in(r2, 0x5452, &(0x7f0000000040)=0x1) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, &(0x7f00000000c0)=0xa2, 0x4) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000000)=0x4300, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0xde, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, @perf_config_ext={0x0, 0xe}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r2, &(0x7f0000004d00)=[{{0x0, 0x11, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1, 0x0, 0x0, 0x3}, 0x200000}], 0x7ffff000, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x0, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) fcntl$lock(r3, 0x7, &(0x7f0000000140)={0x2, 0x1, 0x6, 0x54a, 0xffffffffffffffff}) 01:35:14 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 9) 01:35:14 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 704.347344] FAULT_INJECTION: forcing a failure. [ 704.347344] name failslab, interval 1, probability 0, space 0, times 0 [ 704.350207] CPU: 1 PID: 6916 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 704.351961] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 704.353768] Call Trace: [ 704.354444] dump_stack+0x107/0x167 [ 704.355248] should_fail.cold+0x5/0xa [ 704.356096] ? create_object.isra.0+0x3a/0xa20 [ 704.357091] should_failslab+0x5/0x20 [ 704.357924] kmem_cache_alloc+0x5b/0x310 [ 704.358972] create_object.isra.0+0x3a/0xa20 [ 704.359959] kmemleak_alloc_percpu+0xa0/0x100 [ 704.360945] pcpu_alloc+0x4e2/0x1240 [ 704.361773] ? io_tctx_exit_cb+0xf0/0xf0 [ 704.362662] percpu_ref_init+0x31/0x3d0 [ 704.363547] io_uring_setup+0x47a/0x2980 [ 704.364443] ? __mutex_unlock_slowpath+0xe1/0x600 [ 704.365502] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 704.366602] ? wait_for_completion_io+0x270/0x270 [ 704.367691] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 704.368839] ? syscall_enter_from_user_mode+0x1d/0x50 [ 704.369970] do_syscall_64+0x33/0x40 [ 704.370783] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 704.371919] RIP: 0033:0x7f106b311b19 [ 704.372733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 704.376752] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 704.378411] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 704.379970] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 704.381529] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 704.383078] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 704.384648] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:35:14 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = accept$unix(r0, &(0x7f0000000080)=@abs, &(0x7f0000000000)=0x6e) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x0, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) ppoll(&(0x7f0000000100)=[{r0, 0x2000}, {r1, 0x200}, {r2, 0x8}, {r3}, {r0, 0x1080}, {r5, 0x43}, {r0, 0x4}, {r0, 0x200}], 0x8, &(0x7f0000000140), &(0x7f0000000180)={[0x7ff]}, 0x8) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) r6 = signalfd(0xffffffffffffffff, &(0x7f0000000480)={[0x1]}, 0x8) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000004c0)={0x0}, &(0x7f0000000500)=0xc) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r8, 0x0, 0x0) r9 = syz_open_dev$tty1(0xc, 0x4, 0x1) r10 = syz_mount_image$nfs4(&(0x7f0000000540), &(0x7f0000000580)='./file1\x00', 0x1, 0x3, &(0x7f00000006c0)=[{&(0x7f00000005c0)="6e29efb0ee1c2a9374d5bf8ebe5a2dd079f9fc64acdeaf20c204c4f2af6e22791c89b4bcde8c3e05d447e44f053fba7b424e8fbb3c5a7fbf2f2dddc1d38449bab5616095d19641c5c4edd82fa9c66d2d9c0da6351b8cf5b0d4a4aab9c04fa8cf9d03d4df6bcd649021a787b993071aec032fce", 0x73, 0x4}, {&(0x7f0000000640)="b3c5811264311c9a2044a4538a87999fd1f0fdc1f27c2a057adfd290a585f00b4932bdfdf66202e1f46ec2094fb3dde686811328827e4f8d143ab99bea88bbe7bd35956888eb2e87189df913b23dc49d5a48e8751133744b901f129b215d8de28ab8dfdd9246b84eaab5", 0x6a, 0x9}, {&(0x7f0000001200)="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", 0x1000, 0x8}], 0x1000, &(0x7f0000000740)={[{'}*'}, {'/dev/nvram\x00'}], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@fowner_gt={'fowner>', 0xee01}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@euid_gt={'euid>', 0xee00}}, {@permit_directio}, {@uid_lt={'uid<', 0xee01}}, {@func={'func', 0x3d, 'FIRMWARE_CHECK'}}, {@fowner_eq}]}) r11 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r11, 0x0, 0x0, 0x1000002) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f00000002c0)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f00000001c0), 0x0, &(0x7f0000000840)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01, 0xee00}}}, @rights={{0x20, 0x1, 0x1, [r1, 0xffffffffffffffff, r5, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r6, r1]}}, @cred={{0x1c, 0x1, 0x2, {r7, r8, 0xee01}}}, @rights={{0x1c, 0x1, 0x1, [r9, r10, r11]}}], 0xe8, 0x8000}, 0x24000000) 01:35:14 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 10) [ 704.548798] loop3: detected capacity change from 0 to 4096 01:35:14 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) r3 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r4 = fork() r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r5, 0x0, 0x0) r6 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r5, r6, 0x0, 0x100000001) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f0000000100)=0xc) ioctl$BINDER_FREEZE(r6, 0x400c620e, &(0x7f0000000180)={r7, 0x0, 0x345}) ptrace$getregset(0x4204, r4, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:35:14 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)=0x0) timer_gettime(r0, &(0x7f00000002c0)) timer_delete(r0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r1, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:35:14 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 704.688086] FAULT_INJECTION: forcing a failure. [ 704.688086] name failslab, interval 1, probability 0, space 0, times 0 [ 704.691286] CPU: 1 PID: 6930 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 704.692886] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 704.694798] Call Trace: [ 704.695421] dump_stack+0x107/0x167 [ 704.696279] should_fail.cold+0x5/0xa [ 704.697162] ? percpu_ref_init+0xd8/0x3d0 [ 704.698131] should_failslab+0x5/0x20 [ 704.699014] kmem_cache_alloc_trace+0x55/0x320 [ 704.700079] ? io_tctx_exit_cb+0xf0/0xf0 [ 704.701023] percpu_ref_init+0xd8/0x3d0 [ 704.701949] io_uring_setup+0x47a/0x2980 [ 704.702896] ? __mutex_unlock_slowpath+0xe1/0x600 [ 704.704028] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 704.705186] ? wait_for_completion_io+0x270/0x270 [ 704.706325] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 704.707546] ? syscall_enter_from_user_mode+0x1d/0x50 [ 704.708740] do_syscall_64+0x33/0x40 [ 704.709607] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 704.710789] RIP: 0033:0x7f106b311b19 [ 704.711666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 704.715878] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 704.717604] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 704.719220] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 704.720835] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 704.722446] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 704.724065] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 704.776699] loop3: detected capacity change from 0 to 4096 01:35:28 executing program 6: r0 = memfd_create(&(0x7f0000000180)='\xd5Kj\x83\x8feY\x13\xac\x80\xdf\xdd\xed\xcf\xd8#\xfb\xf7\x13\xb0\xf7\xad\x96\x8a5S\xb8t\xa5\xb3\x85\x1a\x93\xf7\x9ea\x8b)\x97\x97\\&\x06\xef\xc1\xdf\xd8+4$d\x19z\xf7\x13Z\xa4\xc1\xa5\x1c\xd6\xff\xa0u\xc1#\xe0\xc3\x8c\x88\x7f\xc9\xae\xc9\xcf\x8c&\xe5d\x90\x82#\xe92\xaa\xb9\x18!\x8e\xd2cW\x17\x8a\xeb Q\xa2\xe9q\x8f:VgG\xeb\x91\tp\bkj\xfdA\x8c\x80\x16Y\xf4\xfevB\x91\xe1\x8c,\xbc\xeaQ\f\xe4\x9f\x1d\xc2:\x9d\xe2\xc3`F\x01\x01\xf3n~\xc8\x1f\x98\xd92\b\xe1\x86g\xca\xd1\xfeXoy\xd1\xa2\xc7\xaa\xc1\xdej]3\xc9\x05\x05\xd4\x86\x05\xdd\xa3\xab\xcc', 0x0) ftruncate(r0, 0x40) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000000)={0x0, 0x2, 0x0, 0x2}) preadv(r0, &(0x7f0000000400)=[{&(0x7f0000000080)=""/200, 0x200000}], 0x1, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) syz_open_dev$vcsa(&(0x7f0000000240), 0x400, 0x8080) fallocate(r1, 0x0, 0x0, 0x1000002) mkdirat$cgroup(r1, &(0x7f0000000040)='syz0\x00', 0x1ff) 01:35:28 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, 0x0) timer_gettime(0x0, &(0x7f00000002c0)) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="040041b2042131d734a29ade8b0360792e8a53b0e02e668b3ca330f8b59aa7134170c5612d31161d11a6fbcd060200000024c5df081650478277b5405e62aba026eb436609209c45f379b7476a00f18bcdde5eabc96bc52a72b288ef8e8d6c8201676b82e9ffc81985cabb4355c826bca259bd0dfd7397c81e880390f7118889a1b8f858430699a64f3107c5f47baebeaa56000000000000000029f7cfc5f87b6bb6d3c602f209a2aabeb298f06e73374ccc30d4fd279538bb65919ee41a214607c00774aa1c77e26391d2166fc59fc63a79db3192dfa1a84467ec07cb50e2ea1993a8bbbb1858e4422c6abd082b3754499174110315288ea4eff39a0f1406a6b9da003d50ec13a2a1633b83a0ac23914893e373000000e5f3dfd13672ea507188ac3799f84dc5feb7c30eccc2f8c3c6f6f390ed893e3df2d29efd9e3c471400a62cc65587d5ce2c4d723d2d02aa483147b430b361435e1f01dc5a3bf626957002a84006985e839e17639e0b607d5e50349af65f4f2bbd4d0346f1fdc1b2cffe4d20ca9404add59e86ba6adaaadf1d204882ab6c333951c4d1524ce9bcd4beaaa6b1d48329038ca4b24fdd5c7c0819d5c856a569abbe57c2c143709acff8b288c477a25e79eb3448c6a4e08a36402cd49229bd7f2832789d17c7e1e81a516f736f445f78ca4ec4073f2b26e28f6e011beb747919f888890f14b3fd7aec1f8bd4f3ae3327459786fb19842dae42aa95cb3f20619c51b098f0f13ca7a757b0cd23bdee855c74363a11ff7b3784da3b78494040ab0e1c566c29cba52a7d0a20b11f98951e624b0cd5e1f2ee516bb3bdb0901fc92d5335e9ac4bb0dca63680f920f052626b4dcc070663a9f2dcebbf0c233a2dc307975f5f48ee74d68a5b9b67b6b5f92cef18a93e656b15e3aca7031d9e2b7f139420b5f7dab4103a3e221122bd94024924250f7e1860b379f3df1ebe9fdae54d8a994cf258c5734939becf29d060f2dc08e71733821ff209b1eb67e13a0378ef984dbf0626bf7330d1878a29538201b404aa072ced6d8849774f48a3e124ff03602a83f84972bdb4cddf51221299d5dcacbc206a10b49d50002917dc4f9855f0189d9c39"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 718.081927] FAULT_INJECTION: forcing a failure. [ 718.081927] name failslab, interval 1, probability 0, space 0, times 0 [ 718.084483] CPU: 1 PID: 6951 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 718.085959] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 718.087780] Call Trace: [ 718.088370] dump_stack+0x107/0x167 [ 718.089192] should_fail.cold+0x5/0xa [ 718.090035] ? create_object.isra.0+0x3a/0xa20 [ 718.091043] should_failslab+0x5/0x20 [ 718.091898] kmem_cache_alloc+0x5b/0x310 [ 718.092805] create_object.isra.0+0x3a/0xa20 [ 718.093773] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 718.094904] kmem_cache_alloc_trace+0x151/0x320 [ 718.095946] ? io_tctx_exit_cb+0xf0/0xf0 [ 718.096833] percpu_ref_init+0xd8/0x3d0 [ 718.097673] io_uring_setup+0x47a/0x2980 [ 718.098579] ? __mutex_unlock_slowpath+0xe1/0x600 [ 718.099642] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 718.100751] ? wait_for_completion_io+0x270/0x270 [ 718.101856] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 718.101892] ? syscall_enter_from_user_mode+0x1d/0x50 [ 718.103838] do_syscall_64+0x33/0x40 [ 718.104672] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 718.104686] RIP: 0033:0x7f106b311b19 [ 718.104710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 718.104724] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 718.104749] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 718.104763] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 718.104780] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 718.116410] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 01:35:28 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) r3 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r4 = fork() r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r5, 0x0, 0x0) r6 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r5, r6, 0x0, 0x100000001) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f0000000100)=0xc) ioctl$BINDER_FREEZE(r6, 0x400c620e, &(0x7f0000000180)={r7, 0x0, 0x345}) ptrace$getregset(0x4204, r4, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:35:28 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x0) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:35:28 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 11) 01:35:28 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f0000000300)={{'\x00', 0x1}, {0x5}, 0x1, 0x0, 0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)="56d36011d8643c9d970f0f43dec6975e330a8855f3d400c1e40266c872e904db7992cf8b7b9ea3761b4b7f00cecd5fd977324faec813012fb70d1a2ba20c126017d3052822768877a4e47da02298f132fccd40c45bd9942af9929759c2b32fcd2a424caa88976bd50741f7b9b7ae9f0abf389310700ddc9993d19e404dc28218d6f82a208f5a874ac87e20e843022d908d0fa659558e0b4e43ae8d03805d41bf842ea7770783239ca60dce3053908698b8c5d24781c2f01592cfd23e1df6abe13f8f3f1516d775fe141b0b447e1d63", 0xcf, 0x0, &(0x7f0000000240)={0x2, 0x41, {0x1, 0xc, 0x12, "73458c458cdba0c768d6eca4cfa052dbed39", 0x22, "d348e1d686a430f44fa61b18508b89cbf4eced226927b90da66bb3725a91cbf9234e"}, 0x65, "5b7286a3699d8ef993e188b67b65724bd6fe97e2a489b44efbd1f4d2d2fd4db4d6fc0078249027acf6869d9cce951f41a0b66ee884067298973ab2fc407e2af7cc3729c6f71768bd3ae8e448436520a3eec97d151f9c00fd469e9228d3c2c35de07e865011"}, 0xb2}) r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) writev(r1, &(0x7f0000000900)=[{&(0x7f0000000380)="3cf2c54ba58cd883e2e1b8247bba4325f7ba0ab80c919c967fd0da1e7f54e3094c24bfa67cce1d2a24d167196a5f9582539a6aa105687744ac32ad45126bc6cc78d23cfae0e1c80ca3959f3437379d87109abcc0910d2bc006fc0a9813b69100461d86cc6ecbd7fb65076a4fd171efa6574438dafa07b893b127cc47701112a2dd50e4e583ba45d36293bf7887a2f99d4048a837b5433d20f4579bb9ce834552a0ba", 0xa2}, {&(0x7f0000000440)="18998a79ee4516c41fc56d4ed381d97fa0709027d8927da60b7677a9ff27d114a0668b4e4ef1049bc361f7de5463f0eebb644c7c230b8ad7d07ba55ad1f7f38c212cb70221d3056a137101be2ba0f9f045abc739591056db8dfe74f445f425618c6018c95d2e7ac073ce56d2f4ffdf774898eae3f9b5bd4c9d30cc9c9c9f87592e2a8ec87c9e1ae3db2d783446b756003f814df84f14b4c4f3f601585adc625bbc16164e6b6a40568379a3660ca3db3a2ea44b24798eca55c79225d1d919dca8d5105851930cb0f2", 0xc8}, {&(0x7f0000000540)="4e8acc13d0ee2918bbea3512c7d8f41342fd52060a4e973e2b69ed9e8ff2d303b86f20b623a0b0f1b5a223ff8d9e796f9c5564b37b3461a0e5d58cdbf3f196b8982cff5a4268df0261669214b616fab3a77bf555226177f73457cce223c224c70233ca1bbe02c3d0b3075b98704f35bb89aa4d863f9321bfbe03c6752765c90e86e3887359fe6c02b69903788f1f626cd3b2fd73f73efa82c439d235e7", 0x9d}, {&(0x7f0000000600)="fa91e2c2bb81ce01cf3846b380320c659085f0405ea23f65220dc0add4b55b6bb481e5e2ed79d218574692beb7e3d87416c66e8a18c39d62cb7f9f2513947121aafebb9af514adfd13787c16fbaa25b6952b57486712b1872cdc9d098499ec89dfdc91256e456b90292bb18b05d57291c10d3049e1ed194eea2203a0715c5a48adad9f576f82924371d9afff0a56be4cd5f56a0098ecac538655d75a372a268a0a5815f5c1a6f4679df06ea09284f1dcd61ef86e261a644509ccb56385a5bc51f8df55ef5cdaf5281e019f3df336650118e7194ed503d526637380e33a69ed760431e103ca7cb4151759bc94f86db869c9544a50", 0xf4}, {&(0x7f0000000700)="e5f0fbafc897558db03f548c7d1467ce225a57b778415e7be3f42163f763210c1c4fc03ce176e12aebbaf475dffbc2eebc882d98987d505ab63cab7471041930d43a2b4bfcd128e597a0b7c05fd0c48bd6bbdcd57bb3110965679e231d27562d775b42f23c8aca01f8aa950bcf9100fc9581e299eaa7b56589257f63ea5398d3330dc7469466334da7", 0x89}, {&(0x7f00000007c0)="3088633b119dfed7c793685db2a28a0ffa148598e1aedb1a058283f9255879d0a42f3d37d1cc151f2d21c950f8632335becad2ff45fba9a06009d7213f67a231c85c4f331f2f3fde7d3c7ab9ff4f4ae6603ef41920920c9f2e2fc7391e71399e3def86f5", 0x64}, {&(0x7f0000000840)="730d82b4d889cb68e55d372b1d99eba435af858f255096c9af8db86af4eb4c830f65de9209342c35aaaede8c5f03792739da3a65257e17bf3c21f926f2bf24ab58ac31ab9db396077bb5721d82acbf4ea2bffe475fe199c51fce70711ce66d3da4db1c3495b84a9e2bb79eca4650108d11bc7eed0603f74960de9ef557fcafa1f5736f9630927d", 0x87}], 0x7) 01:35:28 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:35:28 executing program 4: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) sendfile(r0, r1, 0x0, 0x100000001) 01:35:28 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0xc2802, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) [ 718.118340] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 718.132171] loop4: detected capacity change from 0 to 41948160 [ 718.149722] loop5: detected capacity change from 0 to 41948160 01:35:28 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000080)={@remote}, 0x14) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000040)={@dev}, 0x14) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000180)={0x77359400}, 0x10) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) dup2(r2, r1) ioctl$BTRFS_IOC_INO_LOOKUP(r1, 0xd0009412, 0x0) bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e24, 0x6, @mcast2, 0x3f}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000200)={@loopback, 0x74}) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e24, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, 0x3ff}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) write$P9_RUNLINKAT(0xffffffffffffffff, &(0x7f0000000040)={0x7}, 0x7) 01:35:28 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) creat(&(0x7f0000000000)='./file0\x00', 0x4) 01:35:28 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x0) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:35:28 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 12) 01:35:28 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, 0x0) timer_gettime(0x0, &(0x7f00000002c0)) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="040041b2042131d734a29ade8b0360792e8a53b0e02e668b3ca330f8b59aa7134170c5612d31161d11a6fbcd060200000024c5df081650478277b5405e62aba026eb436609209c45f379b7476a00f18bcdde5eabc96bc52a72b288ef8e8d6c8201676b82e9ffc81985cabb4355c826bca259bd0dfd7397c81e880390f7118889a1b8f858430699a64f3107c5f47baebeaa56000000000000000029f7cfc5f87b6bb6d3c602f209a2aabeb298f06e73374ccc30d4fd279538bb65919ee41a214607c00774aa1c77e26391d2166fc59fc63a79db3192dfa1a84467ec07cb50e2ea1993a8bbbb1858e4422c6abd082b3754499174110315288ea4eff39a0f1406a6b9da003d50ec13a2a1633b83a0ac23914893e373000000e5f3dfd13672ea507188ac3799f84dc5feb7c30eccc2f8c3c6f6f390ed893e3df2d29efd9e3c471400a62cc65587d5ce2c4d723d2d02aa483147b430b361435e1f01dc5a3bf626957002a84006985e839e17639e0b607d5e50349af65f4f2bbd4d0346f1fdc1b2cffe4d20ca9404add59e86ba6adaaadf1d204882ab6c333951c4d1524ce9bcd4beaaa6b1d48329038ca4b24fdd5c7c0819d5c856a569abbe57c2c143709acff8b288c477a25e79eb3448c6a4e08a36402cd49229bd7f2832789d17c7e1e81a516f736f445f78ca4ec4073f2b26e28f6e011beb747919f888890f14b3fd7aec1f8bd4f3ae3327459786fb19842dae42aa95cb3f20619c51b098f0f13ca7a757b0cd23bdee855c74363a11ff7b3784da3b78494040ab0e1c566c29cba52a7d0a20b11f98951e624b0cd5e1f2ee516bb3bdb0901fc92d5335e9ac4bb0dca63680f920f052626b4dcc070663a9f2dcebbf0c233a2dc307975f5f48ee74d68a5b9b67b6b5f92cef18a93e656b15e3aca7031d9e2b7f139420b5f7dab4103a3e221122bd94024924250f7e1860b379f3df1ebe9fdae54d8a994cf258c5734939becf29d060f2dc08e71733821ff209b1eb67e13a0378ef984dbf0626bf7330d1878a29538201b404aa072ced6d8849774f48a3e124ff03602a83f84972bdb4cddf51221299d5dcacbc206a10b49d50002917dc4f9855f0189d9c39"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:35:28 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x420043, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:35:28 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) ftruncate(r0, 0x800) write$cgroup_netprio_ifpriomap(r0, &(0x7f0000000040)={'veth0_virt_wifi', 0x32, 0x35}, 0x12) sendfile(0xffffffffffffffff, r0, 0x0, 0x8000) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fef000/0x2000)=nil, 0x2000, 0xf, 0x12, r0, 0x0) syz_io_uring_submit(r1, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2000, 0x5, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) mbind(&(0x7f0000fec000/0x14000)=nil, 0x14000, 0x0, 0x0, 0x0, 0x2) r2 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x46e2, 0x102) execveat(r2, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000840)=[&(0x7f0000000140)=']\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000300)='security.capability\x00', &(0x7f0000000340)='security.capability\x00', &(0x7f00000003c0)='wlan0\x00', &(0x7f0000000440)='\xd7,+[-&@\x00'], &(0x7f0000000440), 0x1000) ftruncate(r2, 0x1000003) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000080)={@local, 0x3, 0x2, 0x1, 0x2, 0x9, 0xfffa}, &(0x7f0000000100)=0x20) ioctl$FS_IOC_FSSETXATTR(r2, 0x40086602, &(0x7f0000000000)) fsetxattr$security_capability(r2, &(0x7f0000000040), &(0x7f00000008c0)=@v3={0x3000000, [{}, {0x1ff, 0x7f}]}, 0x18, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000054800)={0x40, [], 0x8, "89bf53ec9233d4"}) 01:35:28 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) r3 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r4 = fork() r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r5, 0x0, 0x0) r6 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r5, r6, 0x0, 0x100000001) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000100)=0xc) ptrace(0x10, r4) ptrace$getregset(0x4204, r4, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 718.518573] FAULT_INJECTION: forcing a failure. [ 718.518573] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 718.521254] CPU: 1 PID: 6992 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 718.522731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 718.524537] Call Trace: [ 718.525111] dump_stack+0x107/0x167 [ 718.525900] should_fail.cold+0x5/0xa [ 718.526726] __alloc_pages_nodemask+0x182/0x600 [ 718.527753] ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200 [ 718.529062] ? cap_capable+0x1cd/0x230 [ 718.529915] alloc_pages_current+0x187/0x280 [ 718.530876] __get_free_pages+0xc/0xa0 [ 718.531728] io_uring_setup+0xe27/0x2980 [ 718.532617] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 718.533711] ? wait_for_completion_io+0x270/0x270 [ 718.534782] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 718.535918] ? syscall_enter_from_user_mode+0x1d/0x50 [ 718.537041] do_syscall_64+0x33/0x40 [ 718.537852] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 718.538961] RIP: 0033:0x7f106b311b19 [ 718.539747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 718.543713] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 718.545365] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 718.546918] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 718.548446] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 718.550004] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 718.551558] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 732.910643] loop4: detected capacity change from 0 to 41948160 [ 732.960234] FAULT_INJECTION: forcing a failure. [ 732.960234] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 732.962909] CPU: 1 PID: 7018 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 732.964446] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 732.966145] Call Trace: [ 732.966671] dump_stack+0x107/0x167 [ 732.967392] should_fail.cold+0x5/0xa [ 732.967452] loop5: detected capacity change from 0 to 41948160 [ 732.968166] __alloc_pages_nodemask+0x182/0x600 [ 732.968194] ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200 [ 732.968227] ? cap_capable+0x1cd/0x230 [ 732.972498] alloc_pages_current+0x187/0x280 [ 732.973380] __get_free_pages+0xc/0xa0 [ 732.974163] io_uring_setup+0xf9a/0x2980 [ 732.975284] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 732.976344] ? wait_for_completion_io+0x270/0x270 01:35:43 executing program 4: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) sendfile(r0, r1, 0x0, 0x100000001) 01:35:43 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) openat$incfs(r1, &(0x7f0000000000)='.pending_reads\x00', 0x440100, 0x100) 01:35:43 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:35:43 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 13) 01:35:43 executing program 6: r0 = syz_io_uring_complete(0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000340)=ANY=[@ANYBLOB="011900000100000018000000", @ANYRES32=0xffffffffffffffff, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) r2 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x80080, 0x0) readlinkat(r2, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)=""/137, 0x89) mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"]) fcntl$setlease(0xffffffffffffffff, 0x400, 0x2) fchmodat(r1, &(0x7f00000000c0)='./file0\x00', 0x41) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) setxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f0000000300), &(0x7f0000000440), 0x2, 0x0) r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000004c0), 0x200100, 0x0) ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000240)={&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000680)=""/224, 0xe0}) mkdirat(0xffffffffffffffff, &(0x7f0000000800)='./file0/file0\x00', 0xc0) lseek(r3, 0x5f3, 0x1) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) r5 = mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0) poll(&(0x7f0000000480)=[{0xffffffffffffffff, 0x2400}, {r0, 0x120}, {r5, 0x80c4}, {0xffffffffffffffff, 0x44c}, {r4, 0x8004}], 0x5, 0x8) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000200)={0x4, 0x8, 0x20, 0x8, 0xe0a}) 01:35:43 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x0) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:35:43 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, 0x0) timer_gettime(0x0, &(0x7f00000002c0)) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:35:43 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r3 = fork() r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x0, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 732.977358] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 732.978567] ? syscall_enter_from_user_mode+0x1d/0x50 [ 732.979625] do_syscall_64+0x33/0x40 [ 732.980437] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 732.981602] RIP: 0033:0x7f106b311b19 [ 732.982371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 732.986721] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 732.988529] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 732.990269] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 732.991740] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 732.993189] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 732.994642] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 733.004799] cgroup: Unknown subsys name 'oän©Ú"7J{Ù¯œÅÅÐ-W'…OLu' [ 733.051403] cgroup: Unknown subsys name 'oän©Ú"7J{Ù¯œÅÅÐ-W'…OLu' 01:35:43 executing program 6: syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYRESOCT]) 01:35:43 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:35:43 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 14) 01:35:43 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200), 0x0) [ 733.296102] tmpfs: Unknown parameter '01777777777777777777777' [ 733.323458] tmpfs: Unknown parameter '01777777777777777777777' 01:35:43 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) r3 = syz_open_dev$vcsa(&(0x7f0000000000), 0x80, 0x820) r4 = pidfd_getfd(r0, r0, 0x0) r5 = syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000000380)=[{&(0x7f0000000100)="4540967c49956e4f58a7c13db6b593ea6dacd0e57303dec73d586f0653c3b95a5b23bb415788ecece0fb5839c0468a5c11b52de0f7faa1cad971afe093eedacf6083a62b1565ba6d32503af203c23b434c5bfec62534d4799e7537ba9e626aef471bab80d1f36753cd19ffd9728472b9ae2926a4f3c623de40fe3eb552f7daf198880286598e8c474aff99e87b", 0x8d, 0x7}, {&(0x7f0000000240)="7a595fb2a6f4dd2e6a25140ff6020dd08161a77b34e31957ad419d34c0e4d5387b599bc775caf9db739a71c0d955d929611df99b45911b0e2a924eb1f3dc18424a63a3e81761f0af124f20f0669ee119fa58b938ad6caa90f07212dae9407b03828afd752c2a7c55442fee8f8ad4fb133fd004f479a3c18ad2d8632211258ff93fb4b5cf292745bd950305c538e1e044c43d", 0x92, 0xcb11}, {&(0x7f0000000300)="5e6e4bfea8aca9e0387b36b283c980c679a5a8946e0fb8a058f55a9d571a27acb494394fb760b00c8e516311de78632587ab5d9a9d94aae9e7a6a6ba31d2221ed02edbedcf42e09419b1825bb91f523ec679059c5c57839a59b07911ad3eab2781219b324aa5b650ca064c2c", 0x6c, 0x3}, {&(0x7f0000001200)="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", 0x1000, 0x100000000}], 0x200020, &(0x7f0000000400)={[{@dots}, {@fat=@nocase}, {@fat=@quiet}], [{@subj_user}, {@dont_appraise}, {@dont_measure}, {@obj_role}, {@fsname}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_READ'}}]}) r6 = inotify_init1(0x0) inotify_add_watch(r6, &(0x7f0000000040)='.\x00', 0x2000003) io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000480)={0x7, 0x0, &(0x7f00000001c0)=[r0, 0xffffffffffffffff, r0, r3, r4, r0, r0, r5, r6, r0]}, 0xa) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) [ 733.459037] FAULT_INJECTION: forcing a failure. [ 733.459037] name failslab, interval 1, probability 0, space 0, times 0 [ 733.461645] CPU: 0 PID: 7039 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 733.463187] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 733.465080] Call Trace: [ 733.465685] dump_stack+0x107/0x167 [ 733.466517] should_fail.cold+0x5/0xa [ 733.467391] ? io_uring_setup+0x17ed/0x2980 [ 733.468375] should_failslab+0x5/0x20 [ 733.469243] kmem_cache_alloc_trace+0x55/0x320 [ 733.470284] ? alloc_pages_current+0x18f/0x280 [ 733.471335] io_uring_setup+0x17ed/0x2980 [ 733.472298] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 733.473443] ? wait_for_completion_io+0x270/0x270 [ 733.474553] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 733.475740] ? syscall_enter_from_user_mode+0x1d/0x50 [ 733.476912] do_syscall_64+0x33/0x40 [ 733.477755] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 733.478912] RIP: 0033:0x7f106b311b19 [ 733.479756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 733.483977] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 733.485710] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 733.487338] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 733.488973] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 733.490600] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 733.492227] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:35:43 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$fscrypt_v1(0x0, &(0x7f00000001c0)={'fscrypt:', @desc4}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(0x0, &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$link(0x8, 0x0, 0x0) r0 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) add_key$keyring(&(0x7f0000000000), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) keyctl$update(0x2, r0, &(0x7f0000000140)="eb1234ea3bdde741", 0x8) add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f00000001c0), &(0x7f00000002c0)={0x0, "a4582764f105c5b3dc35a2e68457d5338388e3b46f14599b9e838ac0e58e8c5c584b7b000400005640d1b53429030081d35d2cfee19c5ca3b4246887fd9fb579", 0x2a}, 0x48, r1) add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$KEYCTL_MOVE(0x1e, 0x0, 0x0, 0x0, 0x0) keyctl$update(0x2, 0x0, &(0x7f0000000240), 0x0) keyctl$update(0xf, 0x0, 0x0, 0x0) keyctl$KEYCTL_MOVE(0x1e, 0x0, 0x0, 0x0, 0x9d9cb021c9c306da) 01:35:43 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)=0x0) timer_gettime(0x0, &(0x7f00000002c0)) timer_delete(r0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r1, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:35:43 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 733.685889] loop3: detected capacity change from 0 to 135266304 [ 733.965477] loop3: detected capacity change from 0 to 135266304 01:35:56 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r3 = fork() r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:35:56 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000280), 0xa}, 0x61b8, 0x0, 0x3, 0x0, 0x13, 0xfffffffd, 0xb419}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x5) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x20, 0x12, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x3ffe, 0x0, 0x0, @fd}, @nested={0x4}]}, 0x20}}, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)={'#! ', './file0', [{}, {0x20, 'wlan1\x00'}, {0x20, '\x01\x01\x01\x01\x01\x01'}, {0x20, ')^,{'}, {0x20, '\x00'}, {0x20, ':%^'}, {0x20, '-'}, {0x20, '\x01\x01\x01\x01\x01\x01'}], 0xa, "a38fb0df8a709874a4b4574c39c343575b2d21060a1efd5187879c9db344b02ec6d611e801e18722a61538bcc1158eb97e1551a65d572f5e305f76c60be006ab608dad17c167b4b38ca915e1c26f19303a662f5d11761a79dee8b69818de484a69e44dfd0c1365065b7cb046284102fb4a266f8e95a9b4f5275f1f0be80430d2996f35dd2a5a751a08804ad572784a19cb3ff0fb2991f3f5811c3646582f67a69f1e96fa2762472160abf254db050be528e6b70546125e0ab0181194d872e860cd30607085b3c5a47347c317f726146988858855fa3222c20c8b5ea9c61ec85c"}, 0x10e) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x20, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @nested={0x4}]}, 0x20}}, 0x0) close_range(r3, r2, 0x2) r4 = dup(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) preadv(r4, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4) r5 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0x4) sendmsg$nl_generic(r5, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001a0011cd"], 0x1c}, 0x1, 0x0, 0x0, 0x4004804}, 0x20000854) readv(r5, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}], 0x1) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) 01:35:56 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 15) 01:35:56 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:35:56 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)=0x0) timer_gettime(0x0, &(0x7f00000002c0)) timer_delete(r0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r1, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:35:56 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fstat(r1, &(0x7f0000000080)) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:35:56 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xc7d8, 0xad}, 0x5102, 0x0, 0x0, 0x0, 0x0, 0xafe9, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000080)={@multicast2, @dev={0xac, 0x14, 0x14, 0x41}, @remote}, 0xc) setsockopt$inet_mreqsrc(r0, 0x0, 0x28, &(0x7f0000001480)={@multicast2, @dev={0xac, 0x14, 0x14, 0x30}, @multicast2}, 0xc) openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) 01:35:56 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) [ 746.660747] FAULT_INJECTION: forcing a failure. [ 746.660747] name failslab, interval 1, probability 0, space 0, times 0 [ 746.663182] CPU: 1 PID: 7073 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 746.664639] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 746.666387] Call Trace: [ 746.666943] dump_stack+0x107/0x167 [ 746.667708] should_fail.cold+0x5/0xa [ 746.668518] ? create_object.isra.0+0x3a/0xa20 [ 746.669473] should_failslab+0x5/0x20 [ 746.670275] kmem_cache_alloc+0x5b/0x310 [ 746.671137] create_object.isra.0+0x3a/0xa20 [ 746.672062] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 746.673143] kmem_cache_alloc_trace+0x151/0x320 [ 746.674126] ? alloc_pages_current+0x18f/0x280 [ 746.675093] io_uring_setup+0x17ed/0x2980 [ 746.675973] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 746.677044] ? wait_for_completion_io+0x270/0x270 [ 746.678084] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 746.679185] ? syscall_enter_from_user_mode+0x1d/0x50 [ 746.680280] do_syscall_64+0x33/0x40 [ 746.681068] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 746.682151] RIP: 0033:0x7f106b311b19 [ 746.682930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 746.686816] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 746.688437] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 746.689936] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 746.691444] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 746.692967] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 746.694473] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 746.696298] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 746.697821] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 746.702396] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 746.708325] loop5: detected capacity change from 0 to 41948160 01:35:56 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r3 = fork() r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:35:56 executing program 4: r0 = openat$full(0xffffffffffffff9c, &(0x7f00000022c0), 0x20381, 0x0) write$P9_RREAD(r0, 0x0, 0x0) name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000340)=@ceph_nfs_snapfh={0x1c, 0x4e, {0x0, 0x5, 0x400, 0x40}}, &(0x7f0000000500), 0x400) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)={0x2c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x0, 0x0, 0x0, @str='keyring\x00'}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x2c}}, 0x0) close_range(r2, r1, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$nl_generic(r2, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="1423ac00210000092cbd686b46f6470cb3a2ec0c77468efe5886d81b6ba804cdb4a5fbdb7875fba8d15b5ac6e68a732725035c47bb9f6eef0108f479e52f05e3aedb7819b38664d3be6ad16bdb1f05e6d3df1bc5d13400df3c6dd4c59b12065a606dccd7473488d708f59a463567236abda1ddf0894ab552bd59ea9d309472fdafad9501"], 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x20040000) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) recvmsg(r0, &(0x7f0000000800)={&(0x7f0000000540)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @multicast2}}}}, 0x80, &(0x7f00000006c0)=[{&(0x7f00000005c0)=""/12, 0xc}], 0x1, &(0x7f0000000700)=""/235, 0xeb}, 0x40000040) r3 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r2, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="34002980", @ANYRES16=0x0, @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x870}, 0x240049c1) keyctl$restrict_keyring(0x1d, r3, 0x0, 0x0) unshare(0x48020200) 01:35:57 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000280), 0xa}, 0x61b8, 0x0, 0x3, 0x0, 0x13, 0xfffffffd, 0xb419}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x5) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x20, 0x12, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x3ffe, 0x0, 0x0, @fd}, @nested={0x4}]}, 0x20}}, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)={'#! ', './file0', [{}, {0x20, 'wlan1\x00'}, {0x20, '\x01\x01\x01\x01\x01\x01'}, {0x20, ')^,{'}, {0x20, '\x00'}, {0x20, ':%^'}, {0x20, '-'}, {0x20, '\x01\x01\x01\x01\x01\x01'}], 0xa, "a38fb0df8a709874a4b4574c39c343575b2d21060a1efd5187879c9db344b02ec6d611e801e18722a61538bcc1158eb97e1551a65d572f5e305f76c60be006ab608dad17c167b4b38ca915e1c26f19303a662f5d11761a79dee8b69818de484a69e44dfd0c1365065b7cb046284102fb4a266f8e95a9b4f5275f1f0be80430d2996f35dd2a5a751a08804ad572784a19cb3ff0fb2991f3f5811c3646582f67a69f1e96fa2762472160abf254db050be528e6b70546125e0ab0181194d872e860cd30607085b3c5a47347c317f726146988858855fa3222c20c8b5ea9c61ec85c"}, 0x10e) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x20, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @nested={0x4}]}, 0x20}}, 0x0) close_range(r3, r2, 0x2) r4 = dup(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) preadv(r4, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4) r5 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0x4) sendmsg$nl_generic(r5, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001a0011cd"], 0x1c}, 0x1, 0x0, 0x0, 0x4004804}, 0x20000854) readv(r5, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}], 0x1) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) 01:35:57 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 746.908572] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'. 01:35:57 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)=0x0) timer_gettime(0x0, 0x0) timer_delete(r0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r1, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:35:57 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000000)={0x0, r0, 0xa5, 0xffffffffffff99d2, 0x8, 0xea}) 01:35:57 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 16) 01:35:57 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000280), 0xa}, 0x61b8, 0x0, 0x3, 0x0, 0x13, 0xfffffffd, 0xb419}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x5) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x20, 0x12, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x3ffe, 0x0, 0x0, @fd}, @nested={0x4}]}, 0x20}}, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)={'#! ', './file0', [{}, {0x20, 'wlan1\x00'}, {0x20, '\x01\x01\x01\x01\x01\x01'}, {0x20, ')^,{'}, {0x20, '\x00'}, {0x20, ':%^'}, {0x20, '-'}, {0x20, '\x01\x01\x01\x01\x01\x01'}], 0xa, "a38fb0df8a709874a4b4574c39c343575b2d21060a1efd5187879c9db344b02ec6d611e801e18722a61538bcc1158eb97e1551a65d572f5e305f76c60be006ab608dad17c167b4b38ca915e1c26f19303a662f5d11761a79dee8b69818de484a69e44dfd0c1365065b7cb046284102fb4a266f8e95a9b4f5275f1f0be80430d2996f35dd2a5a751a08804ad572784a19cb3ff0fb2991f3f5811c3646582f67a69f1e96fa2762472160abf254db050be528e6b70546125e0ab0181194d872e860cd30607085b3c5a47347c317f726146988858855fa3222c20c8b5ea9c61ec85c"}, 0x10e) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x20, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @nested={0x4}]}, 0x20}}, 0x0) close_range(r3, r2, 0x2) r4 = dup(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) preadv(r4, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4) r5 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0x4) sendmsg$nl_generic(r5, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001a0011cd"], 0x1c}, 0x1, 0x0, 0x0, 0x4004804}, 0x20000854) readv(r5, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}], 0x1) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) [ 747.132644] FAULT_INJECTION: forcing a failure. [ 747.132644] name failslab, interval 1, probability 0, space 0, times 0 [ 747.135273] CPU: 0 PID: 7112 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 747.136952] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 747.138826] Call Trace: [ 747.139426] dump_stack+0x107/0x167 [ 747.140257] should_fail.cold+0x5/0xa [ 747.141107] ? copy_process+0x3301/0x78b0 [ 747.142034] should_failslab+0x5/0x20 [ 747.142874] kmem_cache_alloc_node+0x55/0x330 [ 747.143869] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 747.145053] copy_process+0x3301/0x78b0 [ 747.145962] ? stack_trace_save+0x8c/0xc0 [ 747.146890] ? lock_acquire+0x197/0x470 [ 747.147788] ? io_sq_thread_park+0x79/0xd0 [ 747.148750] ? lock_release+0x680/0x680 [ 747.149646] ? __cleanup_sighand+0xb0/0xb0 [ 747.150594] ? kernel_text_address+0xf2/0x120 [ 747.151599] ? find_held_lock+0x2c/0x110 [ 747.152530] ? io_uring_setup+0x1c23/0x2980 [ 747.153505] ? lock_downgrade+0x6d0/0x6d0 [ 747.154441] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 747.155541] create_io_thread+0xb6/0xf0 [ 747.156465] ? pidfd_prepare+0x80/0x80 [ 747.157357] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 747.158472] io_uring_setup+0x1d79/0x2980 [ 747.159410] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 747.160564] ? wait_for_completion_io+0x270/0x270 [ 747.161664] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 747.162834] ? syscall_enter_from_user_mode+0x1d/0x50 [ 747.163991] do_syscall_64+0x33/0x40 [ 747.164834] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 747.165980] RIP: 0033:0x7f106b311b19 [ 747.166812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 747.170944] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 747.172672] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 747.174270] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 747.175869] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 747.177472] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 747.179076] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:35:57 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 17) [ 747.241662] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'. [ 747.325309] FAULT_INJECTION: forcing a failure. [ 747.325309] name failslab, interval 1, probability 0, space 0, times 0 [ 747.327895] CPU: 0 PID: 7118 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 747.329583] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 747.331558] Call Trace: [ 747.332183] dump_stack+0x107/0x167 [ 747.333022] should_fail.cold+0x5/0xa [ 747.333900] ? create_object.isra.0+0x3a/0xa20 [ 747.334940] should_failslab+0x5/0x20 [ 747.335806] kmem_cache_alloc+0x5b/0x310 [ 747.336739] create_object.isra.0+0x3a/0xa20 [ 747.337735] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 747.338889] kmem_cache_alloc_node+0x169/0x330 [ 747.339921] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 747.341123] copy_process+0x3301/0x78b0 [ 747.342049] ? stack_trace_save+0x8c/0xc0 [ 747.343000] ? lock_acquire+0x197/0x470 [ 747.343912] ? io_sq_thread_park+0x79/0xd0 [ 747.344879] ? lock_release+0x680/0x680 [ 747.345794] ? __cleanup_sighand+0xb0/0xb0 [ 747.346749] ? kernel_text_address+0xf2/0x120 [ 747.347792] ? find_held_lock+0x2c/0x110 [ 747.348736] ? io_uring_setup+0x1c23/0x2980 [ 747.349720] ? lock_downgrade+0x6d0/0x6d0 [ 747.350663] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 747.351785] create_io_thread+0xb6/0xf0 [ 747.352695] ? pidfd_prepare+0x80/0x80 [ 747.353585] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 747.354715] io_uring_setup+0x1d79/0x2980 [ 747.355663] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 747.356826] ? wait_for_completion_io+0x270/0x270 [ 747.357954] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 747.359145] ? syscall_enter_from_user_mode+0x1d/0x50 [ 747.360340] do_syscall_64+0x33/0x40 [ 747.361190] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 747.362354] RIP: 0033:0x7f106b311b19 [ 747.363188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 747.367217] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 747.368890] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 747.370452] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 747.372026] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 747.373602] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 747.375199] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:35:57 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:35:57 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r3 = fork() r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:35:57 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000280), 0xa}, 0x61b8, 0x0, 0x3, 0x0, 0x13, 0xfffffffd, 0xb419}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x5) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x20, 0x12, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x3ffe, 0x0, 0x0, @fd}, @nested={0x4}]}, 0x20}}, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)={'#! ', './file0', [{}, {0x20, 'wlan1\x00'}, {0x20, '\x01\x01\x01\x01\x01\x01'}, {0x20, ')^,{'}, {0x20, '\x00'}, {0x20, ':%^'}, {0x20, '-'}, {0x20, '\x01\x01\x01\x01\x01\x01'}], 