failure. [ 1341.360197] name failslab, interval 1, probability 0, space 0, times 0 [ 1341.363016] CPU: 0 PID: 9835 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 1341.364376] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1341.366020] Call Trace: [ 1341.366562] dump_stack+0x107/0x167 [ 1341.367290] should_fail.cold+0x5/0xa [ 1341.368052] ? create_object.isra.0+0x3a/0xa20 [ 1341.368965] should_failslab+0x5/0x20 [ 1341.369722] kmem_cache_alloc+0x5b/0x310 [ 1341.370567] create_object.isra.0+0x3a/0xa20 [ 1341.371440] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1341.372453] __kmalloc+0x16e/0x390 [ 1341.373180] ext4_find_extent+0xa3d/0xd30 [ 1341.374026] ext4_ext_remove_space+0x13a9/0x3d90 [ 1341.374993] ? find_held_lock+0x2c/0x110 [ 1341.375820] ? do_raw_write_lock+0x11a/0x280 [ 1341.376695] ? do_raw_read_unlock+0x70/0x70 [ 1341.377562] ? ext4_ext_index_trans_blocks+0x170/0x170 [ 1341.378623] ? ext4_es_remove_extent+0x103/0x350 [ 1341.379568] ? ext4_es_lookup_extent+0xaa0/0xaa0 [ 1341.380498] ? down_write_killable+0x180/0x180 [ 1341.381423] ext4_punch_hole+0x993/0x1070 [ 1341.382257] ? downgrade_write+0x3a0/0x3a0 [ 1341.383102] ? down_write_killable+0x180/0x180 [ 1341.384030] ext4_fallocate+0xd8e/0x3860 [ 1341.384838] ? __x64_sys_fallocate+0xcf/0x140 [ 1341.385740] ? lock_release+0x680/0x680 [ 1341.386556] ? _cond_resched+0x12/0x80 [ 1341.387335] ? ext4_ext_truncate+0x250/0x250 [ 1341.388216] ? ext4_ext_truncate+0x250/0x250 [ 1341.389087] vfs_fallocate+0x48f/0xd00 [ 1341.389867] __x64_sys_fallocate+0xcf/0x140 [ 1341.390747] do_syscall_64+0x33/0x40 [ 1341.391487] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1341.392505] RIP: 0033:0x7f99575d9b19 [ 1341.393237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1341.396917] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 1341.398428] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 1341.399989] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 1341.401626] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1341.403072] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001 [ 1341.404507] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:03:00 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:00 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:00 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:00 executing program 2: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:00 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:00 executing program 1: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:00 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:00 executing program 6: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:01 executing program 4: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:01 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) (fail_nth: 8) 07:03:01 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:01 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1341.813265] FAULT_INJECTION: forcing a failure. [ 1341.813265] name failslab, interval 1, probability 0, space 0, times 0 [ 1341.816017] CPU: 0 PID: 9860 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 1341.817407] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1341.819418] Call Trace: [ 1341.819973] dump_stack+0x107/0x167 [ 1341.820851] should_fail.cold+0x5/0xa [ 1341.821639] ? create_object.isra.0+0x3a/0xa20 [ 1341.822792] should_failslab+0x5/0x20 [ 1341.823751] kmem_cache_alloc+0x5b/0x310 [ 1341.824900] ? pagecache_get_page+0x243/0xc80 [ 1341.826067] create_object.isra.0+0x3a/0xa20 [ 1341.827313] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1341.828596] kmem_cache_alloc+0x159/0x310 [ 1341.829717] ext4_free_blocks+0xed2/0x2300 [ 1341.830829] ? ext4_mb_new_blocks+0x45b0/0x45b0 [ 1341.832178] ? __ext4_journal_ensure_credits+0x263/0x2e0 [ 1341.833480] ext4_ext_remove_space+0x1ef7/0x3d90 [ 1341.834893] ? ext4_ext_index_trans_blocks+0x170/0x170 [ 1341.836141] ? ext4_es_remove_extent+0x103/0x350 [ 1341.837479] ? ext4_es_lookup_extent+0xaa0/0xaa0 [ 1341.838629] ? down_write_killable+0x180/0x180 [ 1341.839951] ext4_punch_hole+0x993/0x1070 [ 1341.840938] ? downgrade_write+0x3a0/0x3a0 [ 1341.842149] ? down_write_killable+0x180/0x180 [ 1341.843263] ext4_fallocate+0xd8e/0x3860 [ 1341.844414] ? __x64_sys_fallocate+0xcf/0x140 [ 1341.845496] ? lock_release+0x680/0x680 [ 1341.846628] ? _cond_resched+0x12/0x80 [ 1341.847571] ? ext4_ext_truncate+0x250/0x250 [ 1341.848829] ? ext4_ext_truncate+0x250/0x250 [ 1341.849882] vfs_fallocate+0x48f/0xd00 [ 1341.851023] __x64_sys_fallocate+0xcf/0x140 [ 1341.852069] do_syscall_64+0x33/0x40 [ 1341.853127] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1341.854355] RIP: 0033:0x7f99575d9b19 [ 1341.855411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1341.860443] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 1341.862274] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 1341.864285] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 1341.865964] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1341.867657] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001 [ 1341.869335] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 [ 1341.873519] cgroup: fork rejected by pids controller in /syz6 07:03:01 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:01 executing program 1: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:01 executing program 2: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:01 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:01 executing program 6: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:01 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) (fail_nth: 9) [ 1342.148429] FAULT_INJECTION: forcing a failure. [ 1342.148429] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1342.150895] CPU: 1 PID: 9888 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 1342.152311] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1342.154035] Call Trace: [ 1342.154605] dump_stack+0x107/0x167 [ 1342.155365] should_fail.cold+0x5/0xa [ 1342.156116] _copy_to_user+0x2e/0x180 [ 1342.156891] simple_read_from_buffer+0xcc/0x160 [ 1342.157818] proc_fail_nth_read+0x198/0x230 [ 1342.158713] ? proc_sessionid_read+0x230/0x230 [ 1342.159630] ? security_file_permission+0x24e/0x570 [ 1342.160631] ? perf_trace_initcall_start+0x101/0x380 [ 1342.161658] ? proc_sessionid_read+0x230/0x230 [ 1342.162588] vfs_read+0x228/0x580 [ 1342.163306] ksys_read+0x12d/0x260 [ 1342.164100] ? vfs_write+0xa70/0xa70 [ 1342.164873] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1342.165927] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1342.166996] do_syscall_64+0x33/0x40 [ 1342.167745] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1342.168775] RIP: 0033:0x7f995758c69c [ 1342.169523] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1342.173314] RSP: 002b:00007f9954b4f170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1342.174952] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f995758c69c [ 1342.176504] RDX: 000000000000000f RSI: 00007f9954b4f1e0 RDI: 0000000000000005 [ 1342.178106] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1342.179692] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001 [ 1342.181282] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:03:18 executing program 6: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:18 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:18 executing program 3: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:18 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:18 executing program 2: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:18 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:18 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) [ 1359.443889] cgroup: fork rejected by pids controller in /syz7 07:03:18 executing program 3: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:18 executing program 1: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:18 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:18 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x2, 0x0, 0x8000) 07:03:18 executing program 2: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:18 executing program 3: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:32 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:32 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x4, 0x0, 0x8000) 07:03:32 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:32 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:32 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:03:32 executing program 4: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:32 executing program 1: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:32 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) [ 1373.079353] cgroup: fork rejected by pids controller in /syz0 07:03:32 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:32 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:03:32 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:03:32 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x6, 0x0, 0x8000) 07:03:47 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x8, 0x0, 0x8000) 07:03:47 executing program 1: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 0: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:03:47 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:03:47 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 3: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0xf, 0x0, 0x8000) 07:03:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 0: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 4: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 6: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 4: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:47 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:48 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:03:48 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0xffffffffffffffff, 0x0, 0x8000) 07:04:03 executing program 3: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:03 executing program 6: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:04 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x2, 0x8000) 07:04:04 executing program 2: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:04 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:04 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:04 executing program 4: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:04 executing program 0: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:04 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x4, 0x8000) 07:04:04 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:04:04 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:04 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:04 executing program 2: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:04 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:04 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:04:04 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:20 executing program 1: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:20 executing program 2: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:20 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x5, 0x8000) 07:04:20 executing program 3: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:20 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:20 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:20 executing program 6: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:04:21 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:21 executing program 1: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1421.857832] cgroup: fork rejected by pids controller in /syz4 07:04:21 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:04:21 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x7, 0x8000) 07:04:21 executing program 0: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:21 executing program 