ia32_sys_read+0xb0/0xb0
[ 3055.418284]  do_syscall_64+0x33/0x40
[ 3055.419406]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3055.424230] RIP: 0033:0x7f862144ab19
[ 3055.425326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3055.431454] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3055.434132] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3055.436388] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3055.438581] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3055.440973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3055.443098] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:34:09 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
r0 = pkey_alloc(0x0, 0x2)
pkey_mprotect(&(0x7f0000ff2000/0x2000)=nil, 0x2000, 0x3000007, r0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000002, r0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:34:09 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 74)

[ 3055.454155] FAULT_INJECTION: forcing a failure.
[ 3055.454155] name failslab, interval 1, probability 0, space 0, times 0
[ 3055.455900] CPU: 1 PID: 36955 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3055.456970] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3055.458248] Call Trace:
[ 3055.458659]  dump_stack+0x107/0x167
[ 3055.459224]  should_fail.cold+0x5/0xa
[ 3055.459857]  ? create_object.isra.0+0x3a/0xa20
[ 3055.460569]  should_failslab+0x5/0x20
[ 3055.461161]  kmem_cache_alloc+0x5b/0x310
[ 3055.461787]  ? mark_held_locks+0x9e/0xe0
[ 3055.462420]  create_object.isra.0+0x3a/0xa20
[ 3055.463098]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3055.463852]  kmem_cache_alloc+0x159/0x310
[ 3055.464407]  xas_alloc+0x336/0x440
[ 3055.464882]  xas_create+0x34a/0x10d0
[ 3055.465384]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3055.466087]  xas_store+0x8c/0x1c40
[ 3055.466570]  __xa_store+0x164/0x2d0
[ 3055.467055]  ? xa_delete_node+0x280/0x280
[ 3055.467624]  ? trace_hardirqs_on+0x5b/0x180
[ 3055.468271]  xa_store+0x31/0x50
[ 3055.468776]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3055.469500]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3055.470290]  ? alloc_fd+0x2e7/0x670
[ 3055.470898]  io_uring_setup+0x1fbb/0x2980
[ 3055.471541]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3055.472309]  ? wait_for_completion_io+0x270/0x270
[ 3055.473099]  do_syscall_64+0x33/0x40
[ 3055.473690]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3055.474508] RIP: 0033:0x7fd22c24ab19
[ 3055.475110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3055.477879] RSP: 002b:00007fd22979f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3055.479132] RAX: ffffffffffffffda RBX: 00007fd22c35e020 RCX: 00007fd22c24ab19
[ 3055.480237] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3055.481365] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3055.482479] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3055.483665] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:34:09 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, r0, 0x0) (fail_nth: 7)

10:34:09 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 56)

10:34:09 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 64)
getresuid(0x0, 0x0, 0x0)

10:34:09 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x1000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:34:09 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:34:09 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ff6000/0x1000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 3055.870517] FAULT_INJECTION: forcing a failure.
[ 3055.870517] name failslab, interval 1, probability 0, space 0, times 0
[ 3055.870892] FAULT_INJECTION: forcing a failure.
[ 3055.870892] name failslab, interval 1, probability 0, space 0, times 0
[ 3055.873718] CPU: 1 PID: 37138 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3055.876984] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3055.878053] Call Trace:
[ 3055.878404]  dump_stack+0x107/0x167
[ 3055.878879]  should_fail.cold+0x5/0xa
[ 3055.879406]  ? xas_alloc+0x336/0x440
[ 3055.879908]  should_failslab+0x5/0x20
[ 3055.880423]  kmem_cache_alloc+0x5b/0x310
[ 3055.880980]  xas_alloc+0x336/0x440
[ 3055.881448]  xas_create+0x34a/0x10d0
[ 3055.881946]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3055.882649]  xas_store+0x8c/0x1c40
[ 3055.883125]  __xa_store+0x164/0x2d0
[ 3055.883615]  ? xa_delete_node+0x280/0x280
[ 3055.884166]  ? trace_hardirqs_on+0x5b/0x180
[ 3055.884733]  xa_store+0x31/0x50
[ 3055.885169]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3055.885794]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3055.886472]  ? alloc_fd+0x2e7/0x670
[ 3055.886961]  io_uring_setup+0x1fbb/0x2980
[ 3055.887512]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3055.888181]  ? wait_for_completion_io+0x270/0x270
[ 3055.888841]  do_syscall_64+0x33/0x40
[ 3055.889328]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3055.889989] RIP: 0033:0x7fb4a26afb19
[ 3055.890475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3055.892865] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3055.893838] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 3055.894756] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3055.895688] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3055.896608] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3055.897526] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3055.898502] CPU: 0 PID: 37137 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 3055.899418] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3055.900542] Call Trace:
[ 3055.900906]  dump_stack+0x107/0x167
[ 3055.901389]  should_fail.cold+0x5/0xa
[ 3055.901895]  ? create_object.isra.0+0x3a/0xa20
[ 3055.902500]  should_failslab+0x5/0x20
[ 3055.903001]  kmem_cache_alloc+0x5b/0x310
[ 3055.903541]  create_object.isra.0+0x3a/0xa20
[ 3055.904129]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3055.904800]  kmem_cache_alloc+0x159/0x310
[ 3055.905361]  vm_area_alloc+0x1c/0x110
[ 3055.905874]  mmap_region+0x97e/0x1500
[ 3055.906385]  do_mmap+0xcdb/0x11e0
[ 3055.906848]  vm_mmap_pgoff+0x198/0x1f0
[ 3055.907361]  ? randomize_page+0xb0/0xb0
[ 3055.907907]  ksys_mmap_pgoff+0x41c/0x560
[ 3055.908458]  ? find_mergeable_anon_vma+0x250/0x250
[ 3055.909142]  do_syscall_64+0x33/0x40
[ 3055.909634]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3055.910307] RIP: 0033:0x7f19f3545b19
[ 3055.910800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3055.913216] RSP: 002b:00007f19f0abb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 3055.914222] RAX: ffffffffffffffda RBX: 00007f19f3658f60 RCX: 00007f19f3545b19
[ 3055.915157] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000000020000000
[ 3055.916129] RBP: 00007f19f0abb1d0 R08: 0000000000000003 R09: 0000000000000000
[ 3055.917106] R10: 000000000001f013 R11: 0000000000000246 R12: 0000000000000001
[ 3055.918039] R13: 00007fff4d583eff R14: 00007f19f0abb300 R15: 0000000000022000
[ 3055.955871] FAULT_INJECTION: forcing a failure.
[ 3055.955871] name failslab, interval 1, probability 0, space 0, times 0
[ 3055.964215] CPU: 0 PID: 37144 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3055.972058] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3055.973139] Call Trace:
[ 3055.973491]  dump_stack+0x107/0x167
[ 3055.973969]  should_fail.cold+0x5/0xa
[ 3055.974470]  ? create_object.isra.0+0x3a/0xa20
[ 3055.975079]  should_failslab+0x5/0x20
[ 3055.975580]  kmem_cache_alloc+0x5b/0x310
[ 3055.976134]  create_object.isra.0+0x3a/0xa20
[ 3055.976739]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3055.977405]  kmem_cache_alloc+0x159/0x310
[ 3055.978006]  anon_vma_clone+0xdc/0x590
[ 3055.978532]  anon_vma_fork+0x82/0x640
[ 3055.979027]  ? __vm_enough_memory+0x184/0x360
[ 3055.979631]  copy_process+0x72c9/0x78b0
[ 3055.980191]  ? __cleanup_sighand+0xb0/0xb0
[ 3055.980766]  ? _copy_from_user+0xfb/0x1b0
[ 3055.981320]  kernel_clone+0xe7/0x980
[ 3055.981840]  ? __lockdep_reset_lock+0x180/0x180
[ 3055.982448]  ? create_io_thread+0xf0/0xf0
[ 3055.983053]  ? ksys_write+0x21a/0x260
[ 3055.983556]  ? lock_downgrade+0x6d0/0x6d0
[ 3055.984122]  __do_sys_clone3+0x1e5/0x320
[ 3055.984658]  ? __do_sys_clone+0x110/0x110
[ 3055.985221]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3055.985835]  ? vfs_write+0x354/0xb10
[ 3055.986328]  ? fput_many+0x2f/0x1a0
[ 3055.986817]  ? ksys_write+0x1a9/0x260
[ 3055.987325]  ? __ia32_sys_read+0xb0/0xb0
[ 3055.987909]  do_syscall_64+0x33/0x40
[ 3055.988398]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3055.989115] RIP: 0033:0x7f862144ab19
[ 3055.989635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3055.992090] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3055.993086] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3055.994046] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3055.995020] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3055.995989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3055.996960] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 3056.112680] FAULT_INJECTION: forcing a failure.
[ 3056.112680] name failslab, interval 1, probability 0, space 0, times 0
[ 3056.114352] CPU: 1 PID: 37146 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3056.115268] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3056.116410] Call Trace:
[ 3056.116797]  dump_stack+0x107/0x167
[ 3056.117310]  should_fail.cold+0x5/0xa
[ 3056.117814]  ? xas_alloc+0x336/0x440
[ 3056.118321]  should_failslab+0x5/0x20
[ 3056.118829]  kmem_cache_alloc+0x5b/0x310
[ 3056.119369]  xas_alloc+0x336/0x440
[ 3056.119849]  xas_create+0x34a/0x10d0
[ 3056.120358]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3056.121038]  xas_store+0x8c/0x1c40
[ 3056.121517]  __xa_store+0x164/0x2d0
[ 3056.122021]  ? xa_delete_node+0x280/0x280
[ 3056.122569]  ? trace_hardirqs_on+0x5b/0x180
[ 3056.123183]  xa_store+0x31/0x50
[ 3056.123630]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3056.124265]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3056.124944]  ? alloc_fd+0x2e7/0x670
[ 3056.125433]  io_uring_setup+0x1fbb/0x2980
[ 3056.125982]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3056.126637]  ? wait_for_completion_io+0x270/0x270
[ 3056.127289]  do_syscall_64+0x33/0x40
[ 3056.127792]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3056.128459] RIP: 0033:0x7fd22c24ab19
[ 3056.128942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3056.131510] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3056.132505] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3056.133420] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3056.134370] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3056.135284] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3056.136251] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:34:26 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, r0, 0x0) (fail_nth: 8)

10:34:26 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:34:26 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
madvise(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0xd)
r0 = syz_io_uring_setup(0x4d53, &(0x7f00000002c0), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x23456}, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index}, 0x8001)
clock_gettime(0x0, &(0x7f0000000000)={<r4=>0x0, <r5=>0x0})
syz_io_uring_submit(r3, 0x0, &(0x7f0000000080)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000040)={r4, r5+10000000}, 0x1, 0x1}, 0x7)

10:34:26 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 65)
getresuid(0x0, 0x0, 0x0)

10:34:26 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 57)

10:34:26 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:34:26 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x2000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:34:26 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 75)