0xa, "a38fb0df8a709874a4b4574c39c343575b2d21060a1efd5187879c9db344b02ec6d611e801e18722a61538bcc1158eb97e1551a65d572f5e305f76c60be006ab608dad17c167b4b38ca915e1c26f19303a662f5d11761a79dee8b69818de484a69e44dfd0c1365065b7cb046284102fb4a266f8e95a9b4f5275f1f0be80430d2996f35dd2a5a751a08804ad572784a19cb3ff0fb2991f3f5811c3646582f67a69f1e96fa2762472160abf254db050be528e6b70546125e0ab0181194d872e860cd30607085b3c5a47347c317f726146988858855fa3222c20c8b5ea9c61ec85c"}, 0x10e) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x20, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @nested={0x4}]}, 0x20}}, 0x0) close_range(r3, r2, 0x2) r4 = dup(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) preadv(r4, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4) r5 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0x4) sendmsg$nl_generic(r5, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001a0011cd"], 0x1c}, 0x1, 0x0, 0x0, 0x4004804}, 0x20000854) readv(r5, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}], 0x1) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) 01:35:57 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 18) 01:35:57 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)=0x0) timer_gettime(0x0, 0x0) timer_delete(r0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="040041b2042131d734a29ade8b0360792e8a53b0e02e668b3ca330f8b59aa7134170c5612d31161d11a6fbcd060200000024c5df081650478277b5405e62aba026eb436609209c45f379b7476a00f18bcdde5eabc96bc52a72b288ef8e8d6c8201676b82e9ffc81985cabb4355c826bca259bd0dfd7397c81e880390f7118889a1b8f858430699a64f3107c5f47baebeaa56000000000000000029f7cfc5f87b6bb6d3c602f209a2aabeb298f06e73374ccc30d4fd279538bb65919ee41a214607c00774aa1c77e26391d2166fc59fc63a79db3192dfa1a84467ec07cb50e2ea1993a8bbbb1858e4422c6abd082b3754499174110315288ea4eff39a0f1406a6b9da003d50ec13a2a1633b83a0ac23914893e373000000e5f3dfd13672ea507188ac3799f84dc5feb7c30eccc2f8c3c6f6f390ed893e3df2d29efd9e3c471400a62cc65587d5ce2c4d723d2d02aa483147b430b361435e1f01dc5a3bf626957002a84006985e839e17639e0b607d5e50349af65f4f2bbd4d0346f1fdc1b2cffe4d20ca9404add59e86ba6adaaadf1d204882ab6c333951c4d1524ce9bcd4beaaa6b1d48329038ca4b24fdd5c7c0819d5c856a569abbe57c2c143709acff8b288c477a25e79eb3448c6a4e08a36402cd49229bd7f2832789d17c7e1e81a516f736f445f78ca4ec4073f2b26e28f6e011beb747919f888890f14b3fd7aec1f8bd4f3ae3327459786fb19842dae42aa95cb3f20619c51b098f0f13ca7a757b0cd23bdee855c74363a11ff7b3784da3b78494040ab0e1c566c29cba52a7d0a20b11f98951e624b0cd5e1f2ee516bb3bdb0901fc92d5335e9ac4bb0dca63680f920f052626b4dcc070663a9f2dcebbf0c233a2dc307975f5f48ee74d68a5b9b67b6b5f92cef18a93e656b15e3aca7031d9e2b7f139420b5f7dab4103a3e221122bd94024924250f7e1860b379f3df1ebe9fdae54d8a994cf258c5734939becf29d060f2dc08e71733821ff209b1eb67e13a0378ef984dbf0626bf7330d1878a29538201b404aa072ced6d8849774f48a3e124ff03602a83f84972bdb4cddf51221299d5dcacbc206a10b49d50002917dc4f9855f0189d9c39"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r1, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:35:57 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) [ 747.633889] FAULT_INJECTION: forcing a failure. [ 747.633889] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 747.636690] CPU: 0 PID: 7132 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 747.638190] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 747.640001] Call Trace: [ 747.640596] dump_stack+0x107/0x167 [ 747.641405] should_fail.cold+0x5/0xa [ 747.642249] __alloc_pages_nodemask+0x182/0x600 [ 747.643273] ? lock_downgrade+0x6d0/0x6d0 [ 747.644203] ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200 [ 747.645551] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 747.646744] ? kmem_cache_alloc_node+0x2bc/0x330 [ 747.647848] copy_process+0x62b/0x78b0 [ 747.648761] ? stack_trace_save+0x8c/0xc0 [ 747.649716] ? lock_acquire+0x197/0x470 [ 747.650626] ? io_sq_thread_park+0x79/0xd0 [ 747.651600] ? lock_release+0x680/0x680 [ 747.652538] ? __cleanup_sighand+0xb0/0xb0 [ 747.653512] ? kernel_text_address+0xf2/0x120 [ 747.654547] ? find_held_lock+0x2c/0x110 [ 747.655486] ? io_uring_setup+0x1c23/0x2980 [ 747.656486] ? lock_downgrade+0x6d0/0x6d0 [ 747.657439] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 747.658566] create_io_thread+0xb6/0xf0 [ 747.659478] ? pidfd_prepare+0x80/0x80 [ 747.660435] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 747.661595] io_uring_setup+0x1d79/0x2980 [ 747.662577] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 747.663744] ? wait_for_completion_io+0x270/0x270 [ 747.664901] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 747.666115] ? syscall_enter_from_user_mode+0x1d/0x50 [ 747.667332] do_syscall_64+0x33/0x40 [ 747.668204] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 747.669383] RIP: 0033:0x7f106b311b19 [ 747.670242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 747.674496] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 747.676249] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 747.677896] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 747.679548] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 747.681194] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 747.682815] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 747.748665] loop5: detected capacity change from 0 to 41948160 01:36:13 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:36:13 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000080)={0x43, 0x9, 0xbe6, "90fcc8fa14b47d2ad0002da83a94faadcf62830cad5664de37a2ca615338cc92160565c65c700285e16ad9209e0a2c70bb8f0c541ff054f4cd345d0487a549e5fe3956"}) 01:36:13 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 19) 01:36:13 executing program 4: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)=0x0) timer_gettime(0x0, 0x0) timer_delete(r0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r1, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:36:13 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:36:13 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fstat(r1, &(0x7f0000000080)) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:36:13 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r3 = fork() r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:36:13 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 763.609569] loop5: detected capacity change from 0 to 41948160 [ 763.620696] FAULT_INJECTION: forcing a failure. [ 763.620696] name failslab, interval 1, probability 0, space 0, times 0 [ 763.623402] CPU: 0 PID: 7157 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 763.625011] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.626957] Call Trace: [ 763.627578] dump_stack+0x107/0x167 [ 763.628450] should_fail.cold+0x5/0xa [ 763.629336] ? __delayacct_tsk_init+0x1b/0x80 [ 763.630545] should_failslab+0x5/0x20 [ 763.631439] kmem_cache_alloc+0x5b/0x310 [ 763.632413] __delayacct_tsk_init+0x1b/0x80 [ 763.633423] copy_process+0x3395/0x78b0 [ 763.634379] ? stack_trace_save+0x8c/0xc0 [ 763.635370] ? lock_acquire+0x197/0x470 [ 763.636307] ? io_sq_thread_park+0x79/0xd0 [ 763.637326] ? __cleanup_sighand+0xb0/0xb0 [ 763.638325] ? kernel_text_address+0xf2/0x120 [ 763.639387] ? find_held_lock+0x2c/0x110 [ 763.640366] ? io_uring_setup+0x1c23/0x2980 [ 763.641379] ? lock_downgrade+0x6d0/0x6d0 [ 763.642354] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 763.643514] create_io_thread+0xb6/0xf0 [ 763.644463] ? pidfd_prepare+0x80/0x80 [ 763.645389] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 763.646564] io_uring_setup+0x1d79/0x2980 [ 763.647551] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 763.648758] ? wait_for_completion_io+0x270/0x270 [ 763.649907] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 763.651139] ? syscall_enter_from_user_mode+0x1d/0x50 [ 763.652366] do_syscall_64+0x33/0x40 [ 763.653241] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.654457] RIP: 0033:0x7f106b311b19 [ 763.655328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.659707] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 763.661513] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 763.663200] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 763.664896] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 763.666582] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 763.668265] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:36:13 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) ioctl$MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f00000000c0)={&(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x3ff}) creat(&(0x7f0000000000)='./file0\x00', 0x120) 01:36:14 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:36:14 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:36:14 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:36:32 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) ioctl$BTRFS_IOC_LOGICAL_INO_V2(r1, 0xc038943b, &(0x7f0000000080)={0x0, 0x18, '\x00', 0x1, &(0x7f0000000000)=[0x0, 0x0, 0x0]}) 01:36:32 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000280), 0xa}, 0x61b8, 0x0, 0x3, 0x0, 0x13, 0xfffffffd, 0xb419}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x5) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x20, 0x12, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x3ffe, 0x0, 0x0, @fd}, @nested={0x4}]}, 0x20}}, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)={'#! ', './file0', [{}, {0x20, 'wlan1\x00'}, {0x20, '\x01\x01\x01\x01\x01\x01'}, {0x20, ')^,{'}, {0x20, '\x00'}, {0x20, ':%^'}, {0x20, '-'}, {0x20, '\x01\x01\x01\x01\x01\x01'}], 0xa, "a38fb0df8a709874a4b4574c39c343575b2d21060a1efd5187879c9db344b02ec6d611e801e18722a61538bcc1158eb97e1551a65d572f5e305f76c60be006ab608dad17c167b4b38ca915e1c26f19303a662f5d11761a79dee8b69818de484a69e44dfd0c1365065b7cb046284102fb4a266f8e95a9b4f5275f1f0be80430d2996f35dd2a5a751a08804ad572784a19cb3ff0fb2991f3f5811c3646582f67a69f1e96fa2762472160abf254db050be528e6b70546125e0ab0181194d872e860cd30607085b3c5a47347c317f726146988858855fa3222c20c8b5ea9c61ec85c"}, 0x10e) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x20, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @nested={0x4}]}, 0x20}}, 0x0) close_range(r3, r2, 0x2) r4 = dup(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) preadv(r4, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4) r5 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0x4) sendmsg$nl_generic(r5, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001a0011cd"], 0x1c}, 0x1, 0x0, 0x0, 0x4004804}, 0x20000854) readv(r5, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}], 0x1) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) 01:36:32 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r3 = fork() r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:36:32 executing program 4: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)=0x0) timer_gettime(0x0, 0x0) timer_delete(r0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r1, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:36:32 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 20) 01:36:32 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="040041b2042131d734a29ade8b0360792e8a53b0e02e668b3ca330f8b59aa7134170c5612d31161d11a6fbcd060200000024c5df081650478277b5405e62aba026eb436609209c45f379b7476a00f18bcdde5eabc96bc52a72b288ef8e8d6c8201676b82e9ffc81985cabb4355c826bca259bd0dfd7397c81e880390f7118889a1b8f858430699a64f3107c5f47baebeaa56000000000000000029f7cfc5f87b6bb6d3c602f209a2aabeb298f06e73374ccc30d4fd279538bb65919ee41a214607c00774aa1c77e26391d2166fc59fc63a79db3192dfa1a84467ec07cb50e2ea1993a8bbbb1858e4422c6abd082b3754499174110315288ea4eff39a0f1406a6b9da003d50ec13a2a1633b83a0ac23914893e373000000e5f3dfd13672ea507188ac3799f84dc5feb7c30eccc2f8c3c6f6f390ed893e3df2d29efd9e3c471400a62cc65587d5ce2c4d723d2d02aa483147b430b361435e1f01dc5a3bf626957002a84006985e839e17639e0b607d5e50349af65f4f2bbd4d0346f1fdc1b2cffe4d20ca9404add59e86ba6adaaadf1d204882ab6c333951c4d1524ce9bcd4beaaa6b1d48329038ca4b24fdd5c7c0819d5c856a569abbe57c2c143709acff8b288c477a25e79eb3448c6a4e08a36402cd49229bd7f2832789d17c7e1e81a516f736f445f78ca4ec4073f2b26e28f6e011beb747919f888890f14b3fd7aec1f8bd4f3ae3327459786fb19842dae42aa95cb3f20619c51b098f0f13ca7a757b0cd23bdee855c74363a11ff7b3784da3b78494040ab0e1c566c29cba52a7d0a20b11f98951e624b0cd5e1f2ee516bb3bdb0901fc92d5335e9ac4bb0dca63680f920f052626b4dcc070663a9f2dcebbf0c233a2dc307975f5f48ee74d68a5b9b67b6b5f92cef18a93e656b15e3aca7031d9e2b7f139420b5f7dab4103a3e221122bd94024924250f7e1860b379f3df1ebe9fdae54d8a994cf258c5734939becf29d060f2dc08e71733821ff209b1eb67e13a0378ef984dbf0626bf7330d1878a29538201b404aa072ced6d8849774f48a3e124ff03602a83f84972bdb4cddf51221299d5dcacbc206a10b49d50002917dc4f9855f0189d9c39"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:36:32 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:36:32 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) [ 782.541248] loop5: detected capacity change from 0 to 41948160 [ 782.630857] FAULT_INJECTION: forcing a failure. [ 782.630857] name failslab, interval 1, probability 0, space 0, times 0 [ 782.633524] CPU: 1 PID: 7207 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 782.635098] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 782.637022] Call Trace: [ 782.637637] dump_stack+0x107/0x167 [ 782.638478] should_fail.cold+0x5/0xa [ 782.639359] ? create_object.isra.0+0x3a/0xa20 [ 782.640412] should_failslab+0x5/0x20 [ 782.641310] kmem_cache_alloc+0x5b/0x310 [ 782.642260] create_object.isra.0+0x3a/0xa20 [ 782.643277] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 782.644458] kmem_cache_alloc+0x159/0x310 [ 782.645427] __delayacct_tsk_init+0x1b/0x80 [ 782.646418] copy_process+0x3395/0x78b0 [ 782.647348] ? stack_trace_save+0x8c/0xc0 [ 782.648313] ? lock_acquire+0x197/0x470 [ 782.649229] ? io_sq_thread_park+0x79/0xd0 [ 782.650217] ? __cleanup_sighand+0xb0/0xb0 [ 782.651185] ? osq_unlock+0x1a0/0x1a0 [ 782.652062] ? find_held_lock+0x2c/0x110 [ 782.653010] ? io_uring_setup+0x1c23/0x2980 [ 782.653995] ? lock_downgrade+0x6d0/0x6d0 [ 782.654983] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 782.656102] create_io_thread+0xb6/0xf0 [ 782.657025] ? pidfd_prepare+0x80/0x80 [ 782.657923] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 782.659061] io_uring_setup+0x1d79/0x2980 [ 782.660176] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 782.661369] ? wait_for_completion_io+0x270/0x270 [ 782.662508] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 782.663734] ? syscall_enter_from_user_mode+0x1d/0x50 [ 782.664952] do_syscall_64+0x33/0x40 [ 782.665822] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 782.667014] RIP: 0033:0x7f106b311b19 [ 782.667884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 782.672197] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 782.673989] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 782.675661] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 782.677339] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 782.679009] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 782.680689] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:36:32 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:36:33 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 21) 01:36:33 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x46e2, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000100)={0x8e7}) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x3}}, './file0\x00'}) openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x181200, 0x0) 01:36:33 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r3 = fork() openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:36:33 executing program 4: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)=0x0) timer_gettime(0x0, 0x0) timer_delete(r0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r1, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:36:33 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 782.927054] FAULT_INJECTION: forcing a failure. [ 782.927054] name failslab, interval 1, probability 0, space 0, times 0 [ 782.928879] CPU: 0 PID: 7223 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 782.929945] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 782.931242] Call Trace: [ 782.931660] dump_stack+0x107/0x167 [ 782.932229] should_fail.cold+0x5/0xa [ 782.932834] ? alloc_pid+0xd7/0xd30 [ 782.933401] should_failslab+0x5/0x20 [ 782.933995] kmem_cache_alloc+0x5b/0x310 [ 782.934628] alloc_pid+0xd7/0xd30 [ 782.935172] ? copy_namespaces+0x1ca/0x4f0 [ 782.935834] copy_process+0x3b87/0x78b0 [ 782.936453] ? stack_trace_save+0x8c/0xc0 [ 782.937115] ? __cleanup_sighand+0xb0/0xb0 [ 782.937770] ? kernel_text_address+0xf2/0x120 [ 782.938472] ? find_held_lock+0x2c/0x110 [ 782.939110] ? io_uring_setup+0x1c23/0x2980 [ 782.939782] ? lock_downgrade+0x6d0/0x6d0 [ 782.940430] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 782.941207] create_io_thread+0xb6/0xf0 [ 782.941827] ? pidfd_prepare+0x80/0x80 [ 782.942437] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 782.943211] io_uring_setup+0x1d79/0x2980 [ 782.943863] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 782.944664] ? wait_for_completion_io+0x270/0x270 [ 782.945426] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 782.946245] ? syscall_enter_from_user_mode+0x1d/0x50 [ 782.947050] do_syscall_64+0x33/0x40 [ 782.947634] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 782.948442] RIP: 0033:0x7f106b311b19 [ 782.949032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 782.951909] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 782.953078] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 782.954184] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 782.955288] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 782.956376] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 782.957464] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:36:33 executing program 3: ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000240)) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:36:47 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 22) 01:36:47 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:36:47 executing program 4: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:36:47 executing program 3: setxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x8, 0x3) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) r1 = dup(0xffffffffffffffff) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r2, 0x0, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) sendfile(r2, r1, &(0x7f0000000140)=0x6, 0x4) r4 = syz_open_dev$vcsa(&(0x7f0000000180), 0x100, 0x4000) fcntl$setlease(r4, 0x400, 0x2) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x1010, 0xffffffffffffffff, 0x8000000) open_by_handle_at(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[@ANYBLOB="200038bd746bd0c261000000000800002831703300010000674be5929a54861e00"/44], 0x1010c0) 01:36:47 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r3 = fork() openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:36:47 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x0, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:36:47 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 797.433655] loop5: detected capacity change from 0 to 41948160 01:36:47 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) [ 797.475443] loop6: detected capacity change from 0 to 41948160 [ 797.477433] FAULT_INJECTION: forcing a failure. [ 797.477433] name failslab, interval 1, probability 0, space 0, times 0 [ 797.479565] CPU: 0 PID: 7256 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 797.480879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 797.482460] Call Trace: [ 797.482963] dump_stack+0x107/0x167 [ 797.483661] should_fail.cold+0x5/0xa [ 797.484391] ? create_object.isra.0+0x3a/0xa20 [ 797.485272] should_failslab+0x5/0x20 [ 797.486004] kmem_cache_alloc+0x5b/0x310 [ 797.486788] create_object.isra.0+0x3a/0xa20 [ 797.487626] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 797.488591] kmem_cache_alloc+0x159/0x310 [ 797.489400] alloc_pid+0xd7/0xd30 [ 797.490061] ? copy_namespaces+0x1ca/0x4f0 [ 797.490871] copy_process+0x3b87/0x78b0 [ 797.491633] ? stack_trace_save+0x8c/0xc0 [ 797.492436] ? __cleanup_sighand+0xb0/0xb0 [ 797.493262] ? kernel_text_address+0xf2/0x120 [ 797.494113] ? find_held_lock+0x2c/0x110 [ 797.494897] ? io_uring_setup+0x1c23/0x2980 [ 797.495720] ? lock_downgrade+0x6d0/0x6d0 [ 797.496523] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 797.497476] create_io_thread+0xb6/0xf0 [ 797.498231] ? pidfd_prepare+0x80/0x80 [ 797.498899] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 797.499829] io_uring_setup+0x1d79/0x2980 [ 797.500619] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 797.501579] ? wait_for_completion_io+0x270/0x270 [ 797.502504] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 797.503486] ? syscall_enter_from_user_mode+0x1d/0x50 [ 797.504454] do_syscall_64+0x33/0x40 [ 797.505164] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 797.506128] RIP: 0033:0x7f106b311b19 [ 797.506824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 797.510309] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 797.511748] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 797.513097] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 797.514431] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 797.515774] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 797.517119] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:36:47 executing program 4: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r3 = accept$inet(r1, 0x0, &(0x7f0000002700)) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000001800)=ANY=[@ANYBLOB="ac14142fac1414bb00000200050000007f000001ffffffffe0000001e0001f00000000000000c6f19f2922000e66ef6738f58c38e525347ff23fe871abb549f08cb8e910dc85eb7ab478971c5ed381bad570fc4392ac8a6434aa4f6c20e4ce62a8eac91fe60a810cba1dd742aae04a3ffc8cec2cf4ca7c0e481cef7e8693ff20e9db1cf2bda713e4839d5e32991b5bce933d9c14412683491886799d03fd64b7617f0a814b6698a424a01118b3675a32e2114d485b6cad9d936b06485f8372e550d679d7c7241d9fbfc9babed6ec4197446596a1adbcf8ab86fb71c99a5f699d313341306a2275396c701fd80d0000"], 0x24) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001380)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, r1, 0x0, &(0x7f0000001340)={&(0x7f0000000080)=@qipcrtr, 0x80, &(0x7f0000001280)=[{&(0x7f0000000000)=""/39, 0x27}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000000100)=""/136, 0x88}, {&(0x7f0000001200)=""/73, 0x49}], 0x4, &(0x7f00000012c0)=""/93, 0x5d}, 0x0, 0x0, 0x1, {0x0, r2}}, 0x152) setsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f00000001c0)={@multicast1, @local, @dev}, 0xc) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x4000001, 0x40850, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r5, r4, 0x0, 0xfffffff7) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000340)=@IORING_OP_POLL_REMOVE={0x7, 0x1, 0x0, 0x0, 0x0, 0x889c7cb2ceb4d95c, 0x0, 0x0, 0x1, {0x0, r6}}, 0x101) syz_io_uring_submit(r5, 0x0, &(0x7f00000016c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x6003, @fd_index, 0xfffffffffffffffa, &(0x7f0000001680)=[{&(0x7f00000013c0)="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", 0xfb}, {&(0x7f00000014c0)="c846a1f99eddd861fbca1873a15affc417c097b9f5295be9b3c1863a865c9df967059af63cb938e0f58b8c4ad5cfc05547339370aaa6cf68d7bb5f162a22addf92e79f19a4407054790afaedd3fba7425a91569b8a8846dd99c9b13adc5e44", 0x5f}, {&(0x7f0000001540)="8055dc707a0ee678fdd3d1", 0xb}, {&(0x7f0000001580)="372a033b0886b086da014da693db7233eb73991b1d6defc9db268cdc2ea94d6539a37551a6252c65c5344ba862639033a6a66fc03a72cfe82e506c80d047a2a4f2c0de69f85fb08290a5f3b77ea50f0f678fbaacff6fb3c66329c1839ca5134114fe2486d05e52b3ec86e776b8a3e055f6100eae8d2080554ab6612884e1d3647f2724a594a0d005418837e7586dd11c4cd798d21eb7f36755f429d2a4e235241b8ec2322bee3fa8955773034b4ccb43707ebb70c77bbcc320a8810db176bef18020fbbccc66ec41bec5ccfc", 0xcc}], 0x4, 0x16, 0x0, {0x1, r2}}, 0x400) 01:36:47 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x0, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:36:47 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 23) 01:36:47 executing program 4: r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) pwrite64(r0, &(0x7f00000000c0)="a3", 0x1, 0x0) sendmsg$DEVLINK_CMD_PORT_SPLIT(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x40, 0x0, 0x10, 0x70bd2b, 0x25dfdbff, {}, [{{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0x9, 0x1}}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000800}, 0x880) perf_event_open(&(0x7f0000001d80)={0x2, 0x91, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280)}, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7e2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0), 0x50802, 0x0) creat(&(0x7f0000000340)='./file0\x00', 0x141) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000300)={0x0, 0x4, 0x40, 0x6}) syz_open_dev$sg(&(0x7f0000000240), 0x0, 0x288040) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0) perf_event_open(&(0x7f0000000040)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r3 = inotify_init1(0x0) inotify_add_watch(r3, &(0x7f0000000040)='.\x00', 0x2000003) dup2(r0, r3) 01:36:47 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) sendfile(r0, r0, &(0x7f0000000000)=0x7, 0x4bc) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) [ 797.811414] FAULT_INJECTION: forcing a failure. [ 797.811414] name failslab, interval 1, probability 0, space 0, times 0 [ 797.813915] CPU: 0 PID: 7273 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 797.815061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 797.816431] Call Trace: [ 797.816905] dump_stack+0x107/0x167 [ 797.817518] should_fail.cold+0x5/0xa [ 797.818156] ? io_uring_alloc_task_context+0x99/0x6a0 [ 797.819025] should_failslab+0x5/0x20 [ 797.819678] kmem_cache_alloc_trace+0x55/0x320 [ 797.820449] io_uring_alloc_task_context+0x99/0x6a0 [ 797.821283] ? io_import_iovec+0x1120/0x1120 [ 797.822034] io_uring_setup+0x1dd1/0x2980 [ 797.822747] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 797.823604] ? wait_for_completion_io+0x270/0x270 [ 797.824427] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 797.825298] ? syscall_enter_from_user_mode+0x1d/0x50 [ 797.826177] do_syscall_64+0x33/0x40 [ 797.826813] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 797.827643] RIP: 0033:0x7f106b311b19 01:36:48 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x0, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 797.828259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 797.831452] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 797.832694] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 797.833885] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 797.835033] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 797.836193] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 797.837360] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:36:48 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r3 = fork() openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:36:48 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r1, 0x0, 0x0, 0x1000002) ioctl$TCSETSF2(r1, 0x402c542d, &(0x7f0000000000)={0x9, 0xbb6b, 0x7, 0xc7a, 0x3, "12e189ec54649e02d8d7795a5fc34af6bed202", 0x7fff, 0x40}) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:37:02 executing program 6: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x0, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:37:02 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:37:02 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r3 = fork() openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:37:02 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 24) 01:37:02 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:37:02 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:37:02 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:37:02 executing program 3: r0 = openat$incfs(0xffffffffffffffff, &(0x7f0000000000)='.pending_reads\x00', 0x74c779a58bc31838, 0x20) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000080)=0xe69, 0x4) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r1, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) process_madvise(r1, &(0x7f0000000480)=[{&(0x7f00000000c0)="82a4a64b324c7d23173494912a6f761a75804f6f2c947857c581222682186495f1f30ba1618f6090d8456dbc16d32694fb9aa1c747c0aef34234dda741e8ec024e24086d84b001dcb8b6a8d92d2b8cc6bc8396e2d15c94e91cdf7e28baa569ad3161996476e9a7fc0c18ca63930952cba0f0c3e596fff8a17fddd2012b566d5aaf892eec31fd48ccc4879e8331484ad1aaf3ed678a6bbe7b5f9609849e86de498becb0c3", 0xa4}, {&(0x7f0000000180)="0f37fbe3a8dbe7572d4e9692e9a95d468bd82c75f28175a4c85cfd864017a45b8c33fdc8774ee7920ce413e4fd84be7ea9c26c7bca58c1e6beb205abb8f3cfd14d49ddf92962", 0x46}, {&(0x7f0000000240)="8937428bfd7cb7974ae475a7cb0a1caaa908eb9817faa1204079536b02ebdb4113b850d14e148a88d9c9e6cf0ff29242a88403944e97be98afc91971e3a77752e75e4adb2e2aa43dc710766398dd71744dcabe615330ef0ace4ac37fb155e5742fd1f2b80f2c4bb0043075c23a3cbbebb07d69c325343616cf3e3080374789f72405db0dd70e830fdac77d7230501da6b555e4ccba546d235450", 0x9a}, {&(0x7f0000000300)="1ae0d66367535626093f97b56e68fe91cb4ada9c80c75103b60914e74a048abb2d8180ab625df90ffba9ed554eac6eac2d", 0x31}, {&(0x7f0000000340)="e3d928aca8b429f776a2cc21d77592269a5806ee39fd0c18ab61af4342cdd1172635f5ce55a41b4cd5daf1ef", 0x2c}, {&(0x7f0000000380)="fe551830c04c241939a6355a03e965843207ea9f2060ec95804e5fde0bf41cfd34965c50361ad378999bd816b6f9aaad44671ffd87abecd5b18fbb4c25b154f6ba6fe41f5e50010ebbfa0ba279895501d5ec209b2b9e5be9c516e36d1dfc12f954fda05d95532a96ccc4c9a7104bfa6718d61d24058c5063e499c2a032b056306cffec95589d8cfb97f264b3999cdd7aeb2fa63c9d379f5c544883944557e41940571c2c8c6948af5831f8095e1e1c2ffa6cd4d70728e6f84d5e47952a1e92065e326399ae979f26f46672bf2f25dbb2e245c6d3e2b6f7b50520b14078fff9c7b4f0c96f28", 0xe5}], 0x6, 0x10, 0x0) r2 = inotify_init1(0x0) inotify_add_watch(r2, &(0x7f0000000040)='.\x00', 0x2000003) fsetxattr$security_selinux(r2, &(0x7f0000000500), &(0x7f0000000540)='system_u:object_r:smartcard_device_t:s0\x00', 0x28, 0x0) [ 812.579131] FAULT_INJECTION: forcing a failure. [ 812.579131] name failslab, interval 1, probability 0, space 0, times 0 [ 812.580951] CPU: 1 PID: 7308 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 812.582016] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 812.583300] Call Trace: [ 812.583714] dump_stack+0x107/0x167 [ 812.584293] should_fail.cold+0x5/0xa [ 812.584877] ? create_object.isra.0+0x3a/0xa20 [ 812.585614] should_failslab+0x5/0x20 [ 812.586193] kmem_cache_alloc+0x5b/0x310 [ 812.586844] create_object.isra.0+0x3a/0xa20 [ 812.587532] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 812.588317] kmem_cache_alloc_trace+0x151/0x320 [ 812.589053] io_uring_alloc_task_context+0x99/0x6a0 [ 812.589828] ? io_import_iovec+0x1120/0x1120 [ 812.590507] io_uring_setup+0x1dd1/0x2980 [ 812.591166] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 812.591972] ? wait_for_completion_io+0x270/0x270 [ 812.592760] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 812.593590] ? syscall_enter_from_user_mode+0x1d/0x50 [ 812.594406] do_syscall_64+0x33/0x40 [ 812.594986] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 812.595803] RIP: 0033:0x7f106b311b19 [ 812.596395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 812.599268] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 812.600454] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 812.601603] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 812.602735] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 812.603886] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 812.605026] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 812.624869] loop5: detected capacity change from 0 to 41948160 01:37:02 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:37:02 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 25) 01:37:02 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) syncfs(r0) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000100)={0x1, 0x4, 0x8001, 0xffffffffffffffe1}) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x10001, 0x4) fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f0000000080)) 01:37:02 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:37:02 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0xb65, @mcast2, 0xfffffffc}, 0x1c) r1 = creat(0x0, 0x0) write$binfmt_elf64(r1, &(0x7f00000008c0)=ANY=[], 0x629) creat(&(0x7f0000000080)='./file0\x00', 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x3, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYRES32=r2, @ANYBLOB="00000d10000004666900bb0c"]) r3 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r3, 0x1, 0x0, &(0x7f00000003c0)='-\xfcx{\xe6\xac\xc8\xdf\x8e;\xb4Wy\xbea\xac2@\xa7\\\x98\x1f\x9d\x00\x00\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) r4 = fsmount(r3, 0x0, 0x0) ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c00, 0x0) r5 = socket$netlink(0x10, 0x3, 0x4) sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000900)=ANY=[@ANYBLOB="e40200002000210c0000000000000000fe000000680204809b529d499c515464cf295f4a8f2bb132aa384198438d749e5240486364801cb73f05e1f8a208a6096cf20bc6f818eb6a21d284a9184e7a9ee9d492c30515c16c2ba52c02690c3d9a20f3ca4f867e1d7725d075425bd7fb5f985f24f49708005700", @ANYRES32=0x0, @ANYBLOB="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"], 0x2e4}}, 0x0) sendmsg$nl_generic(r5, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1423ac00210000092cbd686b46f6470cb3a2ec0c77468efe5886d81b6ba804cdb4a5fbdb7875fba8d15b5ac6e68a732725035c47bb9f6eef0108f479e52f05e3aedb7819b38664d3be6ad16bdb1f05e6d3df1bc5d13400df3c6dd4c59b12065a606dccd7473488d708f59a463567236abda1ddf0894ab552bdf48f0a1ce5690e842544456d6eb93796473b53c5e4780ad41e8491cc6d"], 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x20040000) openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x1, 0x3, 0x1}, 0x18) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000100)=ANY=[@ANYRES32=r0, @ANYRES16, @ANYRES16=r4]) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r5) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000001c00)={{0x1, 0x1, 0x18}, './file1\x00'}) 01:37:03 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:37:03 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, 0x0) ptrace$getregset(0x4204, 0x0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 812.855330] FAULT_INJECTION: forcing a failure. [ 812.855330] name failslab, interval 1, probability 0, space 0, times 0 [ 812.856713] CPU: 1 PID: 7328 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 812.857522] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 812.858490] Call Trace: [ 812.858812] dump_stack+0x107/0x167 [ 812.859253] should_fail.cold+0x5/0xa [ 812.859711] ? create_object.isra.0+0x3a/0xa20 [ 812.860251] should_failslab+0x5/0x20 [ 812.860705] kmem_cache_alloc+0x5b/0x310 [ 812.861200] create_object.isra.0+0x3a/0xa20 [ 812.861732] kmemleak_alloc_percpu+0xa0/0x100 [ 812.862269] pcpu_alloc+0x4e2/0x1240 [ 812.862732] __percpu_counter_init+0x10d/0x2d0 [ 812.863282] io_uring_alloc_task_context+0xcc/0x6a0 [ 812.863874] ? io_import_iovec+0x1120/0x1120 [ 812.864420] io_uring_setup+0x1dd1/0x2980 [ 812.864925] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 812.865529] ? wait_for_completion_io+0x270/0x270 [ 812.866126] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 812.866747] ? syscall_enter_from_user_mode+0x1d/0x50 [ 812.867361] do_syscall_64+0x33/0x40 [ 812.867807] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 812.868409] RIP: 0033:0x7f106b311b19 [ 812.868858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 812.871004] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 812.871897] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 812.872731] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 812.873571] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 812.874409] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 812.875238] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:37:03 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x80900, 0x0) r3 = syz_io_uring_setup(0x49c6, &(0x7f0000000380)={0x0, 0x5265, 0x2, 0xffffffff, 0x11b}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f00000002c0)) dup(r3) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x1010, r3, 0x8000000) dup2(r2, r3) fallocate(r1, 0x0, 0x0, 0x1000002) fsetxattr$security_selinux(r1, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:groupadd_exec_t:s0\x00', 0x25, 0x1) [ 813.003981] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7333 comm=syz-executor.6 01:37:03 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 26) [ 813.090500] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7333 comm=syz-executor.6 [ 813.155284] FAULT_INJECTION: forcing a failure. [ 813.155284] name failslab, interval 1, probability 0, space 0, times 0 [ 813.157822] CPU: 1 PID: 7346 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 813.159296] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 813.161066] Call Trace: [ 813.161640] dump_stack+0x107/0x167 [ 813.162428] should_fail.cold+0x5/0xa [ 813.163261] ? create_object.isra.0+0x3a/0xa20 [ 813.164238] should_failslab+0x5/0x20 [ 813.165056] kmem_cache_alloc+0x5b/0x310 [ 813.165935] create_object.isra.0+0x3a/0xa20 [ 813.166882] kmemleak_alloc_percpu+0xa0/0x100 [ 813.167859] pcpu_alloc+0x4e2/0x1240 [ 813.168681] __percpu_counter_init+0x10d/0x2d0 [ 813.169674] io_uring_alloc_task_context+0xcc/0x6a0 [ 813.170799] ? io_import_iovec+0x1120/0x1120 [ 813.171759] io_uring_setup+0x1dd1/0x2980 [ 813.172660] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 813.173742] ? wait_for_completion_io+0x270/0x270 [ 813.174785] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 813.175903] ? syscall_enter_from_user_mode+0x1d/0x50 [ 813.177022] do_syscall_64+0x33/0x40 [ 813.177812] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 813.178903] RIP: 0033:0x7f106b311b19 [ 813.179699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 813.183598] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 813.185216] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 813.186705] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 813.188199] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 813.189697] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 813.191182] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:37:18 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:37:18 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10104}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'gretap0\x00'}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x82081, 0x0) write$hidraw(r1, &(0x7f0000000500)="8f2eaa05fe69f90c54b51c485af4619d2e46dbc81a9451a0ac3a48397419339d0cf8746d92c122ef3769625407f675f30bcd461ea646c759123f436625af9c0be0216dfd551252a1d5771ab05967a353fee20aff96d4ee8907558032615a58d10e86e09fcabef870dac122eeb5ed79f732f34a5ad291433cfa34da23b45a77867f0bcd26eb9d683a6dbca178b7792899dd5edbbaf3b58bdd4bb4491bfa6dbdb85eb1d840e22c85e569f7103e7f588fba4d06b67bb56e68a350c309c152ffeaf5267f9b1ed7a67d62923c44f68185e28abea56c1ba1c7ca784fbcc2bbeb9c8db95e92fcee3de140495fde9bba8fc378f6d95bd85539d1f984fb1c04a582f9f7d69a0f297d200a93738290165a2aa15a283213c2cc7dae6b76440cf612e0530c5664c7f70be141fdbeb3984f6c217f055f86f24175d11c0768cd4c2c81b939ca79a592d872106569cb7937d721a5f7034413b9516fd7ef43624d8d9a6486bd08aa649faba9022d3b6a602ecf4d02ee6cd9251f42e0d9ff837cf7a4e7fa538e4372d9b0ccaa6757cde40cb007424f279fa93bd87d1925e478662d2366a69c40058644d3de7445c19a5077f6efcece0575e47576a45d9ae0fed6099e5a31716fe376cb72e6940d071f6cc570b386cee6b927f5d476a18fc396c1c1d26fc7b5d7896a857d3b07cc84c8dcc143db6d387094068f56a57a3b3a9097fc7e2161c39ac7a0eb040943175fc5b6898e5c6ea6badbe3d32d74a4aae1d36b38535079de21fdf8f1c6fc1828371d974cb7bdc9dc506910c32976cfb0cbb35cc11f2d14e76d04cac5a0547913735bac0141e69e81ecc3116249929a69692f68d36ce4014be3759373bebf4fd8d0fb971869d6f558e85b36f14067c53d54cde8a4a9674466368b79d19a8cd4a1fbefbae55af8eff0c8824e4020cf73f12eb1e02350172df1ec337fcaa8d6d32c78854ddd47d4bf0d409403694ed37548344ba2a6f829512827d7846a56166e1c9351d8972b8c101eeb67156915cdb82651441aa09f9468e1456d3933c2fa613ff7fe047e634a2641dd7066c960372ebd586214900b5ed5daf529f3b8689688a6c11ffa8f0cbda0b9525414a7a17fbeb27f0216799250ae6e90b002626f4b4c4b274465a77c4ad2fec0abbc9e5de19ddff2b06d540f73a9666909c8a3c017b4b0f015133a5dd9bdd75f63dd259ef68e4b0cf756c806e7699779c25e218bc6b3a4fdddb2f8eac70ea3a60ca8a7368a3cfe434640a40f7bb649653ebffde84b48073b128080f41589c36c96116b12105df1a963bc0712dbb128bb4227e01993dfd85bfa2b18fa71bc24f43046391b17adc26fdbd3db78ac5b7d15ebf8a215f7d5a2839eabd076452b3f9501fca3ad36ef6e9f0f487c7f26df9e625e41c536bf3410f43650caa8e1e48f80efa811b0dc2045b85e2c28e40ae7674664b43aa7d57df058a9d90a80d92ddb50d99e6a5cc53168a5982898ea3e2e0f9cc820878d368cc5d1ebc8872d191f9527b7a5d6d810db0fe1e906371744ffa9872b3139d965ae22a8ce72b02f7cab1afb70991f493a53ee418811915bbf9c589f004fe12ee20ded11c281e525758e24735c968b95307194776815064964a630a09efd6fa34eb3741bdb93f862d95806b27502e874b7fb14bb98d49fae09fcf6c7365bb2bf8c23d14c5565feedb05d9eeccda47173b4fc4908c3cd97fcfcbda09a87a304f86af07ebe07f33cb16d0444d84bdc390adb352a6f6b435438baab61cb0ed2963081d8eb5d5af5a3756e17a721b09e6195a9b163c2d459a0e2d6d2d0c3ffb951e8840898cb053c74fda41727fb4acd020d1c1db13cfa4fd133d10255b2d444f580cbe1c4b97e305424fb5d1a77b2323555465ddd09eb8c671b95fa650360eb67d13950d20de6676a823e85dd19eef5917108220684bd5f7d0f0557a143ef2801b6d1e1150e3c181e4ffb79eeadb4a7f160ed948df0273c1335d4e31fd475be05d7e27b98d9dd1091501b6367db5d3d5b50412ea524882fa36b0b3fc1107a18c2002968ec29ced231796ce05c5aa55bfaa94dd730c9a31e6ce65748d6604aee2f372658fa27bbbcb85f0b9f63ac432fd98f356933c5ffab02b867b76a829749c48453e2703cefec386ac17e17f7dd79e5a78d73814f1a61077f2696d2ea4891b8f575820c5deeed54129ffbc7010939d568954778739ee1b42058222d13f4ede2fae3bea150e8cbc5165e109756ae78f12c703981d402fbaf7b049abf78b87868f5895752145ab63549ff257b54ab729b43f17f0831390f4c7469a5cc41ce289c67eef97aaf5dc7df573de0a77be25984c7e73986ad36d4025c7e0b16b7cd3c3427edb36679b8ae6a2d55690ad7794c9716b2f15d82e01427d650c4eb930c9616c0fe64d77496395e1f16263a31aa9961fc5417a9753b602df115c5805ca9868addb73be8f34a8943e1757bbb32f6d5845fa8bbd0633cc2051d053b4002aab2d32842aa840e58f70edb106e69df8580be7c80679e08118f9b4166b8464d538f3971ca5fc0d7b5194fb8dcc482a08eb9056cf1be8bcf2b85e951d040954fa50e31405814058067db9222249cfb79ef2df7bd2f0d2e0d933d0380c1c0dba52945a873045c96dccaa5701d92acbb7017190d12a6ec19266dfb980b1ccfe87b0efd5b204c8a4a0e6dad0cf08b91a1160fd035b9859f3575fe2efbb05992927cbfd7da4fa9abf304dd8bf9fdba9883c8e903917b85cbbd510620c9ff27ba6c6bc2e11dd16685ff43ea4a97665c2dded9889e081fe305e894d414486377b869295aab4f32dd6926e58d5ab0296a047234049ae77871442b102f5ebf18c4944f31f1fbac66db4195ad73ce1220806c179d3f05021457e8ce0c3dfc631a1bd27fe3f84781e7e46d916ddb43080722c312eba94e388749fa2863f521ffa600b225cd8ebef12bc5ece6478be3e5f5f034ecd87e7e9d67a98cd9052c6994fad98e1f92c2b3b24aa0a04a1dfacba7c5ffd9b8b81f0eec36e686acb13dd22496b465960302cf0e8294b2490714c20d3806e3d1f2b4e365f067c5fde9ef22cd6413b9a49603f1ca187726ef1d40c4455ac1f1e941f4b1044b882b80f5ff8d06fe9779103b4051f81ad2d7df17083b69c925a30e18de5e250e506fb6395336be000b286fac022406f6185eb4465cb36b85441e334c83de73366c64175cba90b72e3580bb407139c2d42bd8bee4be9a8b1481cf6bc97d88125f5838c375c29ba463e56bff243456c601782f5d65459c1c7a405604297d5944d6ff8de2cdcd09341ecca21fbb72342befc232ed72ec39027522bce51ba2121e99e6964f22099100ea313136968b51a7e0112d9b31fc3a45a469436ea413812f33b23ea95bad950d0e7d45270c485880b795a65d61ca8d8a005b360524bd073c00412082748dfe13de789c327600e623be046d4564c48245f2010e3293c4faaffa26a534835a4445071a9c9712879d2508a71f074a9b6faa99aa52ea27554e639e07ebfe4c12a14785990e1e1c15397e72989b7d24e75f274a92ad3e7e7d37de8b964ed3b3755764c518d69bf3245d2e1ce25f69f5e8b48d71c6b848a54302b4479fe82ac4048799b3ceee3b2dab9a5978e4577caebf5a010090c44587c33c76a90761c4317a8e009332aa7f5ed5cd8c223f257370277d339f233fd7245659ac9d34ee421dd0ab51c70972edd7174f79f9db7c44c3f11cb2815749cf769c8d66ffc9e03ad92e60546077e82666ec956814a044ac849fb59c2fd18f31d05a81dfcab1be0a5282ca348bb3800393e3ae3201ed27670e5872f304126575b1f59e4dcc4bde7271ce587d1e8120a1f44776454f9a70c32e4f010944e0d355b62174d30c8f53d1441cbf065efe4056ecf764d0f85051f3120f20d94d696a00d2ff7b2ae53796856d47b5c43a0337434270475056b1866b1478bab226b7021890a428a9b74763556982efb225ead7f489f63b1d861f7eff32006e51bf56dc07198bd0a9aae79b91cfe47e5a0d29007047acc9338f07bba720e5e51444b265f6033d4803f98657822e00deac681fdf80495d182ed775f3d301b75cbfd296743b6b6029aed1319ff1075f967f97ed566e04cd628fdf2e264680754ada95b67c11a4c0306b67a283127a8dd3d469d2f14ba4058671a2fd9f31f78b853f5647999ca6a6014819983d4a709f595d253649fb00039c7f5ffae6106fac14fde661f0c4b57677aaf88e43cb70c35c0f868a08df9e0ea22b69b3ecb59bd2a7c06295046513f333651218d3c6811023fe51e99ce001b8233a2f537dfb49ef8ca8c54935cb083d1f4176fce50ac658bec1ccc34e159f2dca3150d74eadf0d82d885c77d4ff49d75ada25711dcb12d347f4eacd74f91d530a42424665bf782f0cc9edbb687eed7f8a55c9dddb6f1d784aab2d1b4e581a616b65e659f04c6ae38d5073216884c34b1160cdc09fb8d888510f8ec1d2a2e606baa29329ae4db16160970f5c32de3140430c9640f257c00e75de0c3f36dae6714c53ab8c15f339f8c073f7a9a915a1fdb123a6903fbd02a2dc4d49c83570b4f61ffa2495dc003b8c51dbb46e05bf988e699b483f34bf3ecf007575ce8856b14ade8b4a3c3ac86b26608ce116bcd83a1fee6cdd28bd3f3866063274e3999748c22635523980e11ef4042710b65e4dd5a006f0850dc5eecaa26caa29e5ea2a127e836fdce6bf1459c86202a2a01804361301d6c0a4a893cab0df8b879dcec1f6ada8522a766530da32ac955d54cd47f9997df079d8cbd2072df347cd24ffaaee35d0e1065049f0e7d72a70622f33defd420a22ad49ae59ce5995b33b4a15f27bff69977f4cc0d1b846da10656bc8eb2eb7af648a2eba7e322fbc6ec00fcc7a8bfb74d21452e8133ca623ba9072353a172e7546da020f44f318a42992d629f272b92b8999996440755e62afe4be04a0d1dea4f12cc387e35fd10be9c80bdc098dfb1d48ca6e86b53488a9952cf1e02c16e2b6462ecd4eb4563efac95ed26160dec09090697c59b5cabda55d790e803f3e490b40cd8f84f1807851295e59b25f51712065ea6c1d359bde9f520c1aaa9fa08a297bfd1fb230d7b5d8e88daa7fb613d83f6a89ac594366717142218b02e2b42a12ba6bfd3ce640fd30fe7ff934cfff1cd4ad43f6d414c193d5b99003ef07e80e7746ddec5a0f49a599f733b044d30cc7735bf9fcf79f32fbe2f22b0f495ec9d5d98e099d17d2a5003bc4ded964e63f39f9f2abefee33ad3ef9a929298ebaf916503db0efc1058b875250d5deca509c83945c9fca4f79278169174bfb5bec3e841af94a38513cc9c76df170b660eba68b81381bdb103845c0691b45faea0e4ad007b489bcc647c4aa67b6d563cbc69e633562d244c188ac17b1f17208e8025d90e43621a93a5b57a70bef26ae7e34355e442fd6aa90bf7ed253069863194bedba0d68a51f2b5b049b54152195705ce97f1674b838e81d563742b9fe4983bad601451c9347eb91aa6ca3e625ba234aa5db6065f4ecdf5bda452541b5de47096f060d59ba08e59eb72e3dff9f7a2e02866b7d532d9c00b3d8aba83c974cb57be70d9e33ffa18fc1501187698ff9d0400c712804046ecef20452959818ac205d7fbc2973ca76c2f661a185c6ce28d37df0c9f7578ef9e0a9ddb6f7b47f09bdc893a6a541a54e231dd3bd34a46161edd6eca81b9a450a0a0a82a3d8d25c39a28fa256f00b67d6594267012e292b1275750abea31b0772cf03ede764f7280a9de3f513a91065e288b4a1514044c89bfb5bbc891a", 0x1000) read(r1, &(0x7f0000000180)=""/245, 0xf5) clone3(&(0x7f00000008c0)={0x242000400, 0x0, 0x0, 0x0, {0x3b}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f00000000c0)=0x2) r2 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='oom_adj\x00') write$cgroup_int(r3, &(0x7f0000000040), 0x12) r4 = dup3(r2, r2, 0x80000) gettid() openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x82081, 0x0) inotify_add_watch(0xffffffffffffffff, &(0x7f0000000040)='.