[ 3073.195152] FAULT_INJECTION: forcing a failure.
[ 3073.195152] name failslab, interval 1, probability 0, space 0, times 0
[ 3073.196873] CPU: 1 PID: 37268 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3073.197902] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3073.199065] Call Trace:
[ 3073.199489]  dump_stack+0x107/0x167
[ 3073.200073]  should_fail.cold+0x5/0xa
[ 3073.200676]  ? create_object.isra.0+0x3a/0xa20
[ 3073.201393]  should_failslab+0x5/0x20
[ 3073.201895]  kmem_cache_alloc+0x5b/0x310
[ 3073.202582]  ? mark_held_locks+0x9e/0xe0
[ 3073.203225]  create_object.isra.0+0x3a/0xa20
[ 3073.203823]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3073.204575]  kmem_cache_alloc+0x159/0x310
[ 3073.205207]  xas_alloc+0x336/0x440
[ 3073.205761]  xas_create+0x34a/0x10d0
[ 3073.206398]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3073.207213]  xas_store+0x8c/0x1c40
[ 3073.207772]  __xa_store+0x164/0x2d0
[ 3073.208348]  ? xa_delete_node+0x280/0x280
[ 3073.208915]  ? trace_hardirqs_on+0x5b/0x180
[ 3073.209520]  xa_store+0x31/0x50
[ 3073.209972]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3073.210664]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3073.211391]  ? alloc_fd+0x2e7/0x670
[ 3073.211891]  io_uring_setup+0x1fbb/0x2980
[ 3073.212495]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3073.213225]  ? wait_for_completion_io+0x270/0x270
[ 3073.213892]  do_syscall_64+0x33/0x40
[ 3073.214400]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3073.215111] RIP: 0033:0x7fb4a26afb19
[ 3073.215605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3073.218232] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3073.219271] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 3073.220281] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3073.221290] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3073.222266] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3073.223234] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3073.226555] FAULT_INJECTION: forcing a failure.
[ 3073.226555] name failslab, interval 1, probability 0, space 0, times 0
[ 3073.228174] CPU: 1 PID: 37271 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 3073.229138] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3073.230306] Call Trace:
[ 3073.230691]  dump_stack+0x107/0x167
[ 3073.231210]  should_fail.cold+0x5/0xa
[ 3073.231715]  ? perf_event_mmap+0x51a/0xd90
[ 3073.232336]  should_failslab+0x5/0x20
[ 3073.232839]  kmem_cache_alloc_trace+0x55/0x320
[ 3073.233515]  perf_event_mmap+0x51a/0xd90
[ 3073.234098]  ? perf_event_namespaces+0x50/0x50
[ 3073.234718]  ? vma_link+0x619/0x820
[ 3073.235241]  mmap_region+0x3a2/0x1500
[ 3073.235752]  do_mmap+0xcdb/0x11e0
[ 3073.236268]  vm_mmap_pgoff+0x198/0x1f0
[ 3073.236781]  ? randomize_page+0xb0/0xb0
[ 3073.237427]  ksys_mmap_pgoff+0x41c/0x560
[ 3073.237984]  ? find_mergeable_anon_vma+0x250/0x250
[ 3073.238665]  do_syscall_64+0x33/0x40
[ 3073.239226]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3073.239920] RIP: 0033:0x7f19f3545b19
[ 3073.240422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3073.242938] RSP: 002b:00007f19f0abb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 3073.243996] RAX: ffffffffffffffda RBX: 00007f19f3658f60 RCX: 00007f19f3545b19
[ 3073.244949] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000000020000000
[ 3073.245895] RBP: 00007f19f0abb1d0 R08: 0000000000000003 R09: 0000000000000000
[ 3073.246839] R10: 000000000001f013 R11: 0000000000000246 R12: 0000000000000001
[ 3073.247783] R13: 00007fff4d583eff R14: 00007f19f0abb300 R15: 0000000000022000
10:34:26 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 3073.305374] FAULT_INJECTION: forcing a failure.
[ 3073.305374] name failslab, interval 1, probability 0, space 0, times 0
[ 3073.308016] CPU: 0 PID: 37276 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3073.308922] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3073.310008] Call Trace:
10:34:26 executing program 0:
mlock2(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)
r0 = pkey_alloc(0x0, 0x1)
munlock(&(0x7f0000ff0000/0x1000)=nil, 0x1000)
pkey_mprotect(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x3000006, r0)

[ 3073.310365]  dump_stack+0x107/0x167
[ 3073.316060]  should_fail.cold+0x5/0xa
[ 3073.316569]  ? create_object.isra.0+0x3a/0xa20
[ 3073.317187]  should_failslab+0x5/0x20
[ 3073.317701]  kmem_cache_alloc+0x5b/0x310
[ 3073.318236]  ? mark_held_locks+0x9e/0xe0
[ 3073.318772]  create_object.isra.0+0x3a/0xa20
[ 3073.319388]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3073.324089]  kmem_cache_alloc+0x159/0x310
[ 3073.324646]  xas_alloc+0x336/0x440
[ 3073.325120]  xas_create+0x34a/0x10d0
[ 3073.325622]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3073.326315]  xas_store+0x8c/0x1c40
[ 3073.326798]  __xa_store+0x164/0x2d0
[ 3073.327282]  ? xa_delete_node+0x280/0x280
[ 3073.327845]  ? trace_hardirqs_on+0x5b/0x180
[ 3073.328426]  xa_store+0x31/0x50
[ 3073.328867]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3073.329503]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3073.330192]  ? alloc_fd+0x2e7/0x670
[ 3073.330684]  io_uring_setup+0x1fbb/0x2980
[ 3073.331235]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3073.331913]  ? wait_for_completion_io+0x270/0x270
[ 3073.332572]  do_syscall_64+0x33/0x40
[ 3073.333064]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3073.333742] RIP: 0033:0x7fd22c24ab19
[ 3073.334240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3073.336679] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3073.337688] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3073.338631] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3073.339573] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3073.340527] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3073.341472] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:34:27 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, r0, 0x0) (fail_nth: 9)

[ 3073.402419] FAULT_INJECTION: forcing a failure.
[ 3073.402419] name failslab, interval 1, probability 0, space 0, times 0
[ 3073.406059] CPU: 0 PID: 37327 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3073.408153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3073.410926] Call Trace:
[ 3073.411789]  dump_stack+0x107/0x167
[ 3073.412978]  should_fail.cold+0x5/0xa
[ 3073.414238]  ? anon_vma_fork+0xf1/0x640
[ 3073.415428]  should_failslab+0x5/0x20
[ 3073.416621]  kmem_cache_alloc+0x5b/0x310
[ 3073.417843]  anon_vma_fork+0xf1/0x640
[ 3073.418996]  ? __vm_enough_memory+0x184/0x360
[ 3073.420347]  copy_process+0x72c9/0x78b0
[ 3073.421591]  ? __cleanup_sighand+0xb0/0xb0
[ 3073.422874]  ? _copy_from_user+0xfb/0x1b0
[ 3073.424155]  kernel_clone+0xe7/0x980
[ 3073.425290]  ? __lockdep_reset_lock+0x180/0x180
[ 3073.426748]  ? create_io_thread+0xf0/0xf0
[ 3073.428014]  ? ksys_write+0x21a/0x260
[ 3073.436190]  ? lock_downgrade+0x6d0/0x6d0
[ 3073.436747]  __do_sys_clone3+0x1e5/0x320
[ 3073.437283]  ? __do_sys_clone+0x110/0x110
[ 3073.437849]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3073.438457]  ? vfs_write+0x354/0xb10
[ 3073.438958]  ? fput_many+0x2f/0x1a0
[ 3073.439441]  ? ksys_write+0x1a9/0x260
[ 3073.443968]  ? __ia32_sys_read+0xb0/0xb0
[ 3073.444519]  do_syscall_64+0x33/0x40
[ 3073.445007]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3073.445675] RIP: 0033:0x7f862144ab19
[ 3073.446149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3073.448569] RSP: 002b:00007f861e99f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3073.449571] RAX: ffffffffffffffda RBX: 00007f862155e020 RCX: 00007f862144ab19
[ 3073.450505] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3073.451439] RBP: 00007f861e99f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3073.452396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3073.453333] R13: 00007ffc637b687f R14: 00007f861e99f300 R15: 0000000000022000
[ 3074.216193] FAULT_INJECTION: forcing a failure.
[ 3074.216193] name failslab, interval 1, probability 0, space 0, times 0
[ 3074.217698] CPU: 1 PID: 37488 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 3074.218621] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3074.219718] Call Trace:
[ 3074.220127]  dump_stack+0x107/0x167
[ 3074.220618]  should_fail.cold+0x5/0xa
[ 3074.221130]  ? create_object.isra.0+0x3a/0xa20
[ 3074.221760]  should_failslab+0x5/0x20
[ 3074.222288]  kmem_cache_alloc+0x5b/0x310
[ 3074.222834]  create_object.isra.0+0x3a/0xa20
[ 3074.223416]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3074.224108]  kmem_cache_alloc_trace+0x151/0x320
[ 3074.224734]  perf_event_mmap+0x51a/0xd90
[ 3074.225308]  ? perf_event_namespaces+0x50/0x50
[ 3074.225923]  ? vma_link+0x619/0x820
[ 3074.226413]  mmap_region+0x3a2/0x1500
[ 3074.226932]  do_mmap+0xcdb/0x11e0
[ 3074.227439]  vm_mmap_pgoff+0x198/0x1f0
[ 3074.227977]  ? randomize_page+0xb0/0xb0
[ 3074.228519]  ksys_mmap_pgoff+0x41c/0x560
[ 3074.229062]  ? find_mergeable_anon_vma+0x250/0x250
[ 3074.229725]  do_syscall_64+0x33/0x40
[ 3074.235965]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3074.236641] RIP: 0033:0x7f19f3545b19
[ 3074.237134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3074.239566] RSP: 002b:00007f19f0abb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 3074.264489] RAX: ffffffffffffffda RBX: 00007f19f3658f60 RCX: 00007f19f3545b19
[ 3074.265439] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000000020000000
[ 3074.266382] RBP: 00007f19f0abb1d0 R08: 0000000000000003 R09: 0000000000000000
[ 3074.267327] R10: 000000000001f013 R11: 0000000000000246 R12: 0000000000000001
[ 3074.276255] R13: 00007fff4d583eff R14: 00007f19f0abb300 R15: 0000000000022000
10:34:44 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 76)

10:34:44 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, r0, 0x0) (fail_nth: 10)

10:34:44 executing program 4:
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:34:44 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 66)
getresuid(0x0, 0x0, 0x0)

10:34:44 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x8000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:34:44 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:34:44 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 58)

10:34:44 executing program 0:
mlock2(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff)

[ 3091.214689] FAULT_INJECTION: forcing a failure.
[ 3091.214689] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3091.216286] CPU: 0 PID: 37498 Comm: syz-executor.1 Not tainted 5.10.238 #1
[ 3091.217199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3091.218292] Call Trace:
[ 3091.218645]  dump_stack+0x107/0x167
[ 3091.219136]  should_fail.cold+0x5/0xa
[ 3091.219648]  _copy_to_user+0x2e/0x180
[ 3091.220176]  simple_read_from_buffer+0xcc/0x160
[ 3091.220798]  proc_fail_nth_read+0x198/0x230
[ 3091.221373]  ? proc_sessionid_read+0x230/0x230
[ 3091.221981]  ? security_file_permission+0xb1/0xe0
[ 3091.222631]  ? proc_sessionid_read+0x230/0x230
[ 3091.223263]  vfs_read+0x228/0x620
[ 3091.223749]  ksys_read+0x12d/0x260
[ 3091.224243]  ? vfs_write+0xb10/0xb10
[ 3091.224748]  do_syscall_64+0x33/0x40
[ 3091.225242]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3091.225917] RIP: 0033:0x7f19f34f869c
[ 3091.226411] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 3091.228847] RSP: 002b:00007f19f0abb170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3091.229852] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 00007f19f34f869c
[ 3091.230794] RDX: 000000000000000f RSI: 00007f19f0abb1e0 RDI: 0000000000000004
[ 3091.231731] RBP: 00007f19f0abb1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3091.232689] R10: 000000000001f013 R11: 0000000000000246 R12: 0000000000000002
[ 3091.233631] R13: 00007fff4d583eff R14: 00007f19f0abb300 R15: 0000000000022000
[ 3091.238388] FAULT_INJECTION: forcing a failure.
[ 3091.238388] name failslab, interval 1, probability 0, space 0, times 0
[ 3091.239983] CPU: 0 PID: 37502 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3091.240947] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3091.242033] Call Trace:
[ 3091.242383]  dump_stack+0x107/0x167
[ 3091.242865]  should_fail.cold+0x5/0xa
[ 3091.243370]  ? xas_alloc+0x336/0x440
[ 3091.243867]  should_failslab+0x5/0x20
[ 3091.244389]  kmem_cache_alloc+0x5b/0x310
[ 3091.244927]  xas_alloc+0x336/0x440
[ 3091.245406]  xas_create+0x34a/0x10d0
[ 3091.245910]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3091.246607]  xas_store+0x8c/0x1c40
[ 3091.247088]  __xa_store+0x164/0x2d0
[ 3091.247570]  ? xa_delete_node+0x280/0x280
[ 3091.248141]  ? trace_hardirqs_on+0x5b/0x180
[ 3091.248710]  xa_store+0x31/0x50
[ 3091.249154]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3091.249787]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3091.250474]  ? alloc_fd+0x2e7/0x670
[ 3091.250964]  io_uring_setup+0x1fbb/0x2980
[ 3091.251517]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3091.252204]  ? wait_for_completion_io+0x270/0x270
[ 3091.252858]  do_syscall_64+0x33/0x40
[ 3091.253354]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3091.254025] RIP: 0033:0x7fb4a26afb19
[ 3091.254516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3091.256934] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3091.257929] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 3091.258872] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3091.259807] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3091.260763] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3091.261697] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:34:44 executing program 4:
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 3091.303632] FAULT_INJECTION: forcing a failure.
[ 3091.303632] name failslab, interval 1, probability 0, space 0, times 0
[ 3091.321195] CPU: 1 PID: 37554 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3091.322110] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3091.323197] Call Trace:
10:34:44 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 77)

[ 3091.323560]  dump_stack+0x107/0x167
[ 3091.332037]  should_fail.cold+0x5/0xa
[ 3091.332558]  ? create_object.isra.0+0x3a/0xa20
[ 3091.333165]  should_failslab+0x5/0x20
[ 3091.333670]  kmem_cache_alloc+0x5b/0x310
[ 3091.334218]  create_object.isra.0+0x3a/0xa20
[ 3091.334799]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3091.335474]  kmem_cache_alloc+0x159/0x310
[ 3091.336035]  anon_vma_fork+0xf1/0x640
[ 3091.336553]  ? __vm_enough_memory+0x184/0x360
[ 3091.337153]  copy_process+0x72c9/0x78b0
[ 3091.337711]  ? __cleanup_sighand+0xb0/0xb0
[ 3091.338290]  ? _copy_from_user+0xfb/0x1b0
[ 3091.338846]  kernel_clone+0xe7/0x980
[ 3091.339344]  ? __lockdep_reset_lock+0x180/0x180
[ 3091.339960]  ? create_io_thread+0xf0/0xf0
[ 3091.340538]  ? ksys_write+0x21a/0x260
[ 3091.341040]  ? lock_downgrade+0x6d0/0x6d0
[ 3091.341600]  __do_sys_clone3+0x1e5/0x320
[ 3091.342139]  ? __do_sys_clone+0x110/0x110
[ 3091.342707]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3091.343323]  ? vfs_write+0x354/0xb10
[ 3091.343816]  ? fput_many+0x2f/0x1a0
[ 3091.348323]  ? ksys_write+0x1a9/0x260
[ 3091.348827]  ? __ia32_sys_read+0xb0/0xb0
[ 3091.349383]  do_syscall_64+0x33/0x40
[ 3091.349879]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3091.350559] RIP: 0033:0x7f862144ab19
[ 3091.351056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3091.353494] RSP: 002b:00007f861e99f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3091.354503] RAX: ffffffffffffffda RBX: 00007f862155e020 RCX: 00007f862144ab19
[ 3091.355446] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3091.356399] RBP: 00007f861e99f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3091.357339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3091.358276] R13: 00007ffc637b687f R14: 00007f861e99f300 R15: 0000000000022000
[ 3091.375552] FAULT_INJECTION: forcing a failure.
[ 3091.375552] name failslab, interval 1, probability 0, space 0, times 0
[ 3091.381571] CPU: 0 PID: 37504 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3091.382487] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3091.383576] Call Trace:
[ 3091.383932]  dump_stack+0x107/0x167
[ 3091.384452]  should_fail.cold+0x5/0xa
[ 3091.384950]  ? xas_alloc+0x336/0x440
[ 3091.385487]  should_failslab+0x5/0x20
[ 3091.385987]  kmem_cache_alloc+0x5b/0x310
[ 3091.386526]  xas_alloc+0x336/0x440
[ 3091.386995]  xas_create+0x34a/0x10d0
[ 3091.387499]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3091.388206]  xas_store+0x8c/0x1c40
[ 3091.388688]  __xa_store+0x164/0x2d0
[ 3091.389167]  ? xa_delete_node+0x280/0x280
[ 3091.389727]  ? trace_hardirqs_on+0x5b/0x180
[ 3091.390304]  xa_store+0x31/0x50
[ 3091.390741]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3091.391375]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3091.392075]  ? alloc_fd+0x2e7/0x670
[ 3091.392596]  io_uring_setup+0x1fbb/0x2980
[ 3091.393146]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3091.393850]  ? wait_for_completion_io+0x270/0x270
[ 3091.394513]  do_syscall_64+0x33/0x40
[ 3091.395004]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3091.395678] RIP: 0033:0x7fd22c24ab19
[ 3091.396188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3091.398599] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3091.399599] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3091.400552] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3091.401488] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3091.402420] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
10:34:45 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x1ffff000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:34:45 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f013, r0, 0x0)

10:34:45 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
pkey_mprotect(&(0x7f0000ff5000/0x1000)=nil, 0x1000, 0x2000008, 0xffffffffffffffff)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 3091.403356] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:34:45 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:34:45 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 59)

10:34:45 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 67)
getresuid(0x0, 0x0, 0x0)

10:34:45 executing program 4:
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 3092.013787] FAULT_INJECTION: forcing a failure.
[ 3092.013787] name failslab, interval 1, probability 0, space 0, times 0
[ 3092.015365] CPU: 1 PID: 37720 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3092.016319] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3092.017406] Call Trace:
[ 3092.017770]  dump_stack+0x107/0x167
[ 3092.018256]  should_fail.cold+0x5/0xa
[ 3092.018762]  ? create_object.isra.0+0x3a/0xa20
[ 3092.019371]  should_failslab+0x5/0x20
[ 3092.019875]  kmem_cache_alloc+0x5b/0x310
[ 3092.020439]  ? mark_held_locks+0x9e/0xe0
[ 3092.020980]  create_object.isra.0+0x3a/0xa20
[ 3092.021562]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3092.022231]  kmem_cache_alloc+0x159/0x310
[ 3092.022791]  xas_alloc+0x336/0x440
[ 3092.023264]  xas_create+0x34a/0x10d0
[ 3092.023767]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3092.024481]  xas_store+0x8c/0x1c40
[ 3092.024966]  __xa_store+0x164/0x2d0
[ 3092.025450]  ? xa_delete_node+0x280/0x280
[ 3092.026007]  ? trace_hardirqs_on+0x5b/0x180
[ 3092.026584]  xa_store+0x31/0x50
[ 3092.027022]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3092.027662]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3092.032306]  ? alloc_fd+0x2e7/0x670
[ 3092.032804]  io_uring_setup+0x1fbb/0x2980
[ 3092.033359]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3092.040688]  ? wait_for_completion_io+0x270/0x270
[ 3092.041354]  do_syscall_64+0x33/0x40
[ 3092.041846]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3092.042520] RIP: 0033:0x7fb4a26afb19
[ 3092.043024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3092.045457] RSP: 002b:00007fb49fc25108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3092.046459] RAX: ffffffffffffffda RBX: 00007fb4a27c2f60 RCX: 00007fb4a26afb19
[ 3092.047394] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3092.060283] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3092.061219] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3092.062163] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:34:45 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 78)

[ 3092.113187] FAULT_INJECTION: forcing a failure.
[ 3092.113187] name failslab, interval 1, probability 0, space 0, times 0
[ 3092.114723] CPU: 1 PID: 37751 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3092.115637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3092.124649] Call Trace:
[ 3092.125014]  dump_stack+0x107/0x167
[ 3092.125500]  should_fail.cold+0x5/0xa
[ 3092.126008]  ? anon_vma_fork+0xf1/0x640
[ 3092.126537]  should_failslab+0x5/0x20
[ 3092.127042]  kmem_cache_alloc+0x5b/0x310
[ 3092.127584]  anon_vma_fork+0xf1/0x640
[ 3092.128110]  ? __vm_enough_memory+0x184/0x360
[ 3092.128712]  copy_process+0x72c9/0x78b0
[ 3092.129265]  ? __cleanup_sighand+0xb0/0xb0
[ 3092.129847]  ? _copy_from_user+0xfb/0x1b0
[ 3092.130402]  kernel_clone+0xe7/0x980
[ 3092.130896]  ? __lockdep_reset_lock+0x180/0x180
[ 3092.131511]  ? create_io_thread+0xf0/0xf0
[ 3092.132089]  ? ksys_write+0x21a/0x260
[ 3092.132597]  ? lock_downgrade+0x6d0/0x6d0
[ 3092.133149]  __do_sys_clone3+0x1e5/0x320
[ 3092.133689]  ? __do_sys_clone+0x110/0x110
[ 3092.134252]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3092.134869]  ? vfs_write+0x354/0xb10
[ 3092.135365]  ? fput_many+0x2f/0x1a0
[ 3092.135848]  ? ksys_write+0x1a9/0x260
[ 3092.136372]  ? __ia32_sys_read+0xb0/0xb0
[ 3092.136924]  do_syscall_64+0x33/0x40
[ 3092.137418]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3092.138095] RIP: 0033:0x7f862144ab19
[ 3092.138589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3092.141029] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3092.142035] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3092.142978] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3092.143917] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3092.144883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3092.145824] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:34:45 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x20000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