\x00', 0x2000003) close(0xffffffffffffffff) dup(r4) r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) syncfs(r5) 01:37:18 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:37:18 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 828.476741] loop5: detected capacity change from 0 to 41948160 01:37:18 executing program 6: syz_open_procfs(0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x80, 0x3, 0x2, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1c000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) preadv(r0, &(0x7f0000000280)=[{&(0x7f00000001c0)=""/137, 0x89}, {&(0x7f0000000380)=""/251, 0xfb}, {&(0x7f0000000480)=""/102, 0x66}], 0x3, 0x8, 0x6aa12b08) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x4}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) readv(r2, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/213, 0xd5}], 0x1) dup2(r2, r1) readv(0xffffffffffffffff, 0x0, 0x0) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$SG_IO(r3, 0x2285, &(0x7f00000005c0)={0x53, 0xfffffffffffffffd, 0x0, 0x0, @buffer={0x0, 0x75, &(0x7f0000000640)=""/117}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r4 = syz_io_uring_setup(0x5652, &(0x7f00000002c0)={0x0, 0xfffffffc, 0x20}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)) r6 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) write$binfmt_elf64(r0, &(0x7f0000003600)=ANY=[@ANYBLOB="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"], 0xfffffffffffffe8a) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r6, 0x8010671f, &(0x7f0000000340)={&(0x7f0000000500)=""/126, 0x7e}) socket$netlink(0x10, 0x3, 0x0) r7 = syz_io_uring_complete(r5) sendmsg$nl_generic(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)={0x2c, 0x13, 0x878c5bf8df414e27, 0x0, 0x0, {}, [@typed={0x4}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @multicast1}}]}, 0x2c}}, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000580)={0x40000000, 0x7, 0x0, 0x5cb7c17, 0xffffffff}) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) 01:37:18 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, 0x0) ptrace$getregset(0x4204, 0x0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:37:18 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000080), &(0x7f00000000c0)={'U-', 0x7}, 0x16, 0x2) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r1, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:37:18 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 27) [ 828.586508] syz-executor.4 (7367): /proc/7367/oom_adj is deprecated, please use /proc/7367/oom_score_adj instead. [ 828.595089] FAULT_INJECTION: forcing a failure. [ 828.595089] name failslab, interval 1, probability 0, space 0, times 0 [ 828.598181] CPU: 1 PID: 7379 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 828.599611] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 828.601367] Call Trace: [ 828.601926] dump_stack+0x107/0x167 [ 828.602697] should_fail.cold+0x5/0xa [ 828.603514] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 828.604638] should_failslab+0x5/0x20 [ 828.605658] kmem_cache_alloc_trace+0x55/0x320 [ 828.606785] io_uring_alloc_task_context+0x4a3/0x6a0 [ 828.608162] ? io_import_iovec+0x1120/0x1120 [ 828.609114] io_uring_setup+0x1dd1/0x2980 [ 828.610009] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 828.611077] ? wait_for_completion_io+0x270/0x270 [ 828.612113] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 828.613233] ? syscall_enter_from_user_mode+0x1d/0x50 [ 828.614338] do_syscall_64+0x33/0x40 [ 828.615118] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 828.616187] RIP: 0033:0x7f106b311b19 [ 828.616967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 828.620811] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 828.622405] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 828.623896] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 828.625394] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 828.626902] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 828.628413] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:37:18 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/stat\x00', 0x0, 0x0) r1 = syz_open_dev$ttys(0xc, 0x2, 0x1) fsetxattr$security_evm(r1, &(0x7f0000000080), &(0x7f00000000c0)=@ng={0x4, 0x6, "8098"}, 0x4, 0x2) 01:37:18 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:37:18 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:37:19 executing program 6: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000380)=ANY=[@ANYBLOB="e0000002ac141529000000000500000000000000000000007f000001e00000010a010101"], 0x24) setsockopt$inet_group_source_req(r0, 0x0, 0x2a, 0x0, 0x0) perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x16020}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, 0x0, 0x80200, 0x2) sendfile(r1, 0xffffffffffffffff, &(0x7f0000000240)=0xb5, 0xfffffffffffff0b1) r2 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r5, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x30}, 0x0, 0x20000040}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_setup(0xfbc, &(0x7f00000003c0)={0x0, 0x8bb9, 0x2, 0x3, 0x325, 0x0, r1}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000280)) r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind$802154_dgram(r6, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14) connect$802154_dgram(r6, &(0x7f0000000080)={0x24, @long}, 0x14) sendmmsg$sock(r6, &(0x7f00000021c0)=[{{0x0, 0x2303, 0x0}}], 0x324, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f0000000440)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x1, 0x0, r1, &(0x7f00000002c0)={0x4}}, 0x80000001) dup3(0xffffffffffffffff, r5, 0x0) io_uring_enter(r2, 0x3491, 0x0, 0x0, 0x0, 0x0) r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x50, r5, 0x10000000) syz_io_uring_submit(r3, r7, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000140)={0x0, 0x3938700}, 0x1, 0x1, 0x1}, 0x963) 01:37:19 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:37:19 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 28) 01:37:19 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() sendfile(r0, r1, 0x0, 0xffe3) lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, 0x0) ptrace$getregset(0x4204, 0x0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:37:19 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 829.091364] FAULT_INJECTION: forcing a failure. [ 829.091364] name failslab, interval 1, probability 0, space 0, times 0 [ 829.093948] CPU: 0 PID: 7404 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 829.095492] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 829.097395] Call Trace: [ 829.097996] dump_stack+0x107/0x167 [ 829.098831] should_fail.cold+0x5/0xa [ 829.099693] ? create_object.isra.0+0x3a/0xa20 [ 829.100739] should_failslab+0x5/0x20 [ 829.101615] kmem_cache_alloc+0x5b/0x310 [ 829.102552] create_object.isra.0+0x3a/0xa20 [ 829.103541] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 829.104696] kmem_cache_alloc_trace+0x151/0x320 [ 829.105769] io_uring_alloc_task_context+0x4a3/0x6a0 [ 829.106923] ? io_import_iovec+0x1120/0x1120 [ 829.107933] io_uring_setup+0x1dd1/0x2980 [ 829.108885] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 829.110045] ? wait_for_completion_io+0x270/0x270 [ 829.111163] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 829.112353] ? syscall_enter_from_user_mode+0x1d/0x50 [ 829.113532] do_syscall_64+0x33/0x40 [ 829.114377] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 829.115540] RIP: 0033:0x7f106b311b19 [ 829.116383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 829.120565] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 829.122306] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 829.123930] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 829.125562] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 829.127178] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 829.128797] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:37:32 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9, 0xffffffffffffffff}, 0x80, 0x0, 0x0, 0xf}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='tracefs\x00', 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x20020, &(0x7f0000000700)=ANY=[@ANYBLOB="6769643df8056145cc5d72890e3ae07b2de810722b2b9d1783c981f928c3ad61e32d1a8378bf3bf41ecf252d083dcd777603e322f6ef773f62df4a5e2303faa600f543b39cfc19db30d358e774a06a7211acd9e0bc0731821c562522691409e75135b7345ca7cb7dc94f279211c506f59b1f0757c52a32", @ANYRESHEX=0x0, @ANYBLOB="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"]) syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x9b7a, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0), &(0x7f0000000340)) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0) bind$bt_sco(r0, &(0x7f0000000180), 0x8) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r2, 0x8008f513, &(0x7f0000000140)) 01:37:32 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:37:32 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10104}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'gretap0\x00'}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x82081, 0x0) write$hidraw(r1, &(0x7f0000000500)="8f2eaa05fe69f90c54b51c485af4619d2e46dbc81a9451a0ac3a48397419339d0cf8746d92c122ef3769625407f675f30bcd461ea646c759123f436625af9c0be0216dfd551252a1d5771ab05967a353fee20aff96d4ee8907558032615a58d10e86e09fcabef870dac122eeb5ed79f732f34a5ad291433cfa34da23b45a77867f0bcd26eb9d683a6dbca178b7792899dd5edbbaf3b58bdd4bb4491bfa6dbdb85eb1d840e22c85e569f7103e7f588fba4d06b67bb56e68a350c309c152ffeaf5267f9b1ed7a67d62923c44f68185e28abea56c1ba1c7ca784fbcc2bbeb9c8db95e92fcee3de140495fde9bba8fc378f6d95bd85539d1f984fb1c04a582f9f7d69a0f297d200a93738290165a2aa15a283213c2cc7dae6b76440cf612e0530c5664c7f70be141fdbeb3984f6c217f055f86f24175d11c0768cd4c2c81b939ca79a592d872106569cb7937d721a5f7034413b9516fd7ef43624d8d9a6486bd08aa649faba9022d3b6a602ecf4d02ee6cd9251f42e0d9ff837cf7a4e7fa538e4372d9b0ccaa6757cde40cb007424f279fa93bd87d1925e478662d2366a69c40058644d3de7445c19a5077f6efcece0575e47576a45d9ae0fed6099e5a31716fe376cb72e6940d071f6cc570b386cee6b927f5d476a18fc396c1c1d26fc7b5d7896a857d3b07cc84c8dcc143db6d387094068f56a57a3b3a9097fc7e2161c39ac7a0eb040943175fc5b6898e5c6ea6badbe3d32d74a4aae1d36b38535079de21fdf8f1c6fc1828371d974cb7bdc9dc506910c32976cfb0cbb35cc11f2d14e76d04cac5a0547913735bac0141e69e81ecc3116249929a69692f68d36ce4014be3759373bebf4fd8d0fb971869d6f558e85b36f14067c53d54cde8a4a9674466368b79d19a8cd4a1fbefbae55af8eff0c8824e4020cf73f12eb1e02350172df1ec337fcaa8d6d32c78854ddd47d4bf0d409403694ed37548344ba2a6f829512827d7846a56166e1c9351d8972b8c101eeb67156915cdb82651441aa09f9468e1456d3933c2fa613ff7fe047e634a2641dd7066c960372ebd586214900b5ed5daf529f3b8689688a6c11ffa8f0cbda0b9525414a7a17fbeb27f0216799250ae6e90b002626f4b4c4b274465a77c4ad2fec0abbc9e5de19ddff2b06d540f73a9666909c8a3c017b4b0f015133a5dd9bdd75f63dd259ef68e4b0cf756c806e7699779c25e218bc6b3a4fdddb2f8eac70ea3a60ca8a7368a3cfe434640a40f7bb649653ebffde84b48073b128080f41589c36c96116b12105df1a963bc0712dbb128bb4227e01993dfd85bfa2b18fa71bc24f43046391b17adc26fdbd3db78ac5b7d15ebf8a215f7d5a2839eabd076452b3f9501fca3ad36ef6e9f0f487c7f26df9e625e41c536bf3410f43650caa8e1e48f80efa811b0dc2045b85e2c28e40ae7674664b43aa7d57df058a9d90a80d92ddb50d99e6a5cc53168a5982898ea3e2e0f9cc820878d368cc5d1ebc8872d191f9527b7a5d6d810db0fe1e906371744ffa9872b3139d965ae22a8ce72b02f7cab1afb70991f493a53ee418811915bbf9c589f004fe12ee20ded11c281e525758e24735c968b95307194776815064964a630a09efd6fa34eb3741bdb93f862d95806b27502e874b7fb14bb98d49fae09fcf6c7365bb2bf8c23d14c5565feedb05d9eeccda47173b4fc4908c3cd97fcfcbda09a87a304f86af07ebe07f33cb16d0444d84bdc390adb352a6f6b435438baab61cb0ed2963081d8eb5d5af5a3756e17a721b09e6195a9b163c2d459a0e2d6d2d0c3ffb951e8840898cb053c74fda41727fb4acd020d1c1db13cfa4fd133d10255b2d444f580cbe1c4b97e305424fb5d1a77b2323555465ddd09eb8c671b95fa650360eb67d13950d20de6676a823e85dd19eef5917108220684bd5f7d0f0557a143ef2801b6d1e1150e3c181e4ffb79eeadb4a7f160ed948df0273c1335d4e31fd475be05d7e27b98d9dd1091501b6367db5d3d5b50412ea524882fa36b0b3fc1107a18c2002968ec29ced231796ce05c5aa55bfaa94dd730c9a31e6ce65748d6604aee2f372658fa27bbbcb85f0b9f63ac432fd98f356933c5ffab02b867b76a829749c48453e2703cefec386ac17e17f7dd79e5a78d73814f1a61077f2696d2ea4891b8f575820c5deeed54129ffbc7010939d568954778739ee1b42058222d13f4ede2fae3bea150e8cbc5165e109756ae78f12c703981d402fbaf7b049abf78b87868f5895752145ab63549ff257b54ab729b43f17f0831390f4c7469a5cc41ce289c67eef97aaf5dc7df573de0a77be25984c7e73986ad36d4025c7e0b16b7cd3c3427edb36679b8ae6a2d55690ad7794c9716b2f15d82e01427d650c4eb930c9616c0fe64d77496395e1f16263a31aa9961fc5417a9753b602df115c5805ca9868addb73be8f34a8943e1757bbb32f6d5845fa8bbd0633cc2051d053b4002aab2d32842aa840e58f70edb106e69df8580be7c80679e08118f9b4166b8464d538f3971ca5fc0d7b5194fb8dcc482a08eb9056cf1be8bcf2b85e951d040954fa50e31405814058067db9222249cfb79ef2df7bd2f0d2e0d933d0380c1c0dba52945a873045c96dccaa5701d92acbb7017190d12a6ec19266dfb980b1ccfe87b0efd5b204c8a4a0e6dad0cf08b91a1160fd035b9859f3575fe2efbb05992927cbfd7da4fa9abf304dd8bf9fdba9883c8e903917b85cbbd510620c9ff27ba6c6bc2e11dd16685ff43ea4a97665c2dded9889e081fe305e894d414486377b869295aab4f32dd6926e58d5ab0296a047234049ae77871442b102f5ebf18c4944f31f1fbac66db4195ad73ce1220806c179d3f05021457e8ce0c3dfc631a1bd27fe3f84781e7e46d916ddb43080722c312eba94e388749fa2863f521ffa600b225cd8ebef12bc5ece6478be3e5f5f034ecd87e7e9d67a98cd9052c6994fad98e1f92c2b3b24aa0a04a1dfacba7c5ffd9b8b81f0eec36e686acb13dd22496b465960302cf0e8294b2490714c20d3806e3d1f2b4e365f067c5fde9ef22cd6413b9a49603f1ca187726ef1d40c4455ac1f1e941f4b1044b882b80f5ff8d06fe9779103b4051f81ad2d7df17083b69c925a30e18de5e250e506fb6395336be000b286fac022406f6185eb4465cb36b85441e334c83de73366c64175cba90b72e3580bb407139c2d42bd8bee4be9a8b1481cf6bc97d88125f5838c375c29ba463e56bff243456c601782f5d65459c1c7a405604297d5944d6ff8de2cdcd09341ecca21fbb72342befc232ed72ec39027522bce51ba2121e99e6964f22099100ea313136968b51a7e0112d9b31fc3a45a469436ea413812f33b23ea95bad950d0e7d45270c485880b795a65d61ca8d8a005b360524bd073c00412082748dfe13de789c327600e623be046d4564c48245f2010e3293c4faaffa26a534835a4445071a9c9712879d2508a71f074a9b6faa99aa52ea27554e639e07ebfe4c12a14785990e1e1c15397e72989b7d24e75f274a92ad3e7e7d37de8b964ed3b3755764c518d69bf3245d2e1ce25f69f5e8b48d71c6b848a54302b4479fe82ac4048799b3ceee3b2dab9a5978e4577caebf5a010090c44587c33c76a90761c4317a8e009332aa7f5ed5cd8c223f257370277d339f233fd7245659ac9d34ee421dd0ab51c70972edd7174f79f9db7c44c3f11cb2815749cf769c8d66ffc9e03ad92e60546077e82666ec956814a044ac849fb59c2fd18f31d05a81dfcab1be0a5282ca348bb3800393e3ae3201ed27670e5872f304126575b1f59e4dcc4bde7271ce587d1e8120a1f44776454f9a70c32e4f010944e0d355b62174d30c8f53d1441cbf065efe4056ecf764d0f85051f3120f20d94d696a00d2ff7b2ae53796856d47b5c43a0337434270475056b1866b1478bab226b7021890a428a9b74763556982efb225ead7f489f63b1d861f7eff32006e51bf56dc07198bd0a9aae79b91cfe47e5a0d29007047acc9338f07bba720e5e51444b265f6033d4803f98657822e00deac681fdf80495d182ed775f3d301b75cbfd296743b6b6029aed1319ff1075f967f97ed566e04cd628fdf2e264680754ada95b67c11a4c0306b67a283127a8dd3d469d2f14ba4058671a2fd9f31f78b853f5647999ca6a6014819983d4a709f595d253649fb00039c7f5ffae6106fac14fde661f0c4b57677aaf88e43cb70c35c0f868a08df9e0ea22b69b3ecb59bd2a7c06295046513f333651218d3c6811023fe51e99ce001b8233a2f537dfb49ef8ca8c54935cb083d1f4176fce50ac658bec1ccc34e159f2dca3150d74eadf0d82d885c77d4ff49d75ada25711dcb12d347f4eacd74f91d530a42424665bf782f0cc9edbb687eed7f8a55c9dddb6f1d784aab2d1b4e581a616b65e659f04c6ae38d5073216884c34b1160cdc09fb8d888510f8ec1d2a2e606baa29329ae4db16160970f5c32de3140430c9640f257c00e75de0c3f36dae6714c53ab8c15f339f8c073f7a9a915a1fdb123a6903fbd02a2dc4d49c83570b4f61ffa2495dc003b8c51dbb46e05bf988e699b483f34bf3ecf007575ce8856b14ade8b4a3c3ac86b26608ce116bcd83a1fee6cdd28bd3f3866063274e3999748c22635523980e11ef4042710b65e4dd5a006f0850dc5eecaa26caa29e5ea2a127e836fdce6bf1459c86202a2a01804361301d6c0a4a893cab0df8b879dcec1f6ada8522a766530da32ac955d54cd47f9997df079d8cbd2072df347cd24ffaaee35d0e1065049f0e7d72a70622f33defd420a22ad49ae59ce5995b33b4a15f27bff69977f4cc0d1b846da10656bc8eb2eb7af648a2eba7e322fbc6ec00fcc7a8bfb74d21452e8133ca623ba9072353a172e7546da020f44f318a42992d629f272b92b8999996440755e62afe4be04a0d1dea4f12cc387e35fd10be9c80bdc098dfb1d48ca6e86b53488a9952cf1e02c16e2b6462ecd4eb4563efac95ed26160dec09090697c59b5cabda55d790e803f3e490b40cd8f84f1807851295e59b25f51712065ea6c1d359bde9f520c1aaa9fa08a297bfd1fb230d7b5d8e88daa7fb613d83f6a89ac594366717142218b02e2b42a12ba6bfd3ce640fd30fe7ff934cfff1cd4ad43f6d414c193d5b99003ef07e80e7746ddec5a0f49a599f733b044d30cc7735bf9fcf79f32fbe2f22b0f495ec9d5d98e099d17d2a5003bc4ded964e63f39f9f2abefee33ad3ef9a929298ebaf916503db0efc1058b875250d5deca509c83945c9fca4f79278169174bfb5bec3e841af94a38513cc9c76df170b660eba68b81381bdb103845c0691b45faea0e4ad007b489bcc647c4aa67b6d563cbc69e633562d244c188ac17b1f17208e8025d90e43621a93a5b57a70bef26ae7e34355e442fd6aa90bf7ed253069863194bedba0d68a51f2b5b049b54152195705ce97f1674b838e81d563742b9fe4983bad601451c9347eb91aa6ca3e625ba234aa5db6065f4ecdf5bda452541b5de47096f060d59ba08e59eb72e3dff9f7a2e02866b7d532d9c00b3d8aba83c974cb57be70d9e33ffa18fc1501187698ff9d0400c712804046ecef20452959818ac205d7fbc2973ca76c2f661a185c6ce28d37df0c9f7578ef9e0a9ddb6f7b47f09bdc893a6a541a54e231dd3bd34a46161edd6eca81b9a450a0a0a82a3d8d25c39a28fa256f00b67d6594267012e292b1275750abea31b0772cf03ede764f7280a9de3f513a91065e288b4a1514044c89bfb5bbc891a", 0x1000) read(r1, &(0x7f0000000180)=""/245, 0xf5) clone3(&(0x7f00000008c0)={0x242000400, 0x0, 0x0, 0x0, {0x3b}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f00000000c0)=0x2) r2 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='oom_adj\x00') write$cgroup_int(r3, &(0x7f0000000040), 0x12) r4 = dup3(r2, r2, 0x80000) gettid() openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x82081, 0x0) inotify_add_watch(0xffffffffffffffff, &(0x7f0000000040)='.\x00', 0x2000003) close(0xffffffffffffffff) dup(r4) r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) syncfs(r5) 01:37:32 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x100, 0x0) sendfile(r0, r1, 0x0, 0x100000001) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2040, 0x0) ioctl$BTRFS_IOC_SNAP_DESTROY(r1, 0x5000940f, &(0x7f0000001200)={{r2}, "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"}) openat(r1, &(0x7f0000000700)='./file1\x00', 0x100, 0x164) r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x0, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) sendfile(r3, r5, 0x0, 0x3ff) r6 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x80382, 0x0) r7 = syz_mount_image$nfs4(&(0x7f00000000c0), &(0x7f0000000140)='./file1\x00', 0x10000, 0x5, &(0x7f0000000600)=[{&(0x7f0000000180)="e6cf6f38b7ad63435a4423bb3d40049cbc1f75d0460963d6927c342e54dee22a109902e3dce353eb94080b961ef066d9b07cfbcdaa484d4bdeb16f39f67de795783f7ab0c968e694647c5b757ca46bea452600a205acdb0f2942ee11adcbe9fdf74da409b8a604b816b5490a", 0x6c, 0xfffffffffffffffb}, {&(0x7f00000002c0)="5666cf301e5b2e5b1013328e13c2728c9155b2226457d844001896f91ccedc555ef75a4a425b0271843a482b73ce286d7d5804b839f4a98e4cfc8b0c1a494d96aa0d9ff979d4af9b774f8ff0a14023644f9d9280d38dfc08cff251e06bb42c422b87e2a6a6f6b0c2966f161b9f0844765c9025a44898c10f5151410a43cd132769fc87a77d12b2dee2350ee227b7b5b1a4690b16f9218db39708671560c4e4fbe0a71f9057d56ebabadc95aa19c60ad5727c3a7e5683467ee46696db2684572584a623e4f71e0b13f2eca3ee29e0e067c30fea916efa", 0xd6, 0xffffffff}, {&(0x7f00000003c0)="cd708492fe2a832eb5c6c56a5400949cea9c8350f53bb3c1a15b52156db6ce7fc08658ff3b430048e0b4c64ce0477f4587c63dc38541f268692dfbff72b6ed41d328ed895147cbf2e703e4a8e0bef979b9716692fc68a765f2401ad274742286ee9df198c399baa71d1222ddea6a72bb39eb674c6a58d2f832d4902e2d07b8cb14e1604a3b5632156c9f51148694753c97a88b90b565d516a2271384a4fe2e5bf3ecd1ef8670897a351fcc92d7be68475ee7a538d7fb", 0xb6, 0x1}, {&(0x7f0000000480)="8319840fc3fa041c566fad2282f87a94cd7e915316a214d42713423346203cac8cded8bf9596845f9640999a0acbef9cad01c9ede6b97ff5743910dd320a76cfa3f4e25887ff7f72fa7980c464ad1b4764e0506e7ad4c7ed434e3e6bf6cb6226737665e3f4005ae2726fe215803e7c2606b8b25ca3d94493444f9666d1", 0x7d, 0x3}, {&(0x7f0000000500)="d01388a237b12b5ee7159078b2309e0b3c0e81eecda2406e8c6eceee07bf9c7f664c76bb3e56b913be2a18c9c2182b3f94a1a9af79e2c4d181b73a164d534812a0ba976ac6872d0945071f41ef7a445d699482af922f771685364b315571ca9a8e02d6d31068469adc6f3ff773279bd84bf08a297a1918c631abd9ad210bfef26c879fb1abab9247f21b63e6bea77ed3ad567ad7a953777d14d3d9e548f9c1bddaf948bacbd8d6d9a25c3cdbb4d155354fba3bccf75850ebec4cd5326ac12932e96d60fc082718f21340ec9e8659a587c293157994872c18cdccc27c0b49db31169a641fc3b109f8488b757cec7d4bd7", 0xf0, 0xff}], 0x200080, &(0x7f0000000740)=ANY=[@ANYBLOB="2f6465762f6e65742f74756e002c7b5c5d402c2f6465762f6e7672616d002c2c2f25252c2f6465762f6e767243be002c2c73ed215cb395cc629fbda027d7a596eb09000000000000003d2a3a5e2d972323232c646f6e745f6d6561737572652c636f6e746578743d73797374656d5f752c0062c8aa8fd0a9f72acaf152cba6f5c0d594a291d6681e5d7b9e62c4611df70a8241"]) readahead(r2, 0x0, 0xebe) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f00000008c0)={'tunl0\x00', &(0x7f0000000840)=ANY=[@ANYBLOB='syztnl1\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="008080007c0dfffe000000014365004c0066000004299078ffffffffe0000001890b2e0a010101e0000001441426000000100000000006102000000000001907072fe0100001070f3a19ecbabd90a259cc4c26d9f68c8aac"]}) sendmsg$ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000900)={&(0x7f0000002200)={0x18a0, 0x0, 0x4, 0x70bd2d, 0x25dfdbfb, {}, [@ETHTOOL_A_WOL_MODES={0x300, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x28, 0x3, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '/\\]:\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0xa, 0x5, "af93cf19cf2c"}, @ETHTOOL_A_BITSET_MASK={0xbb, 0x5, "8f0318eed0390b6657ce05c43b004508338bf817b5ac51ed9f9cea5b658c5679b4d428004193d35bd97a1f4766efecc9ff7cafad3f19e65031ef6b9283e1d41508a2e999554cfd3b21e3b36a05da724ccbfad1c138639c27a0a6b19d02a409d0bd414ed2231114f97813bbca4348b9e08f63286dbff57fd3a4a4a8cced414dbbbcb2416ef7d34c7d0615aaba5450368242fcf21464f547965044d64423a7deb4944363da9f688b6edec4831d4eb72d8f27f36b023f6ccf"}, @ETHTOOL_A_BITSET_MASK={0x2e, 0x5, "c249b9a57e70a50f955628f007d66549fd7335a0741f010a0866a0c72e75f72102a1e1034edcfd70dd80"}, @ETHTOOL_A_BITSET_BITS={0x44, 0x3, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa5cf}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/net/tun\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/nvram\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'nfs4\x00'}]}]}, @ETHTOOL_A_BITSET_VALUE={0xf2, 0x4, "345537697c2b731574df803af7f5020e99d1afa494d08de9c7e73d5791529aaaf4fc8733952e4221557073c6200d2d5cd4355c65459d6426e3d1d5435422a22e193f1063fb19ab63a0ce8770b6ca908ec490ddfc5c16523ff441d3b0ac7f604f7aa37c560db4b2736bcb9e4b8904fe2b6aac19da17e17f1d84d1bf7edb4daf0dd58446a3022838bdc8a8065d66f3cce3390885c5d5bf1684c6445ef479903a7718eab156eb304eca11982a202d17732201ee4ba158667c5fdeb041363d8cc33205e0c7e8ca4143c9c404b6d356f2c1d551fd4a26b59da63913bb3591425bc93f05a98d47b55d1b2c9b2504e094ae"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x2}, @ETHTOOL_A_BITSET_BITS={0x94, 0x3, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '/\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/net/tun\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/net/tun\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/net/tun\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '+[)@:\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x101}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_WOL_SOPASS={0x4}, @ETHTOOL_A_WOL_MODES={0x1a8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x32, 0x4, "fe0ca56ae5dd125582170ee9a8d859576c8d4c05ba61a492e54f58bc8a0618fec4d1bf4010423c075e0ba8ea56b2"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x158, 0x3, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}]}, {0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/nvram\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '[:\'}-\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/nvram\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/nvram\x00'}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x200}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xf1}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/net/tun\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x64ee1345}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'nfs4\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '{\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/nvram\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '{#.$\f'}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'nfs4\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/nvram\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, ')).,\x9b[$//\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xebd2}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x200}]}, @ETHTOOL_A_WOL_MODES={0x324, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x180, 0x3, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6f1}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'nfs4\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ']\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1f}]}, {0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8001}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/nvram\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xf97a5da5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x99}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'nfs4\x00'}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/net/tun\x00'}]}, {0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '$#\'-,\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/net/tun\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '](\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/nvram\x00'}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/net/tun\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/net/tun\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xbd}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/nvram\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffffffc0}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/net/tun\x00'}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x5c, 0x5, "a263f6b8df81b418447f1270fc5dbeaffb3834b15e40c9bab162966ae82d38fc0a1ad1cf5ef1a4e764c89a950c167aeeb61bb828342646ed63e0e511af2e1085285d97ceee0d82770723f8c4415ca459505527ba8f40151f"}, @ETHTOOL_A_BITSET_VALUE={0x6a, 0x4, "ab2a49586f0f281892d26b0127316f98b1f0a0f3a781f27c582a90425e588d56a14d16f78fce31feb52d165064d7fb29e38e79f1bb651942c9c14f477cc3e57e9d773cfe950cd862638e1941a2201c8e0480d841f32f111737cbde657b04f1b8e49682da3fc9"}, @ETHTOOL_A_BITSET_MASK={0x8a, 0x5, "9f294b47695cd6c8f1793035550483681a285cd97cfe2b1779f365b7c3952b464397bb535afc229c0d3a2df96d2f14f0fa2c4d8167b1a7d9b54e870a4309db3c3e62dd7a48f87df228ee1ec8eabdcafae8cf1fb79cd77b345f383448a19f5b6c3676279728d6b6bc9b53f28bf2856406d94d772c5cf85fa471d7cf43a8e0c42fa76bbff673b8"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x3c, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}]}, @ETHTOOL_A_WOL_SOPASS={0x93, 0x3, "a6e20e84e8f0670ca033004db095756606e909dc8cf90f370d0f050afd3ce086a9137bbe130719c6badec3d95757f2cc1bbdf8f29378cf881b5bbe4c9a7d31757074bdd849d58d631b561da954242e8e997ff64da1223f1bd5cf0a396534b669d607621a1ea148de99aa8440ae490cadf9ebbacc0d3513d9eef5a28564b9d7d642b77475336f635c0656a8735a3828"}, @ETHTOOL_A_WOL_SOPASS={0x1004, 0x3, "075df266fa2349de73a3c51a7d55e7e3d6fed0fda86f1a5ab5fd0f8dbabf2b3fb6635506864e161cd2151b552d810fdf026106482e3f05581dbd96810ee99c9f8ec4107b764ce73b9049efdec04c2954e14a48577a77c12154409526c7ed942fad9e7e9d38aa8c0457a0dffdb9bf7234a003d72392135f931b15a1d0bb02dd6a8b1a8b734c5e49a520a59d7f99bc74ddb42b7fcfbe00a6fda4bed302023d0c00715fa61d5b2bdad0e62624cad0eb0f42f850cab2ffea383e56e34bb73a350d20c69972e2b8ce5aa8e93007f0fc0d108e43425caad94fe27b5863c7810ed2407f9aa53a977e41071aee12218b9d507252ad5e5e215752794d5532070b98bbf7dd4e97bf358354d38bd32b8d5652bfb128ed9f1846c0f646e6ecadd1bf87ac6ad8dd034b51655916f30f03841ad1c49a677d1941cf4f7fcc0844c134e33fea4c0ac8d180bee506bb3ab756f1df22ae4409d504eca7a34d02a4d7e33c7ad045b12f2d2fc274b472d665922c0fd8cea7b1c3d7185e7511f086ea402b1948c919b0623e8b73672db1fc6bcc5c5ad0bbf8fa3692d959dc506d1cc4360cc1024324032818f42b08dac49cbd5ea53fd333510599cfe087cc8101ecacc2d75d6c35e2934ed9bf3d84c13ddd9250e6892ec5be1dfe87d239a6e2057eef1d4f37f0f9d99a099e7a506bafe34d1f5bdf0ddafdcce647996060195b57995f0dba2ede8390e4ea21357abae0a4edf77fcba37bc97005cd6ab2b315532ca8f7b961c50d4c9f61d3680874e750f95b7b9c5684d821a1cb0b21bc9cf6d6a6076000bcfd70d59dd1d07a57073772d4e385df1a04eb58b41ebb6d24d8d6665860f36256e51b6505574c67c86ae6cbed2c76489dfeb9d0b829872dfd2c6ae3cecd8b62a1b9c998f9e767272c1fe5c4270c58ff5b8147cad9f9b3c345d3a1a7330a1a2962dd69ba589888fba255cf2938a9ad0e25eb824f6d78e572604ca5809be5f1fdf3cc07c0c780b2374e7ebf760e06444da1d4172ca7163451b0e3cf9721d1f8a7f2b64430a329a819134586042cab9e94bacfd0ad6db74e341e490f6c55e1f2dd2fe1101809cd57a7407dbb45362780863184ffc992d2dc3aece779a418e243daca82ddb1d690cb66dd946be3add59128c052c21a5d2ea415c4b24e373374b4de64d793ab622165b15c541a38ddc1f57321479ac147ef7e2ed9785f8aeb2239b7e7269ca650916c532d5a5c2b3ae3341ff0ac37db162e45eb7f0e2bdd11d31824195d85663a91068a794f92c3fac2dc8ee7bc8a8d3361658168fc6f64902f501a333fc03117e3c1854403b8a7626dc1701a420017fe616e8de74af81d2cdd81904aa0bbc7009ca61535d501185600771d0dcc9baf728a57cb96c38faffcf8466f66ea9e31dc0a55bfc4181181948d9d5502c3713d2adabb8272ef96f321f1e1ab56bd13f4b196d043602723d308133f981c0215611ea29c372e0cffbd31e3e958e49eb9e15de0ab9c7870a9b781ab322963f8489bcfd4179ea0837671629cf2e15fb14b9bb467cd1f653062318553d093ec3fd45f91aabac51175af71d23dceafa100cb2aa63210b4a993580377e2a1045b63ef0cac1efc1f0643ad89d3329d96e4fdf9d73cea964d60675f25398c706ea9f27e273146b3c327702538cb5bc2998b5891275f03dbbc89a06e4347160f6b1e1f987450d351e65e1b6a110856d0185636a8066f4bc836f7ce15e649a2251e8f047074f188caa4429fb9cfe5e26319d7d6649596dab184eb7b88b7bc55f7a2f0adb5772a90ce9a9366bf448baeb600326c7dc9d5b3d55ed74119ce9dceff0796d80c806d9709318f06a7bfb9fa11336524c3dce2d0daebb6ee820dc375308b2dfcca61f891325c804708ca887a5325dfa728ebc478ed2ae42788a31d0131adb0305fb952029beb69759cb71377300075fd58dd2ce951fa43cdbae69953c3ff34a0ca5dfd836cfd9b233771e6bbbc6b863814c69c7785d9b372275a5e655b5ee8a6185605e1ff5b00ae9f939aee6bd4463c9ee14896f80f1742a903f9c1cee4e1251ad917dd32b434e82a596580cef791bac6e906bd267f40ba46a5f53c75c1c48d11be34b437484523ab27b962c73f7b146bab05f71344f3d463b491c2704bd6626397f6fb5b1a805adf19e70c6f2be2b1dfcc5bec15139e4c0e22b14d1fd14333837c2b4340bca8d05f45ac1e5f4aa852a00c1c13ac3e06911efdc031171eff00d33666399c70af469e7f050ae59775cb2da76b4d51f77591c99c5826cf56e851e453c580fa5f1a7a1aa994ffad876ac324104f2246fc128d48a5cb52104d038a5e7680c9218006428aebc982aba79eee82273ea920e46d45dab91d18e51f63cfd4e39ab316265c2ae489f75046ba0f3442ccbdd300658b62e024e66b8257141b9b2f8b035b0984c7b47b41c7716fe4ac50c00b2792db488deca23c0785295a81c6720702dc2dc2ed431ad792d25abebe654da8ca0197afa548e5b32ad17031fa3c9cf2b8bb3ab4190d2e0f545cfca4688ac29bd2b7e4baee9e272ff7788d4b7b26309fadd2732e095e167882657507eb39f2c7f47a388bbeb7a8e8d13dee4f18c69194e7b8efddbf6004df244beff46496691018be87eb37fd5ad4fdadd6452b4258383ae8e45d34d5554b0e2602c2661bba069bded2a13349b8789406445f764492a85854d602b94c029fdc867571c66740475ab4d76f894f4e61fa0dd8a4694f7ab97106a02c75106334703dc4c78cbb995b88defa4de4cd018b28fef7eb6fed95cf59be69da281af39c176bf7546cf8c818ddfe9fd73fad4dcf04c7a510af0a4d4378242efe7ffed25df9720b626e4762e98ddb8f9fe947a18032f0ba00d6156a2fa82602464f39e2d31eff17accfdb8532eac7d27d5d1c06f0dd383d22be41a1a0cd87eccde54804a8fdee0a4711642cedc62c122e75ae5352ed432a0318aa6ea7ff3cc05b36e5700ab010b903bac4cc89a82babc34073f2c7506f215258fb8d656c333ee2cb50e5674329908724f79e444e4d87316c5687a26adf693646e246fe465887a30179f5d7d8dfae96008361a654965a6721b70c33b7fa857545fcce7ae3ca641d0d085558469183a3d211bbc80a687b31f612688903c72616ace0811a56e8f875688e620038b068bb107f3cb81555d0f623cde546ac646e82b3e279923a5d05e1612b77cf7aac659393d749f7635d9273d9391beb4319d6db3651e21600b338b984733ff2c6ed00ee43a3d33d2f0eb16427731f4d5576133248ff67888ef44c9931d95ece614d1dea727e4dc933a9cf79b988850b2d27488b0e836c2fcaf3eeff718f85e5244802e968665339a996ec66a31b999bdb2042b43f56b78444e2dfc4d06f8346234c1489dc1a975f1d50ee2d80f380dcdfd0740bad55974b16c17b908f82ce0a08e0e6557038aa3a797ee3465aa961c714c72ec75d9118485e43731ac72697317fa7efe90caf0de6386ab69b1b67dc53061dd6aee62a49f5b1eec6af074b5d76b006898c3167e61cf9298a2cbe2006f6077c10dfffa228950cec588a43266dc1cd21d635e9f429d34711cd8e31af8c71dd5351cfe30d90bafd048a08833c6d8c2908e16396d0ad6af5fa011d8785fe67f0bed86fdcd8732dfc99e9da7e1a0f36b94dcb7f2b111844872ecb8c477ea86396065ecdf5c0c2c6ee61a84f778ce67e7e3989b6d3716dfa0b5a93d847130fb8d6df49d9fed395fb5fabdd3b9f86efb79af3cd118fc589a14c16603de1d75f607f616ed2cb7ebb64e6091dd475849b7ecaea188570da425d7729eff13fe2d5bc4d32e3ffffdee0a9773ada1a2ccbb412d7cecae98c291ac0730907b48ebaede7a1a0f947e59914791a774d81ec00ce207c96a4fba6856f9742381f32068fedc756193cd06f78652d7480cc8ba5b3f7dfd5b613106360497c2b66537942505a24bc52971b32b76f0c9eab2fda978708d30261f723e09ed69a227836801becc57153501e8d4317ea0353ed6f69abe98637175979e8ef19908982cd8f0da86361bb9b27cf7f61a4a352a28c0f2db7bf4e230ffc9af1a43eb7262381d58188937729975514c008b5876dae4314174b8605d6a6d6ce8c7dd111c50a100f04afbfd4442ead261510f64e189699b091163fa5c0ad9d4be1501847ee0eb583d75cfa8fc9a513752609dd0a0d5166286181c4c8fa044f1b4c665217894064a17e36c56690321a820a4043ae5ea353ced82311001134b52ad5627cf931ca09a4cd746cddaef0f1a252503ed08659bec9afb5d599f5a83d6ead091ab3dfac58c72635077b0ca6047d70a17ba9a7c09f801a9fd981d9cbab3ca3ca3f9ea77754474a4174da0ef0d910de4d2a938789e9283dcb78637577dddc4ff42a34e32cdd192e8ab2e08eb32838798b17ae9c75db58d23315252edc725cb9738b78ea636f1b41dc44302c7660cb7dff34f9b42aae8958bdf61fa13179b8ab90b6207c68af609b9d4aeef6957e45aa64f0fe0d5ef3eb8d1fbef68d91fa2c5126293bd5476125f810bfa23bc70c6a40a113df3650b605fb6442790d032eca489776d71567e53e7074907d9ed94d281a1ffc4e76341da04104257d0083ff2b12cfcae5fa750390b0af83718072a287f5541de1df3be8dd1a5110eaa8980876122d939c48af49af08918b91e6288b3c6e8be9c32a198672f4f2e91952db70ed0a9abc3b1db1c8530fd58dc1227ac4f2213ddfb9b91fc4d6334b109457a595d4b663bcc1d6c0a91b2ecdb940b98fb4ad4cc85a58a964f969bee28291b644c7389bdad494da03c9549a228d39e181748d8e70e29816969249b2c8e518338d6e84ab1bd5ce1c2d612ea445836773f14f06fcc37bba736ad7180c852481064f0f6735c3f57a81dbed0193f1807a92b461798ef6ca7bdd61578fddb75fe2b23761fd0e7f583903b725378d8edc6b116318eed2fe1ee485597bfc8af77a672374a7d9a6ec30c1588743214f00d869acada9153c091de27b942594a7f055431f1dbe83d80e9b0cf095bebf3a15e1da90bb0e2f80ef37a0edaed8aa30cd5a85963644d8a3c0a372048fba05a8b958794c6c5d7b2d4d481ade7080a07720d59ef5d7a49a549e361083c2c4924ba028bf854847e824f533431a948958d10466aee8f7fe61b6667b3a05012c209ec65d8f37bac237d916837b557983e4f473a466058cbd1758ce0e8a106adddd8b27a3f4090c9d4cd1d5af5d5705559efa1da8f9df51ce9ffb26f75ee7518306a3be65b2352e8888f34c7191f05c33c034a816af5604111aec1a6eb4df4c7d986b22e78b591303dffd43780d64b1417ef583ae7d9d8a1bc37f881e9b4c34b9179ad4e670fca2ba523e96eb3e1f4c73d1400ef766fba6dafb3c6544f32addba1ea56693910b2c87ff25ebedd25ca69ab9247c8eefddbe8557c6f6c74c07d2ec481fc14bf85fe45f5ef79f0e1aa6212ffb09cd3758fd4c98704bf7334390e2013050fa925610975f9aee7280164b6b9fdee35c8bd1578ebf5a15b7917bf2644392ea5c954dd774336ced9f29a6548c73201288dfb06aa8a8ccd29652a02d1dcd92b98135c6e1ca7fdf543787c8aad54110299cbbfa999ee054af8e97851d0121846bb35d628993ff1a67567ea1c3e0ba42e825501bf6fc672363c7e14b94b9b1cde3c1e2f731cb92a08acfb2844b72952f61513a1b19c797affad212943bc5e0e6c379eb216eec911787fa429106244dc69cbf55ecc00b09f01533116d1a0d4d06c2c1888a1b5c2068f106e12154816c98d5044945c96d29967e7e25f08981de"}, @ETHTOOL_A_WOL_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x18a0}, 0x1, 0x0, 0x0, 0x4040}, 0x40800) openat(r7, &(0x7f0000000240)='./file1\x00', 0x101200, 0x80) writev(r6, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:37:32 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 29) [ 842.296667] loop5: detected capacity change from 0 to 41948160 [ 842.299511] FAULT_INJECTION: forcing a failure. [ 842.299511] name failslab, interval 1, probability 0, space 0, times 0 [ 842.302027] CPU: 1 PID: 7432 Comm: syz-executor.1 Not tainted 5.10.240 #1 01:37:32 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:37:32 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:37:32 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) [ 842.302038] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 842.302043] Call Trace: [ 842.302068] dump_stack+0x107/0x167 [ 842.302088] should_fail.cold+0x5/0xa [ 842.302109] ? io_wq_create+0xeb/0xc00 [ 842.302132] should_failslab+0x5/0x20 [ 842.302149] __kmalloc+0x72/0x390 [ 842.302174] io_wq_create+0xeb/0xc00 [ 842.302203] io_uring_alloc_task_context+0x1f1/0x6a0 [ 842.302222] ? io_import_iovec+0x1120/0x1120 01:37:32 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 842.302241] ? io_apoll_task_func+0x2d0/0x2d0 [ 842.302255] ? __io_req_find_next+0x300/0x300 [ 842.302284] io_uring_setup+0x1dd1/0x2980 [ 842.302311] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 842.302354] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 842.302373] ? syscall_enter_from_user_mode+0x1d/0x50 [ 842.302394] do_syscall_64+0x33/0x40 [ 842.302412] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 842.302423] RIP: 0033:0x7f106b311b19 [ 842.302439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 842.302449] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 842.302468] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 842.302478] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 842.302487] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 842.302497] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 842.302507] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:37:32 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 30) [ 842.486342] FAULT_INJECTION: forcing a failure. [ 842.486342] name failslab, interval 1, probability 0, space 0, times 0 [ 842.489525] CPU: 1 PID: 7445 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 842.491543] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 842.493916] Call Trace: [ 842.494632] dump_stack+0x107/0x167 [ 842.495637] should_fail.cold+0x5/0xa [ 842.496640] ? create_object.isra.0+0x3a/0xa20 [ 842.497879] should_failslab+0x5/0x20 [ 842.498809] kmem_cache_alloc+0x5b/0x310 [ 842.499713] create_object.isra.0+0x3a/0xa20 [ 842.500805] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 842.501908] __kmalloc+0x16e/0x390 [ 842.502752] io_wq_create+0xeb/0xc00 [ 842.503565] io_uring_alloc_task_context+0x1f1/0x6a0 [ 842.504640] ? io_import_iovec+0x1120/0x1120 [ 842.505586] ? io_apoll_task_func+0x2d0/0x2d0 [ 842.506772] ? __io_req_find_next+0x300/0x300 [ 842.507735] io_uring_setup+0x1dd1/0x2980 [ 842.508936] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 842.510083] ? wait_for_completion_io+0x270/0x270 [ 842.511134] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 842.512406] ? syscall_enter_from_user_mode+0x1d/0x50 [ 842.513839] do_syscall_64+0x33/0x40 [ 842.514901] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 842.516239] RIP: 0033:0x7f106b311b19 [ 842.517111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 842.521496] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 842.523088] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 842.524768] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 842.526353] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 842.527874] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 842.529396] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:37:32 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x0, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 842.569682] loop3: detected capacity change from 0 to 135266304 [ 842.571879] nfs4: Unknown parameter '/dev/net/tun' 01:37:32 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:37:32 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 31) [ 842.759071] FAULT_INJECTION: forcing a failure. [ 842.759071] name failslab, interval 1, probability 0, space 0, times 0 [ 842.760510] CPU: 0 PID: 7459 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 842.761334] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 842.762349] Call Trace: [ 842.762672] dump_stack+0x107/0x167 [ 842.763114] should_fail.cold+0x5/0xa [ 842.763579] ? io_wq_create+0x6ef/0xc00 [ 842.764057] should_failslab+0x5/0x20 [ 842.764521] kmem_cache_alloc_node_trace+0x59/0x340 [ 842.765123] io_wq_create+0x6ef/0xc00 [ 842.765596] io_uring_alloc_task_context+0x1f1/0x6a0 [ 842.766204] ? io_import_iovec+0x1120/0x1120 [ 842.766735] ? io_apoll_task_func+0x2d0/0x2d0 [ 842.767272] ? __io_req_find_next+0x300/0x300 [ 842.767824] io_uring_setup+0x1dd1/0x2980 [ 842.768329] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 842.768945] ? wait_for_completion_io+0x270/0x270 [ 842.769556] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 842.770190] ? syscall_enter_from_user_mode+0x1d/0x50 [ 842.770815] do_syscall_64+0x33/0x40 [ 842.771265] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 842.771881] RIP: 0033:0x7f106b311b19 [ 842.772329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 842.774548] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 842.775461] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 842.776328] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 842.777196] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 842.778062] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 842.778918] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 842.980470] loop3: detected capacity change from 0 to 135266304 [ 842.985550] nfs4: Unknown parameter '/dev/net/tun' [ 843.129133] syz-executor.5 (7430) used greatest stack depth: 23216 bytes left 01:37:47 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:37:47 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:37:47 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x0, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:37:47 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 32) 01:37:47 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:37:47 executing program 6: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x91e2, &(0x7f0000000500), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000240)="a1", 0x1}], 0x1}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001) io_uring_enter(r0, 0x4c07, 0x0, 0x0, 0x0, 0x0) sendmsg$802154_raw(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)}, 0x1, 0x0, 0x0, 0x40814}, 0x4040000) syz_io_uring_setup(0x67be, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000400), &(0x7f0000000280)) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000680)={0xffffffffffffffff}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r5, 0x0, &(0x7f00000003c0)="fe", 0x1}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x300000e, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r6, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_setup(0x28a0, &(0x7f0000000300)={0x0, 0xcbeb, 0x8, 0x2, 0x185, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000380)=0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, {0x1000}, 0x1, {0x0, r8}}, 0x3) syz_io_uring_submit(r6, r7, &(0x7f00000003c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x1, 0x0, {0x1, r8}}, 0xfff) 01:37:47 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = syz_mount_image$nfs4(&(0x7f0000000540), &(0x7f0000000580)='./file0\x00', 0x3, 0x8, &(0x7f0000000ac0)=[{&(0x7f00000005c0)="89ae285ba5b0180d1b41b882a453ff666ba8f0cdbe37733693695271bcff3529929e920704ff7c09e5c6ca7d6ac04a0a9576698db37745e9396caca354dd18477202aa690a2c135feb0ef47bfd4087735fea1467a91bd24d7b9081abfbd8ff340e04a65be0fbe69d2ab474684e8500cd7fe336a8", 0x74, 0x9}, {&(0x7f0000000640)="467e98c736b93f162b6400589f5613f5e3944e97e73cf9928bed0a0842f44c94cf419f76692f9c741d1f65e91945da2c20482a7bbcb37d2b435e134ab9310d89d7113b8d7f49e1853b9d05c2c5aa40ca1c72316a0aea0b61da224bc499aee949e1c597a040bed479f451cb0ce336511ba88ec8ad98ffb7a2f60456cafc876128d2c4b23d19dacf7eb59b398c62b55d8292dc03ea05003e0390551a06aba837c742212476e84583880e260daf20fb27169c0bdf4e61c5877b003c7f9ae99ad75eb97d3cda893d07315fc8b9b01b6b45901a", 0xd1, 0x54}, {&(0x7f0000000740)="d6dd07ebfc9a6188ba7e3134fc2a16bd6a38e1713f04a331fd010cb2d157e10cc89d34115401f206aa224a13e459471a4157da7141124fa16d37d3c6186f8769b309c594515a54111ac4dd3b5d66245e27ebbea2c24d8f99df8ff43a8ff155d545d4d56d69cde6e0c7225b7fc3a7489895fcc4210bf7cc02887afb5ac73114b152fcb28715b4c1789ab969c7ff1c9131ee26275d9eda65ea923ea50baeab614ba2c2aa879cd3d2dddbd1f90e31e84adf04a181a0c686b98626860b54372f8a29598987c718b66b49db089bcdfb2451d269a26d1862088701fc14fa7bb1c914a48bdb72164db955dcb3d81a6ae78081c77e8f04", 0xf3}, {&(0x7f0000000840)="fb9ec57697c7d2114728d5963f1ed20e926a4a790d9c0ce4f948a37e3fb58820ead925c9e84e30a0cc4ac3b1c1a3672693ab44d95be189d183fbdbd16cb251b5b7c17d710dbe5f2a90471de5662dbab5a9d570817ab47d13f4d388cd5794988e24c750c40f403075664e236e496799139df9e0ebd250bbe2fe8ae1d21c6ce095a13eb66caac2fcb62ff4f2527664cabf343a71f296140af252c57cf949101082f562598a0a9c3a301a73f16e1c0560fb6d4280cccbc635", 0xb7, 0x7}, {&(0x7f0000001200)="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", 0x1000, 0x36e}, {&(0x7f0000000900)="984344920f36c7734bea9b3be8cdfe036bf52470d186ec9bf39e559e148787a68f821f09e1405976ec2745219fc1c278a93d815ceffba835cab9c7660d5a50a649bf590c2423ddfea6eb81e59375d4097b31e10f707131e1f5bf083acad956f016a7ed608911a28122f35ea02230ade7c245a7c46fa357b11549cf1521cca58eb42dd9956af48dbd4452493340572f9d92e39849b4c25fff9fbabe2938a71174f7ee38a4de07a508c7", 0xa9, 0x3}, {&(0x7f00000009c0)="d9fca12b59509ca0621e7dc8e7017d4890fe7b1f863f68b6280b16129c5c3c7be947c6a8ffdfcac6b2c0e87e2e47ce5725d22409e4edb90bf40c0edf20e7462d9e4de15dc26d422004", 0x49}, {&(0x7f0000000a40)="33180966ee63abfec98ca66c13369f43f7267e5a5acba57bce1d2ff02a98f936a1a2a37bec42717269af7032ea8b45cbe94e2607319f79d1a2d08440317e4c675f1db411d8341d0d5b46333a32", 0x4d, 0x7}], 0x1000, &(0x7f0000000b80)={[{'\x00'}, {'system_u:object_r:tty_device_t:s0\x00'}, {'\x00'}, {'#-+{'}, {}, {'security.selinux\x00'}, {'!'}, {'/dev/nvram\x00'}], [{@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@dont_measure}, {@obj_user={'obj_user', 0x3d, '/dev/nvram\x00'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '\x14.!