[ 3092.402674] FAULT_INJECTION: forcing a failure.
[ 3092.402674] name failslab, interval 1, probability 0, space 0, times 0
[ 3092.404201] CPU: 0 PID: 37832 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3092.405103] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3092.406195] Call Trace:
[ 3092.406550]  dump_stack+0x107/0x167
[ 3092.407034]  should_fail.cold+0x5/0xa
[ 3092.407540]  ? create_object.isra.0+0x3a/0xa20
[ 3092.408156]  should_failslab+0x5/0x20
[ 3092.408660]  kmem_cache_alloc+0x5b/0x310
[ 3092.409200]  ? mark_held_locks+0x9e/0xe0
[ 3092.409735]  create_object.isra.0+0x3a/0xa20
[ 3092.410313]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3092.410990]  kmem_cache_alloc+0x159/0x310
[ 3092.411546]  xas_alloc+0x336/0x440
[ 3092.412026]  xas_create+0x34a/0x10d0
[ 3092.412533]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3092.413228]  xas_store+0x8c/0x1c40
[ 3092.413712]  __xa_store+0x164/0x2d0
[ 3092.414195]  ? xa_delete_node+0x280/0x280
[ 3092.414748]  ? trace_hardirqs_on+0x5b/0x180
[ 3092.415323]  xa_store+0x31/0x50
[ 3092.415755]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3092.416401]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3092.417088]  ? alloc_fd+0x2e7/0x670
[ 3092.417578]  io_uring_setup+0x1fbb/0x2980
[ 3092.418131]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3092.418794]  ? wait_for_completion_io+0x270/0x270
[ 3092.419458]  do_syscall_64+0x33/0x40
[ 3092.419945]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3092.420673] RIP: 0033:0x7fd22c24ab19
[ 3092.421161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3092.423549] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3092.428566] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3092.429498] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3092.430430] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3092.431361] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3092.432303] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3092.893995] FAULT_INJECTION: forcing a failure.
[ 3092.893995] name failslab, interval 1, probability 0, space 0, times 0
[ 3092.895516] CPU: 1 PID: 37938 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3092.896442] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3092.897535] Call Trace:
[ 3092.897889]  dump_stack+0x107/0x167
[ 3092.898389]  should_fail.cold+0x5/0xa
[ 3092.898896]  ? vm_area_dup+0x78/0x290
[ 3092.899405]  should_failslab+0x5/0x20
[ 3092.899912]  kmem_cache_alloc+0x5b/0x310
[ 3092.900467]  vm_area_dup+0x78/0x290
[ 3092.900953]  ? lock_release+0x680/0x680
[ 3092.901483]  ? mark_lock+0xf5/0x2df0
[ 3092.901985]  ? lock_chain_count+0x20/0x20
[ 3092.902535]  ? mark_lock+0xf5/0x2df0
[ 3092.903033]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3092.903726]  ? lock_chain_count+0x20/0x20
[ 3092.904298]  ? mark_lock+0xf5/0x2df0
[ 3092.904794]  ? vm_area_alloc+0x110/0x110
[ 3092.905335]  ? __lock_acquire+0x1657/0x5b00
[ 3092.905920]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3092.906611]  ? SOFTIRQ_verbose+0x10/0x10
[ 3092.907148]  ? vmacache_find+0x55/0x2a0
[ 3092.907676]  __split_vma+0xa8/0x4e0
[ 3092.908184]  __do_munmap+0x365/0x1260
[ 3092.908687]  ? arch_get_unmapped_area+0x450/0x450
[ 3092.909326]  ? lock_release+0x680/0x680
[ 3092.909853]  mmap_region+0x7c8/0x1500
[ 3092.910367]  do_mmap+0xcdb/0x11e0
[ 3092.910834]  vm_mmap_pgoff+0x198/0x1f0
[ 3092.911353]  ? randomize_page+0xb0/0xb0
[ 3092.911892]  ksys_mmap_pgoff+0x41c/0x560
[ 3092.912454]  ? find_mergeable_anon_vma+0x250/0x250
[ 3092.913114]  do_syscall_64+0x33/0x40
[ 3092.913608]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3092.914287] RIP: 0033:0x7fb4a26afb62
[ 3092.914776] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3092.917218] RSP: 002b:00007fb49fc250f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3092.918222] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fb4a26afb62
[ 3092.919161] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000
[ 3092.920125] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000000000000
[ 3092.921062] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000
[ 3092.922003] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:35:04 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x21000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:35:04 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 79)

10:35:04 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 68)
getresuid(0x0, 0x0, 0x0)

10:35:04 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 60)

10:35:04 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00002, 0x0, 0x1f013, r0, 0x0)

10:35:04 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:35:04 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:35:04 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
r0 = pkey_alloc(0x0, 0x5)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r0)

[ 3110.672329] FAULT_INJECTION: forcing a failure.
[ 3110.672329] name failslab, interval 1, probability 0, space 0, times 0
[ 3110.673855] CPU: 0 PID: 38083 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3110.674788] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3110.675866] Call Trace:
[ 3110.676226]  dump_stack+0x107/0x167
[ 3110.676718]  should_fail.cold+0x5/0xa
[ 3110.677220]  ? create_object.isra.0+0x3a/0xa20
[ 3110.677865]  should_failslab+0x5/0x20
[ 3110.678368]  kmem_cache_alloc+0x5b/0x310
[ 3110.678909]  create_object.isra.0+0x3a/0xa20
[ 3110.679487]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3110.680159]  kmem_cache_alloc+0x159/0x310
[ 3110.684751]  vm_area_dup+0x78/0x290
[ 3110.685256]  ? lock_release+0x680/0x680
[ 3110.685783]  ? mark_lock+0xf5/0x2df0
[ 3110.686281]  ? lock_chain_count+0x20/0x20
[ 3110.686829]  ? mark_lock+0xf5/0x2df0
[ 3110.687325]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3110.688015]  ? lock_chain_count+0x20/0x20
[ 3110.688594]  ? mark_lock+0xf5/0x2df0
[ 3110.689107]  ? vm_area_alloc+0x110/0x110
[ 3110.689645]  ? __lock_acquire+0x1657/0x5b00
[ 3110.690272]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3110.690961]  ? SOFTIRQ_verbose+0x10/0x10
[ 3110.691497]  ? vmacache_find+0x55/0x2a0
[ 3110.692023]  __split_vma+0xa8/0x4e0
[ 3110.692520]  __do_munmap+0x365/0x1260
[ 3110.693025]  ? arch_get_unmapped_area+0x450/0x450
[ 3110.693659]  ? lock_release+0x680/0x680
[ 3110.694186]  mmap_region+0x7c8/0x1500
[ 3110.694702]  do_mmap+0xcdb/0x11e0
[ 3110.695167]  vm_mmap_pgoff+0x198/0x1f0
[ 3110.695685]  ? randomize_page+0xb0/0xb0
[ 3110.700231]  ksys_mmap_pgoff+0x41c/0x560
[ 3110.700775]  ? find_mergeable_anon_vma+0x250/0x250
[ 3110.701459]  do_syscall_64+0x33/0x40
[ 3110.701969]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3110.702665] RIP: 0033:0x7fb4a26afb62
[ 3110.703181] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3110.705644] RSP: 002b:00007fb49fc250f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3110.706654] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fb4a26afb62
[ 3110.707582] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000
[ 3110.708529] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000000000000
[ 3110.709459] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000
[ 3110.710388] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3110.720691] FAULT_INJECTION: forcing a failure.
[ 3110.720691] name failslab, interval 1, probability 0, space 0, times 0
[ 3110.722249] CPU: 0 PID: 38088 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3110.723158] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
10:35:04 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00004, 0x0, 0x1f013, r0, 0x0)

[ 3110.724263] Call Trace:
[ 3110.724616]  dump_stack+0x107/0x167
[ 3110.725104]  should_fail.cold+0x5/0xa
[ 3110.725609]  ? xas_alloc+0x336/0x440
[ 3110.732475]  should_failslab+0x5/0x20
[ 3110.732977]  kmem_cache_alloc+0x5b/0x310
[ 3110.733521]  xas_alloc+0x336/0x440
[ 3110.733993]  xas_create+0x34a/0x10d0
[ 3110.734496]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3110.735193]  xas_store+0x8c/0x1c40
[ 3110.735675]  __xa_store+0x164/0x2d0
[ 3110.736159]  ? xa_delete_node+0x280/0x280
[ 3110.736237] FAULT_INJECTION: forcing a failure.
[ 3110.736237] name failslab, interval 1, probability 0, space 0, times 0
[ 3110.736727]  ? trace_hardirqs_on+0x5b/0x180
[ 3110.738751]  xa_store+0x31/0x50
[ 3110.739192]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3110.739827]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3110.740528]  ? alloc_fd+0x2e7/0x670
[ 3110.741046]  io_uring_setup+0x1fbb/0x2980
[ 3110.741595]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3110.742255]  ? wait_for_completion_io+0x270/0x270
[ 3110.742910]  do_syscall_64+0x33/0x40
[ 3110.743398]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3110.744114] RIP: 0033:0x7fd22c24ab19
[ 3110.744620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3110.747025] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3110.748051] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3110.748993] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3110.749921] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3110.750848] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3110.751775] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3110.752764] CPU: 1 PID: 38087 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3110.753704] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3110.754813] Call Trace:
[ 3110.755205]  dump_stack+0x107/0x167
[ 3110.755689]  should_fail.cold+0x5/0xa
[ 3110.756198]  ? create_object.isra.0+0x3a/0xa20
[ 3110.756830]  should_failslab+0x5/0x20
[ 3110.757337]  kmem_cache_alloc+0x5b/0x310
[ 3110.757880]  create_object.isra.0+0x3a/0xa20
[ 3110.758459]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3110.759133]  kmem_cache_alloc+0x159/0x310
[ 3110.759689]  anon_vma_fork+0x1ff/0x640
[ 3110.760237]  copy_process+0x72c9/0x78b0
[ 3110.760815]  ? __cleanup_sighand+0xb0/0xb0
[ 3110.768810]  ? _copy_from_user+0xfb/0x1b0
[ 3110.769366]  kernel_clone+0xe7/0x980
[ 3110.769858]  ? __lockdep_reset_lock+0x180/0x180
[ 3110.770472]  ? create_io_thread+0xf0/0xf0
[ 3110.771046]  ? ksys_write+0x21a/0x260
[ 3110.771545]  ? lock_downgrade+0x6d0/0x6d0
[ 3110.772097]  __do_sys_clone3+0x1e5/0x320
[ 3110.772648]  ? __do_sys_clone+0x110/0x110
[ 3110.773257]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3110.773894]  ? vfs_write+0x354/0xb10
[ 3110.774390]  ? fput_many+0x2f/0x1a0
[ 3110.774886]  ? ksys_write+0x1a9/0x260
[ 3110.775417]  ? __ia32_sys_read+0xb0/0xb0
[ 3110.775971]  do_syscall_64+0x33/0x40
[ 3110.776484]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3110.777156] RIP: 0033:0x7f862144ab19
[ 3110.777648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3110.780048] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3110.781073] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3110.782034] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3110.782965] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3110.783914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3110.784892] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:35:04 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:35:04 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 80)

10:35:04 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 69)
getresuid(0x0, 0x0, 0x0)

10:35:04 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x3f000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:35:04 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 61)

[ 3110.974377] FAULT_INJECTION: forcing a failure.
[ 3110.974377] name failslab, interval 1, probability 0, space 0, times 0
[ 3110.975969] CPU: 1 PID: 38274 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3110.976911] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3110.978006] Call Trace:
[ 3110.978365]  dump_stack+0x107/0x167
[ 3110.978851]  should_fail.cold+0x5/0xa
[ 3110.979365]  ? anon_vma_clone+0xdc/0x590
[ 3110.979906]  should_failslab+0x5/0x20
[ 3110.980434]  kmem_cache_alloc+0x5b/0x310
[ 3110.980984]  anon_vma_clone+0xdc/0x590
[ 3110.981513]  __split_vma+0x17c/0x4e0
[ 3110.982011]  __do_munmap+0x365/0x1260
[ 3110.982529]  ? arch_get_unmapped_area+0x450/0x450
[ 3110.983179]  ? lock_release+0x680/0x680
[ 3110.983710]  mmap_region+0x7c8/0x1500
[ 3110.984254]  do_mmap+0xcdb/0x11e0
[ 3110.984735]  vm_mmap_pgoff+0x198/0x1f0
[ 3110.985261]  ? randomize_page+0xb0/0xb0
[ 3110.985802]  ksys_mmap_pgoff+0x41c/0x560
[ 3110.986343]  ? find_mergeable_anon_vma+0x250/0x250
[ 3110.987002]  do_syscall_64+0x33/0x40
[ 3110.987497]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3110.988174] RIP: 0033:0x7fb4a26afb62
[ 3110.988688] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3110.991100] RSP: 002b:00007fb49fc250f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3110.992101] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fb4a26afb62
[ 3110.993058] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000
[ 3110.994011] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000000000000
[ 3110.994990] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000
10:35:04 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
r0 = pkey_alloc(0x0, 0x5)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0)
pkey_mprotect(&(0x7f0000ff0000/0x2000)=nil, 0x2000, 0x200000d, r0)
mbind(&(0x7f0000ff6000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000000)=0x6, 0xfb, 0x4)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

[ 3110.995931] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3111.060774] FAULT_INJECTION: forcing a failure.
[ 3111.060774] name failslab, interval 1, probability 0, space 0, times 0
[ 3111.062375] CPU: 0 PID: 38277 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3111.063310] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3111.064486] Call Trace:
[ 3111.064863]  dump_stack+0x107/0x167
[ 3111.065353]  should_fail.cold+0x5/0xa
[ 3111.065864]  ? create_object.isra.0+0x3a/0xa20
[ 3111.066506]  should_failslab+0x5/0x20
[ 3111.067008]  kmem_cache_alloc+0x5b/0x310
[ 3111.067591]  ? mark_held_locks+0x9e/0xe0
[ 3111.068132]  create_object.isra.0+0x3a/0xa20
[ 3111.068731]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3111.069440]  kmem_cache_alloc+0x159/0x310
[ 3111.069993]  xas_alloc+0x336/0x440
[ 3111.070496]  xas_create+0x34a/0x10d0
[ 3111.071016]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3111.071712]  xas_store+0x8c/0x1c40
[ 3111.072198]  __xa_store+0x164/0x2d0
[ 3111.072701]  ? xa_delete_node+0x280/0x280
[ 3111.073259]  ? trace_hardirqs_on+0x5b/0x180
[ 3111.073866]  xa_store+0x31/0x50
[ 3111.074304]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3111.074986]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3111.075679]  ? alloc_fd+0x2e7/0x670
[ 3111.076173]  io_uring_setup+0x1fbb/0x2980
[ 3111.076744]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3111.077441]  ? wait_for_completion_io+0x270/0x270
[ 3111.078107]  do_syscall_64+0x33/0x40
[ 3111.078645]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3111.079324] RIP: 0033:0x7fd22c24ab19
[ 3111.079818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3111.082277] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3111.083329] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3111.084284] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3111.085228] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3111.086194] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3111.087176] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3111.149532] FAULT_INJECTION: forcing a failure.
[ 3111.149532] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3111.151132] CPU: 0 PID: 38385 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3111.152038] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3111.156766] Call Trace:
[ 3111.157118]  dump_stack+0x107/0x167
[ 3111.157602]  should_fail.cold+0x5/0xa
[ 3111.158111]  __alloc_pages_nodemask+0x182/0x600
[ 3111.158724]  ? __lockdep_reset_lock+0x180/0x180
[ 3111.159340]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 3111.160167]  ? copy_page_range+0x28e1/0x3810
[ 3111.160808]  alloc_pages_current+0x187/0x280
[ 3111.161393]  get_zeroed_page+0x14/0xb0
[ 3111.161906]  __pud_alloc+0x33/0x270
[ 3111.162390]  copy_page_range+0x2ca1/0x3810
[ 3111.162945]  ? perf_trace_lock+0xac/0x490
[ 3111.163490]  ? lock_chain_count+0x20/0x20
[ 3111.164051]  ? lock_downgrade+0x6d0/0x6d0
[ 3111.164675]  ? up_write+0x191/0x550
[ 3111.165173]  ? vm_iomap_memory+0x190/0x190
[ 3111.165728]  ? downgrade_write+0x3a0/0x3a0
[ 3111.166288]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 3111.167000]  ? __vma_link_rb+0x540/0x700
[ 3111.167562]  copy_process+0x7654/0x78b0
[ 3111.168124]  ? __cleanup_sighand+0xb0/0xb0
[ 3111.168757]  ? _copy_from_user+0xfb/0x1b0
[ 3111.169310]  kernel_clone+0xe7/0x980
[ 3111.169800]  ? __lockdep_reset_lock+0x180/0x180
[ 3111.170412]  ? create_io_thread+0xf0/0xf0
[ 3111.170972]  ? ksys_write+0x21a/0x260
[ 3111.171470]  ? lock_downgrade+0x6d0/0x6d0
[ 3111.172065]  __do_sys_clone3+0x1e5/0x320
[ 3111.172613]  ? __do_sys_clone+0x110/0x110
[ 3111.173178]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3111.173787]  ? vfs_write+0x354/0xb10
[ 3111.174279]  ? fput_many+0x2f/0x1a0
[ 3111.174790]  ? ksys_write+0x1a9/0x260
[ 3111.175289]  ? __ia32_sys_read+0xb0/0xb0
[ 3111.175879]  do_syscall_64+0x33/0x40
[ 3111.176382]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3111.177054] RIP: 0033:0x7f862144ab19
[ 3111.177544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3111.180014] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3111.181023] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3111.181984] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3111.182959] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3111.183897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3111.188850] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
10:35:22 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 62)

10:35:22 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff)

10:35:22 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 70)
getresuid(0x0, 0x0, 0x0)

10:35:22 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 81)

10:35:22 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:35:22 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00006, 0x0, 0x1f013, r0, 0x0)

10:35:22 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0xa, 0xffffffffffffffff)

10:35:22 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x40000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

[ 3128.745339] FAULT_INJECTION: forcing a failure.
[ 3128.745339] name failslab, interval 1, probability 0, space 0, times 0
[ 3128.748290] CPU: 1 PID: 38396 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3128.750329] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3128.752831] Call Trace:
[ 3128.753531]  dump_stack+0x107/0x167
[ 3128.754623]  should_fail.cold+0x5/0xa
[ 3128.755803]  ? create_object.isra.0+0x3a/0xa20
[ 3128.757081]  should_failslab+0x5/0x20
[ 3128.758126]  kmem_cache_alloc+0x5b/0x310
[ 3128.759212]  create_object.isra.0+0x3a/0xa20
[ 3128.760384]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3128.761843]  kmem_cache_alloc+0x159/0x310
[ 3128.762976]  anon_vma_clone+0xdc/0x590
[ 3128.764040]  __split_vma+0x17c/0x4e0
[ 3128.765049]  __do_munmap+0x365/0x1260
[ 3128.766093]  ? arch_get_unmapped_area+0x450/0x450
[ 3128.767427]  ? lock_release+0x680/0x680
[ 3128.768645]  mmap_region+0x7c8/0x1500
[ 3128.769806]  do_mmap+0xcdb/0x11e0
[ 3128.770694]  vm_mmap_pgoff+0x198/0x1f0
[ 3128.771739]  ? randomize_page+0xb0/0xb0
[ 3128.772900]  ksys_mmap_pgoff+0x41c/0x560
[ 3128.774185]  ? find_mergeable_anon_vma+0x250/0x250
[ 3128.775702]  do_syscall_64+0x33/0x40
[ 3128.776734]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3128.777552] RIP: 0033:0x7fb4a26afb62
[ 3128.778084] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3128.780589] RSP: 002b:00007fb49fc250f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3128.781596] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fb4a26afb62
[ 3128.782563] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000
[ 3128.783497] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000000000000
[ 3128.784556] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000
[ 3128.786541] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:35:22 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc0000c, 0x0, 0x1f013, r0, 0x0)

[ 3128.849441] FAULT_INJECTION: forcing a failure.
[ 3128.849441] name failslab, interval 1, probability 0, space 0, times 0
[ 3128.852422] CPU: 0 PID: 38401 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3128.854909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3128.856297] Call Trace:
[ 3128.857294]  dump_stack+0x107/0x167
[ 3128.857839]  should_fail.cold+0x5/0xa
[ 3128.858496]  ? create_object.isra.0+0x3a/0xa20
[ 3128.859222]  should_failslab+0x5/0x20
[ 3128.859770]  kmem_cache_alloc+0x5b/0x310
[ 3128.860433]  ? mark_held_locks+0x9e/0xe0
[ 3128.861126]  create_object.isra.0+0x3a/0xa20
[ 3128.861757]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3128.862570]  kmem_cache_alloc+0x159/0x310
[ 3128.863269]  xas_alloc+0x336/0x440
[ 3128.863764]  xas_create+0x34a/0x10d0
[ 3128.864356]  ? queued_spin_lock_slowpath+0xcc/0x8c0
[ 3128.866351]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3128.867226]  xas_store+0x8c/0x1c40
[ 3128.868565]  __xa_store+0x164/0x2d0
[ 3128.869179]  ? xa_delete_node+0x280/0x280
[ 3128.869778]  ? trace_hardirqs_on+0x5b/0x180
[ 3128.870543]  xa_store+0x31/0x50
[ 3128.871087]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3128.871781]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3128.872625]  ? alloc_fd+0x2e7/0x670
[ 3128.873228]  io_uring_setup+0x1fbb/0x2980
[ 3128.873833]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3128.875850]  ? wait_for_completion_io+0x270/0x270
[ 3128.877841]  do_syscall_64+0x33/0x40
[ 3128.879353]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3128.881333] RIP: 0033:0x7fd22c24ab19
[ 3128.882760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3128.890067] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3128.891274] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3128.893848] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3128.896239] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3128.899148] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3128.901900] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3128.906945] FAULT_INJECTION: forcing a failure.
[ 3128.906945] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3128.910928] CPU: 0 PID: 38406 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3128.913310] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3128.916133] Call Trace:
[ 3128.917031]  dump_stack+0x107/0x167
[ 3128.918297]  should_fail.cold+0x5/0xa
[ 3128.919557]  __alloc_pages_nodemask+0x182/0x600
[ 3128.921221]  ? lock_acquire+0x197/0x470
[ 3128.923726]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 3128.925906]  ? lock_downgrade+0x6d0/0x6d0
[ 3128.926550]  ? do_raw_spin_lock+0x121/0x260
[ 3128.927903]  alloc_pages_current+0x187/0x280
[ 3128.929279]  __pmd_alloc+0x37/0x5e0
[ 3128.930189]  copy_page_range+0x2bd8/0x3810
[ 3128.931241]  ? perf_trace_lock+0xac/0x490
[ 3128.932290]  ? lock_chain_count+0x20/0x20
[ 3128.933665]  ? up_write+0x191/0x550
[ 3128.934817]  ? vm_iomap_memory+0x190/0x190
[ 3128.936137]  ? downgrade_write+0x3a0/0x3a0
[ 3128.937440]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 3128.939225]  ? __vma_link_rb+0x540/0x700
[ 3128.940532]  copy_process+0x7654/0x78b0
[ 3128.941847]  ? __cleanup_sighand+0xb0/0xb0
[ 3128.943231]  ? _copy_from_user+0xfb/0x1b0
[ 3128.944361]  kernel_clone+0xe7/0x980
[ 3128.945583]  ? __lockdep_reset_lock+0x180/0x180
[ 3128.947090]  ? create_io_thread+0xf0/0xf0
[ 3128.948439]  ? ksys_write+0x21a/0x260
[ 3128.949675]  ? lock_downgrade+0x6d0/0x6d0
[ 3128.951023]  __do_sys_clone3+0x1e5/0x320
[ 3128.952366]  ? __do_sys_clone+0x110/0x110
[ 3128.953731]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3128.955250]  ? vfs_write+0x354/0xb10
[ 3128.956443]  ? fput_many+0x2f/0x1a0
[ 3128.957638]  ? ksys_write+0x1a9/0x260
[ 3128.958890]  ? __ia32_sys_read+0xb0/0xb0
[ 3128.960194]  do_syscall_64+0x33/0x40
[ 3128.961448]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3128.963118] RIP: 0033:0x7f862144ab19
[ 3128.964307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3128.967108] RSP: 002b:00007f861e99f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3128.969498] RAX: ffffffffffffffda RBX: 00007f862155e020 RCX: 00007f862144ab19
[ 3128.970591] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3128.971671] RBP: 00007f861e99f1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3128.973907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3128.974982] R13: 00007ffc637b687f R14: 00007f861e99f300 R15: 0000000000022000
10:35:22 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x5f080000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:35:22 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff) (fail_nth: 1)

10:35:22 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 82)

10:35:22 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x1000008, 0xffffffffffffffff)
r0 = pkey_alloc(0x0, 0x5)
mlock2(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r0)
pkey_free(r0)