\\'}}, {@fsmagic={'fsmagic', 0x3d, 0x3}}, {@fowner_lt={'fowner<', 0xee00}}, {@smackfsroot}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}) fsetxattr$security_selinux(r1, &(0x7f0000000cc0), &(0x7f0000000d00)='system_u:object_r:dhcpc_exec_t:s0\x00', 0x22, 0x2) r2 = accept4$bt_l2cap(r0, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x80800) fsetxattr$security_selinux(r2, &(0x7f00000001c0), &(0x7f0000000400)='system_u:object_r:utempter_exec_t:s0\x00', 0x25, 0x1) r3 = syz_io_uring_setup(0xc31, &(0x7f0000000080)={0x0, 0x714c, 0x0, 0x1, 0x3cd, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000100)) write$binfmt_elf64(r3, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], 0x18e) openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0/file0\x00', 0x200, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x2010, r0, 0x0) r4 = inotify_init1(0x0) inotify_add_watch(r4, &(0x7f0000000040)='.\x00', 0x2000003) getresuid(&(0x7f0000000500)=0x0, &(0x7f0000000d40), &(0x7f0000000d80)) mount$9p_fd(0x0, &(0x7f0000000480)='./file0/file0\x00', &(0x7f00000004c0), 0x4000, &(0x7f0000000dc0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@version_9p2000}], [{@fowner_gt={'fowner>', 0xee00}}, {@subj_user={'subj_user', 0x3d, 'nfs4\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x1}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@euid_gt={'euid>', r5}}, {@fowner_gt={'fowner>', 0xee01}}]}}) sendfile(r4, 0xffffffffffffffff, &(0x7f0000000440)=0x3a11, 0xc00) 01:37:47 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) [ 856.857044] FAULT_INJECTION: forcing a failure. [ 856.857044] name failslab, interval 1, probability 0, space 0, times 0 [ 856.859719] CPU: 1 PID: 7479 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 856.861273] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 856.863184] Call Trace: [ 856.863796] dump_stack+0x107/0x167 [ 856.864640] should_fail.cold+0x5/0xa [ 856.865515] ? create_object.isra.0+0x3a/0xa20 [ 856.866569] should_failslab+0x5/0x20 [ 856.867449] kmem_cache_alloc+0x5b/0x310 [ 856.868376] ? io_wq_create+0x114/0xc00 [ 856.869289] create_object.isra.0+0x3a/0xa20 [ 856.870295] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 856.871461] kmem_cache_alloc_node_trace+0x16d/0x340 [ 856.872623] io_wq_create+0x6ef/0xc00 [ 856.873494] io_uring_alloc_task_context+0x1f1/0x6a0 [ 856.874654] ? io_import_iovec+0x1120/0x1120 [ 856.875658] ? io_apoll_task_func+0x2d0/0x2d0 [ 856.876670] ? __io_req_find_next+0x300/0x300 [ 856.877707] io_uring_setup+0x1dd1/0x2980 [ 856.878668] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 856.879826] ? wait_for_completion_io+0x270/0x270 [ 856.880940] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 856.882150] ? syscall_enter_from_user_mode+0x1d/0x50 [ 856.883334] do_syscall_64+0x33/0x40 [ 856.884179] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 856.885341] RIP: 0033:0x7f106b311b19 [ 856.886207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 856.890409] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 856.892145] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 856.893804] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 856.895442] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 856.897063] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 856.898711] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 856.911280] loop5: detected capacity change from 0 to 41948160 [ 856.922727] loop3: detected capacity change from 0 to 4608 01:37:47 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 856.991488] loop3: detected capacity change from 0 to 4608 01:37:47 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x0, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:37:47 executing program 6: rt_sigqueueinfo(0x0, 0x0, &(0x7f0000000180)={0x0, 0x0, 0x100}) r0 = perf_event_open(&(0x7f0000000300)={0x0, 0x80, 0x56, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2}, 0x0, 0x8000000000000, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f00000002c0)={0x0, 0x3, 0xc52, 0x4316f9b3}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001100)={0x24, 0x18, 0x1, 0x0, 0x0, {0xa}, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@loopback}, @typed={0x8, 0x14, 0x0, 0x0, @fd}]}, 0x24}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001100)={0x24, 0x18, 0x1, 0x0, 0x0, {0xa}, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@loopback}, @typed={0x8, 0x14, 0x0, 0x0, @fd}]}, 0x24}}, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001100)={0x24, 0x18, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@loopback}, @typed={0x8, 0x14, 0x0, 0x0, @fd}]}, 0x24}}, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup2(r4, r5) ioctl$sock_TIOCINQ(r6, 0x541b, &(0x7f0000000000)) io_uring_enter(r6, 0xb18, 0x41ee, 0x2, &(0x7f0000000040), 0x8) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000140)=ANY=[@ANYRES16, @ANYRESDEC, @ANYRESDEC=r3, @ANYRES64, @ANYRES16=r0]) statx(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x0, 0x0, &(0x7f00000001c0)) statx(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', r7, r8, 0x1000) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x8001}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0)) [ 857.033112] netlink: 'syz-executor.6': attribute type 20 has an invalid length. 01:37:47 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 857.056898] netlink: 'syz-executor.6': attribute type 20 has an invalid length. [ 857.130106] cgroup: fork rejected by pids controller in /syz0 01:37:47 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) r3 = openat(r2, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x0, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) r5 = openat2(0xffffffffffffff9c, &(0x7f00000004c0)='./file1\x00', &(0x7f0000000500)={0x2c2402, 0x1a0, 0x2}, 0x18) perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x2, 0x0, 0x7b, 0x2, 0x0, 0x800, 0x424, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x20, 0x2, @perf_bp={&(0x7f0000000240), 0xb}, 0x200, 0xffffffffffffff4e, 0x0, 0x9, 0x6, 0xffffffff, 0x54ed, 0x0, 0x3ff, 0x0, 0x100}, 0xffffffffffffffff, 0x2, r5, 0x3) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f0000000000)={0x2000}) clone3(&(0x7f00000003c0)={0x400, &(0x7f0000000040)=0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0), {0x9}, &(0x7f0000000140)=""/169, 0xa9, &(0x7f00000002c0)=""/221, &(0x7f0000000200)=[0xffffffffffffffff, 0x0], 0x2}, 0x58) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r6, 0x6612) 01:37:47 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:37:47 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 33) [ 857.326388] FAULT_INJECTION: forcing a failure. [ 857.326388] name failslab, interval 1, probability 0, space 0, times 0 [ 857.329238] CPU: 0 PID: 7608 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 857.330955] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 857.332833] Call Trace: [ 857.333430] dump_stack+0x107/0x167 [ 857.334267] should_fail.cold+0x5/0xa [ 857.335140] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 857.336407] should_failslab+0x5/0x20 [ 857.337275] kmem_cache_alloc_trace+0x55/0x320 [ 857.338321] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 857.339547] io_uring_setup+0x14f6/0x2980 [ 857.340489] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 857.341651] ? wait_for_completion_io+0x270/0x270 [ 857.342767] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 857.343953] ? syscall_enter_from_user_mode+0x1d/0x50 [ 857.345124] do_syscall_64+0x33/0x40 [ 857.345970] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 857.347124] RIP: 0033:0x7f106b311b19 [ 857.347958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 857.352106] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 857.353821] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 857.355426] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 857.357030] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 857.358646] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 857.360252] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:37:47 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:37:47 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:37:47 executing program 6: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x0, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:37:47 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(0x0, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:38:01 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:01 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:38:01 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(0x0, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:38:01 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:01 executing program 6: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = syz_io_uring_setup(0x132, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80800) sendmsg$inet6(r6, &(0x7f0000001740)={&(0x7f0000000300)={0xa, 0x4e21, 0xc98d, @remote, 0x7}, 0x1c, &(0x7f0000001680)=[{&(0x7f0000000340)="90735c595d2fbd166511cf831b0288c521c7bf115be3bfa7484c1792f94d8b3fe7876757d252c5a772cae98c9f8608c7d4c9e0a1e8de03031f442a05a05e402f85a19c48917d1b0d74a29b4b14b2119cfd33213fac1757b9996e451fbba539e699b84c403963c7ec4576b1aaa03ebbb85f4c7444812481b7185a4c8c8c3f7de8e59c373fe5927b099e940cbaa486d5a9089e94bf56e67168c29160d12474708befe057f33c1050c84bd4a64027829c0b1f504550a34fd9615180ec38e87ac542d1d84beaee5a952f5109b9d90732515440100301193cbb1301b694bdf199d6eeafd241d2dc3013a229d26a3422", 0xed}, {&(0x7f0000000440)}, {&(0x7f0000000480)="3358f7e67d9bee089e4e53be7557469c750ee8179c9ec417edccc49ab0751c3d646f5c198ca2c744be7034bdf7087b500a4ecff78ce36ef18a705fe833670b782c0897aa39836da7aeec6cf6e53f75a2d4e6d245a7035a8c48b5ef025e1d785adc03720c57e8240a1d07a8ee667a78f11f8dc1751a11d24f4be98b3e4f7eafa77b7e009b4b5ff8f0082af70a835b0185baa4646b0b6d8027cbeadb972d6fc9ddeee4eb8a5b3773a4da578a4182f9ccfa74684227d6764d68a846e02635c78175fd1e93cef1d85626372bdfccdd84497a4469b27c143ccdc6037b68e5bb68afbc00bd50083edb", 0xe6}, {&(0x7f0000000580)="f9f56ac762ebbbdab5a061922ba082bab8ea22b619f9a35a7ce69407bf08f6f94d69", 0x22}, {&(0x7f00000005c0)="42e895f5b23506142e6745bf5ba5d92c8976084ee58c14f5471d055efb13f02da397444d5ba9b38be57e0f8599b6397941cfeb9c93da694e6f993d65e89b24c6fd7574f53e1ac8d951861de711c22ac1fd323c195290190312200f34c2dd92d179d2b80bc1887168b8a7261f906e0f2e3a8a4c024c68bd662864499974ca25d6e50679ce43a70d1548848f8e32bedf4d3ca26d99a8688a509885c72a2b0b1ccf0c126f6bfff8fefed2bfb98d69263fb61a0ca78bc0fcc144bc6d234e80c7c0ee13c1af61e57f13688901c776e7982c29f98dfc68ea6a956f88595243f950cb57a0eea2933859a6d2e8bcc3a8cf9f7365f7aa11c1260924248c71a62e2876119771ede06acdafdfdc65491d7cea7412ade8928ce5ce148687006650c0849d77b177746562e415dd1eaf202438af4f530030a4b181086fab6a1fa36fa95b87660cba13ab1caf35043bb8a4bb2f5853dd03ac30cd6cdbbcb5b6e2f0d471a58719715d73412430ee2fdd1a00ecd3ce7352ae0fde4214254e2b39ad76185add87768b7e45d91cfad94c2c58b3d4a882a731314f110f11797d2b7abdf770fb8518fe54ef108940de506be5dce03bb72c8a289529e816e17856e02209f0c7627bd0a1b8a73a996801da0d93930856af8ccf456f958f40affc30df0c58912bbe816af42daeb43260d3f6d7159654442eda26c094358ed38d1d94901a77c3144dea519840606b1354e9fd7f728d35b787555e3d930d6e0b7338bf8836029d75fd48c7f95c272dfc3f61e351544d04e1b8a54005266d7831b56a22f0df3dd1191aa276b23ebc0b5952e39b9a4bedd95b59cc12a15fb0149092b0b7f40d31b2f12522b4f61fec422580a1e2d1e31e27af30167eb4a2e765c126b045e476fa205ee8e7bfa0f645542b9dbed9d910b7bcfcb1101601b85b6ae16cf76327bcc59518bc43a66e2fa7c4074e2b41567d00dade82beafd9fb872b2adbd1f7537e05eb15fd94be5ca168e2f4d769eabe99ca2f1057d08bfedb42f33ce6d1bf4136f7dda2cb7ab2a62a760f5d845709452791e8205e7d60b830d01c4edac85e466f9a5e7e7039f7f6cca7a4fad3861c9363d930507e742a08b24c07f7d351aa413cdfb183374e164c5155bccff0f24c271138c9145c9674f0f3e92395e6a9f652d9aea047da097098a515100b6a0e11f5d99c0079e9b916dba9e9cecc805b07c027bc930884cfdea9124d907f5d428f935a564f2edb9a3561dfb27928f495286ad14a6ee833cd8e2f2b174cc8a53b8e6393971f580d373bc0d09af7d5340c6944f8b3276657397723bbcb078691a1fb9fe06081c5711020aa1b5f7430e30ae1f7396dd54b840ad720366fc8505bca00d56e7ef2bfe470e76c6c80aaf61a2595236b0fe389edde47177d211c1037bf1deb99e9cc852473ace4f53c8521d6018284021e01e4a6777bb5a741595c2d2b34432350d615abfa618c20b5bd857229673f9c53a092cb4e15e2afece670f8ae5f3ed544366110079485e2e0956ccb20d15980a3648896c78aa29fa71c8369dd810ce92ef2cf2201c905cd34e89e29fe9f2b6c9cb14e643b51563c15fd23b67ddb794e5c731b5ee30d71b6815803b81dcac696f8cc4c76a29391890cafb889d8e67cb7d62b278d73d3b49da4480133c72c6da064b039fb84ea7a7cdbf449b8d0a7b431d20f813369dad6d3d05b9a37499608d09252a6e8250640965e85f5d1c5dbc515601c066202be7a089c30ef01a0af77d08edddaa6a311deb2c0ab48b4f3ffa5db280c959a04dfff72e70388079ae7d9b02e0288c8cae1db8cb943d34c1758ff85ddfd84a25650773dd36c352d257eb2480f65d3aa695703f502a995ef5ce8000acb63f762564df125a329cd41b7ef9536b2e601dbc3adbefbf23d19c3d565f9ea69c3c205f77fbb72bbf5f74cc724f1a747ad630819f796ac722ebb24469202049cec2fc28e4303a3440dd07461bf175900e0ab6a742f5ec6725048f60545dbfe600c29e2eb93877baca29561802bbf2a581e0630fe0c79c9adafb31044bc050aa1de9af2116094644aa875a4bf91cf70c5da94511112ec236450b9dcc7dcf05f20c12d401d87e6f310867a8afa30ad0f844950d3f032e9925465d52b8f04420eefe6ea12e163e179a995e0551e38f758028f63ce11279bca796e94290239c83932f47398e974fd3a00e926de2e0f916d5a29818e7a7787e60523c7002efaed313bce4a4492d6c383a0f9c3ba847f5410ee5551d6a96dca1341b3608d5ea3887f02380a7587a7a2fa8113131a46596818eb4e6a3a80ad27fccc172222800a47417d5d585e6aa6184b69f8a1e58b862e56a42fb87ed871f2f08ab4067fd49f955b8f61f0b2fef9123f5cdf1c69c85ec67f62e8a3f06d8e322e97300b73e38c14ee1d274008fa03d9adb24bd9b1b07029a2bbef42d543689caa616d5ef37f39df2be4e139775e82c96e7c6808d7a68d72e82b6d38d0d4af10f3a2c80f527076e7833babd6c4a6a5cf8ddb56989d58fda5a7bf29e26efc5cdfbd6ef34db0fdd269c96783c2cda8e8fb6c2614a5ddc00a0a5a8bd9dc999f2a0b5bc0f6bbecbaf325f28a608b834cf57f2416f52568afa5cb7b0e1575ed557089832fe9aeb7ba2a5a7d1c83ef55b6a9e0b116cabafb743854b7828a00d55763335c3d54602b7346de451570f1c08af8eafa69024547a1335257a75007c2b56e9c1af5fee7fdce8b90faba9c920ecbca96951957f6be6e6ad54842913cb35fbdf5047c75a3f1cfc2482f4325ee9a702800ed248f7cd297d4335c9b80305aff90b04cdc6e702044b274c68eebb1d018470be0b732e2bfb39692df0b904bada7bd493cbfc45e0e1c828bd2f5544f23645b2abd96382a907e30a140a141dbd4d0206f7d3d8e67dd5a5e084686591cf3ce91c02a66e3970d41cc432fa4fbd4d3e0950b5fbce0f06cbab0692a1cb91af921861d1be13a80b51c6702a93bda347cb63687d489ec21b46df2b4bb62f928575137e933180f3eccefb1825d0d8051007d51735a20abf4bd353d7286acf623ea49549e344564328e3a04b3396e96fe6b3712def01e300273428e648e25f1959a9978f13c14b9b96c7d239c7f500b723c7c96ddd8497ae45561f7ead7804c06c45b02b777179090e94a37da347ead5f6f479825cd0547b1fcdddf15b1b9f4de9a0118db19447d53fba6730919f5466a8a420a379695bdb1b65f49f22141fc424aa7b9fca61bdb2e276ce301edbb9845bdb1968ac2eda1ab0d1d921ebe67e249d5d8aacd22c91740174d8400c436c82e605b6b3b2198c4d7174721f82810dd733356a90388c7c5b796f92d999597548aeea8327ac0e4f18df12c04eb3d54119fdb2285c4632b218a79b2129a73e4446825b331f5572666c03c9f597beae0d04df9e978bd9a6ec589b4c73f98fe60888fc31455af5e2b0150ed815ff63d9afa1a4b61b636f5e54399b2190d0a73a39bdfeb0a23fb2125c2707396d8a1b8023f6128e55d48f3a20375598db5ae6c6281225d278e5ef5cb77bb0330297defa46f6dea6731928ecf4b8f532f3036bd01c1b793089d33d1182b7b2287376dc3b588553554d8a051ed8b7b1f21349234b37eafa2079dbd791bbecdfde9b5134412a933b6e5b284ae516a7443e251eeba3f973d496688f6aa903a3784cac24a8eafe89946a7674bf3547a848baed90104b85c8b1af0a0e5c24c26d3d41985008fe9e778ee4ad3ef10f80f810b21cd448d7f30e66ffb910302f192ffe4d7ba5920cd003837b6745b5b3bbe740109e28920e6b5a42e8ef4d87a7a5e324364316ab4b77a82b04a32719199abb66c5484083118ce77d081e98bbfe107f806a5cdc96c6dcbf33022f4561430648e60251935ae385340df7959b7689e96c0aa96ff3c5a62866b6bb2c5c3a459fe06f507e362ec86a3dba5fc4521b1bfd1bed1e294be5cae975b500cfada478ad298f84623b6becf28c4d2cc31b1e9cbd2e0dc170b0c1381ba420aa4bf14d50aaca81835c4ea91f171187a4e0b7f89f603675122f702a8af1d323e6142a23a27e435ddf7d3dc40d51972db51dffde0b00531e3d4a0fb4200fba732d3ed46019d7b4e40b71a72bb282fa42984d495ddb1a41d9e9e408cab70c806be1ac9b3cd1931aa4c68d87e8fe9fb6194a2f295f42012d5bb23010b99fe59e8fad7927c9f3f32f52c71fec7010842692ae2c4f25682269de37040c15c43b7aa9956464cb6e16b80aa193f41aeb1d5f0a662184c7d7bf0a12dbaa104167f864c295837f3252e274a88e92efd9ce3f2497fc16124eea6a9ec8755fe21fde7a0ee3c5c333a07f55884d8dfec0761f78d826673071bff09fa462fd1e7dcb8fe3050a92f142453ed402c6d92c6776e94a3186a9903b5e04dc6b0d841b2b38f005f5b80ace1994ed58556968159b4046966b13adc9413ba66a306bd15659792c82a4fc6b4f230eb6c2c25521866d5aec0af9dafcf916762bf6b7838f5ca5f84655be58adc0983e74826e8ffef8dfbcb43ad126c471173430750b5740fb3672e77834208fceee5e96ea49e83952405c3f68974d99bbd54c9c613060fb1718db1e98030b3fed2d4eb650432bfb0b4ce408d2927a52a5a483e49e150586572600eaeea0da71abd73873bf0f2aa1043c1ebcb23b4db1e30b26e84606bafba54e3b51665a294b132f2bd9a5c16410c5d2f3acb5e707026e7f21c0eed5f29a6a959752deabea55aca1c4c64985b6b490696150b3e10ca02e67cc3eaadebc36dcf21daf4000fca2f5da70fdf53bcb8bca49f3a32db0458c6cd9259209357382b3fb5639bc5b6bd35b6dc9d8dff9c4ce1cb2366ba8cfd1bf765dbfcbe4c093c5d247a576803ba426fe366720f6883adfce05c51f67ed534955c937aebaf770bf7f235aae975eb73aee94c9a283d2ead48ebf33c48ea5f94e8f9cf95efa0887224906606be9dbc48c7e1bef2451453be29242db5e08eaab58894b0869083a3d0ff3d603e0993e8426ede27616ff42eb831e4024a0a107eb099b0b1949a11ab15ac1cddbf45b31e8c6d9bd0f1a07a8ddcad8155ebf77f908558a48875e337408681ceba73f276f7c7b6739ed4878f987868e7570a4b1e9120bda747983d06c6150c4d1c159b58686802f50cabea3436d5f26a6b04cc3e80d12c534b4db9cbdb11b6dea186da2118608b00d588b2a46c372533a1adf01d2b2ac551b6e598d32f6d34bd8421970a352c301cb9c93deab99b02d5920efb806d534524c3b338bf40c460b06f5cb051fe81152fab68ff4145f964acf69f109ab0c708c2a4b33e2efb4412df7dbb6797b0148618e53bc214f2a0d9fa3f27b55c4d8bd92f447e5dbd4c498989a99210c61886be0c7bf8ac7883925dfb08a3eb1bff2f53e2222fb225693d6c98127acd4d187a9f7e9a203838944139b2dfd349b98db94ac1659605a6893f4d3b323f6b27338e582c8fee7915f6f13b4f0f479c1a1b2221feb1e8b5d8e8feebc9f606f558c6acde312e838830b0d758cd38e83950338798b463910b56e4f029d52082696fd232031f11e6aacf0ce76fe6196ce54b913f487e1de37511cd12e07ea8cf98afc386f4e19e1a7df43e7874cbd38f60a7d53813ace0a37728ae266a23b0870f0b4b9cb0ed34a307f477fd6800eaa138b5aac44fa889cbfc577a7139190f9165c757e57de45f31b2da7bdd0f3645384864b3a8796215a388cb5150c45351a82a6f9ebc6f40a153e6e06b4929e5da9f11e6faaee2518666a724837a8593a5f119d68fae18a07d4a6de1d3b1295fd45a642de100746f148a", 0x1000}, {&(0x7f00000015c0)="b9d1a0b89e710501549a08b4aaab5965b3637bf113cd15dcbb2209b21f711ce6f62e9b8e18da855d8a00496021dce39019e2ed13001673095f5d90c5c99434455df3368d7e9b57dca02368a6040b993292727fc01701f9f52bd68b94f51eeb568db529590be3dd1247b2e652a5730e8a36fa3789f3ed2acf802e3c7adb2144094bc690e16ee8c90fd72d1f57cbd8adfea091d6277dc68fdc77f0fc3bed6ee2062edb0986c4c2501635c524", 0xab}], 0x6, &(0x7f0000001700)=[@dstopts={{0x20, 0x29, 0x37, {0x87, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0xf1}]}}}], 0x20}, 0x840) connect$unix(0xffffffffffffffff, &(0x7f0000001780)=@file={0x0, './file0\x00'}, 0x6e) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r5, 0x0, 0x0}, 0x0) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) r8 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040), 0x200400, 0x0) fdatasync(r8) connect$unix(r4, &(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e) syz_io_uring_submit(r7, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 01:38:01 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r2, 0x4c00, r1) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:38:01 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = syz_open_dev$vcsu(&(0x7f0000000000), 0x7, 0x400) setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f0000000080)={0x0, 'syzkaller0\x00', 0x4}, 0x18) socket$netlink(0x10, 0x3, 0x13) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) ioctl$CDROM_CLEAR_OPTIONS(r0, 0x5321, 0x15) 01:38:01 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 34) [ 871.283775] FAULT_INJECTION: forcing a failure. [ 871.283775] name failslab, interval 1, probability 0, space 0, times 0 [ 871.286323] CPU: 1 PID: 7743 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 871.287785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 871.289545] Call Trace: [ 871.290115] dump_stack+0x107/0x167 [ 871.290892] should_fail.cold+0x5/0xa [ 871.291704] ? create_object.isra.0+0x3a/0xa20 [ 871.292676] should_failslab+0x5/0x20 [ 871.293493] kmem_cache_alloc+0x5b/0x310 [ 871.294373] ? io_wq_create+0x114/0xc00 [ 871.295223] create_object.isra.0+0x3a/0xa20 [ 871.296157] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 871.297239] kmem_cache_alloc_node_trace+0x16d/0x340 [ 871.298337] io_wq_create+0x6ef/0xc00 [ 871.299167] io_uring_alloc_task_context+0x1f1/0x6a0 [ 871.300250] ? io_import_iovec+0x1120/0x1120 [ 871.301189] ? io_apoll_task_func+0x2d0/0x2d0 [ 871.302141] ? __io_req_find_next+0x300/0x300 [ 871.303108] io_uring_setup+0x1dd1/0x2980 [ 871.303999] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 871.305111] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 871.306238] ? syscall_enter_from_user_mode+0x1d/0x50 [ 871.307342] do_syscall_64+0x33/0x40 [ 871.308131] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 871.309225] RIP: 0033:0x7f106b311b19 [ 871.310030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 871.313973] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 871.315596] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 871.317121] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 871.318643] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 871.320159] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 871.321668] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 871.353546] loop5: detected capacity change from 0 to 41948160 01:38:01 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(0x0, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:38:01 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000), 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:38:01 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 35) 01:38:01 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x0, 0xe2) fallocate(r1, 0x0, 0x0, 0x1000002) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r2, 0x0, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000140)=ANY=[@ANYBLOB="0100003c3e78dd000200000081fe9b592fdb0cdd4a5d9ad05ece66414522887c8953d6f796bb9357085bf7bc00f0ffffffffffff63c5b79d496e8f3e6039ff16743349d77237b707553ee7f8ad547000"/94, @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:38:01 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) r3 = openat(r2, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x0, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) r5 = openat2(0xffffffffffffff9c, &(0x7f00000004c0)='./file1\x00', &(0x7f0000000500)={0x2c2402, 0x1a0, 0x2}, 0x18) perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x2, 0x0, 0x7b, 0x2, 0x0, 0x800, 0x424, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x20, 0x2, @perf_bp={&(0x7f0000000240), 0xb}, 0x200, 0xffffffffffffff4e, 0x0, 0x9, 0x6, 0xffffffff, 0x54ed, 0x0, 0x3ff, 0x0, 0x100}, 0xffffffffffffffff, 0x2, r5, 0x3) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f0000000000)={0x2000}) clone3(&(0x7f00000003c0)={0x400, &(0x7f0000000040)=0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0), {0x9}, &(0x7f0000000140)=""/169, 0xa9, &(0x7f00000002c0)=""/221, &(0x7f0000000200)=[0xffffffffffffffff, 0x0], 0x2}, 0x58) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r6, 0x6612) [ 871.665962] FAULT_INJECTION: forcing a failure. [ 871.665962] name failslab, interval 1, probability 0, space 0, times 0 [ 871.668574] CPU: 0 PID: 7865 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 871.670119] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 871.671979] Call Trace: [ 871.672573] dump_stack+0x107/0x167 [ 871.673401] should_fail.cold+0x5/0xa [ 871.674294] ? create_object.isra.0+0x3a/0xa20 [ 871.675316] should_failslab+0x5/0x20 [ 871.676180] kmem_cache_alloc+0x5b/0x310 [ 871.677093] create_object.isra.0+0x3a/0xa20 [ 871.678099] kmemleak_alloc_percpu+0xa0/0x100 [ 871.679119] pcpu_alloc+0x4e2/0x1240 [ 871.679978] ? io_async_queue_proc+0x80/0x80 [ 871.680966] percpu_ref_init+0x31/0x3d0 [ 871.681877] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 871.683100] io_uring_setup+0x14f6/0x2980 [ 871.684037] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 871.685183] ? wait_for_completion_io+0x270/0x270 [ 871.686295] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 871.687475] ? syscall_enter_from_user_mode+0x1d/0x50 [ 871.688641] do_syscall_64+0x33/0x40 [ 871.689484] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 871.690669] RIP: 0033:0x7f106b311b19 [ 871.691500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 871.695666] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 871.697368] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 871.699237] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 871.700849] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 871.702469] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 871.704084] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:38:01 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:01 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:38:01 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:01 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000), 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 883.759482] loop5: detected capacity change from 0 to 41948160 [ 883.773438] FAULT_INJECTION: forcing a failure. [ 883.773438] name failslab, interval 1, probability 0, space 0, times 0 [ 883.776536] CPU: 0 PID: 8011 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 883.778384] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 883.780657] Call Trace: [ 883.781372] dump_stack+0x107/0x167 [ 883.782367] should_fail.cold+0x5/0xa [ 883.783401] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 883.784918] should_failslab+0x5/0x20 [ 883.785961] kmem_cache_alloc_trace+0x55/0x320 01:38:13 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 36) 01:38:13 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:38:13 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14082, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8004, 0x0, 0xffffbffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x1) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4) setsockopt$inet6_tcp_int(r0, 0x6, 0x22, &(0x7f0000000280)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = dup3(r0, r1, 0x0) setsockopt$inet6_opts(r2, 0x29, 0x3b, 0x0, 0x0) sendmsg$DEVLINK_CMD_TRAP_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a00)=ANY=[@ANYBLOB='\x00', @ANYRES16=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00=\x00\x00\x00'], 0x14}}, 0x20000844) 01:38:13 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r2, 0x4c00, r1) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:38:13 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000), 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:38:13 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:13 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000080)=""/66, 0x42}, {&(0x7f0000000000)=""/64, 0x40}, {&(0x7f0000000100)=""/105, 0x69}], 0x3, 0x81, 0x7fffffff, 0x1) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) lseek(r0, 0x0, 0x3) r1 = open$dir(&(0x7f00000001c0)='./file0\x00', 0x400000, 0x8) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0xc0406618, &(0x7f0000000240)={@id={0x2, 0x0, @b}}) 01:38:13 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:13 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 883.787192] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 883.788858] io_uring_setup+0x14f6/0x2980 [ 883.790018] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 883.791376] ? wait_for_completion_io+0x270/0x270 [ 883.792704] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 883.794126] ? syscall_enter_from_user_mode+0x1d/0x50 [ 883.795386] do_syscall_64+0x33/0x40 [ 883.796282] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 883.797518] RIP: 0033:0x7f106b311b19 [ 883.798414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 883.802834] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 883.804663] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 883.806379] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 883.808079] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 883.809781] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 883.811487] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:38:14 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:38:14 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:14 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = pidfd_open(0x0, 0x0) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r1, 0x4008941a, &(0x7f0000000000)=0x2) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:38:14 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:14 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 37) 01:38:14 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000080)=""/66, 0x42}, {&(0x7f0000000000)=""/64, 0x40}, {&(0x7f0000000100)=""/105, 0x69}], 0x3, 0x81, 0x7fffffff, 0x1) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) lseek(r0, 0x0, 0x3) r1 = open$dir(&(0x7f00000001c0)='./file0\x00', 0x400000, 0x8) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0xc0406618, &(0x7f0000000240)={@id={0x2, 0x0, @b}}) [ 884.106063] FAULT_INJECTION: forcing a failure. [ 884.106063] name failslab, interval 1, probability 0, space 0, times 0 [ 884.108876] CPU: 1 PID: 8047 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 884.110509] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 884.112512] Call Trace: [ 884.113170] dump_stack+0x107/0x167 [ 884.113966] should_fail.cold+0x5/0xa [ 884.114768] ? percpu_ref_init+0xd8/0x3d0 [ 884.115639] should_failslab+0x5/0x20 [ 884.116587] kmem_cache_alloc_trace+0x55/0x320 [ 884.117678] ? io_async_queue_proc+0x80/0x80 [ 884.118763] percpu_ref_init+0xd8/0x3d0 [ 884.119662] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 884.120893] io_uring_setup+0x14f6/0x2980 [ 884.121890] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 884.123147] ? wait_for_completion_io+0x270/0x270 [ 884.124218] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 884.125435] ? syscall_enter_from_user_mode+0x1d/0x50 [ 884.126760] do_syscall_64+0x33/0x40 [ 884.127608] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 884.128694] RIP: 0033:0x7f106b311b19 [ 884.129587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 884.133412] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 884.135027] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 884.136529] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 884.138034] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 884.139528] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 884.141022] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:38:14 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="040041b2042131d734a29ade8b0360792e8a53b0e02e668b3ca330f8b59aa7134170c5612d31161d11a6fbcd060200000024c5df081650478277b5405e62aba026eb436609209c45f379b7476a00f18bcdde5eabc96bc52a72b288ef8e8d6c8201676b82e9ffc81985cabb4355c826bca259bd0dfd7397c81e880390f7118889a1b8f858430699a64f3107c5f47baebeaa56000000000000000029f7cfc5f87b6bb6d3c602f209a2aabeb298f06e73374ccc30d4fd279538bb65919ee41a214607c00774aa1c77e26391d2166fc59fc63a79db3192dfa1a84467ec07cb50e2ea1993a8bbbb1858e4422c6abd082b3754499174110315288ea4eff39a0f1406a6b9da003d50ec13a2a1633b83a0ac23914893e373000000e5f3dfd13672ea507188ac3799f84dc5feb7c30eccc2f8c3c6f6f390ed893e3df2d29efd9e3c471400a62cc65587d5ce2c4d723d2d02aa483147b430b361435e1f01dc5a3bf626957002a84006985e839e17639e0b607d5e50349af65f4f2bbd4d0346f1fdc1b2cffe4d20ca9404add59e86ba6adaaadf1d204882ab6c333951c4d1524ce9bcd4beaaa6b1d48329038ca4b24fdd5c7c0819d5c856a569abbe57c2c143709acff8b288c477a25e79eb3448c6a4e08a36402cd49229bd7f2832789d17c7e1e81a516f736f445f78ca4ec4073f2b26e28f6e011beb747919f888890f14b3fd7aec1f8bd4f3ae3327459786fb19842dae42aa95cb3f20619c51b098f0f13ca7a757b0cd23bdee855c74363a11ff7b3784da3b78494040ab0e1c566c29cba52a7d0a20b11f98951e624b0cd5e1f2ee516bb3bdb0901fc92d5335e9ac4bb0dca63680f920f052626b4dcc070663a9f2dcebbf0c233a2dc307975f5f48ee74d68a5b9b67b6b5f92cef18a93e656b15e3aca7031d9e2b7f139420b5f7dab4103a3e221122bd94024924250f7e1860b379f3df1ebe9fdae54d8a994cf258c5734939becf29d060f2dc08e71733821ff209b1eb67e13a0378ef984dbf0626bf7330d1878a29538201b404aa072ced6d8849774f48a3e124ff03602a83f84972bdb4cddf51221299d5dcacbc206a10b49d50002917dc4f9855f0189d9c39"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:38:14 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) syz_io_uring_submit(0x0, 0x0, 0x0, 0xfffffff7) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd, 0x1, 0x0, 0x0, 0xa, 0x0, {0x1}}, 0x1) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0x28101, 0x28, 0x2}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x23456}, 0x5) syz_io_uring_setup(0x49c6, &(0x7f0000000380)={0x0, 0x5265, 0x4, 0x80000000, 0x11b}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f00000002c0)=0x0) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f0000000340)=@IORING_OP_POLL_REMOVE={0x7, 0x3, 0x0, 0x0, 0x0, 0x889c7cb2ceb4d95c, 0x0, 0x0, 0x1, {0x0, r4}}, 0x101) syz_io_uring_setup(0x49c6, &(0x7f0000000380)={0x0, 0x5265, 0x2, 0xffffffff, 0x11b}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f00000002c0)=0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000340)=@IORING_OP_POLL_REMOVE={0x7, 0x1, 0x0, 0x0, 0x0, 0x889c7cb2ceb4d95c, 0x0, 0x0, 0x1, {0x0, r6}}, 0x101) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, 0xffffffffffffffff, &(0x7f0000000140)={0x505200, 0x9b, 0x5}, &(0x7f0000000180)='./file1\x00', 0x18, 0x0, 0x12345, {0x0, r6}}, 0x9) syz_io_uring_submit(0x0, r3, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, 0x1, 0x0, {0x0, r6}}, 0x6) [ 898.415446] FAULT_INJECTION: forcing a failure. [ 898.415446] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 898.417128] CPU: 1 PID: 8171 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 898.417991] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 898.419047] Call Trace: [ 898.419377] dump_stack+0x107/0x167 [ 898.419823] should_fail.cold+0x5/0xa [ 898.420309] __alloc_pages_nodemask+0x182/0x600 [ 898.420920] ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200 [ 898.421688] ? kmem_cache_alloc+0x301/0x310 [ 898.422243] alloc_pages_current+0x187/0x280 [ 898.422802] allocate_slab+0x26f/0x380 [ 898.423301] ___slab_alloc+0x470/0x700 [ 898.423802] ? create_object.isra.0+0x3a/0xa20 [ 898.424376] ? lock_release+0x680/0x680 [ 898.424892] ? create_object.isra.0+0x3a/0xa20 [ 898.425467] ? kmem_cache_alloc+0x301/0x310 [ 898.425990] kmem_cache_alloc+0x301/0x310 [ 898.426524] create_object.isra.0+0x3a/0xa20 [ 898.427405] kmemleak_alloc_percpu+0xa0/0x100 [ 898.427970] pcpu_alloc+0x4e2/0x1240 [ 898.428453] ? io_async_queue_proc+0x80/0x80 [ 898.429004] percpu_ref_init+0x31/0x3d0 [ 898.429504] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 898.430188] io_uring_setup+0x14f6/0x2980 [ 898.430711] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 898.431350] ? wait_for_completion_io+0x270/0x270 [ 898.431965] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 898.432713] ? syscall_enter_from_user_mode+0x1d/0x50 01:38:28 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r2, 0x4c00, r1) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:38:28 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:38:28 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x101041, 0x0) r1 = inotify_init1(0x0) inotify_add_watch(r1, &(0x7f0000000040)='.\x00', 0x2000003) fstat(r1, &(0x7f0000000080)) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:38:28 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000080)=""/66, 0x42}, {&(0x7f0000000000)=""/64, 0x40}, {&(0x7f0000000100)=""/105, 0x69}], 0x3, 0x81, 0x7fffffff, 0x1) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) lseek(r0, 0x0, 0x3) r1 = open$dir(&(0x7f00000001c0)='./file0\x00', 0x400000, 0x8) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0xc0406618, &(0x7f0000000240)={@id={0x2, 0x0, @b}}) 01:38:28 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() r3 = fork() ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:28 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 38) 01:38:28 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:38:28 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 898.433439] do_syscall_64+0x33/0x40 [ 898.434040] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 898.434687] RIP: 0033:0x7f106b311b19 [ 898.435147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 898.437451] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 898.438414] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 898.439284] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 898.440179] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 898.441044] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 898.441944] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 898.457261] loop5: detected capacity change from 0 to 41948160 01:38:28 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 39) 01:38:28 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(0x0, 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:38:28 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000080)=""/66, 0x42}, {&(0x7f0000000000)=""/64, 0x40}, {&(0x7f0000000100)=""/105, 0x69}], 0x3, 0x81, 0x7fffffff, 0x1) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) lseek(r0, 0x0, 0x3) r1 = open$dir(&(0x7f00000001c0)='./file0\x00', 0x400000, 0x8) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0xc0406618, &(0x7f0000000240)={@id={0x2, 0x0, @b}}) 01:38:28 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000080)=""/66, 0x42}, {&(0x7f0000000000)=""/64, 0x40}, {&(0x7f0000000100)=""/105, 0x69}], 0x3, 0x81, 0x7fffffff, 0x1) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) lseek(r0, 0x0, 0x3) open$dir(&(0x7f00000001c0)='./file0\x00', 0x400000, 0x8) [ 898.550759] FAULT_INJECTION: forcing a failure. [ 898.550759] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 898.553553] CPU: 0 PID: 8188 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 898.555120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 898.557048] Call Trace: [ 898.557698] dump_stack+0x107/0x167 [ 898.558547] should_fail.cold+0x5/0xa [ 898.559417] _copy_to_user+0x2e/0x180 [ 898.560355] io_uring_setup+0x11b5/0x2980 [ 898.561348] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 898.562501] ? wait_for_completion_io+0x270/0x270 [ 898.563595] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 898.564840] ? syscall_enter_from_user_mode+0x1d/0x50 [ 898.566033] do_syscall_64+0x33/0x40 [ 898.566890] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 898.568121] RIP: 0033:0x7f106b311b19 [ 898.568995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 898.573267] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 898.575114] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 898.576726] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 898.578398] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 898.580013] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 898.581688] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:38:28 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000240)={0x0, 0x9, 0x2}) 01:38:28 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() ptrace(0x10, 0x0) ptrace$getregset(0x4204, 0x0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:28 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000080)=""/66, 0x42}, {&(0x7f0000000000)=""/64, 0x40}, {&(0x7f0000000100)=""/105, 0x69}], 0x3, 0x81, 0x7fffffff, 0x1) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) lseek(r0, 0x0, 0x3) 01:38:28 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:38:42 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(0x0, 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:38:42 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 40) 01:38:42 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:38:42 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:38:42 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) recvmmsg$unix(r0, &(0x7f0000000600)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=""/93, 0x5d}], 0x1, &(0x7f0000000100)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}}, {{&(0x7f0000000180)=@abs, 0x6e, &(0x7f0000000580)=[{&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f0000000240)=""/25, 0x19}, {&(0x7f0000000280)=""/54, 0x36}, {&(0x7f00000002c0)=""/10, 0xa}, {&(0x7f0000000300)=""/58, 0x3a}, {&(0x7f0000000340)=""/248, 0xf8}, {&(0x7f0000000440)=""/182, 0xb6}, {&(0x7f0000000500)=""/99, 0x63}], 0x8}}], 0x2, 0x0, &(0x7f0000000680)={0x77359400}) ioctl$F2FS_IOC_FLUSH_DEVICE(r1, 0x4008f50a, &(0x7f00000006c0)={0x101, 0x3}) [ 912.712380] loop5: detected capacity change from 0 to 41948160 01:38:42 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000080)=""/66, 0x42}, {&(0x7f0000000000)=""/64, 0x40}, {&(0x7f0000000100)=""/105, 0x69}], 0x3, 0x81, 0x7fffffff, 0x1) lseek(r0, 0x0, 0x3) 01:38:42 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:42 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() ptrace(0x10, 0x0) ptrace$getregset(0x4204, 0x0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 912.766412] FAULT_INJECTION: forcing a failure. [ 912.766412] name failslab, interval 1, probability 0, space 0, times 0 [ 912.769045] CPU: 0 PID: 8329 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 912.770617] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 912.772510] Call Trace: [ 912.773113] dump_stack+0x107/0x167 [ 912.773945] should_fail.cold+0x5/0xa [ 912.774824] ? __d_alloc+0x2a/0x990 [ 912.775659] should_failslab+0x5/0x20 [ 912.776534] kmem_cache_alloc+0x5b/0x310 [ 912.777465] __d_alloc+0x2a/0x990 [ 912.778256] ? find_held_lock+0x2c/0x110 [ 912.779185] d_alloc_pseudo+0x19/0x70 [ 912.780049] alloc_file_pseudo+0xce/0x250 [ 912.780987] ? trace_hardirqs_on+0x5b/0x180 [ 912.781970] ? alloc_file+0x5a0/0x5a0 [ 912.782868] anon_inode_getfile+0xc8/0x1f0 [ 912.783841] io_uring_setup+0x138b/0x2980 [ 912.784798] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 912.785955] ? wait_for_completion_io+0x270/0x270 [ 912.787097] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 912.788300] ? syscall_enter_from_user_mode+0x1d/0x50 [ 912.789481] do_syscall_64+0x33/0x40 [ 912.790347] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 912.791519] RIP: 0033:0x7f106b311b19 [ 912.792367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 912.796586] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 912.798324] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 912.799973] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 912.801613] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 912.803268] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 912.804902] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:38:43 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r1}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:43 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) pwrite64(r1, &(0x7f0000000080)="9b8143317c3da54ddde4e53a2987a93dea1c32e6661c815b7c111c8fdbaa523faa01ec50b1a2dafde080200c625a94e83251e08a277779e064b6b45aded507cbc41ab51401bfd39ac17139e9af49c67dc8acaefa8c095d988f368591ff498e7f2df6e88d0fc550aa818362bb74fa68b264698468d35044cb8e0f2326092503e8be26d1c259473283f3af5c9ce165262a94a3ca7bac42c33be68748cfeeb8923dc444f62bd4a25525cce88d64101319016cbc3ac8a9b2da3fc0f624fe87cd9758cf62dfcdfe0eeec9fddb57ba649dba03ac8ec72dd37b898a2964c96da2225f3faa9037296e5e8c550999c97fe2f493422a84f90e7f58155733d94c736ef077", 0xff, 0x243) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:38:43 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) lseek(r0, 0x0, 0x3) 01:38:43 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) gettid() ptrace(0x10, 0x0) ptrace$getregset(0x4204, 0x0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:43 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:38:43 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(0x0, 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:38:57 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:38:57 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:38:57 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r1}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:57 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:38:57 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x200c1, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {0xfffffff7}}, './file1\x00'}) openat(r2, &(0x7f0000000180)='./file1\x00', 0x80, 0x89) lseek(r1, 0x0, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r3, 0x0, 0x100000001) sendmsg$nl_generic(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)={0x37c, 0x3b, 0x200, 0x70bd2c, 0x25dfdbfc, {0x1f}, [@nested={0x203, 0x26, 0x0, 0x1, [@generic="a0e7c03c6e52aeef9357ec4c55da54e1775e2af612498bbc97ff3a19a6e9f1fec8918cf9eb9a7447c7178a7e1b58049f0a4923771bfa53f91c6f862fc1161adfb5d64077842adac1a66563700f8462e2d75dd6be77735c267d11c04c7230b0595534b268a149ade49c6d56b05ca7e2c5c246c6f318895005cb4c7cc9cc53cff2a9af0e386984facfaa1a0c99da8f9ffc98a7eba0ea5b64b4aeb458fd2c87014666701461af22afbbe711bde8adcb72d5d2dcf11a7de7e58c90467c30b2fb461b23a369", @typed={0x8, 0x18, 0x0, 0x0, @uid=0xee00}, @generic, @generic="dcfe4d026b2cb0989ef6f6ace28f901c91dff7d017596f96ff5a3dc2801e5608ba4f21837830f55b35ff9da103b1ab4aef63d06dc2178c0cf5e602f524070d3ed230ba18865ccab8dee96e57d0d8cd7863af3b0cf283c31103819c7adc4d37a9e8596ecec628136c379f5cfe4bc47e2c994802095a10fa784421261bdecd42f2f387668c2cbcfb1054137a95468aded9ce24a6245dde725cb6a79c35b27cd17489394b76e12b812689bcdd65ce637b99cd5201bf3ccf79352a513262544ec57cddf039e14f61e4a76642baafc69ecd73eabca2bb4d4828bdc5ad02a49eeb1e46f465baf03a15890c198224ee35266bb8460c", @typed={0x14, 0x8c, 0x0, 0x0, @ipv6=@private1}, @typed={0xc, 0x4d, 0x0, 0x0, @u64=0x2}, @generic="8860e4d42c9fc94b4e23afb25020ed397ab6c5e52b6197d7a4b6312daa7fbf18fb4d"]}, @nested={0xeb, 0x42, 0x0, 0x1, [@typed={0x8, 0x3, 0x0, 0x0, @ipv4=@broadcast}, @generic="46e2d287328628e3f54f0f0313ff2d9dd47329bd6f7694b03446865b0cd638de8efa2d722d41711687941db0e239818f78cace6199df40dc41e10e345a3a4a26c4210321dd14e7ca90155ba703e8af9337aaf944e8ff0855a37b8136cb4a00d8d7b8c780ea20fc1417da1c854f76a1d65c3d16f52adf4e00be433239417e24b92e0bed1c", @generic="2fd36ca69e5c702d4e4b5182888c9da4c261d200d7cfd30d9bad3f3af1b83410d816d7caaa1f440a2e734348f9d66900f6f81d845dbbb5", @typed={0xc, 0x60, 0x0, 0x0, @u64=0xfffffffffffffffa}, @typed={0xc, 0x58, 0x0, 0x0, @u64=0x6}, @typed={0x4, 0x1f}, @typed={0x8, 0x5b, 0x0, 0x0, @str='$/:\x00'}]}, @nested={0x77, 0x89, 0x0, 0x1, [@generic="ee19117df9fa4ebfa6036e3cef1ef2ca3177be981829643ce2910c73d9e23fa577629112dfd89e202aa5c93b76b380d70c33ca9958639eabc61243a9a2f79cee7b858c4ff4bd13d96daa85842a7084e1a22d426ed61bcc8fee6d6aa6ff239c36f41a3322066e28d495ca719cbdb52a7f09e8b2"]}]}, 