10:35:22 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00600, 0x0, 0x1f013, r0, 0x0)

10:35:22 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:35:22 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 63)

10:35:22 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 71)
getresuid(0x0, 0x0, 0x0)

[ 3129.130538] FAULT_INJECTION: forcing a failure.
[ 3129.130538] name failslab, interval 1, probability 0, space 0, times 0
[ 3129.132283] CPU: 1 PID: 38618 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 3129.133375] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3129.134627] Call Trace:
[ 3129.134984]  dump_stack+0x107/0x167
[ 3129.135502]  should_fail.cold+0x5/0xa
[ 3129.136007]  ? vm_area_dup+0x78/0x290
[ 3129.136525]  should_failslab+0x5/0x20
[ 3129.137031]  kmem_cache_alloc+0x5b/0x310
[ 3129.137571]  vm_area_dup+0x78/0x290
[ 3129.138053]  ? lock_chain_count+0x20/0x20
[ 3129.138627]  ? mark_lock+0xf5/0x2df0
[ 3129.139276]  ? perf_trace_lock+0xac/0x490
[ 3129.139957]  ? SOFTIRQ_verbose+0x10/0x10
[ 3129.140513]  ? __lockdep_reset_lock+0x180/0x180
[ 3129.141141]  ? __lock_acquire+0x1657/0x5b00
[ 3129.141722]  ? vm_area_alloc+0x110/0x110
[ 3129.142269]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3129.142964]  ? SOFTIRQ_verbose+0x10/0x10
[ 3129.143504]  ? perf_trace_lock+0xac/0x490
[ 3129.144191]  ? lock_acquire+0x197/0x470
[ 3129.144903]  ? can_vma_merge_before+0x89/0x250
[ 3129.145550]  __split_vma+0xa8/0x4e0
[ 3129.146033]  split_vma+0x99/0xe0
[ 3129.146482]  mprotect_fixup+0x669/0x8c0
[ 3129.147011]  ? change_protection+0x1ad0/0x1ad0
[ 3129.147654]  ? down_write_killable_nested+0x180/0x180
[ 3129.148333]  ? vmacache_find+0x55/0x2a0
[ 3129.148905]  do_mprotect_pkey+0x518/0x940
[ 3129.149572]  ? mprotect_fixup+0x8c0/0x8c0
[ 3129.150331]  ? __ia32_sys_read+0xb0/0xb0
[ 3129.150876]  __x64_sys_pkey_mprotect+0x93/0x100
[ 3129.151496]  do_syscall_64+0x33/0x40
[ 3129.151992]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3129.152733] RIP: 0033:0x7f5312d97b19
[ 3129.153389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3129.155932] RSP: 002b:00007f531030d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000149
[ 3129.156971] RAX: ffffffffffffffda RBX: 00007f5312eaaf60 RCX: 00007f5312d97b19
[ 3129.157941] RDX: 0000000000000000 RSI: 0000000000013000 RDI: 0000000020fed000
[ 3129.158998] RBP: 00007f531030d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3129.160012] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[ 3129.161178] R13: 00007fff7de9b68f R14: 00007f531030d300 R15: 0000000000022000
[ 3129.181491] FAULT_INJECTION: forcing a failure.
[ 3129.181491] name failslab, interval 1, probability 0, space 0, times 0
[ 3129.183098] CPU: 1 PID: 38621 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3129.184022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3129.185165] Call Trace:
[ 3129.185527]  dump_stack+0x107/0x167
[ 3129.186012]  should_fail.cold+0x5/0xa
[ 3129.186517]  ? vm_area_alloc+0x1c/0x110
[ 3129.187047]  should_failslab+0x5/0x20
[ 3129.187552]  kmem_cache_alloc+0x5b/0x310
[ 3129.188095]  vm_area_alloc+0x1c/0x110
[ 3129.188658]  mmap_region+0x97e/0x1500
[ 3129.189204]  do_mmap+0xcdb/0x11e0
[ 3129.189676]  vm_mmap_pgoff+0x198/0x1f0
[ 3129.190198]  ? randomize_page+0xb0/0xb0
[ 3129.190748]  ksys_mmap_pgoff+0x41c/0x560
[ 3129.191290]  ? find_mergeable_anon_vma+0x250/0x250
[ 3129.191952]  do_syscall_64+0x33/0x40
[ 3129.192457]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3129.193234] RIP: 0033:0x7fb4a26afb62
[ 3129.193732] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3129.196195] RSP: 002b:00007fb49fc250f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3129.197404] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fb4a26afb62
[ 3129.198346] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000
[ 3129.199336] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000000000000
[ 3129.200281] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000
[ 3129.201260] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3129.271977] FAULT_INJECTION: forcing a failure.
[ 3129.271977] name failslab, interval 1, probability 0, space 0, times 0
[ 3129.273525] CPU: 0 PID: 38729 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3129.274432] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3129.275517] Call Trace:
[ 3129.275872]  dump_stack+0x107/0x167
[ 3129.276356]  should_fail.cold+0x5/0xa
[ 3129.276882]  ? __pmd_alloc+0x94/0x5e0
[ 3129.277388]  should_failslab+0x5/0x20
[ 3129.277891]  kmem_cache_alloc+0x5b/0x310
[ 3129.278433]  __pmd_alloc+0x94/0x5e0
[ 3129.278947]  copy_page_range+0x2bd8/0x3810
[ 3129.279501]  ? perf_trace_lock+0xac/0x490
[ 3129.280079]  ? lock_chain_count+0x20/0x20
[ 3129.280680]  ? up_write+0x191/0x550
[ 3129.281161]  ? vm_iomap_memory+0x190/0x190
[ 3129.281741]  ? downgrade_write+0x3a0/0x3a0
[ 3129.282299]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 3129.283007]  ? __vma_link_rb+0x540/0x700
[ 3129.283546]  copy_process+0x7654/0x78b0
[ 3129.284096]  ? __cleanup_sighand+0xb0/0xb0
[ 3129.284688]  ? _copy_from_user+0xfb/0x1b0
[ 3129.285238]  kernel_clone+0xe7/0x980
[ 3129.285735]  ? __lockdep_reset_lock+0x180/0x180
[ 3129.286383]  ? create_io_thread+0xf0/0xf0
[ 3129.286945]  ? ksys_write+0x21a/0x260
[ 3129.287447]  ? lock_downgrade+0x6d0/0x6d0
[ 3129.287998]  __do_sys_clone3+0x1e5/0x320
[ 3129.288551]  ? __do_sys_clone+0x110/0x110
[ 3129.289122]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3129.289731]  ? vfs_write+0x354/0xb10
[ 3129.290223]  ? fput_many+0x2f/0x1a0
[ 3129.290703]  ? ksys_write+0x1a9/0x260
[ 3129.291205]  ? __ia32_sys_read+0xb0/0xb0
[ 3129.291753]  do_syscall_64+0x33/0x40
[ 3129.292244]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3129.292958] RIP: 0033:0x7f862144ab19
[ 3129.293444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3129.295864] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3129.296897] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3129.297832] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3129.298767] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3129.299701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3129.300664] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 3129.508826] FAULT_INJECTION: forcing a failure.
[ 3129.508826] name failslab, interval 1, probability 0, space 0, times 0
[ 3129.512830] CPU: 1 PID: 38733 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3129.513693] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3129.514746] Call Trace:
[ 3129.515079]  dump_stack+0x107/0x167
[ 3129.515536]  should_fail.cold+0x5/0xa
[ 3129.516012]  ? create_object.isra.0+0x3a/0xa20
[ 3129.516845]  should_failslab+0x5/0x20
[ 3129.517989]  kmem_cache_alloc+0x5b/0x310
[ 3129.519167]  ? mark_held_locks+0x9e/0xe0
[ 3129.520369]  create_object.isra.0+0x3a/0xa20
[ 3129.521983]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3129.523828]  kmem_cache_alloc+0x159/0x310
[ 3129.524793]  xas_alloc+0x336/0x440
[ 3129.525244]  xas_create+0x34a/0x10d0
[ 3129.525721]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3129.526379]  xas_store+0x8c/0x1c40
[ 3129.526840]  __xa_store+0x164/0x2d0
[ 3129.527299]  ? xa_delete_node+0x280/0x280
[ 3129.527827]  ? trace_hardirqs_on+0x5b/0x180
[ 3129.528375]  xa_store+0x31/0x50
[ 3129.529488]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3129.531203]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3129.533011]  ? alloc_fd+0x2e7/0x670
[ 3129.534172]  io_uring_setup+0x1fbb/0x2980
[ 3129.535450]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3129.536713]  ? wait_for_completion_io+0x270/0x270
[ 3129.537348]  do_syscall_64+0x33/0x40
[ 3129.537814]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3129.538452] RIP: 0033:0x7fd22c24ab19
[ 3129.538919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3129.542503] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3129.544836] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3129.546973] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3129.549270] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3129.551779] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3129.554127] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
10:35:39 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff) (fail_nth: 2)

10:35:39 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 72)
getresuid(0x0, 0x0, 0x0)

10:35:39 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:35:39 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x7e000000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:35:39 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
mremap(&(0x7f0000ff6000/0x4000)=nil, 0x4000, 0x1000, 0xb, &(0x7f0000fed000/0x1000)=nil)
pkey_mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ff4000/0x5000)=nil, 0x5000, 0x1, &(0x7f0000000000)=0x5, 0xffff, 0x1)
r0 = pkey_alloc(0x0, 0x1)
pkey_mprotect(&(0x7f0000ff8000/0x2000)=nil, 0x2000, 0x1000001, r0)

10:35:39 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 83)

10:35:39 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00c00, 0x0, 0x1f013, r0, 0x0)

10:35:39 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 64)

10:35:40 executing program 0:
mlock2(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
mlock2(&(0x7f0000ff1000/0x3000)=nil, 0x3000, 0x1)

[ 3146.562788] FAULT_INJECTION: forcing a failure.
[ 3146.562788] name failslab, interval 1, probability 0, space 0, times 0
[ 3146.564360] CPU: 1 PID: 38816 Comm: syz-executor.2 Not tainted 5.10.238 #1
[ 3146.573189] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3146.574314] Call Trace:
[ 3146.574707]  dump_stack+0x107/0x167
[ 3146.575193]  should_fail.cold+0x5/0xa
[ 3146.575729]  ? xas_alloc+0x336/0x440
[ 3146.576222]  should_failslab+0x5/0x20
[ 3146.576779]  kmem_cache_alloc+0x5b/0x310
[ 3146.577320]  xas_alloc+0x336/0x440
[ 3146.577792]  xas_create+0x34a/0x10d0
[ 3146.578317]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3146.579015]  xas_store+0x8c/0x1c40
[ 3146.579543]  __xa_store+0x164/0x2d0
[ 3146.580025]  ? xa_delete_node+0x280/0x280
[ 3146.580610]  ? trace_hardirqs_on+0x5b/0x180
[ 3146.581195]  xa_store+0x31/0x50
[ 3146.581677]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3146.582312]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3146.583001]  ? alloc_fd+0x2e7/0x670
[ 3146.583514]  io_uring_setup+0x1fbb/0x2980
[ 3146.584064]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3146.584788]  ? wait_for_completion_io+0x270/0x270
[ 3146.585452]  do_syscall_64+0x33/0x40
[ 3146.585945]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3146.586636] RIP: 0033:0x7fd22c24ab19
[ 3146.587127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3146.589640] RSP: 002b:00007fd22979f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3146.590648] RAX: ffffffffffffffda RBX: 00007fd22c35e020 RCX: 00007fd22c24ab19
[ 3146.591615] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3146.592593] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3146.593568] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3146.594539] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3146.603830] FAULT_INJECTION: forcing a failure.
[ 3146.603830] name failslab, interval 1, probability 0, space 0, times 0
[ 3146.604298] FAULT_INJECTION: forcing a failure.
[ 3146.604298] name failslab, interval 1, probability 0, space 0, times 0
[ 3146.605335] CPU: 0 PID: 38864 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3146.607687] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3146.608791] Call Trace:
[ 3146.609136]  dump_stack+0x107/0x167
[ 3146.609613]  should_fail.cold+0x5/0xa
[ 3146.610110]  ? create_object.isra.0+0x3a/0xa20
[ 3146.610700]  should_failslab+0x5/0x20
[ 3146.611198]  kmem_cache_alloc+0x5b/0x310
[ 3146.611756]  create_object.isra.0+0x3a/0xa20
[ 3146.612315]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3146.613032]  kmem_cache_alloc+0x159/0x310
[ 3146.613601]  vm_area_alloc+0x1c/0x110
[ 3146.614090]  mmap_region+0x97e/0x1500
[ 3146.614606]  do_mmap+0xcdb/0x11e0
[ 3146.615062]  vm_mmap_pgoff+0x198/0x1f0
[ 3146.615569]  ? randomize_page+0xb0/0xb0
[ 3146.616098]  ksys_mmap_pgoff+0x41c/0x560
[ 3146.616639]  ? find_mergeable_anon_vma+0x250/0x250
[ 3146.617284]  do_syscall_64+0x33/0x40
[ 3146.617810]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3146.618471] RIP: 0033:0x7fb4a26afb62
[ 3146.618951] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3146.621353] RSP: 002b:00007fb49fc250f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3146.622338] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fb4a26afb62
[ 3146.623286] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000
[ 3146.624218] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000000000000
[ 3146.625188] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000
[ 3146.626098] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3146.628668] CPU: 1 PID: 38865 Comm: syz-executor.6 Not tainted 5.10.238 #1
[ 3146.629631] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3146.630725] Call Trace:
[ 3146.631079]  dump_stack+0x107/0x167
[ 3146.631598]  should_fail.cold+0x5/0xa
[ 3146.632093]  ? create_object.isra.0+0x3a/0xa20
[ 3146.632713]  should_failslab+0x5/0x20
[ 3146.633211]  kmem_cache_alloc+0x5b/0x310
[ 3146.633750]  create_object.isra.0+0x3a/0xa20
[ 3146.634319]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3146.635033]  kmem_cache_alloc+0x159/0x310
[ 3146.635583]  __pmd_alloc+0x94/0x5e0
[ 3146.636065]  copy_page_range+0x2bd8/0x3810
[ 3146.636661]  ? perf_trace_lock+0xac/0x490
[ 3146.637203]  ? lock_chain_count+0x20/0x20
[ 3146.637786]  ? up_write+0x191/0x550
[ 3146.638264]  ? vm_iomap_memory+0x190/0x190
[ 3146.638846]  ? downgrade_write+0x3a0/0x3a0
[ 3146.639401]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 3146.640155]  ? __vma_link_rb+0x540/0x700
[ 3146.640710]  copy_process+0x7654/0x78b0
[ 3146.641261]  ? __cleanup_sighand+0xb0/0xb0
[ 3146.641864]  ? _copy_from_user+0xfb/0x1b0
[ 3146.642430]  kernel_clone+0xe7/0x980
[ 3146.642958]  ? __lockdep_reset_lock+0x180/0x180
[ 3146.643601]  ? create_io_thread+0xf0/0xf0
[ 3146.644154]  ? ksys_write+0x21a/0x260
[ 3146.644709]  ? lock_downgrade+0x6d0/0x6d0
[ 3146.645256]  __do_sys_clone3+0x1e5/0x320
[ 3146.645787]  ? __do_sys_clone+0x110/0x110
[ 3146.646348]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3146.646979]  ? vfs_write+0x354/0xb10
[ 3146.647481]  ? fput_many+0x2f/0x1a0
[ 3146.647990]  ? ksys_write+0x1a9/0x260
[ 3146.648522]  ? __ia32_sys_read+0xb0/0xb0
[ 3146.649072]  do_syscall_64+0x33/0x40
[ 3146.649596]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3146.650275] RIP: 0033:0x7f862144ab19
[ 3146.650763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3146.653246] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3146.654268] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3146.655241] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3146.656178] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3146.657152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3146.658126] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000
[ 3146.660589] FAULT_INJECTION: forcing a failure.
[ 3146.660589] name failslab, interval 1, probability 0, space 0, times 0
[ 3146.662099] CPU: 1 PID: 38950 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 3146.663048] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3146.664156] Call Trace:
[ 3146.664519]  dump_stack+0x107/0x167
[ 3146.665044]  should_fail.cold+0x5/0xa
[ 3146.665550]  ? create_object.isra.0+0x3a/0xa20
[ 3146.666154]  should_failslab+0x5/0x20
[ 3146.666684]  kmem_cache_alloc+0x5b/0x310
[ 3146.667222]  create_object.isra.0+0x3a/0xa20
[ 3146.667839]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3146.668544]  kmem_cache_alloc+0x159/0x310
[ 3146.669104]  vm_area_dup+0x78/0x290
[ 3146.669618]  ? lock_chain_count+0x20/0x20
[ 3146.670182]  ? mark_lock+0xf5/0x2df0
[ 3146.670676]  ? perf_trace_lock+0xac/0x490
[ 3146.671222]  ? SOFTIRQ_verbose+0x10/0x10
[ 3146.671784]  ? __lockdep_reset_lock+0x180/0x180
[ 3146.672401]  ? __lock_acquire+0x1657/0x5b00
[ 3146.673038]  ? vm_area_alloc+0x110/0x110
[ 3146.673612]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3146.674295]  ? SOFTIRQ_verbose+0x10/0x10
[ 3146.674878]  ? perf_trace_lock+0xac/0x490
[ 3146.675434]  ? lock_acquire+0x197/0x470
[ 3146.675955]  ? can_vma_merge_before+0x89/0x250
[ 3146.676595]  __split_vma+0xa8/0x4e0
[ 3146.677088]  split_vma+0x99/0xe0
[ 3146.677554]  mprotect_fixup+0x669/0x8c0
[ 3146.678114]  ? change_protection+0x1ad0/0x1ad0
[ 3146.678743]  ? down_write_killable_nested+0x180/0x180
[ 3146.679413]  ? vmacache_find+0x55/0x2a0
[ 3146.679990]  do_mprotect_pkey+0x518/0x940
[ 3146.680540]  ? mprotect_fixup+0x8c0/0x8c0
[ 3146.681104]  ? __ia32_sys_read+0xb0/0xb0
[ 3146.681669]  __x64_sys_pkey_mprotect+0x93/0x100
[ 3146.682277]  do_syscall_64+0x33/0x40
[ 3146.682811]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3146.683505] RIP: 0033:0x7f5312d97b19
[ 3146.684005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3146.686487] RSP: 002b:00007f531030d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000149
[ 3146.687505] RAX: ffffffffffffffda RBX: 00007f5312eaaf60 RCX: 00007f5312d97b19
[ 3146.688504] RDX: 0000000000000000 RSI: 0000000000013000 RDI: 0000000020fed000
[ 3146.689461] RBP: 00007f531030d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3146.690403] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[ 3146.691340] R13: 00007fff7de9b68f R14: 00007f531030d300 R15: 0000000000022000
10:35:40 executing program 7:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100))
creat(0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0xe4ffffff}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f0000000340))

10:35:40 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ff5000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff) (fail_nth: 3)

10:35:40 executing program 2:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
pipe(0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 73)
getresuid(0x0, 0x0, 0x0)

10:35:40 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc04000, 0x0, 0x1f013, r0, 0x0)

10:35:40 executing program 5:
syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) (fail_nth: 84)

10:35:40 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@nodevmap}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@obj_user={'obj_user', 0x3d, '@{}/,/)'}}, {@euid_gt={'euid>', 0xee00}}, {@dont_measure}, {@smackfsdef}, {@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r4 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0xfffffffe, 0x2, 0xfffffffe, 0x388}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f0000000140))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x200000, 0x14a, 0x8}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)='./file0\x00', 0x40, 0x6000, 0x1, {0x0, r5}}, 0x200)
getresuid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)=<r6=>0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000080), 0x5000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@cache_fscache}], [{@uid_eq={'uid', 0x3d, r6}}, {@dont_appraise}, {@fowner_gt={'fowner>', r7}}]}})

10:35:40 executing program 6:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 65)

10:35:40 executing program 0:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mbind(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x8000, &(0x7f0000000000)=0x7, 0x7, 0x7)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x2, 0xffffffffffffffff)