0x37c}, 0x1, 0x0, 0x0, 0x8045}, 0x80) 01:38:57 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 41) 01:38:57 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:57 executing program 6: lseek(0xffffffffffffffff, 0x0, 0x3) [ 927.485859] FAULT_INJECTION: forcing a failure. [ 927.485859] name failslab, interval 1, probability 0, space 0, times 0 [ 927.486437] loop5: detected capacity change from 0 to 41948160 [ 927.488543] CPU: 1 PID: 8377 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 927.491599] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 927.493531] Call Trace: [ 927.494145] dump_stack+0x107/0x167 [ 927.495001] should_fail.cold+0x5/0xa [ 927.495889] ? create_object.isra.0+0x3a/0xa20 [ 927.496951] should_failslab+0x5/0x20 [ 927.497830] kmem_cache_alloc+0x5b/0x310 [ 927.498785] create_object.isra.0+0x3a/0xa20 [ 927.499797] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 927.500975] kmem_cache_alloc+0x159/0x310 [ 927.501940] __d_alloc+0x2a/0x990 [ 927.502749] ? find_held_lock+0x2c/0x110 [ 927.503689] d_alloc_pseudo+0x19/0x70 [ 927.504570] alloc_file_pseudo+0xce/0x250 [ 927.505530] ? trace_hardirqs_on+0x5b/0x180 [ 927.506531] ? alloc_file+0x5a0/0x5a0 [ 927.507428] anon_inode_getfile+0xc8/0x1f0 [ 927.508411] io_uring_setup+0x138b/0x2980 [ 927.509378] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 927.510554] ? wait_for_completion_io+0x270/0x270 [ 927.511691] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 927.512915] ? syscall_enter_from_user_mode+0x1d/0x50 [ 927.514117] do_syscall_64+0x33/0x40 [ 927.514988] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 927.516176] RIP: 0033:0x7f106b311b19 [ 927.517042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 927.521351] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 927.523128] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 927.524782] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 927.526445] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 927.528116] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 927.529783] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:38:57 executing program 6: lseek(0xffffffffffffffff, 0x0, 0x3) 01:38:57 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:38:57 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 42) 01:38:57 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:57 executing program 6: lseek(0xffffffffffffffff, 0x0, 0x3) 01:38:58 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 927.833889] FAULT_INJECTION: forcing a failure. [ 927.833889] name failslab, interval 1, probability 0, space 0, times 0 [ 927.836761] CPU: 0 PID: 8496 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 927.838406] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 927.840425] Call Trace: [ 927.841056] dump_stack+0x107/0x167 [ 927.841930] should_fail.cold+0x5/0xa [ 927.842841] ? __alloc_file+0x21/0x320 [ 927.843769] should_failslab+0x5/0x20 [ 927.844672] kmem_cache_alloc+0x5b/0x310 [ 927.845646] __alloc_file+0x21/0x320 [ 927.846539] alloc_empty_file+0x6d/0x170 [ 927.847506] alloc_file+0x5e/0x5a0 [ 927.848354] alloc_file_pseudo+0x16a/0x250 [ 927.849359] ? alloc_file+0x5a0/0x5a0 [ 927.850279] anon_inode_getfile+0xc8/0x1f0 [ 927.851294] io_uring_setup+0x138b/0x2980 [ 927.852287] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 927.853492] ? wait_for_completion_io+0x270/0x270 [ 927.854665] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 927.855908] ? syscall_enter_from_user_mode+0x1d/0x50 [ 927.857135] do_syscall_64+0x33/0x40 [ 927.858019] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 927.859237] RIP: 0033:0x7f106b311b19 [ 927.860113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 927.864491] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 927.866298] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 927.867985] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 927.869679] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 927.871378] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 927.873066] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:38:58 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r1}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:38:58 executing program 3: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x108) sendmsg$nl_generic(r0, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)={0x228, 0x2c, 0x300, 0x70bd2a, 0x8, {0x11}, [@generic="538e2a2998a88f16a32030efcd1a6e103b8c33f2dd8ce1b19a6f6110e5d1f665f8984e65679e354617201d9cc678c0e975c7ef85c9232002ad704444cd16ec6cd822589d99415019c1f3a21ca2279cc4a54934f9510e6435", @nested={0x1bb, 0x3a, 0x0, 0x1, [@typed={0x14, 0x8a, 0x0, 0x0, @ipv6=@remote}, @typed={0x5, 0x61, 0x0, 0x0, @str='\x00'}, @generic="430cfa0c0bf71a1a8c9725c31f716265882a3192a5f4ba1f4daa316ba1767646d3aa99b633a424c76225789243abe9b69de3119ce0b21644d479cdbeb38eb34bfe4a43cbabc2079bbe8015579501481e73fa3e1ef7b262e11bf481096c6ca44dfcae3ca85d24f26b3d245d42948f72f0e4c7f8a4ac364c8082e360dcdf41410f986c105da9fa80201b82666b7210242195fdefa4a5d12b81", @typed={0xf, 0x21, 0x0, 0x0, @str='/dev/nvram\x00'}, @generic="902621a9f374279003fe370c9892cefee2cd90c2f2cc02842dc6f8b83c327fa76a930373195ba8c7404b67cbb90fb1d91c065984b9a9387f2b749ec971f5486a2248bbb67e800ac1b5955f8fbfe38282f2266702c1dc277b7459ca7f5f542ac68a7e4a5503686f2f08c8ed9c394d65f035582713318a176188256125acd817c18d757ec636121233fbfe2aa29fe5ebfff4dd64bb2099a4a3b756cdd887e28d71d18658cf14b89a154bc66d3bdd71ab233f4bd43cb921b2bb8785b413dd03e932f6024681dedde311cfbeb6017f25c8d4b197268a0691fe491464c87683c1385aa7a23a7e61dcf43ad0da8c", @typed={0x8, 0x42, 0x0, 0x0, @pid=0xffffffffffffffff}]}]}, 0x228}, 0x1, 0x0, 0x0, 0x800}, 0x20000004) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000140)=0x2) writev(r1, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:38:58 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:38:58 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, 0x0, 0x20041, 0x0) lseek(r0, 0x0, 0x3) [ 942.899330] FAULT_INJECTION: forcing a failure. [ 942.899330] name failslab, interval 1, probability 0, space 0, times 0 [ 942.900822] CPU: 1 PID: 8632 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 942.901688] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 942.902746] Call Trace: [ 942.903083] dump_stack+0x107/0x167 [ 942.903542] should_fail.cold+0x5/0xa [ 942.904021] ? create_object.isra.0+0x3a/0xa20 [ 942.904595] should_failslab+0x5/0x20 [ 942.905082] kmem_cache_alloc+0x5b/0x310 [ 942.905599] create_object.isra.0+0x3a/0xa20 [ 942.906150] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 942.906802] kmem_cache_alloc+0x159/0x310 [ 942.907322] __alloc_file+0x21/0x320 01:39:13 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 43) 01:39:13 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:13 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:39:13 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:13 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, 0x0, 0x20041, 0x0) lseek(r0, 0x0, 0x3) 01:39:13 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:39:13 executing program 3: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_NOACK_MAP(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x44d240}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r0, 0x800, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x403}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7f}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xf8cc}]}, 0x2c}}, 0x9000) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r1, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:39:13 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(0xffffffffffffffff) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 942.908057] alloc_empty_file+0x6d/0x170 [ 942.908750] alloc_file+0x5e/0x5a0 [ 942.909197] alloc_file_pseudo+0x16a/0x250 [ 942.909731] ? alloc_file+0x5a0/0x5a0 [ 942.910218] anon_inode_getfile+0xc8/0x1f0 [ 942.910763] io_uring_setup+0x138b/0x2980 [ 942.911290] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 942.911929] ? wait_for_completion_io+0x270/0x270 [ 942.912546] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 942.913207] ? syscall_enter_from_user_mode+0x1d/0x50 [ 942.913855] do_syscall_64+0x33/0x40 [ 942.914322] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 942.914972] RIP: 0033:0x7f106b311b19 [ 942.915440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 942.917754] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 942.918715] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 942.919631] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 942.920545] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 942.921451] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 942.922355] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 942.943380] loop5: detected capacity change from 0 to 41948160 01:39:13 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, 0x0, 0x20041, 0x0) lseek(r0, 0x0, 0x3) 01:39:13 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) gettid() r3 = fork() ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:13 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:39:13 executing program 3: openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) writev(r0, &(0x7f0000000540)=[{&(0x7f0000000600)="0dd47460ee1cc5efb8b799a02d15d28cca11560674cc83e51dab87d0fe4d5f3790145fe38d53046c5b1bd178e84a9ca6b2f5277f22dcdb599a6b7d19cf086637d563b35df7a3707d041ccc0571d623b3c8cc82403df88a2d08e98e73d98e37df07d576754c4a0ea54d6f9524286aa07035c1362ccb43a16b7220", 0x7a}, {&(0x7f0000000040)="8414a638f8c91c15af4af2dc96ef134ada64e13420588ff23db9e5c978d2e08f49e743e42e4cc6406621b8948a66765b807658004654c1c0675fda3c62f2eea4dac579a64bfca2ff48521f7882f08f7fd0e07d9ac80ddeadf0ac7e96d1c6ab216ac172e73eb4f7f5d09cb10d2642071c575f29cc27a4d5e66daf7a91f4eebbd2ddfaf6ba1e00b42f030ecbae926aa4cb13356dc34e67d45c0f665c396c1056ffc1faa3a5bba4a3440918d0cdb6a043c9bd1a0e4a260d4b669a23334ddb60758abc493990e9de203a782e0fe3a32a4859a710e20cc698e7c190e177417dc57d0f6046dfc3311f59b0ac5befa4fa0a881fb5e6", 0xf2}, {&(0x7f00000009c0)="91a4e1085ee64a0351d06e55decd62b29a78ba80ccd44f37da93fff2fafe888bb60bd7932d4474a6a72a73b9f14f83a9a3ec5b608386abfd49aa9bcf8e77be38098b86f5833bc3a75b1a40e4b04e00e8c309f72177d78cacbf2588af8ac049eddbc17eae6862a1de3c19572cbe7f67fb3b28a22bd79a8fe7c66d59d0b4420d4e74489f5616884db7ad2a646155bcf0cccd4241f5bb6bd097a4939dfb85d1ab6e300c6528d4e5cad02b70015c70eeda4b723d02c7a0e30980961b7c3e95a4082c4f207d4a9e46312ef02ea27cc809c3", 0xcf}, {&(0x7f0000000240)="691e3a4c1f847f7776c83934ba9dad4e2a920d65d2c02ef216fbb14f980706a0f49811a54f185111d8ea950c3afc53e0b5cbfb9185250e32439e402a97dd42055f12945c1f43193d12b9228fb2e23bb0ee917368ff8df6864db88c6a817a34dba7c0707734c784859054e7e87f565a4067af636b3218cb13a019c3ea8e67f5221ba201f6e1af6e24ddb0c1f21675c88b83ddc28fea51404ab1d3259ff30445b7da228d6c7eb580a4aa1924426e", 0xad}, {&(0x7f0000000440)="94d06d172f800bf4ab3c00d4fb1908825bdd2365210b0af97cfc29abb485cd259034bf07331d5ea637366881966fe0010ff302820386abfc0f7622a2f55cfe2b3a4ac5c7ffb6d9c3e68a7caab8d1a8161ebbfd31f12e4bec51ca0fbdd789f7111a1999cb410d3f515570bff452bb52dc52385ebcf83d64f9064b68749d00dc63b05bf44a125f6e51d3d38d3ac8de9f97eace", 0x92}, {&(0x7f00000003c0)="2668d7f05dad8a50a528a89f8345e23880b8a4f95cf3b278910276281ca1570b29d6502d5e9b98301961f56c8837b1f5f94494e6d733ab1a9eb00becc39f07653da0ebc98725d7", 0x47}, {&(0x7f0000000900)="9736aa3a540985296dcc10228def9c053362876949d0a8d751b23d3bdbf42c8026f0400041bf40702ba2fe7a5e6f83a5a417e7b3a6f813a5a1f52ce39654636f4e6869df570c975c38fb938c387d2d456383f10ba601531ce61e1dc1a3a8d84ac4142565f8c6f91aa0305e5798f7e3fa64e01058184a67b721ba40cc3a8100909c241c51265ed480f8f6ec7931ba88ddd9e927527a9d63bcd0813d18eb5d161ad5dff8cc0636551ef0f6f083", 0xac}, {&(0x7f0000000680)="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", 0x246}, {&(0x7f0000000500)="b2ccf6e5eac43c436ab03f2fbb31315482f3c05cb9f4d8757bf99d0e77b7941b4a7aa9e189e578b4dc375a964dabece92cbee40e98870d1720d4bde10d", 0x3d}, {&(0x7f0000001200)="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", 0x1000}], 0xa) 01:39:13 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 44) [ 943.179350] FAULT_INJECTION: forcing a failure. [ 943.179350] name failslab, interval 1, probability 0, space 0, times 0 [ 943.180738] CPU: 1 PID: 8724 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 943.181505] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 943.182437] Call Trace: [ 943.182746] dump_stack+0x107/0x167 [ 943.183156] should_fail.cold+0x5/0xa [ 943.183591] ? security_file_alloc+0x34/0x170 [ 943.184098] should_failslab+0x5/0x20 [ 943.184533] kmem_cache_alloc+0x5b/0x310 [ 943.184994] security_file_alloc+0x34/0x170 [ 943.185483] __alloc_file+0xb7/0x320 [ 943.185924] alloc_empty_file+0x6d/0x170 [ 943.186385] alloc_file+0x5e/0x5a0 [ 943.186796] alloc_file_pseudo+0x16a/0x250 [ 943.187276] ? alloc_file+0x5a0/0x5a0 [ 943.187719] anon_inode_getfile+0xc8/0x1f0 [ 943.188201] io_uring_setup+0x138b/0x2980 [ 943.188674] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 943.189246] ? wait_for_completion_io+0x270/0x270 [ 943.189802] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 943.190404] ? syscall_enter_from_user_mode+0x1d/0x50 [ 943.190993] do_syscall_64+0x33/0x40 [ 943.191413] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 943.191988] RIP: 0033:0x7f106b311b19 [ 943.192407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 943.194496] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 943.195362] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 943.196169] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 943.196978] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 943.197782] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 943.198588] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:39:26 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x0, 0x3) 01:39:26 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:39:26 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r2 = fork() ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:26 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 45) 01:39:26 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(0xffffffffffffffff) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:39:26 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:39:26 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:26 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r2, 0x0, 0x0) lstat(&(0x7f00000001c0)='./file1\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r4 = syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7, 0x3, &(0x7f0000000140)=[{&(0x7f0000001200)="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", 0x1000, 0x7ff}, {&(0x7f0000002200)="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", 0x1000, 0x2a0}, {&(0x7f00000002c0)="66374a24f6a873b190b35cdcfddfe5cd91677063dfd1239879bb5cfb5637bb5ac5afed7648e8a85a76c3f52abecccb96951b349ff58c154c1cb2eda6852a5e6ca1030f57f128cd2210ae4dade308a37a4f5f85748149fec0842d378416202c62b036f23a28dc78c78fc1455ddb53b41d7617f2d5904e9e2dcdbefa62514d864c70fc020924b372332ee20afa1506b732a9c203cde47c789034ee966adf6b82b218012dad7949f54cc6a37e2a709f7c0bd3c1e62936b1d468907f1109573137615cce0323a1f9bb0185190e124340b15a7211389f0d404cfabe66ac1bd9d913f94e1cb0866816454b13646cee8b06f76791b6a1dc156b5b5c59d47f0368fbd1", 0xff, 0x2}], 0x800800, &(0x7f0000000440)={[{@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@block={'block', 0x3d, 0xe00}}, {@check_relaxed}], [{@defcontext={'defcontext', 0x3d, 'root'}}, {@pcr={'pcr', 0x3d, 0x10}}, {@appraise_type}, {@obj_role={'obj_role', 0x3d, '}\\'}}, {@subj_user={'subj_user', 0x3d, '$,*'}}, {@seclabel}, {@uid_gt={'uid>', r2}}, {@uid_eq={'uid', 0x3d, r3}}]}) lseek(r1, 0xfffffffffffffffd, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r6 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000540)='./file0\x00', 0x5, 0x2, &(0x7f0000000740)=[{&(0x7f0000000580)="0d97fa3a93300e4d459d54c5ce199365040997e9b8d0e39526773069c806f27fc0484330b6735df5ca2eb9d6645e486b00d74d324e299a59af80f1f20192517ee4de88a0068e3662ed3a8f95b249d7be086c3b48338c2f5c840bb477b1135cc9cfae96cf2a66685ae3c1c731eeb67c20b9f82ed68df24d4c7689a038f321204eaa1daa6943e9c57d6fab8b2b532ae3ebee77e52b3568ce69a2019e799783560c21958ad72ab2d9ed6c635b9fc58aedfe0ea79d8de64dcae1157c2fcbfed30d16734a0f160cbf17a25ff5fd", 0xcb, 0x20}, {&(0x7f0000000680)="d612fa3d974ad9954d57c4fe0d925a3dc8b8b1dc5bf017660c42313ab48304d8b67e15246af67272c5bda502eee86d58a4d876b9e44d85878f1da0673479205fe9e9c49e9037e5df0153a476359f6a4f3db1a3b7ac0a1480032ba9c0dc2808a24ae575fb534fbbda59e1b5c67ff29f3ae336628dd17e8dedfc561a1a480dd14db57b66ea2adbdb97c46164ba1c4af9294824716f43a8671ddfe7db38039ac6c9cf47c18282d9abe3d29dac602fed28bb9c76e3f780322ddff11bcba01f52", 0xbe, 0x6}], 0x10000, &(0x7f0000000780)={[{@utf8no}, {@shortname_mixed}, {@uni_xlate}, {@shortname_winnt}, {@numtail}, {@utf8no}, {@numtail}, {@uni_xlate}]}) r7 = syz_open_procfs(0x0, &(0x7f0000000040)='attr\x00') r8 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00') fallocate(r6, 0x8, 0x200, 0x0) renameat(r8, &(0x7f0000000080)='./mnt\x00', r7, &(0x7f00000001c0)='./mnt\x00') ioctl$sock_SIOCGPGRP(r8, 0x8904, &(0x7f0000000180)=0x0) r10 = openat$incfs(r8, &(0x7f0000000200)='.pending_reads\x00', 0x402, 0x28) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x3f, 0x5, 0x1, 0x8, 0x0, 0x9, 0x40, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3ff, 0x0, @perf_config_ext={0xf7c, 0x8001}, 0x105, 0x6, 0x1, 0x5, 0xfffffffffffffffc, 0x8000, 0x4920, 0x0, 0x4, 0x0, 0x4}, r9, 0xc, r10, 0x1) perf_event_open(&(0x7f00000008c0)={0x5, 0x80, 0xc3, 0x6, 0x4, 0x20, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0xfffffffb, 0x0, @perf_bp={&(0x7f0000000880), 0x2}, 0x4201, 0x96, 0x6, 0x5, 0x1, 0x7a, 0x8, 0x0, 0x3, 0x0, 0x1}, r9, 0xffffffffffffffff, r4, 0x2) sendfile(r1, r5, 0x0, 0x100000001) bind$bt_hci(r5, &(0x7f0000000000), 0x6) [ 956.297986] loop3: detected capacity change from 0 to 5632 [ 956.318561] loop5: detected capacity change from 0 to 41948160 [ 956.336987] FAULT_INJECTION: forcing a failure. [ 956.336987] name failslab, interval 1, probability 0, space 0, times 0 [ 956.338589] CPU: 0 PID: 8779 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 956.339497] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 956.340585] Call Trace: [ 956.340937] dump_stack+0x107/0x167 [ 956.341414] should_fail.cold+0x5/0xa [ 956.341911] ? create_object.isra.0+0x3a/0xa20 [ 956.342505] should_failslab+0x5/0x20 [ 956.343006] kmem_cache_alloc+0x5b/0x310 [ 956.343534] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 956.344251] create_object.isra.0+0x3a/0xa20 [ 956.344821] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 956.345481] kmem_cache_alloc+0x159/0x310 [ 956.346027] security_file_alloc+0x34/0x170 [ 956.346589] __alloc_file+0xb7/0x320 [ 956.347087] alloc_empty_file+0x6d/0x170 [ 956.347617] alloc_file+0x5e/0x5a0 [ 956.348084] alloc_file_pseudo+0x16a/0x250 [ 956.348635] ? alloc_file+0x5a0/0x5a0 [ 956.349141] anon_inode_getfile+0xc8/0x1f0 [ 956.349692] io_uring_setup+0x138b/0x2980 [ 956.350234] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 956.350892] ? wait_for_completion_io+0x270/0x270 [ 956.351539] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 956.352225] ? syscall_enter_from_user_mode+0x1d/0x50 [ 956.352896] do_syscall_64+0x33/0x40 [ 956.353383] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 956.354049] RIP: 0033:0x7f106b311b19 [ 956.354538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 956.356937] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 956.357931] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 956.358861] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 956.359801] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 956.360731] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 956.361662] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:39:26 executing program 6: openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(0xffffffffffffffff, 0x0, 0x3) [ 956.400385] FAT-fs (loop3): bogus number of reserved sectors [ 956.401229] FAT-fs (loop3): Can't find a valid FAT filesystem 01:39:26 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) gettid() r1 = fork() ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:26 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:39:26 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(0xffffffffffffffff) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:39:26 executing program 6: openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(0xffffffffffffffff, 0x0, 0x3) 01:39:26 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 46) 01:39:26 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 956.622356] FAULT_INJECTION: forcing a failure. [ 956.622356] name failslab, interval 1, probability 0, space 0, times 0 [ 956.624864] CPU: 1 PID: 8906 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 956.626317] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 956.628106] Call Trace: [ 956.628317] loop3: detected capacity change from 0 to 5632 [ 956.628673] dump_stack+0x107/0x167 [ 956.630256] should_fail.cold+0x5/0xa [ 956.631088] ? io_uring_alloc_task_context+0x99/0x6a0 [ 956.631107] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 [ 956.632178] should_failslab+0x5/0x20 [ 956.632197] kmem_cache_alloc_trace+0x55/0x320 [ 956.632221] io_uring_alloc_task_context+0x99/0x6a0 [ 956.635996] ? io_import_iovec+0x1120/0x1120 [ 956.636926] ? lock_downgrade+0x6d0/0x6d0 [ 956.637800] ? do_raw_spin_lock+0x121/0x260 [ 956.638706] ? rwlock_bug.part.0+0x90/0x90 [ 956.639612] __io_uring_add_tctx_node+0x2c6/0x520 [ 956.640629] ? io_uring_alloc_task_context+0x6a0/0x6a0 01:39:26 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) gettid() r1 = fork() ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 956.641740] ? alloc_fd+0x2e7/0x670 [ 956.642652] io_uring_setup+0x1fbb/0x2980 [ 956.643675] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 956.644835] ? wait_for_completion_io+0x270/0x270 [ 956.645875] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 956.646992] ? syscall_enter_from_user_mode+0x1d/0x50 [ 956.648084] do_syscall_64+0x33/0x40 [ 956.648871] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 956.649954] RIP: 0033:0x7f106b311b19 [ 956.650743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 01:39:26 executing program 6: openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(0xffffffffffffffff, 0x0, 0x3) [ 956.654720] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 956.656363] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 956.657883] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 956.659409] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 956.660922] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 956.662441] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 956.699638] FAT-fs (loop3): bogus number of reserved sectors [ 956.700426] FAT-fs (loop3): Can't find a valid FAT filesystem 01:39:41 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 47) 01:39:41 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:39:41 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:39:41 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:39:41 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r1}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:41 executing program 6: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x0, 0x0) 01:39:41 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) gettid() r1 = fork() ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:41 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) syz_open_procfs(0x0, &(0x7f0000000040)='attr\x00') r1 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00') r2 = dup2(r0, 0xffffffffffffffff) renameat(r1, &(0x7f0000000080)='./mnt\x00', r2, &(0x7f00000001c0)='./mnt/file0\x00') ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000180)=0x0) r4 = perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x3f, 0x5, 0x1, 0x8, 0x0, 0x9, 0x40, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3ff, 0x0, @perf_config_ext={0xf7c, 0x8001}, 0x105, 0x6, 0x1, 0x5, 0xfffffffffffffffc, 0x8000, 0x4920, 0x0, 0x4, 0x0, 0x4}, r3, 0xc, 0xffffffffffffffff, 0x1) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000240)={{0x1, 0x1, 0x18, r4, {0x3}}, './mnt/file0\x00'}) getsockopt$inet_mreqsrc(r5, 0x0, 0x27, &(0x7f0000000280)={@empty, @loopback, @private}, &(0x7f00000002c0)=0xc) sendmsg$nl_generic(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f0000002440)=ANY=[@ANYBLOB="84110000200008002bbd7000ffdbdf2503000000620135800d211a3a2af158b89c33c23ecec67b5bebc312b74111ab0be2990343a9eb0e11f3262f6ec3069e630c062294b3e04ce74bbb0d96fb6275d02a846bdff5b9f3bfb90acc3410282f30f72945dab9bb8b85b0cc934abfdb13ec4190ee38701b067750f5d51d92b821555e9c9a843a450ae40e6f4c1c642b6dbe30c91fcdb04663dc7c351bf7ce34ebbd1ca8a8afbcd396afedb210dc2884ff4d294c5ad9eb84b0cd479c620ec85a06ecb9166d36400c08009600", @ANYRES32=r3, @ANYBLOB="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"], 0x1184}, 0x1, 0x0, 0x0, 0x64000080}, 0x80) [ 970.860655] loop5: detected capacity change from 0 to 41948160 [ 970.867438] FAULT_INJECTION: forcing a failure. [ 970.867438] name failslab, interval 1, probability 0, space 0, times 0 [ 970.870898] CPU: 0 PID: 9026 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 970.872455] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 970.874314] Call Trace: [ 970.874908] dump_stack+0x107/0x167 [ 970.875732] should_fail.cold+0x5/0xa [ 970.876585] ? create_object.isra.0+0x3a/0xa20 [ 970.877611] should_failslab+0x5/0x20 [ 970.878465] kmem_cache_alloc+0x5b/0x310 [ 970.879386] create_object.isra.0+0x3a/0xa20 [ 970.880370] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 970.881531] kmem_cache_alloc_trace+0x151/0x320 [ 970.882584] io_uring_alloc_task_context+0x99/0x6a0 [ 970.883716] ? io_import_iovec+0x1120/0x1120 [ 970.884706] ? lock_downgrade+0x6d0/0x6d0 [ 970.885636] ? do_raw_spin_lock+0x121/0x260 [ 970.886604] ? rwlock_bug.part.0+0x90/0x90 [ 970.887571] __io_uring_add_tctx_node+0x2c6/0x520 [ 970.888656] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 970.889828] ? alloc_fd+0x2e7/0x670 [ 970.890660] io_uring_setup+0x1fbb/0x2980 [ 970.891614] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 970.892755] ? wait_for_completion_io+0x270/0x270 [ 970.893862] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 970.895039] ? syscall_enter_from_user_mode+0x1d/0x50 [ 970.896208] do_syscall_64+0x33/0x40 [ 970.897051] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 970.898215] RIP: 0033:0x7f106b311b19 [ 970.899054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 970.903273] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 970.904988] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 970.906592] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 970.908203] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 970.909807] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 970.911426] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:39:41 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r1 = fork() ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:41 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:39:41 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:39:41 executing program 3: openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r0 = inotify_init1(0x0) inotify_add_watch(r0, &(0x7f0000000040)='.\x00', 0x2000003) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:39:41 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:39:41 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000080)="aeb580a030aa61ce54c93130e600b563327124b056ed67cf1aa6ca9d340b9462e60435920a24182698987b949c4385892f539b59300dee6d31c774fe9587a6a1c32a7f87b4796af6440d24bb4e9f21c38cf8e74631697fa5b8957a78675f4e822deeb265b477999d69184a1c8cfe8302a29641b29c69642689148958525ac4a3958b508c38da73f5fdfad38a8bcce55a6b7689325565060539edc03d002a8588437b1f847c26bfe2437e953a99f9305fde1fd639902655b8a40c", 0xba}, {&(0x7f0000000140)="d7e8d6d339520b8d15bdc6efbb6ec7b4d985ba0ac30b534d4d6583fca4780c3adae8d3afc59109c33aff5f0b3526ce329ec3a0138a412b5a18a742867f03d7f9dee73ef187e8ed062c2998ee85cf0f1d336fe4dcadda0ac059c399a0d211dabd1f4dccb8c297981046bad4c3b288daddbc9c372f4822a4a5d0bbb7f4367fa7141b41860ebabadce18bc218b9eb6e68c58a6a2f0caf68844036865cdb428d2078191cb2c1d7cbfce68d765175b44541af187d4ce5c0258c1e5ed97d278f23619619d1a8f6bc634d2e40444155896df320d478", 0xd2}], 0x2) r1 = socket(0x10, 0x4, 0x2) tee(r1, r0, 0x9, 0x2) 01:39:41 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 48) [ 971.021582] FAULT_INJECTION: forcing a failure. [ 971.021582] name failslab, interval 1, probability 0, space 0, times 0 [ 971.024187] CPU: 0 PID: 9086 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 971.025718] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 971.027588] Call Trace: [ 971.028181] dump_stack+0x107/0x167 [ 971.029000] should_fail.cold+0x5/0xa [ 971.029865] ? create_object.isra.0+0x3a/0xa20 [ 971.030791] loop6: detected capacity change from 0 to 41948160 [ 971.030893] should_failslab+0x5/0x20 [ 971.032457] kmem_cache_alloc+0x5b/0x310 [ 971.033372] create_object.isra.0+0x3a/0xa20 [ 971.034374] kmemleak_alloc_percpu+0xa0/0x100 [ 971.035392] pcpu_alloc+0x4e2/0x1240 [ 971.036242] __percpu_counter_init+0x10d/0x2d0 [ 971.037275] io_uring_alloc_task_context+0xcc/0x6a0 [ 971.038392] ? io_import_iovec+0x1120/0x1120 [ 971.039411] ? lock_downgrade+0x6d0/0x6d0 [ 971.040336] ? do_raw_spin_lock+0x121/0x260 [ 971.041305] ? rwlock_bug.part.0+0x90/0x90 [ 971.042261] __io_uring_add_tctx_node+0x2c6/0x520 [ 971.043363] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 971.044540] ? alloc_fd+0x2e7/0x670 [ 971.045365] io_uring_setup+0x1fbb/0x2980 [ 971.046301] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 971.047437] ? wait_for_completion_io+0x270/0x270 [ 971.048542] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 971.049721] ? syscall_enter_from_user_mode+0x1d/0x50 [ 971.050876] do_syscall_64+0x33/0x40 [ 971.051724] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 971.052871] RIP: 0033:0x7f106b311b19 [ 971.053704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 971.057839] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 971.059547] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 971.061141] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 971.062746] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 971.064351] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 971.065961] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:39:56 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r1}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:56 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:39:56 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:39:56 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:39:56 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r1 = fork() ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:56 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 49) 01:39:56 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000c80), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0d06000000000000000001000000080001002058f212358a732000000000"], 0x1c}}, 0x0) sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, 0x0, 0x400, 0x6, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}]}, 0x28}, 0x1, 0x0, 0x0, 0x24000081}, 0x40040040) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$IEEE802154_SET_MACPARAMS(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, r3, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@IEEE802154_ATTR_CCA_MODE={0x5, 0x23, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004044}, 0x4000000) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r2) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000380)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_GET_INTERFACE(r2, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)={0x1c, r4, 0x8, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r5}, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x2400c090}, 0x8000) writev(r2, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:39:56 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 986.228023] loop5: detected capacity change from 0 to 41948160 [ 986.247972] FAULT_INJECTION: forcing a failure. [ 986.247972] name failslab, interval 1, probability 0, space 0, times 0 [ 986.250625] CPU: 1 PID: 9188 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 986.252194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 986.254090] Call Trace: [ 986.254691] dump_stack+0x107/0x167 [ 986.255569] should_fail.cold+0x5/0xa [ 986.256441] ? create_object.isra.0+0x3a/0xa20 [ 986.257485] should_failslab+0x5/0x20 [ 986.258357] kmem_cache_alloc+0x5b/0x310 [ 986.259297] create_object.isra.0+0x3a/0xa20 [ 986.260317] kmemleak_alloc_percpu+0xa0/0x100 [ 986.261350] pcpu_alloc+0x4e2/0x1240 [ 986.262218] __percpu_counter_init+0x10d/0x2d0 [ 986.263269] io_uring_alloc_task_context+0xcc/0x6a0 [ 986.264412] ? io_import_iovec+0x1120/0x1120 [ 986.265411] ? lock_downgrade+0x6d0/0x6d0 [ 986.266351] ? do_raw_spin_lock+0x121/0x260 [ 986.267339] ? rwlock_bug.part.0+0x90/0x90 [ 986.268313] __io_uring_add_tctx_node+0x2c6/0x520 [ 986.269407] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 986.270598] ? alloc_fd+0x2e7/0x670 [ 986.271469] io_uring_setup+0x1fbb/0x2980 [ 986.272422] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 986.273575] ? wait_for_completion_io+0x270/0x270 [ 986.274699] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.275897] ? syscall_enter_from_user_mode+0x1d/0x50 [ 986.277070] do_syscall_64+0x33/0x40 [ 986.277918] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 986.279085] RIP: 0033:0x7f106b311b19 01:39:56 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r1}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 986.279937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 986.284373] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 986.286102] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 986.287758] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 986.289384] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 986.291011] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 986.292646] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 986.294937] loop6: detected capacity change from 0 to 41948160 01:39:56 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:39:56 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(0x0, 0x0) 01:39:56 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r1 = fork() ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:56 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x20041, 0x0) io_uring_enter(r0, 0x1b3, 0x1cde, 0x7, &(0x7f0000000000)={[0x1]}, 0x8) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000040)="aa", 0x1}], 0x1) 01:39:56 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:56 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 50) 01:39:56 executing program 3: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r1 = fork() ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:39:56 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 986.714327] FAULT_INJECTION: forcing a failure. [ 986.714327] name failslab, interval 1, probability 0, space 0, times 0 [ 986.717404] CPU: 0 PID: 9320 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 986.719266] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 986.721342] Call Trace: [ 986.721999] dump_stack+0x107/0x167 [ 986.722894] should_fail.cold+0x5/0xa [ 986.723855] ? io_wq_create+0xeb/0xc00 [ 986.724827] should_failslab+0x5/0x20 [ 986.725781] __kmalloc+0x72/0x390 [ 986.726653] io_wq_create+0xeb/0xc00 [ 986.727604] io_uring_alloc_task_context+0x1f1/0x6a0 [ 986.728874] ? io_import_iovec+0x1120/0x1120 [ 986.729969] ? io_apoll_task_func+0x2d0/0x2d0 [ 986.731092] ? __io_req_find_next+0x300/0x300 [ 986.732216] ? do_raw_spin_lock+0x121/0x260 [ 986.733292] ? rwlock_bug.part.0+0x90/0x90 [ 986.734345] __io_uring_add_tctx_node+0x2c6/0x520 [ 986.735545] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 986.736836] ? alloc_fd+0x2e7/0x670 [ 986.737743] io_uring_setup+0x1fbb/0x2980 [ 986.738770] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 986.740026] ? wait_for_completion_io+0x270/0x270 [ 986.741233] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.742530] ? syscall_enter_from_user_mode+0x1d/0x50 [ 986.743815] do_syscall_64+0x33/0x40 [ 986.744735] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 986.746002] RIP: 0033:0x7f106b311b19 [ 986.746922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 986.751495] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 986.753366] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 986.755106] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 986.756870] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 986.758620] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 986.760388] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1003.947838] loop3: detected capacity change from 0 to 41948160 01:40:14 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:40:14 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r1 = fork() ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:14 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r2, 0x4c00, r1) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:40:14 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:40:14 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(0x0, 0x0) 01:40:14 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 51) 01:40:14 executing program 3: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:40:14 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1003.981724] loop5: detected capacity change from 0 to 41948160 [ 1003.986001] FAULT_INJECTION: forcing a failure. [ 1003.986001] name failslab, interval 1, probability 0, space 0, times 0 [ 1003.988729] CPU: 1 PID: 9442 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1003.990480] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1003.992625] Call Trace: [ 1003.993305] dump_stack+0x107/0x167 [ 1003.994243] should_fail.cold+0x5/0xa [ 1003.995229] ? create_object.isra.0+0x3a/0xa20 [ 1003.996409] should_failslab+0x5/0x20 [ 1003.997389] kmem_cache_alloc+0x5b/0x310 [ 1003.998434] ? io_uring_alloc_task_context+0xf5/0x6a0 [ 1003.999767] create_object.isra.0+0x3a/0xa20 [ 1004.000890] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1004.002195] __kmalloc+0x16e/0x390 [ 1004.002969] io_wq_create+0xeb/0xc00 [ 1004.003941] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1004.005016] ? io_import_iovec+0x1120/0x1120 [ 1004.006133] ? io_apoll_task_func+0x2d0/0x2d0 [ 1004.007160] ? __io_req_find_next+0x300/0x300 [ 1004.008302] ? do_raw_spin_lock+0x121/0x260 [ 1004.009419] ? rwlock_bug.part.0+0x90/0x90 [ 1004.010326] __io_uring_add_tctx_node+0x2c6/0x520 [ 1004.011351] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1004.012477] ? alloc_fd+0x2e7/0x670 [ 1004.013278] io_uring_setup+0x1fbb/0x2980 [ 1004.014174] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1004.015255] ? wait_for_completion_io+0x270/0x270 [ 1004.016325] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1004.017454] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1004.018559] do_syscall_64+0x33/0x40 [ 1004.019352] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1004.020449] RIP: 0033:0x7f106b311b19 [ 1004.021244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1004.021533] loop6: detected capacity change from 0 to 41948160 [ 1004.025144] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1004.025169] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1004.025180] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1004.025190] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1004.025200] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1004.025210] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:40:14 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(0x0, 0x0) 01:40:14 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:40:14 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r1 = fork() ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:14 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:40:30 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 52) 01:40:30 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r1 = fork() ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1020.263994] loop5: detected capacity change from 0 to 41948160 01:40:30 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) sendfile(r0, r1, 0x0, 0x100000001) 01:40:30 executing program 3: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:40:30 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:40:30 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:40:30 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r2, 0x4c00, r1) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:40:30 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1020.293719] FAULT_INJECTION: forcing a failure. [ 1020.293719] name failslab, interval 1, probability 0, space 0, times 0 [ 1020.296683] CPU: 1 PID: 9580 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1020.298440] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1020.300571] Call Trace: [ 1020.301252] dump_stack+0x107/0x167 [ 1020.302185] should_fail.cold+0x5/0xa [ 1020.303166] ? io_wq_create+0x6ef/0xc00 [ 1020.304190] should_failslab+0x5/0x20 [ 1020.305174] kmem_cache_alloc_node_trace+0x59/0x340 [ 1020.306463] io_wq_create+0x6ef/0xc00 [ 1020.307456] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1020.308774] ? io_import_iovec+0x1120/0x1120 [ 1020.309904] ? io_apoll_task_func+0x2d0/0x2d0 [ 1020.311055] ? __io_req_find_next+0x300/0x300 [ 1020.312213] ? do_raw_spin_lock+0x121/0x260 [ 1020.313223] ? rwlock_bug.part.0+0x90/0x90 [ 1020.314139] __io_uring_add_tctx_node+0x2c6/0x520 [ 1020.315173] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1020.316297] ? alloc_fd+0x2e7/0x670 [ 1020.317089] io_uring_setup+0x1fbb/0x2980 [ 1020.317987] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1020.319072] ? wait_for_completion_io+0x270/0x270 [ 1020.320157] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1020.321275] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1020.322384] do_syscall_64+0x33/0x40 [ 1020.323185] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1020.324292] RIP: 0033:0x7f106b311b19 [ 1020.325104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1020.329052] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1020.330695] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1020.332237] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1020.333770] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1020.335314] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1020.336849] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1020.352475] loop3: detected capacity change from 0 to 41948160 [ 1020.359642] loop6: detected capacity change from 0 to 41948160 [ 1020.368267] cgroup: fork rejected by pids controller in /syz4 01:40:30 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:40:30 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:30 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 53) 01:40:30 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r1}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:30 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 1020.612923] FAULT_INJECTION: forcing a failure. [ 1020.612923] name failslab, interval 1, probability 0, space 0, times 0 [ 1020.614409] CPU: 0 PID: 9712 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1020.615254] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1020.616287] Call Trace: [ 1020.616614] dump_stack+0x107/0x167 [ 1020.617059] should_fail.cold+0x5/0xa [ 1020.617531] ? create_object.isra.0+0x3a/0xa20 [ 1020.618092] should_failslab+0x5/0x20 [ 1020.618558] kmem_cache_alloc+0x5b/0x310 [ 1020.619056] ? io_wq_create+0x114/0xc00 [ 1020.619548] create_object.isra.0+0x3a/0xa20 [ 1020.620088] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1020.620715] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1020.621335] io_wq_create+0x6ef/0xc00 [ 1020.621810] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1020.622435] ? io_import_iovec+0x1120/0x1120 [ 1020.622968] ? io_apoll_task_func+0x2d0/0x2d0 [ 1020.623510] ? __io_req_find_next+0x300/0x300 [ 1020.624055] ? do_raw_spin_lock+0x121/0x260 [ 1020.624576] ? rwlock_bug.part.0+0x90/0x90 [ 1020.625091] __io_uring_add_tctx_node+0x2c6/0x520 [ 1020.625674] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1020.626305] ? alloc_fd+0x2e7/0x670 [ 1020.626750] io_uring_setup+0x1fbb/0x2980 [ 1020.627257] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1020.627873] ? wait_for_completion_io+0x270/0x270 [ 1020.628477] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1020.629121] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1020.629751] do_syscall_64+0x33/0x40 [ 1020.630203] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1020.630827] RIP: 0033:0x7f106b311b19 [ 1020.631286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1020.633525] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1020.634449] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1020.635307] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1020.636179] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1020.637040] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1020.637907] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:40:30 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:40:30 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:30 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 54) 01:40:31 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 1020.806394] FAULT_INJECTION: forcing a failure. [ 1020.806394] name failslab, interval 1, probability 0, space 0, times 0 [ 1020.807853] CPU: 0 PID: 9728 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1020.808693] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1020.809693] Call Trace: [ 1020.810015] dump_stack+0x107/0x167 [ 1020.810468] should_fail.cold+0x5/0xa [ 1020.810927] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1020.811527] should_failslab+0x5/0x20 [ 1020.811992] kmem_cache_alloc_trace+0x55/0x320 [ 1020.812554] __io_uring_add_tctx_node+0x15c/0x520 [ 1020.813147] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1020.813774] ? alloc_fd+0x2e7/0x670 [ 1020.814217] io_uring_setup+0x1fbb/0x2980 [ 1020.814718] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1020.815327] ? wait_for_completion_io+0x270/0x270 [ 1020.815929] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1020.816571] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1020.817196] do_syscall_64+0x33/0x40 [ 1020.817645] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1020.818260] RIP: 0033:0x7f106b311b19 [ 1020.818719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1020.820956] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1020.821881] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1020.822736] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1020.823589] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1020.824459] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1020.825321] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:40:31 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r1}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:43 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 55) 01:40:43 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:43 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:40:43 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r2, 0x4c00, r1) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:40:43 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) sendfile(r0, r1, 0x0, 0x100000001) 01:40:43 executing program 3: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:40:43 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r1}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:43 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1033.799954] loop5: detected capacity change from 0 to 41948160 [ 1033.831126] FAULT_INJECTION: forcing a failure. [ 1033.831126] name failslab, interval 1, probability 0, space 0, times 0 [ 1033.833878] CPU: 0 PID: 9848 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1033.835427] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1033.837308] Call Trace: [ 1033.837916] dump_stack+0x107/0x167 [ 1033.838748] should_fail.cold+0x5/0xa [ 1033.839616] ? io_wq_create+0x6ef/0xc00 [ 1033.840533] should_failslab+0x5/0x20 [ 1033.841399] kmem_cache_alloc_node_trace+0x59/0x340 [ 1033.842543] io_wq_create+0x6ef/0xc00 [ 1033.843418] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1033.844577] ? io_import_iovec+0x1120/0x1120 [ 1033.845585] ? io_apoll_task_func+0x2d0/0x2d0 [ 1033.846623] ? __io_req_find_next+0x300/0x300 [ 1033.847639] ? do_raw_spin_lock+0x121/0x260 [ 1033.848654] ? rwlock_bug.part.0+0x90/0x90 [ 1033.849629] __io_uring_add_tctx_node+0x2c6/0x520 [ 1033.850728] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1033.851922] ? alloc_fd+0x2e7/0x670 [ 1033.852776] io_uring_setup+0x1fbb/0x2980 [ 1033.853739] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1033.854893] ? wait_for_completion_io+0x270/0x270 [ 1033.856031] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1033.857220] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1033.858404] do_syscall_64+0x33/0x40 [ 1033.859254] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1033.860434] RIP: 0033:0x7f106b311b19 [ 1033.861280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1033.865475] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1033.867203] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1033.868856] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1033.870481] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1033.872115] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1033.873731] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1033.882878] loop3: detected capacity change from 0 to 41948160 [ 1033.903690] loop6: detected capacity change from 0 to 41948160 01:40:44 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:40:44 executing program 2: openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r1 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r0) fallocate(r1, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(0xffffffffffffffff, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:40:44 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:44 executing program 7: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:40:44 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 56) [ 1034.252030] FAULT_INJECTION: forcing a failure. [ 1034.252030] name failslab, interval 1, probability 0, space 0, times 0 [ 1034.253794] CPU: 1 PID: 10079 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1034.254829] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1034.255925] Call Trace: [ 1034.256292] dump_stack+0x107/0x167 [ 1034.256776] should_fail.cold+0x5/0xa [ 1034.257275] ? xas_alloc+0x336/0x440 [ 1034.257812] should_failslab+0x5/0x20 [ 1034.258333] kmem_cache_alloc+0x5b/0x310 [ 1034.258940] ? stack_trace_consume_entry+0x160/0x160 [ 1034.259550] xas_alloc+0x336/0x440 [ 1034.259987] xas_create+0x34a/0x10d0 [ 1034.260475] ? kernel_text_address+0xf2/0x120 [ 1034.261142] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1034.261961] xas_store+0x8c/0x1c40 [ 1034.262397] __xa_store+0x164/0x2d0 [ 1034.262831] ? xa_delete_node+0x280/0x280 [ 1034.263418] ? trace_hardirqs_on+0x5b/0x180 [ 1034.264085] xa_store+0x31/0x50 [ 1034.264487] __io_uring_add_tctx_node+0x1cf/0x520 [ 1034.265158] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1034.265853] ? alloc_fd+0x2e7/0x670 [ 1034.266297] io_uring_setup+0x1fbb/0x2980 [ 1034.266795] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1034.267517] ? wait_for_completion_io+0x270/0x270 [ 1034.268216] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1034.268994] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1034.269614] do_syscall_64+0x33/0x40 [ 1034.270131] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1034.270831] RIP: 0033:0x7f106b311b19 [ 1034.271274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1034.273555] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1034.274599] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1034.275634] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1034.276717] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1034.277656] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1034.278614] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:40:44 executing program 2: openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r1 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r0) fallocate(r1, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(0xffffffffffffffff, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:40:59 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 57) 01:40:59 executing program 3: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r1}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r2) ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:59 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) sendfile(r0, r1, 0x0, 0x100000001) 01:40:59 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:59 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:59 executing program 2: openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r1 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r0) fallocate(r1, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(0xffffffffffffffff, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:40:59 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:40:59 executing program 7: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r1 = fork() ptrace(0x10, r1) ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1049.234357] FAULT_INJECTION: forcing a failure. [ 1049.234357] name failslab, interval 1, probability 0, space 0, times 0 [ 1049.236944] CPU: 0 PID: 10192 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1049.238514] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1049.240426] Call Trace: [ 1049.241027] dump_stack+0x107/0x167 [ 1049.241864] should_fail.cold+0x5/0xa [ 1049.242739] ? create_object.isra.0+0x3a/0xa20 [ 1049.243785] should_failslab+0x5/0x20 [ 1049.244661] kmem_cache_alloc+0x5b/0x310 [ 1049.245589] create_object.isra.0+0x3a/0xa20 [ 1049.246583] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1049.247750] kmem_cache_alloc+0x159/0x310 [ 1049.248730] xas_alloc+0x336/0x440 [ 1049.249550] xas_create+0x34a/0x10d0 [ 1049.250411] ? kernel_text_address+0xf2/0x120 [ 1049.251435] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1049.252640] xas_store+0x8c/0x1c40 [ 1049.253460] __xa_store+0x164/0x2d0 [ 1049.254292] ? xa_delete_node+0x280/0x280 [ 1049.255246] ? trace_hardirqs_on+0x5b/0x180 [ 1049.256261] xa_store+0x31/0x50 [ 1049.257015] __io_uring_add_tctx_node+0x1cf/0x520 [ 1049.258123] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1049.259328] ? alloc_fd+0x2e7/0x670 [ 1049.260176] io_uring_setup+0x1fbb/0x2980 [ 1049.261128] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1049.262276] ? wait_for_completion_io+0x270/0x270 [ 1049.263399] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1049.264597] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1049.265772] do_syscall_64+0x33/0x40 [ 1049.266624] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1049.267789] RIP: 0033:0x7f106b311b19 [ 1049.268642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1049.272831] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1049.274556] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1049.276213] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1049.277837] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1049.279452] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1049.281073] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1049.284300] loop6: detected capacity change from 0 to 41948160 [ 1049.310397] loop5: detected capacity change from 0 to 41948160 01:40:59 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:40:59 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, 0x0) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:40:59 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, 0x0) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:40:59 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 58) [ 1049.486786] FAULT_INJECTION: forcing a failure. [ 1049.486786] name failslab, interval 1, probability 0, space 0, times 0 [ 1049.488299] CPU: 1 PID: 10425 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1049.489149] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1049.490164] Call Trace: [ 1049.490486] dump_stack+0x107/0x167 [ 1049.490939] should_fail.cold+0x5/0xa [ 1049.491404] ? xas_alloc+0x336/0x440 [ 1049.491861] should_failslab+0x5/0x20 [ 1049.492325] kmem_cache_alloc+0x5b/0x310 [ 1049.492820] xas_alloc+0x336/0x440 [ 1049.493257] xas_create+0x34a/0x10d0 [ 1049.493714] ? kernel_text_address+0xf2/0x120 [ 1049.494258] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1049.494890] xas_store+0x8c/0x1c40 [ 1049.495324] __xa_store+0x164/0x2d0 [ 1049.495767] ? xa_delete_node+0x280/0x280 [ 1049.496283] ? trace_hardirqs_on+0x5b/0x180 [ 1049.496812] xa_store+0x31/0x50 [ 1049.497211] __io_uring_add_tctx_node+0x1cf/0x520 [ 1049.497793] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1049.498427] ? alloc_fd+0x2e7/0x670 [ 1049.498873] io_uring_setup+0x1fbb/0x2980 [ 1049.499382] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1049.499989] ? wait_for_completion_io+0x270/0x270 [ 1049.500589] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1049.501224] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1049.501849] do_syscall_64+0x33/0x40 [ 1049.502309] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1049.502933] RIP: 0033:0x7f106b311b19 [ 1049.503388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1049.505600] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1049.506521] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1049.507377] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1049.508241] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1049.509094] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1049.509947] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:40:59 executing program 3: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, 0x0) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:40:59 executing program 7: openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r0) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r0) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r1 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r0) fallocate(r1, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(0xffffffffffffffff, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:40:59 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 59) [ 1049.555939] FAULT_INJECTION: forcing a failure. [ 1049.555939] name failslab, interval 1, probability 0, space 0, times 0 [ 1049.557423] CPU: 1 PID: 10429 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1049.558247] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1049.559220] Call Trace: [ 1049.559530] dump_stack+0x107/0x167 [ 1049.559961] should_fail.cold+0x5/0xa [ 1049.560418] ? create_object.isra.0+0x3a/0xa20 [ 1049.560953] should_failslab+0x5/0x20 [ 1049.561404] kmem_cache_alloc+0x5b/0x310 [ 1049.561889] create_object.isra.0+0x3a/0xa20 [ 1049.562406] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1049.563005] kmem_cache_alloc+0x159/0x310 [ 1049.563499] xas_alloc+0x336/0x440 [ 1049.563917] xas_create+0x34a/0x10d0 [ 1049.564369] ? kernel_text_address+0xf2/0x120 [ 1049.564896] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1049.565513] xas_store+0x8c/0x1c40 [ 1049.565939] __xa_store+0x164/0x2d0 [ 1049.566366] ? xa_delete_node+0x280/0x280 [ 1049.566849] ? trace_hardirqs_on+0x5b/0x180 [ 1049.567354] xa_store+0x31/0x50 [ 1049.567738] __io_uring_add_tctx_node+0x1cf/0x520 [ 1049.568309] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1049.568926] ? alloc_fd+0x2e7/0x670 [ 1049.569357] io_uring_setup+0x1fbb/0x2980 [ 1049.569840] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1049.570432] ? wait_for_completion_io+0x270/0x270 [ 1049.571004] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1049.571621] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1049.572229] do_syscall_64+0x33/0x40 [ 1049.572665] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1049.573259] RIP: 0033:0x7f106b311b19 [ 1049.573694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1049.575832] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1049.576733] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1049.577571] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1049.578403] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1049.579234] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1049.580068] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:40:59 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:40:59 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1049.627354] loop5: detected capacity change from 0 to 41948160 01:41:13 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 60) 01:41:13 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:13 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:41:13 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:13 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:41:13 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:41:13 executing program 3: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:41:13 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, 0x0) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 1063.311381] loop3: detected capacity change from 0 to 41948160 [ 1063.330269] loop6: detected capacity change from 0 to 41948160 [ 1063.344371] loop7: detected capacity change from 0 to 41948160 [ 1063.353341] FAULT_INJECTION: forcing a failure. [ 1063.353341] name failslab, interval 1, probability 0, space 0, times 0 [ 1063.354619] CPU: 1 PID: 10464 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1063.355397] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1063.356378] Call Trace: [ 1063.356678] dump_stack+0x107/0x167 [ 1063.357088] should_fail.cold+0x5/0xa [ 1063.357518] ? xas_alloc+0x336/0x440 [ 1063.357939] should_failslab+0x5/0x20 [ 1063.358368] kmem_cache_alloc+0x5b/0x310 [ 1063.358826] xas_alloc+0x336/0x440 [ 1063.359229] xas_create+0x34a/0x10d0 [ 1063.359654] ? kernel_text_address+0xf2/0x120 [ 1063.360162] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1063.360759] xas_store+0x8c/0x1c40 [ 1063.361169] __xa_store+0x164/0x2d0 [ 1063.361579] ? xa_delete_node+0x280/0x280 [ 1063.362047] ? trace_hardirqs_on+0x5b/0x180 [ 1063.362538] xa_store+0x31/0x50 [ 1063.362913] __io_uring_add_tctx_node+0x1cf/0x520 [ 1063.363460] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1063.364048] ? alloc_fd+0x2e7/0x670 [ 1063.364473] io_uring_setup+0x1fbb/0x2980 [ 1063.364942] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1063.365511] ? wait_for_completion_io+0x270/0x270 [ 1063.366063] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1063.366653] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1063.367235] do_syscall_64+0x33/0x40 [ 1063.367656] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1063.368232] RIP: 0033:0x7f106b311b19 [ 1063.368659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1063.370091] loop5: detected capacity change from 0 to 41948160 [ 1063.370715] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1063.370746] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1063.370752] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1063.370758] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1063.370763] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1063.370777] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:41:13 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:41:13 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r2, 0x4c00, 0xffffffffffffffff) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, 0xffffffffffffffff, 0x0, 0x100000001) 01:41:13 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:13 executing program 4: socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:13 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:13 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 61) [ 1063.637729] loop5: detected capacity change from 0 to 41948160 01:41:13 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:13 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r2, 0x4c00, 0xffffffffffffffff) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, 0xffffffffffffffff, 0x0, 0x100000001) [ 1063.732045] FAULT_INJECTION: forcing a failure. [ 1063.732045] name failslab, interval 1, probability 0, space 0, times 0 [ 1063.733456] CPU: 1 PID: 10690 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1063.734263] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1063.735221] Call Trace: [ 1063.735539] dump_stack+0x107/0x167 [ 1063.735974] should_fail.cold+0x5/0xa [ 1063.736436] ? create_object.isra.0+0x3a/0xa20 [ 1063.736978] should_failslab+0x5/0x20 [ 1063.737429] kmem_cache_alloc+0x5b/0x310 [ 1063.737912] ? mark_held_locks+0x9e/0xe0 [ 1063.738403] create_object.isra.0+0x3a/0xa20 [ 1063.738931] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1063.739543] kmem_cache_alloc+0x159/0x310 [ 1063.740054] xas_alloc+0x336/0x440 [ 1063.740488] xas_create+0x34a/0x10d0 [ 1063.740949] ? kernel_text_address+0xf2/0x120 [ 1063.741483] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1063.742101] xas_store+0x8c/0x1c40 [ 1063.742539] __xa_store+0x164/0x2d0 [ 1063.742972] ? xa_delete_node+0x280/0x280 [ 1063.743470] ? trace_hardirqs_on+0x5b/0x180 [ 1063.743986] xa_store+0x31/0x50 [ 1063.744396] __io_uring_add_tctx_node+0x1cf/0x520 [ 1063.744972] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1063.745596] ? alloc_fd+0x2e7/0x670 [ 1063.746041] io_uring_setup+0x1fbb/0x2980 [ 1063.746541] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1063.747139] ? wait_for_completion_io+0x270/0x270 [ 1063.747728] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1063.748358] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1063.748970] do_syscall_64+0x33/0x40 [ 1063.749413] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1063.750016] RIP: 0033:0x7f106b311b19 [ 1063.750459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1063.752586] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1063.753483] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1063.754318] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1063.755155] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1063.755976] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1063.756798] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:41:13 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 1063.907188] loop5: detected capacity change from 0 to 41948160 01:41:27 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 62) 01:41:27 executing program 0: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:27 executing program 7: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:41:27 executing program 3: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 1077.182455] loop5: detected capacity change from 0 to 41948160 [ 1077.187638] FAULT_INJECTION: forcing a failure. [ 1077.187638] name failslab, interval 1, probability 0, space 0, times 0 [ 1077.189225] CPU: 0 PID: 10710 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1077.190188] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1077.191328] Call Trace: [ 1077.191693] dump_stack+0x107/0x167 [ 1077.192196] should_fail.cold+0x5/0xa [ 1077.192730] ? xas_alloc+0x336/0x440 [ 1077.193240] should_failslab+0x5/0x20 [ 1077.193760] kmem_cache_alloc+0x5b/0x310 [ 1077.194319] xas_alloc+0x336/0x440 [ 1077.194806] xas_create+0x34a/0x10d0 [ 1077.195319] ? kernel_text_address+0xf2/0x120 [ 1077.195950] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1077.196672] xas_store+0x8c/0x1c40 [ 1077.197165] __xa_store+0x164/0x2d0 [ 1077.197660] ? xa_delete_node+0x280/0x280 [ 1077.198230] ? trace_hardirqs_on+0x5b/0x180 [ 1077.198821] xa_store+0x31/0x50 [ 1077.199274] __io_uring_add_tctx_node+0x1cf/0x520 [ 1077.199947] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1077.200666] ? alloc_fd+0x2e7/0x670 [ 1077.201169] io_uring_setup+0x1fbb/0x2980 [ 1077.201741] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1077.202442] ? wait_for_completion_io+0x270/0x270 [ 1077.203117] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1077.203852] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1077.204568] do_syscall_64+0x33/0x40 [ 1077.205077] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1077.205786] RIP: 0033:0x7f106b311b19 [ 1077.206308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1077.209087] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1077.210163] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1077.211150] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1077.212130] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1077.213116] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1077.214091] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:41:27 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:41:27 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r2, 0x4c00, 0xffffffffffffffff) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, 0xffffffffffffffff, 0x0, 0x100000001) 01:41:27 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:41:27 executing program 4: socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1077.227974] loop6: detected capacity change from 0 to 41948160 01:41:27 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 63) 01:41:27 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1) [ 1077.474226] FAULT_INJECTION: forcing a failure. [ 1077.474226] name failslab, interval 1, probability 0, space 0, times 0 [ 1077.477031] CPU: 1 PID: 10866 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1077.478581] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1077.478975] FAULT_INJECTION: forcing a failure. [ 1077.478975] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1077.480650] Call Trace: [ 1077.480685] dump_stack+0x107/0x167 [ 1077.480712] should_fail.cold+0x5/0xa [ 1077.484634] ? create_object.isra.0+0x3a/0xa20 [ 1077.485727] should_failslab+0x5/0x20 [ 1077.486736] kmem_cache_alloc+0x5b/0x310 [ 1077.487734] ? mark_held_locks+0x9e/0xe0 [ 1077.488722] create_object.isra.0+0x3a/0xa20 [ 1077.489711] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1077.490899] kmem_cache_alloc+0x159/0x310 [ 1077.491834] xas_alloc+0x336/0x440 [ 1077.492698] xas_create+0x34a/0x10d0 [ 1077.493545] ? kernel_text_address+0xf2/0x120 [ 1077.494595] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1077.495775] xas_store+0x8c/0x1c40 [ 1077.496654] __xa_store+0x164/0x2d0 [ 1077.497479] ? xa_delete_node+0x280/0x280 [ 1077.498454] ? trace_hardirqs_on+0x5b/0x180 [ 1077.499429] xa_store+0x31/0x50 [ 1077.500187] __io_uring_add_tctx_node+0x1cf/0x520 [ 1077.501306] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1077.502500] ? alloc_fd+0x2e7/0x670 [ 1077.503328] io_uring_setup+0x1fbb/0x2980 [ 1077.504285] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1077.505461] ? wait_for_completion_io+0x270/0x270 [ 1077.506594] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1077.507774] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1077.508981] do_syscall_64+0x33/0x40 [ 1077.509818] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1077.510973] RIP: 0033:0x7f106b311b19 [ 1077.511812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1077.515977] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1077.517739] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1077.519353] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1077.521005] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1077.522619] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1077.524233] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1077.525916] CPU: 0 PID: 10884 Comm: syz-executor.3 Not tainted 5.10.240 #1 01:41:27 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x10) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r2, 0x4c00, r0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(0xffffffffffffffff, r0, 0x0, 0x100000001) [ 1077.526778] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1077.527951] Call Trace: [ 1077.528281] dump_stack+0x107/0x167 [ 1077.528710] should_fail.cold+0x5/0xa [ 1077.529181] _copy_from_user+0x2e/0x1b0 [ 1077.529641] copy_clone_args_from_user+0x147/0x790 [ 1077.530253] ? lock_acquire+0x197/0x470 [ 1077.530708] ? sighand_ctor+0x40/0x40 [ 1077.531174] ? find_held_lock+0x2c/0x110 [ 1077.531656] ? ksys_write+0x21a/0x260 [ 1077.532125] ? lock_downgrade+0x6d0/0x6d0 [ 1077.532610] __do_sys_clone3+0x9d/0x320 [ 1077.533063] ? __do_sys_clone+0x110/0x110 [ 1077.533539] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1077.534090] ? wait_for_completion_io+0x270/0x270 [ 1077.534643] ? rcu_read_lock_any_held+0x75/0xa0 [ 1077.535177] ? vfs_write+0x354/0xb10 [ 1077.535609] ? fput_many+0x2f/0x1a0 [ 1077.536024] ? ksys_write+0x1a9/0x260 [ 1077.536464] ? __ia32_sys_read+0xb0/0xb0 [ 1077.536935] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1077.537574] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1077.538165] ? trace_hardirqs_on+0x5b/0x180 [ 1077.538657] do_syscall_64+0x33/0x40 [ 1077.539087] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1077.539671] RIP: 0033:0x7f6c3a5c4b19 [ 1077.540094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1077.542200] RSP: 002b:00007f6c37b3a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1077.543073] RAX: ffffffffffffffda RBX: 00007f6c3a6d7f60 RCX: 00007f6c3a5c4b19 [ 1077.543894] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0 [ 1077.544724] RBP: 00007f6c37b3a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1077.545560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1077.546423] R13: 00007ffe6dcde8ef R14: 00007f6c37b3a300 R15: 0000000000022000 01:41:27 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:41:27 executing program 0: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1077.639912] loop5: detected capacity change from 0 to 41948160 01:41:43 executing program 7: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:43 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:41:43 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x10) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r2, 0x4c00, r0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(0xffffffffffffffff, r0, 0x0, 0x100000001) 01:41:43 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 64) 01:41:43 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:41:43 executing program 4: socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:43 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 2) [ 1092.874649] FAULT_INJECTION: forcing a failure. [ 1092.874649] name failslab, interval 1, probability 0, space 0, times 0 [ 1092.877115] CPU: 1 PID: 10951 Comm: syz-executor.3 Not tainted 5.10.240 #1 [ 1092.878591] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1092.880329] Call Trace: [ 1092.880907] dump_stack+0x107/0x167 [ 1092.881679] should_fail.cold+0x5/0xa [ 1092.882499] ? copy_process+0x3301/0x78b0 [ 1092.883375] should_failslab+0x5/0x20 [ 1092.884186] kmem_cache_alloc_node+0x55/0x330 [ 1092.885148] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1092.886254] copy_process+0x3301/0x78b0 [ 1092.887102] ? mark_lock+0xf5/0x2df0 [ 1092.887894] ? lock_acquire+0x197/0x470 [ 1092.888739] ? find_held_lock+0x2c/0x110 [ 1092.889609] ? __cleanup_sighand+0xb0/0xb0 [ 1092.890526] ? _copy_from_user+0xfb/0x1b0 [ 1092.891411] kernel_clone+0xe7/0x980 [ 1092.892212] ? lock_acquire+0x197/0x470 [ 1092.893058] ? create_io_thread+0xf0/0xf0 [ 1092.893941] ? ksys_write+0x21a/0x260 [ 1092.894752] ? lock_downgrade+0x6d0/0x6d0 [ 1092.895640] __do_sys_clone3+0x1e5/0x320 [ 1092.896506] ? __do_sys_clone+0x110/0x110 [ 1092.897424] ? rcu_read_lock_any_held+0x75/0xa0 [ 1092.898413] ? vfs_write+0x354/0xb10 [ 1092.899202] ? fput_many+0x2f/0x1a0 [ 1092.899972] ? ksys_write+0x1a9/0x260 [ 1092.900781] ? __ia32_sys_read+0xb0/0xb0 [ 1092.901663] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1092.902784] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1092.903869] ? trace_hardirqs_on+0x5b/0x180 [ 1092.904797] do_syscall_64+0x33/0x40 [ 1092.905593] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1092.906685] RIP: 0033:0x7f6c3a5c4b19 [ 1092.907465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1092.911429] RSP: 002b:00007f6c37b3a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1092.913062] RAX: ffffffffffffffda RBX: 00007f6c3a6d7f60 RCX: 00007f6c3a5c4b19 [ 1092.914579] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0 [ 1092.916093] RBP: 00007f6c37b3a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1092.917620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1092.919135] R13: 00007ffe6dcde8ef R14: 00007f6c37b3a300 R15: 0000000000022000 01:41:43 executing program 0: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1092.942174] FAULT_INJECTION: forcing a failure. [ 1092.942174] name failslab, interval 1, probability 0, space 0, times 0 [ 1092.942364] loop5: detected capacity change from 0 to 41948160 [ 1092.944603] CPU: 1 PID: 10963 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1092.947449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1092.949199] Call Trace: [ 1092.949756] dump_stack+0x107/0x167 [ 1092.950525] should_fail.cold+0x5/0xa [ 1092.951339] ? create_object.isra.0+0x3a/0xa20 [ 1092.952295] should_failslab+0x5/0x20 [ 1092.953109] kmem_cache_alloc+0x5b/0x310 [ 1092.953967] ? mark_held_locks+0x9e/0xe0 [ 1092.954828] create_object.isra.0+0x3a/0xa20 [ 1092.955755] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1092.956850] kmem_cache_alloc+0x159/0x310 [ 1092.957728] xas_alloc+0x336/0x440 [ 1092.958482] xas_create+0x34a/0x10d0 [ 1092.959283] ? kernel_text_address+0xf2/0x120 [ 1092.960236] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1092.961363] xas_store+0x8c/0x1c40 [ 1092.962130] __xa_store+0x164/0x2d0 [ 1092.962898] ? xa_delete_node+0x280/0x280 [ 1092.963777] ? trace_hardirqs_on+0x5b/0x180 [ 1092.964695] xa_store+0x31/0x50 [ 1092.965408] __io_uring_add_tctx_node+0x1cf/0x520 [ 1092.966427] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1092.967526] ? alloc_fd+0x2e7/0x670 [ 1092.968305] io_uring_setup+0x1fbb/0x2980 [ 1092.969195] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1092.970257] ? wait_for_completion_io+0x270/0x270 [ 1092.971298] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1092.972407] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1092.973504] do_syscall_64+0x33/0x40 [ 1092.974285] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1092.975363] RIP: 0033:0x7f106b311b19 [ 1092.976145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1092.980017] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1092.981629] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1092.983125] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1092.984621] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1092.986122] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1092.987619] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:41:43 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x10) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r2, 0x4c00, r0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(0xffffffffffffffff, r0, 0x0, 0x100000001) [ 1093.030921] loop6: detected capacity change from 0 to 41948160 [ 1093.053300] FAT-fs (loop6): Unrecognized mount option "user.incfs.size" or missing value 01:41:43 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 3) 01:41:43 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 1093.158231] loop5: detected capacity change from 0 to 41948160 01:41:43 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:41:43 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1093.254063] FAULT_INJECTION: forcing a failure. [ 1093.254063] name failslab, interval 1, probability 0, space 0, times 0 [ 1093.256603] CPU: 1 PID: 11179 Comm: syz-executor.3 Not tainted 5.10.240 #1 [ 1093.257995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1093.259637] Call Trace: [ 1093.260190] dump_stack+0x107/0x167 [ 1093.260931] should_fail.cold+0x5/0xa [ 1093.261694] ? create_object.isra.0+0x3a/0xa20 [ 1093.262609] should_failslab+0x5/0x20 [ 1093.263371] kmem_cache_alloc+0x5b/0x310 [ 1093.264186] create_object.isra.0+0x3a/0xa20 [ 1093.265076] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1093.266081] kmem_cache_alloc_node+0x169/0x330 [ 1093.266997] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1093.268044] copy_process+0x3301/0x78b0 [ 1093.268850] ? mark_lock+0xf5/0x2df0 [ 1093.269610] ? lock_acquire+0x197/0x470 [ 1093.270397] ? find_held_lock+0x2c/0x110 [ 1093.271214] ? __cleanup_sighand+0xb0/0xb0 [ 1093.272080] ? _copy_from_user+0xfb/0x1b0 [ 1093.272915] kernel_clone+0xe7/0x980 [ 1093.273656] ? lock_acquire+0x197/0x470 [ 1093.274451] ? create_io_thread+0xf0/0xf0 [ 1093.275292] ? ksys_write+0x21a/0x260 [ 1093.276045] ? lock_downgrade+0x6d0/0x6d0 [ 1093.276878] __do_sys_clone3+0x1e5/0x320 [ 1093.277688] ? __do_sys_clone+0x110/0x110 [ 1093.278528] ? rcu_read_lock_any_held+0x75/0xa0 [ 1093.279439] ? vfs_write+0x354/0xb10 [ 1093.280166] ? fput_many+0x2f/0x1a0 [ 1093.280893] ? ksys_write+0x1a9/0x260 [ 1093.281646] ? __ia32_sys_read+0xb0/0xb0 [ 1093.282450] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1093.283475] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1093.284501] ? trace_hardirqs_on+0x5b/0x180 [ 1093.285349] do_syscall_64+0x33/0x40 [ 1093.286083] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1093.287088] RIP: 0033:0x7f6c3a5c4b19 [ 1093.287824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1093.291450] RSP: 002b:00007f6c37b3a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1093.292960] RAX: ffffffffffffffda RBX: 00007f6c3a6d7f60 RCX: 00007f6c3a5c4b19 [ 1093.294369] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0 [ 1093.295769] RBP: 00007f6c37b3a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1093.297172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1093.298731] R13: 00007ffe6dcde8ef R14: 00007f6c37b3a300 R15: 0000000000022000 [ 1093.314918] loop7: detected capacity change from 0 to 41948160 01:41:43 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 65) 01:41:43 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:43 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) [ 1093.459552] FAULT_INJECTION: forcing a failure. [ 1093.459552] name failslab, interval 1, probability 0, space 0, times 0 [ 1093.461783] CPU: 1 PID: 11189 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1093.463032] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1093.464508] Call Trace: [ 1093.464990] dump_stack+0x107/0x167 [ 1093.465639] should_fail.cold+0x5/0xa [ 1093.466321] ? create_object.isra.0+0x3a/0xa20 [ 1093.467127] should_failslab+0x5/0x20 [ 1093.467803] kmem_cache_alloc+0x5b/0x310 [ 1093.468528] ? mark_held_locks+0x9e/0xe0 [ 1093.469261] create_object.isra.0+0x3a/0xa20 [ 1093.470040] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1093.470944] kmem_cache_alloc+0x159/0x310 [ 1093.471688] xas_alloc+0x336/0x440 [ 1093.472323] xas_create+0x34a/0x10d0 [ 1093.473013] ? kernel_text_address+0xf2/0x120 [ 1093.473816] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1093.474755] xas_store+0x8c/0x1c40 [ 1093.475400] __xa_store+0x164/0x2d0 [ 1093.476050] ? xa_delete_node+0x280/0x280 [ 1093.476808] ? trace_hardirqs_on+0x5b/0x180 [ 1093.477586] xa_store+0x31/0x50 [ 1093.478175] __io_uring_add_tctx_node+0x1cf/0x520 [ 1093.479025] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1093.479960] ? alloc_fd+0x2e7/0x670 [ 1093.480622] io_uring_setup+0x1fbb/0x2980 [ 1093.481383] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1093.482276] ? wait_for_completion_io+0x270/0x270 [ 1093.483142] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1093.484070] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1093.484991] do_syscall_64+0x33/0x40 [ 1093.485647] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1093.486548] RIP: 0033:0x7f106b311b19 [ 1093.487201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1093.490448] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1093.491777] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1093.493025] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1093.494281] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1093.495531] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1093.496788] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:41:43 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, 0x0, 0xffffffffffffff2f, 0x2) [ 1093.542029] loop5: detected capacity change from 0 to 41948160 01:41:44 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:44 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 4) 01:41:44 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 66) 01:41:44 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:44 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) [ 1093.832080] FAULT_INJECTION: forcing a failure. [ 1093.832080] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1093.833732] CPU: 1 PID: 11305 Comm: syz-executor.3 Not tainted 5.10.240 #1 [ 1093.834670] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1093.835827] Call Trace: [ 1093.836196] dump_stack+0x107/0x167 [ 1093.836689] should_fail.cold+0x5/0xa [ 1093.837226] __alloc_pages_nodemask+0x182/0x600 [ 1093.837859] ? lock_downgrade+0x6d0/0x6d0 [ 1093.838423] ? __alloc_pages_slowpath.constprop.0+0x2200/0x2200 [ 1093.839272] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1093.839974] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1093.840614] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1093.841341] copy_process+0x62b/0x78b0 [ 1093.841887] ? mark_lock+0xf5/0x2df0 [ 1093.842394] ? lock_acquire+0x197/0x470 [ 1093.842935] ? find_held_lock+0x2c/0x110 [ 1093.843491] ? __cleanup_sighand+0xb0/0xb0 [ 1093.844069] ? _copy_from_user+0xfb/0x1b0 [ 1093.844642] kernel_clone+0xe7/0x980 [ 1093.845152] ? lock_acquire+0x197/0x470 [ 1093.845691] ? create_io_thread+0xf0/0xf0 [ 1093.846268] ? ksys_write+0x21a/0x260 [ 1093.846781] ? lock_downgrade+0x6d0/0x6d0 [ 1093.847360] __do_sys_clone3+0x1e5/0x320 [ 1093.847909] ? __do_sys_clone+0x110/0x110 [ 1093.848485] ? rcu_read_lock_any_held+0x75/0xa0 [ 1093.849117] ? vfs_write+0x354/0xb10 [ 1093.849624] ? fput_many+0x2f/0x1a0 [ 1093.850116] ? ksys_write+0x1a9/0x260 [ 1093.850635] ? __ia32_sys_read+0xb0/0xb0 [ 1093.851182] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1093.851894] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1093.852583] ? trace_hardirqs_on+0x5b/0x180 [ 1093.853206] do_syscall_64+0x33/0x40 [ 1093.853704] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1093.854397] RIP: 0033:0x7f6c3a5c4b19 [ 1093.854908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1093.857370] RSP: 002b:00007f6c37b3a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1093.858391] RAX: ffffffffffffffda RBX: 00007f6c3a6d7f60 RCX: 00007f6c3a5c4b19 [ 1093.859349] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0 [ 1093.860303] RBP: 00007f6c37b3a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1093.861257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1093.862214] R13: 00007ffe6dcde8ef R14: 00007f6c37b3a300 R15: 0000000000022000 [ 1093.896831] loop6: detected capacity change from 0 to 41948160 [ 1093.977092] FAULT_INJECTION: forcing a failure. [ 1093.977092] name failslab, interval 1, probability 0, space 0, times 0 [ 1093.979807] CPU: 0 PID: 11360 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1093.981344] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1093.983115] Call Trace: [ 1093.983690] dump_stack+0x107/0x167 [ 1093.984459] should_fail.cold+0x5/0xa [ 1093.985275] ? xas_alloc+0x336/0x440 [ 1093.986064] should_failslab+0x5/0x20 [ 1093.986860] kmem_cache_alloc+0x5b/0x310 [ 1093.987717] xas_alloc+0x336/0x440 [ 1093.988461] xas_create+0x34a/0x10d0 [ 1093.989255] ? kernel_text_address+0xf2/0x120 [ 1093.990198] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1093.991295] xas_store+0x8c/0x1c40 [ 1093.992048] __xa_store+0x164/0x2d0 [ 1093.992821] ? xa_delete_node+0x280/0x280 [ 1093.993691] ? trace_hardirqs_on+0x5b/0x180 [ 1093.994595] xa_store+0x31/0x50 [ 1093.995287] __io_uring_add_tctx_node+0x1cf/0x520 [ 1093.996292] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1093.997409] ? alloc_fd+0x2e7/0x670 [ 1093.998188] io_uring_setup+0x1fbb/0x2980 [ 1093.999059] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1094.000125] ? tick_program_event+0xa8/0x140 [ 1094.001074] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.002170] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.003251] do_syscall_64+0x33/0x40 [ 1094.004030] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.005108] RIP: 0033:0x7f106b311b19 [ 1094.005894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.009722] RSP: 002b:00007f1068866108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1094.011316] RAX: ffffffffffffffda RBX: 00007f106b425020 RCX: 00007f106b311b19 [ 1094.012809] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1094.014286] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1094.015771] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1094.017258] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:41:44 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 5) 01:41:44 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, 0x0, 0xffffffffffffff2f, 0x2) [ 1094.122527] FAULT_INJECTION: forcing a failure. [ 1094.122527] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.124989] CPU: 0 PID: 11474 Comm: syz-executor.3 Not tainted 5.10.240 #1 [ 1094.126471] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.128143] Call Trace: [ 1094.128677] dump_stack+0x107/0x167 [ 1094.129425] should_fail.cold+0x5/0xa [ 1094.130192] ? prepare_creds+0x25/0x5e0 [ 1094.130990] should_failslab+0x5/0x20 [ 1094.131734] kmem_cache_alloc+0x5b/0x310 [ 1094.132538] ? lock_downgrade+0x6d0/0x6d0 [ 1094.133367] prepare_creds+0x25/0x5e0 [ 1094.134129] copy_creds+0x72/0x580 [ 1094.134841] copy_process+0xfef/0x78b0 [ 1094.135617] ? mark_lock+0xf5/0x2df0 [ 1094.136360] ? lock_acquire+0x197/0x470 [ 1094.137192] ? find_held_lock+0x2c/0x110 [ 1094.138001] ? __cleanup_sighand+0xb0/0xb0 [ 1094.138855] ? _copy_from_user+0xfb/0x1b0 [ 1094.139732] kernel_clone+0xe7/0x980 [ 1094.140472] ? lock_acquire+0x197/0x470 [ 1094.141263] ? create_io_thread+0xf0/0xf0 [ 1094.142096] ? ksys_write+0x21a/0x260 [ 1094.142847] ? lock_downgrade+0x6d0/0x6d0 [ 1094.143672] __do_sys_clone3+0x1e5/0x320 [ 1094.144469] ? __do_sys_clone+0x110/0x110 [ 1094.145317] ? rcu_read_lock_any_held+0x75/0xa0 [ 1094.146226] ? vfs_write+0x354/0xb10 [ 1094.146946] ? fput_many+0x2f/0x1a0 [ 1094.147655] ? ksys_write+0x1a9/0x260 [ 1094.148403] ? __ia32_sys_read+0xb0/0xb0 [ 1094.149207] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.150232] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.151224] ? trace_hardirqs_on+0x5b/0x180 [ 1094.152062] do_syscall_64+0x33/0x40 [ 1094.152794] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.153789] RIP: 0033:0x7f6c3a5c4b19 [ 1094.154512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.158092] RSP: 002b:00007f6c37b3a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1094.159563] RAX: ffffffffffffffda RBX: 00007f6c3a6d7f60 RCX: 00007f6c3a5c4b19 [ 1094.160947] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0 [ 1094.162342] RBP: 00007f6c37b3a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1094.163722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1094.165118] R13: 00007ffe6dcde8ef R14: 00007f6c37b3a300 R15: 0000000000022000 01:41:44 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:41:44 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:44 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:41:44 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 6) [ 1094.297575] loop7: detected capacity change from 0 to 41948160 [ 1094.314081] FAULT_INJECTION: forcing a failure. [ 1094.314081] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.315454] CPU: 1 PID: 11530 Comm: syz-executor.3 Not tainted 5.10.240 #1 [ 1094.316260] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.317221] Call Trace: [ 1094.317531] dump_stack+0x107/0x167 [ 1094.317945] should_fail.cold+0x5/0xa [ 1094.318393] ? create_object.isra.0+0x3a/0xa20 [ 1094.318925] should_failslab+0x5/0x20 [ 1094.319364] kmem_cache_alloc+0x5b/0x310 [ 1094.319828] create_object.isra.0+0x3a/0xa20 [ 1094.320335] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1094.320933] kmem_cache_alloc+0x159/0x310 [ 1094.321427] prepare_creds+0x25/0x5e0 [ 1094.321876] copy_creds+0x72/0x580 [ 1094.322388] copy_process+0xfef/0x78b0 [ 1094.322965] ? mark_lock+0xf5/0x2df0 [ 1094.323504] ? lock_acquire+0x197/0x470 [ 1094.324082] ? find_held_lock+0x2c/0x110 [ 1094.324684] ? __cleanup_sighand+0xb0/0xb0 [ 1094.325224] ? _copy_from_user+0xfb/0x1b0 [ 1094.325693] kernel_clone+0xe7/0x980 [ 1094.326118] ? lock_acquire+0x197/0x470 [ 1094.326570] ? create_io_thread+0xf0/0xf0 [ 1094.327051] ? ksys_write+0x21a/0x260 [ 1094.327478] ? lock_downgrade+0x6d0/0x6d0 [ 1094.327948] __do_sys_clone3+0x1e5/0x320 [ 1094.328406] ? __do_sys_clone+0x110/0x110 [ 1094.328895] ? rcu_read_lock_any_held+0x75/0xa0 [ 1094.329417] ? vfs_write+0x354/0xb10 [ 1094.329835] ? fput_many+0x2f/0x1a0 [ 1094.330241] ? ksys_write+0x1a9/0x260 [ 1094.330671] ? __ia32_sys_read+0xb0/0xb0 [ 1094.331127] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.331719] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.332291] ? trace_hardirqs_on+0x5b/0x180 [ 1094.332791] do_syscall_64+0x33/0x40 [ 1094.333212] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.333792] RIP: 0033:0x7f6c3a5c4b19 [ 1094.334211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.336285] RSP: 002b:00007f6c37b3a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1094.337165] RAX: ffffffffffffffda RBX: 00007f6c3a6d7f60 RCX: 00007f6c3a5c4b19 [ 1094.337980] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0 [ 1094.338806] RBP: 00007f6c37b3a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1094.339623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1094.340437] R13: 00007ffe6dcde8ef R14: 00007f6c37b3a300 R15: 0000000000022000 01:41:44 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, 0x0, 0xffffffffffffff2f, 0x2) 01:41:44 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 67) [ 1094.380352] FAULT_INJECTION: forcing a failure. [ 1094.380352] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.381816] CPU: 1 PID: 11559 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1094.382630] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.383608] Call Trace: [ 1094.383928] dump_stack+0x107/0x167 [ 1094.384366] should_fail.cold+0x5/0xa [ 1094.384828] ? xas_alloc+0x336/0x440 [ 1094.385271] should_failslab+0x5/0x20 [ 1094.385735] kmem_cache_alloc+0x5b/0x310 [ 1094.386232] xas_alloc+0x336/0x440 [ 1094.386661] xas_create+0x34a/0x10d0 [ 1094.387120] ? kernel_text_address+0xf2/0x120 [ 1094.387667] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1094.388297] xas_store+0x8c/0x1c40 [ 1094.388742] __xa_store+0x164/0x2d0 [ 1094.389191] ? xa_delete_node+0x280/0x280 [ 1094.389692] ? trace_hardirqs_on+0x5b/0x180 [ 1094.390211] xa_store+0x31/0x50 [ 1094.390608] __io_uring_add_tctx_node+0x1cf/0x520 [ 1094.391175] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1094.391791] ? alloc_fd+0x2e7/0x670 [ 1094.392233] io_uring_setup+0x1fbb/0x2980 [ 1094.392744] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1094.393339] ? wait_for_completion_io+0x270/0x270 [ 1094.393940] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.394567] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.395177] do_syscall_64+0x33/0x40 [ 1094.395616] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.396216] RIP: 0033:0x7f106b311b19 [ 1094.396662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.398785] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1094.399670] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1094.400501] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1094.401333] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1094.402158] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1094.402980] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:42:01 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 7) 01:42:01 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:42:01 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 68) 01:42:01 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:01 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040), 0xffffffffffffff2f, 0x2) 01:42:01 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:01 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:42:01 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) [ 1111.614086] loop6: detected capacity change from 0 to 41948160 [ 1111.642345] FAULT_INJECTION: forcing a failure. [ 1111.642345] name failslab, interval 1, probability 0, space 0, times 0 [ 1111.645684] CPU: 0 PID: 11749 Comm: syz-executor.3 Not tainted 5.10.240 #1 [ 1111.647324] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1111.649277] Call Trace: [ 1111.649896] dump_stack+0x107/0x167 [ 1111.650742] should_fail.cold+0x5/0xa [ 1111.651627] ? security_prepare_creds+0x112/0x190 [ 1111.652743] should_failslab+0x5/0x20 [ 1111.653638] __kmalloc+0x72/0x390 [ 1111.654445] security_prepare_creds+0x112/0x190 [ 1111.655527] prepare_creds+0x452/0x5e0 [ 1111.656427] copy_creds+0x72/0x580 [ 1111.657264] copy_process+0xfef/0x78b0 [ 1111.658170] ? mark_lock+0xf5/0x2df0 [ 1111.659037] ? lock_acquire+0x197/0x470 [ 1111.659952] ? find_held_lock+0x2c/0x110 [ 1111.660896] ? __cleanup_sighand+0xb0/0xb0 [ 1111.661898] ? _copy_from_user+0xfb/0x1b0 [ 1111.662858] kernel_clone+0xe7/0x980 [ 1111.663714] ? lock_acquire+0x197/0x470 [ 1111.664628] ? create_io_thread+0xf0/0xf0 [ 1111.665604] ? ksys_write+0x21a/0x260 [ 1111.666482] ? lock_downgrade+0x6d0/0x6d0 [ 1111.667436] __do_sys_clone3+0x1e5/0x320 [ 1111.668367] ? __do_sys_clone+0x110/0x110 [ 1111.669346] ? rcu_read_lock_any_held+0x75/0xa0 [ 1111.670415] ? vfs_write+0x354/0xb10 [ 1111.671272] ? fput_many+0x2f/0x1a0 [ 1111.672111] ? ksys_write+0x1a9/0x260 [ 1111.672996] ? __ia32_sys_read+0xb0/0xb0 [ 1111.673936] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1111.675146] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1111.676326] ? trace_hardirqs_on+0x5b/0x180 [ 1111.677327] do_syscall_64+0x33/0x40 [ 1111.678204] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1111.679385] RIP: 0033:0x7f6c3a5c4b19 [ 1111.680252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1111.684510] RSP: 002b:00007f6c37b3a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1111.686283] RAX: ffffffffffffffda RBX: 00007f6c3a6d7f60 RCX: 00007f6c3a5c4b19 [ 1111.687931] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0 [ 1111.689591] RBP: 00007f6c37b3a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1111.691244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1111.692894] R13: 00007ffe6dcde8ef R14: 00007f6c37b3a300 R15: 0000000000022000 [ 1111.739008] loop7: detected capacity change from 0 to 41948160 [ 1111.753506] FAULT_INJECTION: forcing a failure. [ 1111.753506] name failslab, interval 1, probability 0, space 0, times 0 [ 1111.755975] CPU: 1 PID: 11769 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1111.757500] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1111.759310] Call Trace: [ 1111.759889] dump_stack+0x107/0x167 [ 1111.760679] should_fail.cold+0x5/0xa [ 1111.761515] ? xas_alloc+0x336/0x440 [ 1111.762318] should_failslab+0x5/0x20 [ 1111.763143] kmem_cache_alloc+0x5b/0x310 [ 1111.764028] xas_alloc+0x336/0x440 [ 1111.764802] xas_create+0x34a/0x10d0 [ 1111.765626] ? kernel_text_address+0xf2/0x120 [ 1111.766599] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1111.767735] xas_store+0x8c/0x1c40 [ 1111.768517] __xa_store+0x164/0x2d0 [ 1111.769317] ? xa_delete_node+0x280/0x280 [ 1111.770223] ? trace_hardirqs_on+0x5b/0x180 [ 1111.771162] xa_store+0x31/0x50 [ 1111.771881] __io_uring_add_tctx_node+0x1cf/0x520 [ 1111.772929] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1111.774067] ? alloc_fd+0x2e7/0x670 [ 1111.774866] io_uring_setup+0x1fbb/0x2980 [ 1111.775775] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1111.776871] ? wait_for_completion_io+0x270/0x270 [ 1111.777942] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1111.779078] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1111.780202] do_syscall_64+0x33/0x40 [ 1111.781018] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1111.782134] RIP: 0033:0x7f106b311b19 [ 1111.782946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1111.786946] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1111.788607] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1111.790175] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1111.791741] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1111.793307] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1111.794868] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1111.835596] loop5: detected capacity change from 0 to 41948160 01:42:02 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040), 0xffffffffffffff2f, 0x2) 01:42:02 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 8) 01:42:02 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:02 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 69) 01:42:02 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1112.115823] FAULT_INJECTION: forcing a failure. [ 1112.115823] name failslab, interval 1, probability 0, space 0, times 0 [ 1112.118615] CPU: 1 PID: 11979 Comm: syz-executor.3 Not tainted 5.10.240 #1 [ 1112.120296] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1112.122213] Call Trace: [ 1112.122932] dump_stack+0x107/0x167 [ 1112.123766] should_fail.cold+0x5/0xa [ 1112.124597] ? create_object.isra.0+0x3a/0xa20 [ 1112.125593] should_failslab+0x5/0x20 [ 1112.126416] kmem_cache_alloc+0x5b/0x310 [ 1112.127302] create_object.isra.0+0x3a/0xa20 [ 1112.128253] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1112.129361] __kmalloc+0x16e/0x390 [ 1112.130138] security_prepare_creds+0x112/0x190 [ 1112.131149] prepare_creds+0x452/0x5e0 [ 1112.131990] copy_creds+0x72/0x580 [ 1112.132763] copy_process+0xfef/0x78b0 [ 1112.133622] ? mark_lock+0xf5/0x2df0 [ 1112.134437] ? lock_acquire+0x197/0x470 [ 1112.135295] ? find_held_lock+0x2c/0x110 [ 1112.136180] ? __cleanup_sighand+0xb0/0xb0 [ 1112.137116] ? _copy_from_user+0xfb/0x1b0 [ 1112.138017] kernel_clone+0xe7/0x980 [ 1112.138821] ? lock_acquire+0x197/0x470 [ 1112.139676] ? create_io_thread+0xf0/0xf0 [ 1112.140584] ? ksys_write+0x21a/0x260 [ 1112.141413] ? lock_downgrade+0x6d0/0x6d0 [ 1112.142309] __do_sys_clone3+0x1e5/0x320 [ 1112.143186] ? __do_sys_clone+0x110/0x110 [ 1112.144097] ? rcu_read_lock_any_held+0x75/0xa0 [ 1112.145106] ? vfs_write+0x354/0xb10 [ 1112.145909] ? fput_many+0x2f/0x1a0 [ 1112.146695] ? ksys_write+0x1a9/0x260 [ 1112.147518] ? __ia32_sys_read+0xb0/0xb0 [ 1112.148399] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1112.149545] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1112.150635] ? trace_hardirqs_on+0x5b/0x180 [ 1112.151542] do_syscall_64+0x33/0x40 [ 1112.152328] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1112.153411] RIP: 0033:0x7f6c3a5c4b19 [ 1112.154196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1112.158089] RSP: 002b:00007f6c37b3a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1112.159697] RAX: ffffffffffffffda RBX: 00007f6c3a6d7f60 RCX: 00007f6c3a5c4b19 [ 1112.161211] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0 [ 1112.162699] RBP: 00007f6c37b3a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1112.164191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1112.165686] R13: 00007ffe6dcde8ef R14: 00007f6c37b3a300 R15: 0000000000022000 01:42:02 executing program 4: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1112.237414] FAULT_INJECTION: forcing a failure. [ 1112.237414] name failslab, interval 1, probability 0, space 0, times 0 [ 1112.240308] CPU: 1 PID: 11983 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1112.242163] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1112.243958] Call Trace: [ 1112.244502] dump_stack+0x107/0x167 [ 1112.245267] should_fail.cold+0x5/0xa [ 1112.246037] ? create_object.isra.0+0x3a/0xa20 [ 1112.246963] should_failslab+0x5/0x20 [ 1112.247736] kmem_cache_alloc+0x5b/0x310 [ 1112.248560] ? mark_held_locks+0x9e/0xe0 [ 1112.249403] create_object.isra.0+0x3a/0xa20 [ 1112.250295] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1112.251315] kmem_cache_alloc+0x159/0x310 [ 1112.252158] xas_alloc+0x336/0x440 [ 1112.252871] xas_create+0x34a/0x10d0 [ 1112.253657] ? kernel_text_address+0xf2/0x120 [ 1112.254557] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1112.255605] xas_store+0x8c/0x1c40 [ 1112.256336] __xa_store+0x164/0x2d0 [ 1112.257076] ? xa_delete_node+0x280/0x280 [ 1112.257909] ? trace_hardirqs_on+0x5b/0x180 [ 1112.258792] xa_store+0x31/0x50 [ 1112.259452] __io_uring_add_tctx_node+0x1cf/0x520 [ 1112.260424] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1112.261486] ? alloc_fd+0x2e7/0x670 [ 1112.262233] io_uring_setup+0x1fbb/0x2980 [ 1112.263075] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1112.264093] ? wait_for_completion_io+0x270/0x270 [ 1112.265091] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1112.266151] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1112.267187] do_syscall_64+0x33/0x40 [ 1112.267930] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1112.268951] RIP: 0033:0x7f106b311b19 [ 1112.269707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1112.273387] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1112.274901] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1112.276337] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1112.277765] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1112.279180] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1112.280590] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:42:02 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040), 0xffffffffffffff2f, 0x2) 01:42:02 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 70) 01:42:02 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 9) [ 1112.548984] FAULT_INJECTION: forcing a failure. [ 1112.548984] name failslab, interval 1, probability 0, space 0, times 0 [ 1112.551640] CPU: 0 PID: 12185 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1112.553217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1112.555095] Call Trace: [ 1112.555695] dump_stack+0x107/0x167 [ 1112.556519] should_fail.cold+0x5/0xa [ 1112.557394] ? xas_alloc+0x336/0x440 [ 1112.558234] should_failslab+0x5/0x20 [ 1112.559093] kmem_cache_alloc+0x5b/0x310 [ 1112.560019] xas_alloc+0x336/0x440 [ 1112.560921] xas_create+0x34a/0x10d0 [ 1112.561782] ? kernel_text_address+0xf2/0x120 [ 1112.562809] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1112.564007] xas_store+0x8c/0x1c40 [ 1112.564830] __xa_store+0x164/0x2d0 [ 1112.565665] ? xa_delete_node+0x280/0x280 [ 1112.566610] ? trace_hardirqs_on+0x5b/0x180 [ 1112.567600] xa_store+0x31/0x50 [ 1112.568350] __io_uring_add_tctx_node+0x1cf/0x520 [ 1112.569456] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1112.570640] ? alloc_fd+0x2e7/0x670 [ 1112.571475] io_uring_setup+0x1fbb/0x2980 [ 1112.572424] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1112.573580] ? wait_for_completion_io+0x270/0x270 [ 1112.574695] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1112.575887] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1112.577066] do_syscall_64+0x33/0x40 [ 1112.577910] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1112.579071] RIP: 0033:0x7f106b311b19 [ 1112.579914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1112.584107] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1112.585841] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1112.587461] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1112.589102] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1112.590724] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1112.592346] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1112.658794] FAULT_INJECTION: forcing a failure. [ 1112.658794] name failslab, interval 1, probability 0, space 0, times 0 [ 1112.661432] CPU: 0 PID: 12197 Comm: syz-executor.3 Not tainted 5.10.240 #1 [ 1112.663018] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1112.664917] Call Trace: [ 1112.665527] dump_stack+0x107/0x167 [ 1112.666361] should_fail.cold+0x5/0xa [ 1112.667228] ? create_object.isra.0+0x3a/0xa20 [ 1112.668272] should_failslab+0x5/0x20 [ 1112.669147] kmem_cache_alloc+0x5b/0x310 [ 1112.670076] create_object.isra.0+0x3a/0xa20 [ 1112.671078] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1112.672241] kmem_cache_alloc+0x159/0x310 [ 1112.673207] prepare_creds+0x25/0x5e0 [ 1112.674073] copy_creds+0x72/0x580 [ 1112.674887] copy_process+0xfef/0x78b0 [ 1112.675750] ? mark_lock+0xf5/0x2df0 [ 1112.676598] ? lock_acquire+0x197/0x470 [ 1112.677508] ? find_held_lock+0x2c/0x110 [ 1112.678435] ? __cleanup_sighand+0xb0/0xb0 [ 1112.679411] ? _copy_from_user+0xfb/0x1b0 [ 1112.680359] kernel_clone+0xe7/0x980 [ 1112.681211] ? lock_acquire+0x197/0x470 [ 1112.682107] ? create_io_thread+0xf0/0xf0 [ 1112.683056] ? ksys_write+0x21a/0x260 [ 1112.683918] ? lock_downgrade+0x6d0/0x6d0 [ 1112.684860] __do_sys_clone3+0x1e5/0x320 [ 1112.685789] ? __do_sys_clone+0x110/0x110 [ 1112.686748] ? rcu_read_lock_any_held+0x75/0xa0 [ 1112.687797] ? vfs_write+0x354/0xb10 [ 1112.688638] ? fput_many+0x2f/0x1a0 [ 1112.689466] ? ksys_write+0x1a9/0x260 [ 1112.690328] ? __ia32_sys_read+0xb0/0xb0 [ 1112.691247] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1112.692436] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1112.693607] ? trace_hardirqs_on+0x5b/0x180 [ 1112.694584] do_syscall_64+0x33/0x40 [ 1112.695423] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1112.696583] RIP: 0033:0x7f6c3a5c4b19 [ 1112.697428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1112.701606] RSP: 002b:00007f6c37b3a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1112.703341] RAX: ffffffffffffffda RBX: 00007f6c3a6d7f60 RCX: 00007f6c3a5c4b19 [ 1112.704972] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0 [ 1112.706595] RBP: 00007f6c37b3a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1112.708226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1112.709851] R13: 00007ffe6dcde8ef R14: 00007f6c37b3a300 R15: 0000000000022000 01:42:16 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:16 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 10) 01:42:16 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 71) 01:42:16 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:42:16 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0x0, 0x2) 01:42:16 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:16 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) [ 1125.855440] loop7: detected capacity change from 0 to 41948160 [ 1125.866357] FAULT_INJECTION: forcing a failure. [ 1125.866357] name failslab, interval 1, probability 0, space 0, times 0 [ 1125.868938] CPU: 0 PID: 12213 Comm: syz-executor.3 Not tainted 5.10.240 #1 [ 1125.870494] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1125.872364] Call Trace: [ 1125.872964] dump_stack+0x107/0x167 [ 1125.873803] should_fail.cold+0x5/0xa [ 1125.874666] ? create_object.isra.0+0x3a/0xa20 [ 1125.875695] should_failslab+0x5/0x20 [ 1125.876552] kmem_cache_alloc+0x5b/0x310 [ 1125.877541] create_object.isra.0+0x3a/0xa20 [ 1125.878538] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1125.879689] kmem_cache_alloc+0x159/0x310 [ 1125.880620] ? prepare_creds+0x466/0x5e0 [ 1125.881550] __delayacct_tsk_init+0x1b/0x80 [ 1125.882560] copy_process+0x3395/0x78b0 [ 1125.883456] ? mark_lock+0xf5/0x2df0 [ 1125.884296] ? lock_acquire+0x197/0x470 [ 1125.885196] ? find_held_lock+0x2c/0x110 [ 1125.886119] ? __cleanup_sighand+0xb0/0xb0 [ 1125.887095] ? _copy_from_user+0xfb/0x1b0 [ 1125.888031] kernel_clone+0xe7/0x980 [ 1125.888868] ? lock_acquire+0x197/0x470 [ 1125.889767] ? create_io_thread+0xf0/0xf0 [ 1125.890713] ? ksys_write+0x21a/0x260 [ 1125.891568] ? lock_downgrade+0x6d0/0x6d0 [ 1125.892504] __do_sys_clone3+0x1e5/0x320 [ 1125.893423] ? __do_sys_clone+0x110/0x110 [ 1125.894344] ? rcu_read_lock_any_held+0x75/0xa0 [ 1125.895393] ? vfs_write+0x354/0xb10 [ 1125.896233] ? fput_many+0x2f/0x1a0 [ 1125.897047] ? ksys_write+0x1a9/0x260 [ 1125.897924] ? __ia32_sys_read+0xb0/0xb0 [ 1125.898852] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1125.900033] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1125.901199] ? trace_hardirqs_on+0x5b/0x180 [ 1125.902183] do_syscall_64+0x33/0x40 [ 1125.903017] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1125.904170] RIP: 0033:0x7f6c3a5c4b19 [ 1125.905003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1125.909191] RSP: 002b:00007f6c37b3a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1125.910909] RAX: ffffffffffffffda RBX: 00007f6c3a6d7f60 RCX: 00007f6c3a5c4b19 [ 1125.912524] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0 [ 1125.914168] RBP: 00007f6c37b3a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1125.915779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1125.917400] R13: 00007ffe6dcde8ef R14: 00007f6c37b3a300 R15: 0000000000022000 [ 1125.924981] FAULT_INJECTION: forcing a failure. [ 1125.924981] name failslab, interval 1, probability 0, space 0, times 0 [ 1125.927572] CPU: 0 PID: 12209 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1125.929129] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1125.931029] Call Trace: [ 1125.931623] dump_stack+0x107/0x167 [ 1125.932450] should_fail.cold+0x5/0xa [ 1125.933319] ? ___slab_alloc+0x155/0x700 [ 1125.934234] ? create_object.isra.0+0x3a/0xa20 [ 1125.935258] should_failslab+0x5/0x20 [ 1125.936119] kmem_cache_alloc+0x5b/0x310 [ 1125.937041] create_object.isra.0+0x3a/0xa20 [ 1125.938029] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1125.939173] kmem_cache_alloc+0x159/0x310 [ 1125.940113] xas_alloc+0x336/0x440 [ 1125.940911] xas_create+0x34a/0x10d0 [ 1125.941767] ? kernel_text_address+0xf2/0x120 [ 1125.942784] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1125.943965] xas_store+0x8c/0x1c40 [ 1125.944783] __xa_store+0x164/0x2d0 [ 1125.945628] ? xa_delete_node+0x280/0x280 [ 1125.946567] ? trace_hardirqs_on+0x5b/0x180 [ 1125.947542] xa_store+0x31/0x50 [ 1125.948283] __io_uring_add_tctx_node+0x1cf/0x520 [ 1125.949382] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1125.950562] ? alloc_fd+0x2e7/0x670 [ 1125.951390] io_uring_setup+0x1fbb/0x2980 [ 1125.952333] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1125.953493] ? wait_for_completion_io+0x270/0x270 [ 1125.954602] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1125.955791] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1125.956952] do_syscall_64+0x33/0x40 [ 1125.957802] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1125.958958] RIP: 0033:0x7f106b311b19 [ 1125.959792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1125.963975] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1125.965703] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1125.967308] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1125.968914] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1125.970528] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1125.972133] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1125.992357] loop5: detected capacity change from 0 to 41948160 01:42:16 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) [ 1126.001190] loop6: detected capacity change from 0 to 41948160 [ 1138.454069] FAULT_INJECTION: forcing a failure. [ 1138.454069] name failslab, interval 1, probability 0, space 0, times 0 [ 1138.455533] CPU: 0 PID: 12338 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1138.456394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1138.457409] Call Trace: [ 1138.457730] dump_stack+0x107/0x167 [ 1138.458169] should_fail.cold+0x5/0xa [ 1138.458636] ? xas_alloc+0x336/0x440 [ 1138.459085] should_failslab+0x5/0x20 [ 1138.459548] kmem_cache_alloc+0x5b/0x310 [ 1138.460038] xas_alloc+0x336/0x440 [ 1138.460469] xas_create+0x34a/0x10d0 [ 1138.460923] ? kernel_text_address+0xf2/0x120 [ 1138.461479] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1138.462120] xas_store+0x8c/0x1c40 [ 1138.462558] __xa_store+0x164/0x2d0 [ 1138.462996] ? xa_delete_node+0x280/0x280 [ 1138.463501] ? trace_hardirqs_on+0x5b/0x180 [ 1138.464025] xa_store+0x31/0x50 [ 1138.464428] __io_uring_add_tctx_node+0x1cf/0x520 [ 1138.465011] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1138.465652] ? alloc_fd+0x2e7/0x670 [ 1138.466105] io_uring_setup+0x1fbb/0x2980 [ 1138.466613] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1138.467230] ? wait_for_completion_io+0x270/0x270 [ 1138.467824] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1138.468456] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1138.469092] do_syscall_64+0x33/0x40 [ 1138.469551] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1138.470171] RIP: 0033:0x7f106b311b19 [ 1138.470618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1138.472859] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1138.473790] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1138.474657] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1138.475525] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1138.476384] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1138.477247] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:42:28 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0x0, 0x2) 01:42:28 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x0, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:28 executing program 5: chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:42:28 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:42:28 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 11) 01:42:28 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 72) 01:42:28 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:28 executing program 7: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040), 0xffffffffffffff2f, 0x2) [ 1138.495225] loop6: detected capacity change from 0 to 41948160 [ 1138.503281] FAULT_INJECTION: forcing a failure. [ 1138.503281] name failslab, interval 1, probability 0, space 0, times 0 [ 1138.504844] CPU: 0 PID: 12347 Comm: syz-executor.3 Not tainted 5.10.240 #1 [ 1138.505701] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1138.506708] Call Trace: [ 1138.507032] dump_stack+0x107/0x167 [ 1138.507497] should_fail.cold+0x5/0xa [ 1138.507965] ? inherit_task_group.isra.0+0x244/0x5c0 [ 1138.508578] should_failslab+0x5/0x20 [ 1138.509044] kmem_cache_alloc_trace+0x55/0x320 [ 1138.509617] inherit_task_group.isra.0+0x244/0x5c0 [ 1138.510213] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 1138.510833] ? trace_hardirqs_on+0x5b/0x180 [ 1138.511359] perf_event_init_task+0x375/0x800 [ 1138.511911] ? perf_event_attrs+0x40/0x40 [ 1138.512417] ? __hrtimer_init+0x12c/0x270 [ 1138.512925] ? memset+0x20/0x50 [ 1138.513339] copy_process+0x182c/0x78b0 [ 1138.513826] ? mark_lock+0xf5/0x2df0 [ 1138.514294] ? __cleanup_sighand+0xb0/0xb0 [ 1138.514827] ? _copy_from_user+0xfb/0x1b0 [ 1138.515333] kernel_clone+0xe7/0x980 [ 1138.515787] ? lock_acquire+0x197/0x470 [ 1138.516270] ? create_io_thread+0xf0/0xf0 [ 1138.516782] ? ksys_write+0x21a/0x260 [ 1138.517246] ? lock_downgrade+0x6d0/0x6d0 [ 1138.517752] __do_sys_clone3+0x1e5/0x320 [ 1138.518249] ? __do_sys_clone+0x110/0x110 [ 1138.518773] ? rcu_read_lock_any_held+0x75/0xa0 [ 1138.519338] ? vfs_write+0x354/0xb10 [ 1138.519790] ? fput_many+0x2f/0x1a0 [ 1138.520232] ? ksys_write+0x1a9/0x260 [ 1138.520701] ? __ia32_sys_read+0xb0/0xb0 [ 1138.521196] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1138.521842] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1138.522462] ? trace_hardirqs_on+0x5b/0x180 [ 1138.522985] do_syscall_64+0x33/0x40 [ 1138.523441] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1138.524058] RIP: 0033:0x7f6c3a5c4b19 [ 1138.524509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1138.526750] RSP: 002b:00007f6c37b3a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1138.527666] RAX: ffffffffffffffda RBX: 00007f6c3a6d7f60 RCX: 00007f6c3a5c4b19 [ 1138.528531] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0 [ 1138.529400] RBP: 00007f6c37b3a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1138.530263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1138.531123] R13: 00007ffe6dcde8ef R14: 00007f6c37b3a300 R15: 0000000000022000 01:42:28 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x0, 0x0) (fail_nth: 1) [ 1138.639071] FAULT_INJECTION: forcing a failure. [ 1138.639071] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1138.641736] CPU: 1 PID: 12543 Comm: syz-executor.7 Not tainted 5.10.240 #1 [ 1138.643500] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1138.645377] Call Trace: [ 1138.645927] dump_stack+0x107/0x167 [ 1138.646684] should_fail.cold+0x5/0xa [ 1138.647517] _copy_to_user+0x2e/0x180 [ 1138.648464] simple_read_from_buffer+0xcc/0x160 [ 1138.649613] proc_fail_nth_read+0x198/0x230 [ 1138.650562] ? proc_sessionid_read+0x230/0x230 [ 1138.651501] ? security_file_permission+0xb1/0xe0 [ 1138.652493] ? proc_sessionid_read+0x230/0x230 [ 1138.653450] vfs_read+0x228/0x620 [ 1138.654175] ksys_read+0x12d/0x260 [ 1138.654904] ? vfs_write+0xb10/0xb10 [ 1138.655671] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1138.656752] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1138.657832] do_syscall_64+0x33/0x40 [ 1138.658600] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1138.659640] RIP: 0033:0x7febef97369c [ 1138.660404] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1138.664176] RSP: 002b:00007febecf36170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1138.665734] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007febef97369c [ 1138.667192] RDX: 000000000000000f RSI: 00007febecf361e0 RDI: 0000000000000004 [ 1138.668645] RBP: 00007febecf361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1138.670140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1138.671620] R13: 00007fff76f98c2f R14: 00007febecf36300 R15: 0000000000022000 01:42:28 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0x0, 0x2) 01:42:28 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x0, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:28 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:41 executing program 5: chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:42:41 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x0, 0x0) 01:42:41 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 73) 01:42:41 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:42:41 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:41 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x0) 01:42:41 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x0, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:41 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 12) [ 1151.511393] FAULT_INJECTION: forcing a failure. [ 1151.511393] name failslab, interval 1, probability 0, space 0, times 0 [ 1151.513929] CPU: 1 PID: 12786 Comm: syz-executor.3 Not tainted 5.10.240 #1 [ 1151.515418] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1151.517192] Call Trace: [ 1151.517770] dump_stack+0x107/0x167 [ 1151.518551] should_fail.cold+0x5/0xa [ 1151.519368] ? create_object.isra.0+0x3a/0xa20 [ 1151.520344] should_failslab+0x5/0x20 [ 1151.521152] kmem_cache_alloc+0x5b/0x310 [ 1151.522034] create_object.isra.0+0x3a/0xa20 [ 1151.522967] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1151.524059] kmem_cache_alloc_trace+0x151/0x320 [ 1151.525061] inherit_task_group.isra.0+0x244/0x5c0 [ 1151.526121] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 1151.527202] ? trace_hardirqs_on+0x5b/0x180 [ 1151.528126] perf_event_init_task+0x375/0x800 [ 1151.529092] ? perf_event_attrs+0x40/0x40 [ 1151.529989] ? __hrtimer_init+0x12c/0x270 [ 1151.530875] ? memset+0x20/0x50 [ 1151.531592] copy_process+0x182c/0x78b0 [ 1151.532444] ? mark_lock+0xf5/0x2df0 [ 1151.533261] ? __cleanup_sighand+0xb0/0xb0 [ 1151.534200] ? _copy_from_user+0xfb/0x1b0 [ 1151.535089] kernel_clone+0xe7/0x980 [ 1151.535886] ? lock_acquire+0x197/0x470 [ 1151.536735] ? create_io_thread+0xf0/0xf0 [ 1151.537645] ? ksys_write+0x21a/0x260 [ 1151.538459] ? lock_downgrade+0x6d0/0x6d0 [ 1151.539349] __do_sys_clone3+0x1e5/0x320 [ 1151.540221] ? __do_sys_clone+0x110/0x110 [ 1151.541124] ? rcu_read_lock_any_held+0x75/0xa0 [ 1151.542116] ? vfs_write+0x354/0xb10 [ 1151.542901] ? fput_many+0x2f/0x1a0 [ 1151.543676] ? ksys_write+0x1a9/0x260 [ 1151.544481] ? __ia32_sys_read+0xb0/0xb0 [ 1151.545345] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1151.546471] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1151.547574] ? trace_hardirqs_on+0x5b/0x180 [ 1151.548503] do_syscall_64+0x33/0x40 [ 1151.549295] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1151.550388] RIP: 0033:0x7f6c3a5c4b19 [ 1151.551182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1151.555129] RSP: 002b:00007f6c37b3a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1151.556740] RAX: ffffffffffffffda RBX: 00007f6c3a6d7f60 RCX: 00007f6c3a5c4b19 [ 1151.558254] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200001c0 [ 1151.559789] RBP: 00007f6c37b3a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1151.561315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1151.563059] R13: 00007ffe6dcde8ef R14: 00007f6c37b3a300 R15: 0000000000022000 01:42:41 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x2, 0x0) 01:42:41 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1151.589244] FAULT_INJECTION: forcing a failure. [ 1151.589244] name failslab, interval 1, probability 0, space 0, times 0 [ 1151.589443] loop6: detected capacity change from 0 to 41948160 [ 1151.591878] CPU: 0 PID: 12788 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1151.594753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1151.596739] Call Trace: [ 1151.597357] dump_stack+0x107/0x167 [ 1151.598260] should_fail.cold+0x5/0xa [ 1151.599188] ? create_object.isra.0+0x3a/0xa20 [ 1151.600277] should_failslab+0x5/0x20 [ 1151.601182] kmem_cache_alloc+0x5b/0x310 [ 1151.602130] ? mark_held_locks+0x9e/0xe0 [ 1151.603051] create_object.isra.0+0x3a/0xa20 [ 1151.604064] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1151.605268] kmem_cache_alloc+0x159/0x310 [ 1151.606264] xas_alloc+0x336/0x440 [ 1151.607073] xas_create+0x34a/0x10d0 [ 1151.607932] ? kernel_text_address+0xf2/0x120 [ 1151.608967] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1151.610226] xas_store+0x8c/0x1c40 [ 1151.611071] __xa_store+0x164/0x2d0 [ 1151.611912] ? xa_delete_node+0x280/0x280 [ 1151.612924] ? trace_hardirqs_on+0x5b/0x180 [ 1151.613968] xa_store+0x31/0x50 [ 1151.614744] __io_uring_add_tctx_node+0x1cf/0x520 [ 1151.615889] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1151.617118] ? alloc_fd+0x2e7/0x670 [ 1151.618005] io_uring_setup+0x1fbb/0x2980 [ 1151.618990] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1151.620142] ? wait_for_completion_io+0x270/0x270 [ 1151.621295] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1151.622582] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1151.623812] do_syscall_64+0x33/0x40 [ 1151.624673] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1151.625901] RIP: 0033:0x7f106b311b19 [ 1151.626751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1151.631079] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1151.632875] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1151.634585] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1151.636270] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1151.637921] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1151.639558] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:42:42 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:42 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x0) 01:42:42 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x3, 0x0) 01:42:42 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 74) 01:42:42 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:42:42 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1152.023861] FAULT_INJECTION: forcing a failure. [ 1152.023861] name failslab, interval 1, probability 0, space 0, times 0 [ 1152.026510] CPU: 1 PID: 13009 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1152.027970] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1152.029729] Call Trace: [ 1152.030288] dump_stack+0x107/0x167 [ 1152.031056] should_fail.cold+0x5/0xa [ 1152.031871] ? create_object.isra.0+0x3a/0xa20 [ 1152.032839] should_failslab+0x5/0x20 [ 1152.033660] kmem_cache_alloc+0x5b/0x310 [ 1152.034522] ? mark_held_locks+0x9e/0xe0 [ 1152.035385] create_object.isra.0+0x3a/0xa20 [ 1152.036307] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1152.037380] kmem_cache_alloc+0x159/0x310 [ 1152.038284] xas_alloc+0x336/0x440 [ 1152.039035] xas_create+0x34a/0x10d0 [ 1152.039826] ? kernel_text_address+0xf2/0x120 [ 1152.040766] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1152.041885] xas_store+0x8c/0x1c40 [ 1152.042653] __xa_store+0x164/0x2d0 [ 1152.043419] ? xa_delete_node+0x280/0x280 [ 1152.044300] ? trace_hardirqs_on+0x5b/0x180 [ 1152.045207] xa_store+0x31/0x50 [ 1152.045918] __io_uring_add_tctx_node+0x1cf/0x520 [ 1152.046927] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1152.048020] ? alloc_fd+0x2e7/0x670 [ 1152.048804] io_uring_setup+0x1fbb/0x2980 [ 1152.049710] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1152.050772] ? wait_for_completion_io+0x270/0x270 [ 1152.051807] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1152.052913] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1152.054013] do_syscall_64+0x33/0x40 [ 1152.054802] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1152.055890] RIP: 0033:0x7f106b311b19 [ 1152.056678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1152.060603] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1152.062226] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1152.063718] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1152.065238] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1152.066762] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1152.068275] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:42:42 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x0) 01:42:55 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x4, 0x0) 01:42:55 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x0) 01:42:55 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:42:55 executing program 5: chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:42:55 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 75) 01:42:55 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40180004, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:42:55 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:55 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x0, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1164.952995] FAULT_INJECTION: forcing a failure. [ 1164.952995] name failslab, interval 1, probability 0, space 0, times 0 [ 1164.955600] CPU: 1 PID: 13240 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1164.957158] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1164.959051] Call Trace: [ 1164.959652] dump_stack+0x107/0x167 [ 1164.960478] should_fail.cold+0x5/0xa [ 1164.961344] ? create_object.isra.0+0x3a/0xa20 [ 1164.962435] should_failslab+0x5/0x20 [ 1164.963295] kmem_cache_alloc+0x5b/0x310 [ 1164.964219] ? mark_held_locks+0x9e/0xe0 [ 1164.965149] create_object.isra.0+0x3a/0xa20 [ 1164.966153] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1164.967302] kmem_cache_alloc+0x159/0x310 [ 1164.968247] xas_alloc+0x336/0x440 [ 1164.969051] xas_create+0x34a/0x10d0 [ 1164.969887] ? kernel_text_address+0xf2/0x120 [ 1164.970900] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1164.972089] xas_store+0x8c/0x1c40 [ 1164.972917] __xa_store+0x164/0x2d0 [ 1164.973630] loop6: detected capacity change from 0 to 41948160 [ 1164.973752] ? xa_delete_node+0x280/0x280 [ 1164.973781] ? trace_hardirqs_on+0x5b/0x180 [ 1164.976372] xa_store+0x31/0x50 [ 1164.977123] __io_uring_add_tctx_node+0x1cf/0x520 [ 1164.978218] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1164.979400] ? alloc_fd+0x2e7/0x670 [ 1164.980235] io_uring_setup+0x1fbb/0x2980 [ 1164.981185] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1164.982335] ? wait_for_completion_io+0x270/0x270 [ 1164.983453] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1164.984643] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1164.985820] do_syscall_64+0x33/0x40 [ 1164.986672] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1164.987829] RIP: 0033:0x7f106b311b19 [ 1164.988672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1164.992853] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1164.994618] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1164.996271] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1164.997943] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1164.999602] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1165.001267] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:42:55 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x0, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:55 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:55 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x300, 0x0) 01:42:55 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:42:55 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x0, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:55 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x0) 01:42:55 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:42:55 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x1000000, 0x0) 01:43:09 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182302, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:43:09 executing program 5: syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:43:09 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 76) 01:43:09 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:43:09 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x2000000, 0x0) 01:43:09 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:43:09 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0x0, 0x2) 01:43:09 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1178.856590] FAULT_INJECTION: forcing a failure. [ 1178.856590] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.859085] CPU: 1 PID: 13487 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1178.860537] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.862299] Call Trace: [ 1178.862853] dump_stack+0x107/0x167 [ 1178.863618] should_fail.cold+0x5/0xa [ 1178.864416] ? xas_alloc+0x336/0x440 [ 1178.865201] should_failslab+0x5/0x20 [ 1178.865999] kmem_cache_alloc+0x5b/0x310 [ 1178.866854] xas_alloc+0x336/0x440 [ 1178.867672] xas_create+0x34a/0x10d0 [ 1178.868443] ? kernel_text_address+0xf2/0x120 [ 1178.869391] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1178.870512] xas_store+0x8c/0x1c40 [ 1178.871274] __xa_store+0x164/0x2d0 [ 1178.872038] ? xa_delete_node+0x280/0x280 [ 1178.872916] ? trace_hardirqs_on+0x5b/0x180 [ 1178.873844] xa_store+0x31/0x50 [ 1178.874540] __io_uring_add_tctx_node+0x1cf/0x520 [ 1178.875557] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1178.876652] ? alloc_fd+0x2e7/0x670 [ 1178.877426] io_uring_setup+0x1fbb/0x2980 [ 1178.878318] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1178.879379] ? wait_for_completion_io+0x270/0x270 [ 1178.880431] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.881550] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.882649] do_syscall_64+0x33/0x40 [ 1178.883479] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.884556] RIP: 0033:0x7f106b311b19 [ 1178.885343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.889259] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1178.890882] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1178.892401] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1178.893927] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1178.895439] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1178.897355] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:43:09 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:43:09 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x3000000, 0x0) [ 1178.915032] loop5: detected capacity change from 0 to 41948160 [ 1178.921895] loop6: detected capacity change from 0 to 41948160 01:43:09 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) (fail_nth: 1) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:43:09 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182303, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:43:09 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x4000000, 0x0) 01:43:09 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 77) [ 1179.050514] FAULT_INJECTION: forcing a failure. [ 1179.050514] name failslab, interval 1, probability 0, space 0, times 0 [ 1179.052725] CPU: 0 PID: 13589 Comm: syz-executor.2 Not tainted 5.10.240 #1 [ 1179.053850] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1179.054888] Call Trace: [ 1179.055231] dump_stack+0x107/0x167 [ 1179.055767] should_fail.cold+0x5/0xa [ 1179.056336] ? jbd2__journal_start+0x190/0x7e0 [ 1179.057001] should_failslab+0x5/0x20 [ 1179.057550] kmem_cache_alloc+0x5b/0x310 [ 1179.058151] jbd2__journal_start+0x190/0x7e0 [ 1179.058791] __ext4_journal_start_sb+0x214/0x390 [ 1179.059486] ext4_dirty_inode+0xbc/0x130 [ 1179.060070] ? ext4_setattr+0x20f0/0x20f0 [ 1179.060586] __mark_inode_dirty+0x492/0xd40 [ 1179.061211] ? security_inode_need_killpriv+0x79/0xa0 [ 1179.061963] generic_update_time+0x21c/0x370 [ 1179.062604] file_update_time+0x43a/0x520 [ 1179.063204] ? evict_inodes+0x470/0x470 [ 1179.063780] ? down_write_killable+0x180/0x180 [ 1179.064445] file_modified+0x7d/0xa0 [ 1179.064988] ext4_fallocate+0x3c6/0x3850 [ 1179.065584] ? __x64_sys_fallocate+0xcf/0x140 [ 1179.066251] ? lock_release+0x680/0x680 [ 1179.066834] ? ext4_ext_truncate+0x250/0x250 [ 1179.067476] ? selinux_file_permission+0x92/0x520 [ 1179.068080] ? ext4_ext_truncate+0x250/0x250 [ 1179.068722] vfs_fallocate+0x48f/0xda0 [ 1179.069209] __x64_sys_fallocate+0xcf/0x140 [ 1179.069844] do_syscall_64+0x33/0x40 [ 1179.070386] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1179.071129] RIP: 0033:0x7fefc6f2db19 [ 1179.071666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1179.074348] RSP: 002b:00007fefc44a3188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 1179.075289] RAX: ffffffffffffffda RBX: 00007fefc7040f60 RCX: 00007fefc6f2db19 [ 1179.076330] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1179.077368] RBP: 00007fefc44a31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1179.078262] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000001 [ 1179.079303] R13: 00007fffd1864d1f R14: 00007fefc44a3300 R15: 0000000000022000 01:43:09 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:43:09 