[ 3147.087394] FAULT_INJECTION: forcing a failure.
[ 3147.087394] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3147.091130] CPU: 1 PID: 38969 Comm: syz-executor.4 Not tainted 5.10.238 #1
[ 3147.093086] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3147.095192] Call Trace:
[ 3147.095535]  dump_stack+0x107/0x167
[ 3147.097063]  should_fail.cold+0x5/0xa
[ 3147.097591]  _copy_to_user+0x2e/0x180
[ 3147.099132]  simple_read_from_buffer+0xcc/0x160
[ 3147.099748]  proc_fail_nth_read+0x198/0x230
[ 3147.101394]  ? proc_sessionid_read+0x230/0x230
[ 3147.103025]  ? security_file_permission+0xb1/0xe0
[ 3147.103634]  ? proc_sessionid_read+0x230/0x230
[ 3147.105275]  vfs_read+0x228/0x620
[ 3147.105759]  ksys_read+0x12d/0x260
[ 3147.107261]  ? vfs_write+0xb10/0xb10
[ 3147.107785]  do_syscall_64+0x33/0x40
[ 3147.109373]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3147.111071] RIP: 0033:0x7f5312d4a69c
[ 3147.111544] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 3147.117112] RSP: 002b:00007f531030d170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3147.119147] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5312d4a69c
[ 3147.121131] RDX: 000000000000000f RSI: 00007f531030d1e0 RDI: 0000000000000003
[ 3147.123074] RBP: 00007f531030d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3147.128835] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[ 3147.129806] R13: 00007fff7de9b68f R14: 00007f531030d300 R15: 0000000000022000
[ 3147.135725] FAULT_INJECTION: forcing a failure.
[ 3147.135725] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3147.137415] CPU: 1 PID: 39011 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3147.138333] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3147.139487] Call Trace:
[ 3147.139852]  dump_stack+0x107/0x167
[ 3147.140392]  should_fail.cold+0x5/0xa
[ 3147.140954]  __alloc_pages_nodemask+0x182/0x600
[ 3147.141634]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 3147.142469]  ? walk_mem_res+0x170/0x170
[ 3147.143034]  alloc_pages_current+0x187/0x280
[ 3147.143666]  pte_alloc_one+0x16/0x1a0
[ 3147.144198]  __pte_alloc+0x1d/0x330
[ 3147.144759]  remap_pfn_range_internal+0x9a3/0xf60
[ 3147.145470]  ? lookup_memtype+0x5b/0x200
[ 3147.146050]  ? apply_to_existing_page_range+0x40/0x40
[ 3147.146805]  remap_pfn_range+0xcd/0x160
[ 3147.147366]  ? remap_pfn_range_notrack+0x70/0x70
[ 3147.148023]  ? memcg_slab_post_alloc_hook+0x17a/0x430
[ 3147.148780]  io_uring_mmap+0x398/0x530
[ 3147.149321]  mmap_file+0x5e/0xe0
[ 3147.149859]  mmap_region+0xc49/0x1500
[ 3147.150399]  do_mmap+0xcdb/0x11e0
[ 3147.150870]  vm_mmap_pgoff+0x198/0x1f0
[ 3147.151393]  ? randomize_page+0xb0/0xb0
[ 3147.151969]  ksys_mmap_pgoff+0x41c/0x560
[ 3147.152506]  ? find_mergeable_anon_vma+0x250/0x250
[ 3147.153186]  do_syscall_64+0x33/0x40
[ 3147.153712]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3147.154382] RIP: 0033:0x7fb4a26afb62
[ 3147.154918] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3147.157371] RSP: 002b:00007fb49fc250f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3147.158403] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fb4a26afb62
[ 3147.159345] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000
[ 3147.160328] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000000000000
[ 3147.161284] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000
[ 3147.162246] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3147.189621] ------------[ cut here ]------------
[ 3147.190344] WARNING: CPU: 1 PID: 39011 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270
[ 3147.191631] Modules linked in:
[ 3147.192123] CPU: 1 PID: 39011 Comm: syz-executor.5 Not tainted 5.10.238 #1
[ 3147.193157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3147.194359] RIP: 0010:get_pat_info+0x216/0x270
[ 3147.194984] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 51 89 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 3a 89 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 65 8f 5a 00 e9
[ 3147.197601] RSP: 0018:ffff88804b667898 EFLAGS: 00010212
[ 3147.198371] RAX: 0000000000012ce4 RBX: ffff888048899000 RCX: ffffc900119b1000
[ 3147.199414] RDX: 0000000000040000 RSI: ffffffff81124696 RDI: 0000000000000007
[ 3147.200422] RBP: ffff88804b667950 R08: 0000000000000000 R09: ffff88804b667820
[ 3147.201447] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028
[ 3147.202931] R13: 1ffff110096ccf13 R14: 0000000000000000 R15: ffff888048899050
[ 3147.204014] FS:  00007fb49fc25700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[ 3147.205357] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3147.206284] CR2: 00007fb49fc24f78 CR3: 000000005054e000 CR4: 0000000000350ee0
[ 3147.207805] DR0: 0000000020000380 DR1: 0000000000000000 DR2: 0000000000000000
[ 3147.208921] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[ 3147.209982] Call Trace:
[ 3147.210369]  ? pgprot_writethrough+0xc0/0xc0
[ 3147.211065]  ? finish_task_switch+0x1a4/0x5d0
[ 3147.211726]  untrack_pfn+0xdc/0x240
[ 3147.212312]  ? track_pfn_insert+0x150/0x150
[ 3147.214240]  ? lock_downgrade+0x6d0/0x6d0
[ 3147.214833]  ? uprobe_munmap+0x1c/0x560
[ 3147.215468]  unmap_single_vma+0x1bc/0x300
[ 3147.216102]  zap_page_range_single+0x2ce/0x450
[ 3147.217083]  ? unmap_single_vma+0x300/0x300
[ 3147.219015]  ? remap_pfn_range_internal+0xc56/0xf60
[ 3147.219762]  ? lookup_memtype+0x5b/0x200
[ 3147.220414]  ? apply_to_existing_page_range+0x40/0x40
[ 3147.221223]  remap_pfn_range+0x139/0x160
[ 3147.221811]  ? remap_pfn_range_notrack+0x70/0x70
[ 3147.222535]  ? memcg_slab_post_alloc_hook+0x17a/0x430
[ 3147.223368]  io_uring_mmap+0x398/0x530
[ 3147.223993]  mmap_file+0x5e/0xe0
[ 3147.224484]  mmap_region+0xc49/0x1500
[ 3147.225239]  do_mmap+0xcdb/0x11e0
[ 3147.225722]  vm_mmap_pgoff+0x198/0x1f0
[ 3147.226341]  ? randomize_page+0xb0/0xb0
[ 3147.226993]  ksys_mmap_pgoff+0x41c/0x560
[ 3147.227601]  ? find_mergeable_anon_vma+0x250/0x250
[ 3147.228424]  do_syscall_64+0x33/0x40
[ 3147.229014]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3147.229754] RIP: 0033:0x7fb4a26afb62
[ 3147.230342] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 3147.233265] RSP: 002b:00007fb49fc250f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 3147.234384] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fb4a26afb62
[ 3147.235460] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffc000
[ 3147.236583] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000000000000
[ 3147.237684] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000
[ 3147.238773] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3147.239965] irq event stamp: 1111
[ 3147.240483] hardirqs last  enabled at (1121): [<ffffffff8129b7ed>] console_unlock+0x92d/0xb40
[ 3147.242047] hardirqs last disabled at (1132): [<ffffffff83e7a19b>] sysvec_apic_timer_interrupt+0xb/0xa0
[ 3147.243399] softirqs last  enabled at (734): [<ffffffff84001092>] asm_call_irq_on_stack+0x12/0x20
[ 3147.244774] softirqs last disabled at (683): [<ffffffff84001092>] asm_call_irq_on_stack+0x12/0x20
[ 3147.246171] ---[ end trace 05207e4f3195825f ]---
[ 3147.285516] FAULT_INJECTION: forcing a failure.
[ 3147.285516] name failslab, interval 1, probability 0, space 0, times 0
[ 3147.287586] CPU: 1 PID: 39074 Comm: syz-executor.2 Tainted: G        W         5.10.238 #1
[ 3147.288920] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3147.290098] Call Trace:
[ 3147.290448]  dump_stack+0x107/0x167
[ 3147.291031]  should_fail.cold+0x5/0xa
[ 3147.291532]  ? ___slab_alloc+0x155/0x700
[ 3147.292177]  ? create_object.isra.0+0x3a/0xa20
[ 3147.292799]  should_failslab+0x5/0x20
[ 3147.293360]  kmem_cache_alloc+0x5b/0x310
[ 3147.293965]  create_object.isra.0+0x3a/0xa20
[ 3147.294538]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3147.295293]  kmem_cache_alloc+0x159/0x310
[ 3147.295972]  xas_alloc+0x336/0x440
[ 3147.296442]  xas_create+0x34a/0x10d0
[ 3147.297018]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3147.297738]  xas_store+0x8c/0x1c40
[ 3147.298277]  __xa_store+0x164/0x2d0
[ 3147.298781]  ? xa_delete_node+0x280/0x280
[ 3147.299408]  ? trace_hardirqs_on+0x5b/0x180
[ 3147.300093]  xa_store+0x31/0x50
[ 3147.300526]  __io_uring_add_tctx_node+0x1cf/0x520
[ 3147.301279]  ? io_uring_alloc_task_context+0x6a0/0x6a0
[ 3147.302030]  ? alloc_fd+0x2e7/0x670
[ 3147.302516]  io_uring_setup+0x1fbb/0x2980
[ 3147.303154]  ? __do_sys_io_uring_enter+0x1890/0x1890
[ 3147.303935]  ? wait_for_completion_io+0x270/0x270
[ 3147.304611]  do_syscall_64+0x33/0x40
[ 3147.305198]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3147.305935] RIP: 0033:0x7fd22c24ab19
[ 3147.306426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3147.309065] RSP: 002b:00007fd2297c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 3147.310123] RAX: ffffffffffffffda RBX: 00007fd22c35df60 RCX: 00007fd22c24ab19
[ 3147.311135] RDX: 0000000020ffe000 RSI: 00000000200002c0 RDI: 0000000000002203
[ 3147.312163] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000
[ 3147.313228] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 3147.314266] R13: 0000000020ffe000 R14: 0000000000000000 R15: 0000000020ffc000
[ 3147.422183] FAULT_INJECTION: forcing a failure.
[ 3147.422183] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3147.423832] CPU: 1 PID: 39079 Comm: syz-executor.6 Tainted: G        W         5.10.238 #1
[ 3147.425106] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3147.426279] Call Trace:
[ 3147.426630]  dump_stack+0x107/0x167
[ 3147.427213]  should_fail.cold+0x5/0xa
[ 3147.427718]  __alloc_pages_nodemask+0x182/0x600
[ 3147.428421]  ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200
[ 3147.429320]  ? find_held_lock+0x2c/0x110
[ 3147.429912]  ? __pmd_alloc+0x2db/0x5e0
[ 3147.430472]  ? lock_downgrade+0x6d0/0x6d0
[ 3147.431076]  ? do_raw_spin_lock+0x121/0x260
[ 3147.431642]  alloc_pages_current+0x187/0x280
[ 3147.432351]  pte_alloc_one+0x16/0x1a0
[ 3147.432938]  __pte_alloc+0x1d/0x330
[ 3147.433421]  copy_page_range+0x1b62/0x3810
[ 3147.434067]  ? perf_trace_lock+0xac/0x490
[ 3147.434603]  ? lock_chain_count+0x20/0x20
[ 3147.435281]  ? up_write+0x191/0x550
[ 3147.435759]  ? vm_iomap_memory+0x190/0x190
[ 3147.436401]  ? downgrade_write+0x3a0/0x3a0
[ 3147.437079]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 3147.437804]  ? __vma_link_rb+0x540/0x700
[ 3147.438432]  copy_process+0x7654/0x78b0
[ 3147.439072]  ? __cleanup_sighand+0xb0/0xb0
[ 3147.439661]  ? _copy_from_user+0xfb/0x1b0
[ 3147.440335]  kernel_clone+0xe7/0x980
[ 3147.440918]  ? __lockdep_reset_lock+0x180/0x180
[ 3147.441551]  ? create_io_thread+0xf0/0xf0
[ 3147.442202]  ? ksys_write+0x21a/0x260
[ 3147.442698]  ? lock_downgrade+0x6d0/0x6d0
[ 3147.443352]  __do_sys_clone3+0x1e5/0x320
[ 3147.443994]  ? __do_sys_clone+0x110/0x110
[ 3147.444556]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3147.445263]  ? vfs_write+0x354/0xb10
[ 3147.445751]  ? fput_many+0x2f/0x1a0
[ 3147.446335]  ? ksys_write+0x1a9/0x260
[ 3147.446835]  ? __ia32_sys_read+0xb0/0xb0
[ 3147.447468]  do_syscall_64+0x33/0x40
[ 3147.448076]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3147.448780] RIP: 0033:0x7f862144ab19
[ 3147.449331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3147.452004] RSP: 002b:00007f861e9c0188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 3147.453106] RAX: ffffffffffffffda RBX: 00007f862155df60 RCX: 00007f862144ab19
[ 3147.454107] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200008c0
[ 3147.455099] RBP: 00007f861e9c01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3147.456156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3147.459048] R13: 00007ffc637b687f R14: 00007f861e9c0300 R15: 0000000000022000

VM DIAGNOSIS:
10:35:41  Registers:
info registers vcpu 0
RAX=0000000000000001 RBX=ffff88800ba14000 RCX=ffffffff81645e55 RDX=0000000000000000
RSI=ffffffff81645e5e RDI=ffff88806ce3c128 RBP=ffffea000139a380 RSP=ffff8880506a79d0
R8 =0000000000000001 R9 =ffffea000139a3b3 R10=0000000000000000 R11=0000000000000001
R12=ffffea000139a388 R13=ffff888050be30a8 R14=dffffc0000000000 R15=00007fa7bd016000
RIP=ffffffff816e0e42 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 ffff888000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f47b7185680 CR3=0000000039000000 CR4=00350ef0
DR0=0000000020000380 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff822e169c RDI=ffffffff879f5140 RBP=ffffffff879f5100 RSP=ffff88804b6671e0
R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001
R12=0000000000000020 R13=fffffbfff0f3ea75 R14=fffffbfff0f3ea2a R15=dffffc0000000000
RIP=ffffffff822e16f0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fb49fc25700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb49fc24f78 CR3=000000005054e000 CR4=00350ee0
DR0=0000000020000380 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007fb4a27967c000007fb4a27967c8
XMM02=00007fb4a27967e000007fb4a27967c0 XMM03=00007fb4a27967c800007fb4a27967c0
XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000