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x100000000000000, 0x0) [ 1179.129059] FAULT_INJECTION: forcing a failure. [ 1179.129059] name failslab, interval 1, probability 0, space 0, times 0 [ 1179.130831] CPU: 0 PID: 13620 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1179.131828] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1179.133132] Call Trace: [ 1179.133479] dump_stack+0x107/0x167 [ 1179.134017] should_fail.cold+0x5/0xa [ 1179.134576] ? create_object.isra.0+0x3a/0xa20 [ 1179.135243] should_failslab+0x5/0x20 [ 1179.135711] kmem_cache_alloc+0x5b/0x310 [ 1179.136309] ? mark_held_locks+0x9e/0xe0 [ 1179.136820] create_object.isra.0+0x3a/0xa20 [ 1179.137463] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1179.138100] kmem_cache_alloc+0x159/0x310 [ 1179.138707] xas_alloc+0x336/0x440 [ 1179.139223] xas_create+0x34a/0x10d0 [ 1179.139769] ? kernel_text_address+0xf2/0x120 [ 1179.140428] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1179.141194] xas_store+0x8c/0x1c40 [ 1179.141727] __xa_store+0x164/0x2d0 [ 1179.142273] ? xa_delete_node+0x280/0x280 [ 1179.142880] ? trace_hardirqs_on+0x5b/0x180 [ 1179.143510] xa_store+0x31/0x50 [ 1179.143988] __io_uring_add_tctx_node+0x1cf/0x520 [ 1179.144695] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1179.145339] ? alloc_fd+0x2e7/0x670 [ 1179.145883] io_uring_setup+0x1fbb/0x2980 [ 1179.146489] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1179.147223] ? wait_for_completion_io+0x270/0x270 [ 1179.147937] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1179.148696] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1179.149446] do_syscall_64+0x33/0x40 [ 1179.149996] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1179.150744] RIP: 0033:0x7f106b311b19 [ 1179.151293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1179.153958] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1179.155056] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1179.156081] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1179.157118] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1179.158156] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1179.159194] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:43:24 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x200000000000000, 0x0) 01:43:24 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182304, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:43:24 executing program 5: syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:43:24 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:43:24 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) (fail_nth: 2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:43:24 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1193.859560] loop6: detected capacity change from 0 to 41948160 01:43:24 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 78) 01:43:24 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1193.903690] loop5: detected capacity change from 0 to 41948160 01:43:24 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1193.930730] FAULT_INJECTION: forcing a failure. [ 1193.930730] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.933457] CPU: 1 PID: 13752 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1193.934951] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.936762] Call Trace: [ 1193.937340] dump_stack+0x107/0x167 [ 1193.938152] should_fail.cold+0x5/0xa [ 1193.938974] ? vm_area_dup+0x78/0x290 [ 1193.939794] should_failslab+0x5/0x20 [ 1193.940611] kmem_cache_alloc+0x5b/0x310 [ 1193.941501] vm_area_dup+0x78/0x290 [ 1193.942294] ? lock_release+0x680/0x680 [ 1193.943142] ? mark_lock+0xf5/0x2df0 [ 1193.943960] ? lock_chain_count+0x20/0x20 [ 1193.944865] ? mark_lock+0xf5/0x2df0 [ 1193.945681] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.946828] ? lock_chain_count+0x20/0x20 [ 1193.947738] ? mark_lock+0xf5/0x2df0 [ 1193.948546] ? vm_area_alloc+0x110/0x110 [ 1193.949434] ? __lock_acquire+0x1657/0x5b00 [ 1193.950411] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.951564] ? vmacache_find+0x55/0x2a0 [ 1193.952444] __split_vma+0xa8/0x4e0 [ 1193.953244] __do_munmap+0x365/0x1260 [ 1193.954093] ? arch_get_unmapped_area+0x450/0x450 [ 1193.955144] ? lock_release+0x680/0x680 [ 1193.956024] mmap_region+0x7c8/0x1500 [ 1193.956879] do_mmap+0xcdb/0x11e0 [ 1193.957655] vm_mmap_pgoff+0x198/0x1f0 [ 1193.958508] ? randomize_page+0xb0/0xb0 [ 1193.959395] ksys_mmap_pgoff+0x41c/0x560 [ 1193.960293] ? find_mergeable_anon_vma+0x250/0x250 [ 1193.961351] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.962500] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.963627] do_syscall_64+0x33/0x40 [ 1193.964432] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.965541] RIP: 0033:0x7f106b311b62 [ 1193.966357] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1193.970357] RSP: 002b:00007f10688870f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1193.972009] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f106b311b62 [ 1193.973558] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 1193.975098] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 1193.976634] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000800 [ 1193.978180] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1193.980981] FAULT_INJECTION: forcing a failure. [ 1193.980981] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.983718] CPU: 1 PID: 13741 Comm: syz-executor.2 Not tainted 5.10.240 #1 [ 1193.985227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.987030] Call Trace: [ 1193.987603] dump_stack+0x107/0x167 [ 1193.988399] should_fail.cold+0x5/0xa [ 1193.989223] ? create_object.isra.0+0x3a/0xa20 [ 1193.990217] should_failslab+0x5/0x20 [ 1193.991036] kmem_cache_alloc+0x5b/0x310 [ 1193.991919] create_object.isra.0+0x3a/0xa20 [ 1193.992864] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1193.993967] kmem_cache_alloc+0x159/0x310 [ 1193.994878] jbd2__journal_start+0x190/0x7e0 [ 1193.995833] __ext4_journal_start_sb+0x214/0x390 [ 1193.996863] ext4_dirty_inode+0xbc/0x130 [ 1193.997739] ? ext4_setattr+0x20f0/0x20f0 [ 1193.998639] __mark_inode_dirty+0x492/0xd40 [ 1193.999576] ? security_inode_need_killpriv+0x79/0xa0 [ 1194.000694] generic_update_time+0x21c/0x370 [ 1194.001650] file_update_time+0x43a/0x520 [ 1194.002560] ? evict_inodes+0x470/0x470 [ 1194.003420] ? down_write_killable+0x180/0x180 [ 1194.004415] file_modified+0x7d/0xa0 [ 1194.005220] ext4_fallocate+0x3c6/0x3850 [ 1194.006105] ? __x64_sys_fallocate+0xcf/0x140 [ 1194.007078] ? lock_release+0x680/0x680 [ 1194.007939] ? ext4_ext_truncate+0x250/0x250 [ 1194.008887] ? selinux_file_permission+0x92/0x520 [ 1194.009931] ? ext4_ext_truncate+0x250/0x250 [ 1194.010896] vfs_fallocate+0x48f/0xda0 [ 1194.011745] __x64_sys_fallocate+0xcf/0x140 [ 1194.012674] do_syscall_64+0x33/0x40 [ 1194.013481] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1194.014605] RIP: 0033:0x7fefc6f2db19 [ 1194.015413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1194.019423] RSP: 002b:00007fefc44a3188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 1194.021079] RAX: ffffffffffffffda RBX: 00007fefc7040f60 RCX: 00007fefc6f2db19 [ 1194.022635] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1194.024192] RBP: 00007fefc44a31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1194.025729] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000001 [ 1194.027282] R13: 00007fffd1864d1f R14: 00007fefc44a3300 R15: 0000000000022000 01:43:24 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x300000000000000, 0x0) 01:43:24 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182305, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:43:24 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x400000000000000, 0x0) 01:43:24 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182306, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:43:24 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 79) 01:43:24 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:43:24 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) (fail_nth: 3) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 1194.348021] FAULT_INJECTION: forcing a failure. [ 1194.348021] name failslab, interval 1, probability 0, space 0, times 0 [ 1194.350611] CPU: 1 PID: 13946 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1194.352068] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1194.353825] Call Trace: [ 1194.354403] dump_stack+0x107/0x167 [ 1194.355187] should_fail.cold+0x5/0xa [ 1194.355996] ? xas_alloc+0x336/0x440 [ 1194.356787] should_failslab+0x5/0x20 [ 1194.357597] kmem_cache_alloc+0x5b/0x310 [ 1194.358473] xas_alloc+0x336/0x440 [ 1194.359237] xas_create+0x34a/0x10d0 [ 1194.360037] ? kernel_text_address+0xf2/0x120 [ 1194.360979] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1194.362102] xas_store+0x8c/0x1c40 [ 1194.362878] __xa_store+0x164/0x2d0 [ 1194.363650] ? xa_delete_node+0x280/0x280 [ 1194.364535] ? trace_hardirqs_on+0x5b/0x180 [ 1194.365468] xa_store+0x31/0x50 [ 1194.366158] __io_uring_add_tctx_node+0x1cf/0x520 [ 1194.367187] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1194.368284] ? alloc_fd+0x2e7/0x670 [ 1194.369069] io_uring_setup+0x1fbb/0x2980 [ 1194.369959] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1194.371030] ? wait_for_completion_io+0x270/0x270 [ 1194.372088] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1194.373204] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1194.374310] do_syscall_64+0x33/0x40 [ 1194.375120] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1194.376215] RIP: 0033:0x7f106b311b19 [ 1194.377008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1194.380880] RSP: 002b:00007f1068887108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1194.382484] RAX: ffffffffffffffda RBX: 00007f106b424f60 RCX: 00007f106b311b19 [ 1194.384004] RDX: 0000000020ffc000 RSI: 0000000020000740 RDI: 0000000000006b20 [ 1194.385518] RBP: 0000000020000740 R08: 0000000020000800 R09: 0000000020000800 [ 1194.387069] R10: 00000000200007c0 R11: 0000000000000202 R12: 0000000020000800 [ 1194.388582] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1194.470851] FAULT_INJECTION: forcing a failure. [ 1194.470851] name failslab, interval 1, probability 0, space 0, times 0 [ 1194.473851] CPU: 0 PID: 14059 Comm: syz-executor.2 Not tainted 5.10.240 #1 [ 1194.475487] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1194.477438] Call Trace: [ 1194.478061] dump_stack+0x107/0x167 [ 1194.478928] should_fail.cold+0x5/0xa [ 1194.479827] ? jbd2__journal_start+0x190/0x7e0 [ 1194.480887] should_failslab+0x5/0x20 [ 1194.481778] kmem_cache_alloc+0x5b/0x310 [ 1194.482740] jbd2__journal_start+0x190/0x7e0 [ 1194.483751] __ext4_journal_start_sb+0x214/0x390 [ 1194.484893] ext4_alloc_file_blocks.isra.0+0x2b0/0xb40 [ 1194.486121] ? ext4_iomap_xattr_begin+0x530/0x530 [ 1194.487219] ? down_write_killable+0x180/0x180 [ 1194.488247] ext4_fallocate+0x415/0x3850 [ 1194.489165] ? __x64_sys_fallocate+0xcf/0x140 [ 1194.490194] ? lock_release+0x680/0x680 [ 1194.491142] ? ext4_ext_truncate+0x250/0x250 [ 1194.492226] ? selinux_file_permission+0x92/0x520 [ 1194.493432] ? ext4_ext_truncate+0x250/0x250 [ 1194.494458] vfs_fallocate+0x48f/0xda0 [ 1194.495407] __x64_sys_fallocate+0xcf/0x140 [ 1194.496400] do_syscall_64+0x33/0x40 [ 1194.497302] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1194.498573] RIP: 0033:0x7fefc6f2db19 [ 1194.499458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1194.503783] RSP: 002b:00007fefc44a3188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 1194.505646] RAX: ffffffffffffffda RBX: 00007fefc7040f60 RCX: 00007fefc6f2db19 [ 1194.507420] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1194.509188] RBP: 00007fefc44a31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1194.510937] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000001 [ 1194.512729] R13: 00007fffd1864d1f R14: 00007fefc44a3300 R15: 0000000000022000 [ 1207.733449] loop6: detected capacity change from 0 to 41948160 01:43:37 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x7fffffffffffffff, 0x0) 01:43:37 executing program 5: syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:43:37 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:43:37 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:43:37 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182307, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:43:37 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:43:37 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 80) 01:43:37 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) (fail_nth: 4) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 1207.755819] loop5: detected capacity change from 0 to 41948160 [ 1207.767469] FAULT_INJECTION: forcing a failure. [ 1207.767469] name failslab, interval 1, probability 0, space 0, times 0 [ 1207.769028] CPU: 1 PID: 14105 Comm: syz-executor.2 Not tainted 5.10.240 #1 [ 1207.769881] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1207.770890] Call Trace: [ 1207.771214] dump_stack+0x107/0x167 [ 1207.771661] should_fail.cold+0x5/0xa [ 1207.772123] ? create_object.isra.0+0x3a/0xa20 [ 1207.772669] should_failslab+0x5/0x20 [ 1207.773126] kmem_cache_alloc+0x5b/0x310 [ 1207.773614] create_object.isra.0+0x3a/0xa20 [ 1207.774141] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1207.774759] kmem_cache_alloc+0x159/0x310 [ 1207.775260] jbd2__journal_start+0x190/0x7e0 [ 1207.775787] __ext4_journal_start_sb+0x214/0x390 [ 1207.776369] ext4_alloc_file_blocks.isra.0+0x2b0/0xb40 [ 1207.776999] ? ext4_iomap_xattr_begin+0x530/0x530 [ 1207.777584] ? down_write_killable+0x180/0x180 [ 1207.778140] ext4_fallocate+0x415/0x3850 [ 1207.778629] ? __x64_sys_fallocate+0xcf/0x140 [ 1207.779164] ? lock_release+0x680/0x680 [ 1207.779638] ? ext4_ext_truncate+0x250/0x250 [ 1207.780165] ? selinux_file_permission+0x92/0x520 [ 1207.780738] ? ext4_ext_truncate+0x250/0x250 [ 1207.781266] vfs_fallocate+0x48f/0xda0 [ 1207.781736] __x64_sys_fallocate+0xcf/0x140 [ 1207.782265] do_syscall_64+0x33/0x40 [ 1207.782716] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1207.783352] RIP: 0033:0x7fefc6f2db19 [ 1207.783793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1207.785989] RSP: 002b:00007fefc44a3188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 1207.786903] RAX: ffffffffffffffda RBX: 00007fefc7040f60 RCX: 00007fefc6f2db19 [ 1207.787745] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1207.788597] RBP: 00007fefc44a31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1207.789447] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000001 [ 1207.790307] R13: 00007fffd1864d1f R14: 00007fefc44a3300 R15: 0000000000022000 [ 1207.797767] FAULT_INJECTION: forcing a failure. [ 1207.797767] name failslab, interval 1, probability 0, space 0, times 0 [ 1207.800395] CPU: 0 PID: 14108 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1207.802002] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1207.803944] Call Trace: [ 1207.804566] dump_stack+0x107/0x167 [ 1207.805414] should_fail.cold+0x5/0xa [ 1207.806310] ? anon_vma_clone+0xdc/0x590 [ 1207.807261] should_failslab+0x5/0x20 [ 1207.808142] kmem_cache_alloc+0x5b/0x310 [ 1207.809084] anon_vma_clone+0xdc/0x590 [ 1207.809993] __split_vma+0x17c/0x4e0 [ 1207.810868] __do_munmap+0x365/0x1260 [ 1207.811763] ? arch_get_unmapped_area+0x450/0x450 [ 1207.812886] ? lock_release+0x680/0x680 [ 1207.813809] mmap_region+0x7c8/0x1500 [ 1207.814711] do_mmap+0xcdb/0x11e0 [ 1207.815524] vm_mmap_pgoff+0x198/0x1f0 [ 1207.816423] ? randomize_page+0xb0/0xb0 [ 1207.817592] ksys_mmap_pgoff+0x41c/0x560 [ 1207.818550] ? find_mergeable_anon_vma+0x250/0x250 [ 1207.819686] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1207.820895] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1207.822089] do_syscall_64+0x33/0x40 [ 1207.822956] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1207.824153] RIP: 0033:0x7f106b311b62 [ 1207.825017] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1207.829290] RSP: 002b:00007f10688870f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1207.831070] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f106b311b62 [ 1207.832737] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 1207.834413] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 1207.836079] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000800 [ 1207.837743] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:43:38 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:43:38 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182308, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:43:38 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0xffffffffffffff7f, 0x0) 01:43:38 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 81) 01:43:38 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x4018230a, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:43:38 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) (fail_nth: 5) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:43:38 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1207.967914] FAULT_INJECTION: forcing a failure. [ 1207.967914] name failslab, interval 1, probability 0, space 0, times 0 [ 1207.969551] CPU: 1 PID: 14166 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1207.970431] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1207.971377] Call Trace: [ 1207.971681] dump_stack+0x107/0x167 [ 1207.972097] should_fail.cold+0x5/0xa [ 1207.972537] ? create_object.isra.0+0x3a/0xa20 [ 1207.973055] should_failslab+0x5/0x20 [ 1207.973489] kmem_cache_alloc+0x5b/0x310 [ 1207.973953] create_object.isra.0+0x3a/0xa20 [ 1207.974461] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1207.975042] kmem_cache_alloc+0x159/0x310 [ 1207.975528] anon_vma_clone+0xdc/0x590 [ 1207.975979] __split_vma+0x17c/0x4e0 [ 1207.976405] __do_munmap+0x365/0x1260 [ 1207.976845] ? arch_get_unmapped_area+0x450/0x450 [ 1207.977395] ? lock_release+0x680/0x680 [ 1207.977854] mmap_region+0x7c8/0x1500 [ 1207.978305] do_mmap+0xcdb/0x11e0 [ 1207.978704] vm_mmap_pgoff+0x198/0x1f0 [ 1207.979151] ? randomize_page+0xb0/0xb0 [ 1207.979610] ksys_mmap_pgoff+0x41c/0x560 [ 1207.980074] ? find_mergeable_anon_vma+0x250/0x250 [ 1207.980631] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1207.981230] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1207.981819] do_syscall_64+0x33/0x40 [ 1207.982252] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1207.982837] RIP: 0033:0x7f106b311b62 [ 1207.983264] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1207.985353] RSP: 002b:00007f10688870f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1207.986233] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f106b311b62 [ 1207.987044] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 1207.987857] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 1207.988676] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000800 [ 1207.989487] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:43:38 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x0, 0x2) 01:43:38 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) [ 1208.057321] FAULT_INJECTION: forcing a failure. [ 1208.057321] name failslab, interval 1, probability 0, space 0, times 0 [ 1208.058994] CPU: 1 PID: 14194 Comm: syz-executor.2 Not tainted 5.10.240 #1 [ 1208.059980] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1208.060927] Call Trace: [ 1208.061231] dump_stack+0x107/0x167 [ 1208.061647] should_fail.cold+0x5/0xa [ 1208.062091] ? create_object.isra.0+0x3a/0xa20 [ 1208.062672] should_failslab+0x5/0x20 [ 1208.063107] kmem_cache_alloc+0x5b/0x310 [ 1208.063576] create_object.isra.0+0x3a/0xa20 [ 1208.064079] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1208.064667] kmem_cache_alloc+0x159/0x310 [ 1208.065145] jbd2__journal_start+0x190/0x7e0 [ 1208.065648] __ext4_journal_start_sb+0x214/0x390 [ 1208.066208] ext4_alloc_file_blocks.isra.0+0x2b0/0xb40 [ 1208.066808] ? ext4_iomap_xattr_begin+0x530/0x530 [ 1208.067362] ? down_write_killable+0x180/0x180 [ 1208.067886] ext4_fallocate+0x415/0x3850 [ 1208.068354] ? __x64_sys_fallocate+0xcf/0x140 [ 1208.068867] ? lock_release+0x680/0x680 [ 1208.069325] ? ext4_ext_truncate+0x250/0x250 [ 1208.069825] ? selinux_file_permission+0x92/0x520 [ 1208.070384] ? ext4_ext_truncate+0x250/0x250 [ 1208.070884] vfs_fallocate+0x48f/0xda0 [ 1208.071342] __x64_sys_fallocate+0xcf/0x140 [ 1208.071831] do_syscall_64+0x33/0x40 [ 1208.072264] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1208.072851] RIP: 0033:0x7fefc6f2db19 [ 1208.073286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1208.075400] RSP: 002b:00007fefc44a3188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 1208.076279] RAX: ffffffffffffffda RBX: 00007fefc7040f60 RCX: 00007fefc6f2db19 [ 1208.077098] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1208.077914] RBP: 00007fefc44a31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1208.078745] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000001 [ 1208.079561] R13: 00007fffd1864d1f R14: 00007fefc44a3300 R15: 0000000000022000 01:43:38 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x4018230c, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:43:53 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 82) [ 1223.368210] loop5: detected capacity change from 0 to 41948160 [ 1223.372044] FAULT_INJECTION: forcing a failure. [ 1223.372044] name failslab, interval 1, probability 0, space 0, times 0 [ 1223.374758] CPU: 1 PID: 14357 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1223.376418] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1223.378418] Call Trace: [ 1223.379056] dump_stack+0x107/0x167 [ 1223.379922] should_fail.cold+0x5/0xa [ 1223.380830] ? vm_area_alloc+0x1c/0x110 [ 1223.381770] should_failslab+0x5/0x20 [ 1223.382682] kmem_cache_alloc+0x5b/0x310 [ 1223.383642] vm_area_alloc+0x1c/0x110 [ 1223.384534] mmap_region+0x97e/0x1500 [ 1223.385441] do_mmap+0xcdb/0x11e0 [ 1223.386261] vm_mmap_pgoff+0x198/0x1f0 [ 1223.387191] ? randomize_page+0xb0/0xb0 [ 1223.388142] ksys_mmap_pgoff+0x41c/0x560 [ 1223.389085] ? find_mergeable_anon_vma+0x250/0x250 [ 1223.390228] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1223.391475] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1223.392681] do_syscall_64+0x33/0x40 [ 1223.393572] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1223.394775] RIP: 0033:0x7f106b311b62 [ 1223.395644] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1223.397123] FAULT_INJECTION: forcing a failure. [ 1223.397123] name failslab, interval 1, probability 0, space 0, times 0 [ 1223.399971] RSP: 002b:00007f10688870f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1223.400045] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f106b311b62 [ 1223.400057] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 1223.400068] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 1223.400078] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000800 01:43:53 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:43:53 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:43:53 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182310, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:43:53 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:43:53 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) (fail_nth: 6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:43:53 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x0, 0x3) 01:43:53 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1223.400089] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1223.412841] CPU: 0 PID: 14356 Comm: syz-executor.2 Not tainted 5.10.240 #1 [ 1223.414285] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1223.416041] Call Trace: [ 1223.416593] dump_stack+0x107/0x167 [ 1223.417349] should_fail.cold+0x5/0xa [ 1223.418141] ? create_object.isra.0+0x3a/0xa20 [ 1223.419097] should_failslab+0x5/0x20 [ 1223.419894] kmem_cache_alloc+0x5b/0x310 [ 1223.420742] create_object.isra.0+0x3a/0xa20 [ 1223.421656] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1223.422712] __kmalloc+0x16e/0x390 [ 1223.423449] ext4_find_extent+0xa77/0xd70 [ 1223.424306] ext4_ext_map_blocks+0x1c8/0x5830 [ 1223.425230] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1223.426302] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1223.427390] ? ext4_ext_release+0x10/0x10 [ 1223.428246] ? lock_release+0x680/0x680 [ 1223.429059] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1223.430017] ? lock_downgrade+0x6d0/0x6d0 [ 1223.430887] ? down_read+0x10f/0x430 [ 1223.431640] ? down_write+0x160/0x160 [ 1223.432411] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1223.433368] ext4_map_blocks+0x8e1/0x1910 [ 1223.434224] ? kmem_cache_alloc+0x2a6/0x310 [ 1223.435120] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1223.436036] ? jbd2__journal_start+0xf3/0x7e0 [ 1223.436950] ? __ext4_journal_start_sb+0x214/0x390 [ 1223.437941] ? __ext4_journal_start_sb+0x1db/0x390 [ 1223.438961] ext4_alloc_file_blocks.isra.0+0x2eb/0xb40 [ 1223.440026] ? ext4_iomap_xattr_begin+0x530/0x530 [ 1223.441003] ? down_write_killable+0x180/0x180 [ 1223.441940] ext4_fallocate+0x415/0x3850 [ 1223.442765] ? __x64_sys_fallocate+0xcf/0x140 [ 1223.443674] ? lock_release+0x680/0x680 [ 1223.444477] ? ext4_ext_truncate+0x250/0x250 [ 1223.445354] ? selinux_file_permission+0x92/0x520 [ 1223.446315] ? ext4_ext_truncate+0x250/0x250 [ 1223.447217] vfs_fallocate+0x48f/0xda0 [ 1223.447997] __x64_sys_fallocate+0xcf/0x140 [ 1223.448855] do_syscall_64+0x33/0x40 [ 1223.449616] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1223.450648] RIP: 0033:0x7fefc6f2db19 [ 1223.451399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1223.455112] RSP: 002b:00007fefc44a3188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 1223.456626] RAX: ffffffffffffffda RBX: 00007fefc7040f60 RCX: 00007fefc6f2db19 [ 1223.458043] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1223.459473] RBP: 00007fefc44a31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1223.460900] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000001 [ 1223.462335] R13: 00007fffd1864d1f R14: 00007fefc44a3300 R15: 0000000000022000 [ 1223.487194] loop6: detected capacity change from 0 to 41948160 01:43:53 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 83) 01:43:53 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182311, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:43:53 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x0, 0x4) 01:43:53 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1223.637754] FAULT_INJECTION: forcing a failure. [ 1223.637754] name failslab, interval 1, probability 0, space 0, times 0 [ 1223.640656] CPU: 1 PID: 14583 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1223.642394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1223.644474] Call Trace: [ 1223.645142] dump_stack+0x107/0x167 [ 1223.646048] should_fail.cold+0x5/0xa [ 1223.647005] ? vm_area_alloc+0x1c/0x110 [ 1223.647996] should_failslab+0x5/0x20 [ 1223.648952] kmem_cache_alloc+0x5b/0x310 [ 1223.649967] vm_area_alloc+0x1c/0x110 [ 1223.650916] mmap_region+0x97e/0x1500 [ 1223.651871] do_mmap+0xcdb/0x11e0 [ 1223.652744] vm_mmap_pgoff+0x198/0x1f0 [ 1223.653718] ? randomize_page+0xb0/0xb0 [ 1223.654742] ksys_mmap_pgoff+0x41c/0x560 [ 1223.655744] ? find_mergeable_anon_vma+0x250/0x250 [ 1223.656985] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1223.658286] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1223.659577] do_syscall_64+0x33/0x40 [ 1223.660494] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1223.661752] RIP: 0033:0x7f106b311b62 [ 1223.662675] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1223.667213] RSP: 002b:00007f10688870f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1223.669084] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f106b311b62 [ 1223.670867] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 1223.672635] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 1223.674390] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000800 [ 1223.676149] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:43:53 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:43:53 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) creat(&(0x7f0000000040)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:43:53 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) (fail_nth: 7) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) [ 1223.809313] loop6: detected capacity change from 0 to 41948160 [ 1223.862061] FAULT_INJECTION: forcing a failure. [ 1223.862061] name failslab, interval 1, probability 0, space 0, times 0 [ 1223.865535] CPU: 0 PID: 14591 Comm: syz-executor.2 Not tainted 5.10.240 #1 [ 1223.867103] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1223.868984] Call Trace: [ 1223.869583] dump_stack+0x107/0x167 [ 1223.870417] should_fail.cold+0x5/0xa [ 1223.871277] ? __es_insert_extent+0xed1/0x1370 [ 1223.872304] should_failslab+0x5/0x20 [ 1223.873191] kmem_cache_alloc+0x5b/0x310 [ 1223.874132] __es_insert_extent+0xed1/0x1370 [ 1223.875142] ? do_raw_read_unlock+0x70/0x70 [ 1223.876131] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1223.877321] ext4_es_insert_extent+0x45d/0xf10 [ 1223.878366] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1223.879346] ? ext4_es_find_extent_range+0x1cb/0x460 [ 1223.880487] ? lock_downgrade+0x6d0/0x6d0 [ 1223.881423] ? __ext4_handle_dirty_super+0x100/0x100 [ 1223.882572] ? __es_find_extent_range+0x197/0x4b0 [ 1223.883676] ? do_raw_read_unlock+0x3b/0x70 [ 1223.884653] ext4_ext_map_blocks+0x1866/0x5830 [ 1223.885694] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1223.886937] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1223.888129] ? ext4_ext_release+0x10/0x10 [ 1223.889071] ? lock_release+0x680/0x680 [ 1223.889971] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1223.891048] ? lock_downgrade+0x6d0/0x6d0 [ 1223.891996] ? down_read+0x10f/0x430 [ 1223.892837] ? down_write+0x160/0x160 [ 1223.893692] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1223.894761] ext4_map_blocks+0x8e1/0x1910 [ 1223.895706] ? kmem_cache_alloc+0x2a6/0x310 [ 1223.896685] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1223.897696] ? jbd2__journal_start+0xf3/0x7e0 [ 1223.898722] ? __ext4_journal_start_sb+0x214/0x390 [ 1223.899820] ? __ext4_journal_start_sb+0x1db/0x390 [ 1223.900931] ext4_alloc_file_blocks.isra.0+0x2eb/0xb40 [ 1223.902124] ? ext4_iomap_xattr_begin+0x530/0x530 [ 1223.903221] ? down_write_killable+0x180/0x180 [ 1223.904262] ext4_fallocate+0x415/0x3850 [ 1223.905176] ? __x64_sys_fallocate+0xcf/0x140 [ 1223.906201] ? lock_release+0x680/0x680 [ 1223.907116] ? ext4_ext_truncate+0x250/0x250 [ 1223.908107] ? selinux_file_permission+0x92/0x520 [ 1223.909203] ? ext4_ext_truncate+0x250/0x250 [ 1223.910201] vfs_fallocate+0x48f/0xda0 [ 1223.911103] __x64_sys_fallocate+0xcf/0x140 [ 1223.912081] do_syscall_64+0x33/0x40 [ 1223.912927] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1223.914087] RIP: 0033:0x7fefc6f2db19 [ 1223.914930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1223.919116] RSP: 002b:00007fefc44a3188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 1223.920845] RAX: ffffffffffffffda RBX: 00007fefc7040f60 RCX: 00007fefc6f2db19 [ 1223.922480] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1223.924096] RBP: 00007fefc44a31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1223.925719] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000001 [ 1223.927344] R13: 00007fffd1864d1f R14: 00007fefc44a3300 R15: 0000000000022000 01:44:09 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/cgroups\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_complete(0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:44:09 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@empty, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0xffff, 0x20, 0x500, 0x7, 0x800000, r2}) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r3 = fork() lseek(0xffffffffffffffff, 0x0, 0x0) ptrace(0x10, r3) ptrace$getregset(0x4204, r3, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:44:09 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) fallocate(0xffffffffffffffff, 0x48, 0x4075, 0x4) setxattr$incfs_size(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=0x4, 0x8, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) sendfile(r0, r1, 0x0, 0x100000001) 01:44:09 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) 01:44:09 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182312, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:44:09 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000edb000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff) pkey_free(0xffffffffffffffff) pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1) pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff) munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x80) pkey_free(r1) fallocate(r2, 0x0, 0x0, 0x8800000) (fail_nth: 8) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0xc0f85403, &(0x7f00000000c0)=0x1) mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0xf742, 0xffffffffffffff2f, 0x2) 01:44:09 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 84) 01:44:09 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x0, 0x300) [ 1239.030588] loop5: detected capacity change from 0 to 41948160 [ 1239.052284] FAULT_INJECTION: forcing a failure. [ 1239.052284] name failslab, interval 1, probability 0, space 0, times 0 [ 1239.055769] CPU: 0 PID: 14718 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1239.057355] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1239.059259] Call Trace: [ 1239.059867] dump_stack+0x107/0x167 [ 1239.060700] should_fail.cold+0x5/0xa [ 1239.061577] ? vm_area_alloc+0x1c/0x110 [ 1239.062498] should_failslab+0x5/0x20 [ 1239.063386] kmem_cache_alloc+0x5b/0x310 [ 1239.064328] vm_area_alloc+0x1c/0x110 [ 1239.065199] mmap_region+0x97e/0x1500 [ 1239.066090] do_mmap+0xcdb/0x11e0 [ 1239.066907] vm_mmap_pgoff+0x198/0x1f0 [ 1239.067805] ? randomize_page+0xb0/0xb0 [ 1239.068735] ksys_mmap_pgoff+0x41c/0x560 [ 1239.069671] ? find_mergeable_anon_vma+0x250/0x250 [ 1239.070814] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1239.072010] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1239.073197] do_syscall_64+0x33/0x40 [ 1239.074047] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.075228] RIP: 0033:0x7f106b311b62 [ 1239.076087] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1239.080296] RSP: 002b:00007f10688870f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1239.082032] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f106b311b62 [ 1239.083678] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 1239.085315] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 1239.086955] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000800 [ 1239.088578] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 01:44:09 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x0, 0x1000000) [ 1239.105657] FAULT_INJECTION: forcing a failure. [ 1239.105657] name failslab, interval 1, probability 0, space 0, times 0 [ 1239.108470] CPU: 0 PID: 14706 Comm: syz-executor.2 Not tainted 5.10.240 #1 [ 1239.110046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1239.111960] Call Trace: [ 1239.112558] dump_stack+0x107/0x167 [ 1239.113389] should_fail.cold+0x5/0xa [ 1239.114256] ? create_object.isra.0+0x3a/0xa20 [ 1239.115306] should_failslab+0x5/0x20 [ 1239.116183] kmem_cache_alloc+0x5b/0x310 [ 1239.117112] create_object.isra.0+0x3a/0xa20 [ 1239.118108] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1239.119271] kmem_cache_alloc+0x159/0x310 [ 1239.120223] __es_insert_extent+0xed1/0x1370 [ 1239.121222] ? do_raw_read_unlock+0x70/0x70 [ 1239.122208] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1239.123414] ext4_es_insert_extent+0x45d/0xf10 [ 1239.124460] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1239.125446] ? ext4_es_find_extent_range+0x1cb/0x460 [ 1239.126606] ? lock_downgrade+0x6d0/0x6d0 [ 1239.127552] ? __ext4_handle_dirty_super+0x100/0x100 [ 1239.128708] ? __es_find_extent_range+0x197/0x4b0 [ 1239.129806] ? do_raw_read_unlock+0x3b/0x70 [ 1239.130796] ext4_ext_map_blocks+0x1866/0x5830 [ 1239.131848] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1239.133041] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1239.134237] ? ext4_ext_release+0x10/0x10 [ 1239.135194] ? lock_release+0x680/0x680 [ 1239.136120] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1239.137202] ? lock_downgrade+0x6d0/0x6d0 [ 1239.138146] ? down_read+0x10f/0x430 [ 1239.139000] ? down_write+0x160/0x160 [ 1239.139868] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1239.140933] ext4_map_blocks+0x8e1/0x1910 [ 1239.141871] ? kmem_cache_alloc+0x2a6/0x310 [ 1239.142867] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1239.143893] ? jbd2__journal_start+0xf3/0x7e0 [ 1239.144919] ? __ext4_journal_start_sb+0x214/0x390 [ 1239.146039] ? __ext4_journal_start_sb+0x1db/0x390 [ 1239.147177] ext4_alloc_file_blocks.isra.0+0x2eb/0xb40 [ 1239.148377] ? ext4_iomap_xattr_begin+0x530/0x530 [ 1239.149477] ? down_write_killable+0x180/0x180 [ 1239.150528] ext4_fallocate+0x415/0x3850 [ 1239.151461] ? __x64_sys_fallocate+0xcf/0x140 [ 1239.152487] ? lock_release+0x680/0x680 [ 1239.153394] ? ext4_ext_truncate+0x250/0x250 [ 1239.154386] ? selinux_file_permission+0x92/0x520 [ 1239.155495] ? ext4_ext_truncate+0x250/0x250 [ 1239.156504] vfs_fallocate+0x48f/0xda0 [ 1239.157402] __x64_sys_fallocate+0xcf/0x140 [ 1239.158393] do_syscall_64+0x33/0x40 [ 1239.159243] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.160409] RIP: 0033:0x7fefc6f2db19 [ 1239.161253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1239.165461] RSP: 002b:00007fefc44a3188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 1239.167197] RAX: ffffffffffffffda RBX: 00007fefc7040f60 RCX: 00007fefc6f2db19 [ 1239.168827] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1239.170446] RBP: 00007fefc44a31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1239.172080] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000001 [ 1239.173704] R13: 00007fffd1864d1f R14: 00007fefc44a3300 R15: 0000000000022000 01:44:09 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x7a4, 0x48e1}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xffff5521, @loopback, 0x3}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x5, 0x9, 0x9, 0x5, @empty, @remote, 0x40, 0x10, 0x0, 0xfff}}) gettid() r0 = fork() ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x1, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) [ 1239.193958] loop6: detected capacity change from 0 to 41948160 01:44:09 executing program 3: timer_delete(0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) timer_gettime(0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) fcntl$getown(r0, 0x9) clone3(&(0x7f00000001c0)={0x40182314, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 01:44:09 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x0, 0x2000000) 01:44:09 executing program 1: perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81019021}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6b20, &(0x7f0000000740)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) (fail_nth: 85) 01:44:09 executing program 7: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) lseek(r0, 0x0, 0x3000000) [ 1239.390057] FAULT_INJECTION: forcing a failure. [ 1239.390057] name failslab, interval 1, probability 0, space 0, times 0 [ 1239.392247] CPU: 1 PID: 14861 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1239.393719] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1239.395415] Call Trace: [ 1239.395880] dump_stack+0x107/0x167 [ 1239.396536] should_fail.cold+0x5/0xa [ 1239.397360] ? ptlock_alloc+0x1d/0x70 [ 1239.398069] should_failslab+0x5/0x20 [ 1239.398872] kmem_cache_alloc+0x5b/0x310 [ 1239.399839] ptlock_alloc+0x1d/0x70 [ 1239.400551] pte_alloc_one+0x68/0x1a0 [ 1239.401210] __pte_alloc+0x1d/0x330 [ 1239.401830] remap_pfn_range_internal+0x9a3/0xf60 [ 1239.402656] ? lookup_memtype+0x5b/0x200 [ 1239.403522] ? apply_to_existing_page_range+0x40/0x40 [ 1239.404478] remap_pfn_range+0xcd/0x160 [ 1239.405366] ? remap_pfn_range_notrack+0x70/0x70 [ 1239.406367] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1239.407381] io_uring_mmap+0x398/0x530 [ 1239.408035] mmap_file+0x5e/0xe0 [ 1239.408629] mmap_region+0xc49/0x1500 [ 1239.409437] do_mmap+0xcdb/0x11e0 [ 1239.410103] vm_mmap_pgoff+0x198/0x1f0 [ 1239.410901] ? randomize_page+0xb0/0xb0 [ 1239.411824] ksys_mmap_pgoff+0x41c/0x560 [ 1239.412616] ? find_mergeable_anon_vma+0x250/0x250 [ 1239.413471] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1239.414367] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1239.415419] do_syscall_64+0x33/0x40 [ 1239.416111] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.417260] RIP: 0033:0x7f106b311b62 [ 1239.418095] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1239.421456] RSP: 002b:00007f10688870f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1239.423094] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f106b311b62 [ 1239.424521] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 1239.425929] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 1239.427316] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000800 [ 1239.428796] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1239.529540] ------------[ cut here ]------------ [ 1239.530417] WARNING: CPU: 0 PID: 14861 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 1239.532162] Modules linked in: [ 1239.532810] CPU: 0 PID: 14861 Comm: syz-executor.1 Not tainted 5.10.240 #1 [ 1239.534156] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1239.535713] RIP: 0010:get_pat_info+0x216/0x270 [ 1239.536521] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 61 8a 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 4a 8a 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 45 99 5a 00 e9 [ 1239.539769] RSP: 0018:ffff888039c47898 EFLAGS: 00010202 [ 1239.540702] RAX: 0000000000013690 RBX: ffff88801cd74700 RCX: ffffc900007e3000 [ 1239.543749] RDX: 0000000000040000 RSI: ffffffff811243e6 RDI: 0000000000000007 [ 1239.547086] RBP: ffff888039c47950 R08: 0000000000000000 R09: ffff888039c47820 [ 1239.549975] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 1239.551358] R13: 1ffff11007388f13 R14: 0000000000000000 R15: ffff88801cd74750 [ 1239.552672] FS: 00007f1068887700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 1239.554214] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1239.555248] CR2: 000056109dead968 CR3: 000000004d5ba000 CR4: 0000000000350ef0 [ 1239.556582] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1239.557901] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000dd060a [ 1239.559304] Call Trace: [ 1239.559860] ? pgprot_writethrough+0xc0/0xc0 [ 1239.560657] ? finish_task_switch+0x126/0x5d0 [ 1239.561539] ? finish_task_switch+0xef/0x5d0 [ 1239.562340] untrack_pfn+0xdc/0x240 [ 1239.563059] ? track_pfn_insert+0x150/0x150 [ 1239.563923] ? lock_downgrade+0x6d0/0x6d0 [ 1239.564806] ? uprobe_munmap+0x95/0x560 [ 1239.565596] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1239.566504] unmap_single_vma+0x1bc/0x300 [ 1239.567242] zap_page_range_single+0x2ce/0x450 [ 1239.568213] ? unmap_single_vma+0x300/0x300 [ 1239.569136] ? remap_pfn_range_internal+0xc56/0xf60 [ 1239.570063] ? lookup_memtype+0x5b/0x200 [ 1239.570970] ? apply_to_existing_page_range+0x40/0x40 [ 1239.571977] remap_pfn_range+0x139/0x160 [ 1239.572720] ? remap_pfn_range_notrack+0x70/0x70 [ 1239.573646] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1239.574740] io_uring_mmap+0x398/0x530 [ 1239.575530] mmap_file+0x5e/0xe0 [ 1239.576286] mmap_region+0xc49/0x1500 [ 1239.577014] do_mmap+0xcdb/0x11e0 [ 1239.577631] vm_mmap_pgoff+0x198/0x1f0 [ 1239.578481] ? randomize_page+0xb0/0xb0 [ 1239.579343] ksys_mmap_pgoff+0x41c/0x560 [ 1239.580145] ? find_mergeable_anon_vma+0x250/0x250 [ 1239.581154] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1239.582188] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1239.583269] do_syscall_64+0x33/0x40 [ 1239.583933] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.584918] RIP: 0033:0x7f106b311b62 [ 1239.585677] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1239.588918] RSP: 002b:00007f10688870f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1239.590322] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f106b311b62 [ 1239.591714] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 1239.593098] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 1239.594432] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000800 [ 1239.595825] R13: 0000000020ffc000 R14: 00000000200007c0 R15: 0000000020ffb000 [ 1239.597179] irq event stamp: 1923 [ 1239.597764] hardirqs last enabled at (1931): [] console_unlock+0x92d/0xb40 [ 1239.599378] hardirqs last disabled at (1942): [] console_unlock+0x839/0xb40 [ 1239.601014] softirqs last enabled at (1244): [] asm_call_irq_on_stack+0x12/0x20 [ 1239.602653] softirqs last disabled at (1173): [] asm_call_irq_on_stack+0x12/0x20 [ 1239.604309] ---[ end trace 62caef47f527a7f7 ]--- VM DIAGNOSIS: 01:44:09 Registers: info registers vcpu 0 RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822e2601 RDI=ffffffff879f5140 RBP=ffffffff879f5100 RSP=ffff888039c472a8 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000031 R13=0000000000000031 R14=ffffffff879f5100 R15=dffffc0000000000 RIP=ffffffff822e2658 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f1068887700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000056109dead968 CR3=000000004d5ba000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000dd060a EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=1ffffffff097ce61 RBX=dffffc0000000000 RCX=ffffffff814d42eb RDX=0000000000000000 RSI=ffffffff814cfdde RDI=ffffffff84be7308 RBP=ffff88800fde7cd0 RSP=ffff88800fde7c08 R8 =0000000000000001 R9 =0000000000000001 R10=00000000000000e8 R11=0000000000000001 R12=0000000000000015 R13=ffffed1001fbcf9c R14=00000000000000e8 R15=ffffc900006a1198 RIP=ffffffff814cfe15 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007feb4d91a900 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007feb4cd2bc00 CR3=000000000dc3e000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=14e7c20d8c530c968b4b1684bbbdc570 XMM02=6b1e99b806172e3b00000000000aea08 XMM03=ac8bc31478ec851100000000000aef80 XMM04=484da5a10c405985000000000017a7d8 XMM05=d3fdd5f48436fbd700000000000aeab0 XMM06=4537fa816d7d703b00000000000ae968 XMM07=a1fcdcf819d7e1e500000000000ae728 XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000