1: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:21 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:21 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:04:35 executing program 0: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:35 executing program 3: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:35 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1) 07:04:35 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x8, 0x8000) 07:04:35 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:04:35 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:04:35 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:35 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1436.318594] FAULT_INJECTION: forcing a failure. [ 1436.318594] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1436.321043] CPU: 1 PID: 10171 Comm: syz-executor.6 Not tainted 5.10.186 #1 [ 1436.322447] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1436.324144] Call Trace: [ 1436.324684] dump_stack+0x107/0x167 [ 1436.325427] should_fail.cold+0x5/0xa [ 1436.326214] _copy_from_user+0x2e/0x1b0 [ 1436.327027] copy_clone_args_from_user+0x147/0x790 [ 1436.328037] ? __lockdep_reset_lock+0x180/0x180 [ 1436.328979] ? sighand_ctor+0x40/0x40 [ 1436.329755] ? find_held_lock+0x2c/0x110 [ 1436.330583] ? ksys_write+0x21a/0x260 [ 1436.331372] ? lock_downgrade+0x6d0/0x6d0 [ 1436.332211] __do_sys_clone3+0x9d/0x320 [ 1436.333012] ? __do_sys_clone+0x110/0x110 [ 1436.333859] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1436.334835] ? wait_for_completion_io+0x270/0x270 [ 1436.335816] ? rcu_read_lock_any_held+0x75/0xa0 [ 1436.336754] ? vfs_write+0x354/0xa70 [ 1436.337517] ? fput_many+0x2f/0x1a0 [ 1436.338253] ? ksys_write+0x1a9/0x260 [ 1436.339023] ? __ia32_sys_read+0xb0/0xb0 [ 1436.339862] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1436.340917] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1436.341957] ? trace_hardirqs_on+0x5b/0x180 [ 1436.342830] do_syscall_64+0x33/0x40 [ 1436.343597] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1436.344624] RIP: 0033:0x7f9be05f4b19 [ 1436.345377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1436.349076] RSP: 002b:00007f9bddb6a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1436.350609] RAX: ffffffffffffffda RBX: 00007f9be0707f60 RCX: 00007f9be05f4b19 [ 1436.352049] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1436.353477] RBP: 00007f9bddb6a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1436.354911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1436.356347] R13: 00007ffec4eef12f R14: 00007f9bddb6a300 R15: 0000000000022000 07:04:35 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:04:35 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xf, 0x8000) 07:04:35 executing program 4: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:35 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:04:35 executing program 3: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:35 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1) 07:04:35 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 2) 07:04:35 executing program 7: socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1436.644932] FAULT_INJECTION: forcing a failure. [ 1436.644932] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1436.647349] CPU: 0 PID: 10396 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1436.648720] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1436.650380] Call Trace: [ 1436.650908] dump_stack+0x107/0x167 [ 1436.651653] should_fail.cold+0x5/0xa [ 1436.652419] _copy_from_user+0x2e/0x1b0 [ 1436.653225] copy_clone_args_from_user+0x147/0x790 [ 1436.654217] ? __lockdep_reset_lock+0x180/0x180 [ 1436.655150] ? sighand_ctor+0x40/0x40 [ 1436.655936] ? find_held_lock+0x2c/0x110 [ 1436.656754] ? ksys_write+0x21a/0x260 [ 1436.657515] ? lock_downgrade+0x6d0/0x6d0 [ 1436.658345] __do_sys_clone3+0x9d/0x320 [ 1436.659141] ? __do_sys_clone+0x110/0x110 [ 1436.659989] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1436.660953] ? wait_for_completion_io+0x270/0x270 [ 1436.661914] ? rcu_read_lock_any_held+0x75/0xa0 [ 1436.662861] ? vfs_write+0x354/0xa70 [ 1436.663627] ? fput_many+0x2f/0x1a0 [ 1436.664365] ? ksys_write+0x1a9/0x260 [ 1436.665117] ? __ia32_sys_read+0xb0/0xb0 [ 1436.665921] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1436.666956] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1436.667991] ? trace_hardirqs_on+0x5b/0x180 [ 1436.668369] FAULT_INJECTION: forcing a failure. [ 1436.668369] name failslab, interval 1, probability 0, space 0, times 0 [ 1436.668843] do_syscall_64+0x33/0x40 [ 1436.668864] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1436.668877] RIP: 0033:0x7f92d9afeb19 [ 1436.668904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1436.677158] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1436.678655] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1436.680067] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1436.681470] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1436.682881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1436.684289] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 [ 1436.685727] CPU: 1 PID: 10398 Comm: syz-executor.6 Not tainted 5.10.186 #1 [ 1436.687121] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1436.688781] Call Trace: [ 1436.689312] dump_stack+0x107/0x167 [ 1436.690037] should_fail.cold+0x5/0xa [ 1436.690808] ? copy_process+0x446c/0x6740 [ 1436.691627] should_failslab+0x5/0x20 [ 1436.692377] kmem_cache_alloc_node+0x55/0x330 [ 1436.693261] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1436.694294] copy_process+0x446c/0x6740 [ 1436.695073] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1436.696099] ? exc_page_fault+0xca/0x1a0 [ 1436.696881] ? trace_hardirqs_on+0x5b/0x180 [ 1436.697733] ? exc_page_fault+0xca/0x1a0 [ 1436.698541] ? __cleanup_sighand+0xb0/0xb0 [ 1436.699391] ? _copy_from_user+0xfb/0x1b0 [ 1436.700201] kernel_clone+0xe7/0x980 [ 1436.700921] ? __lockdep_reset_lock+0x180/0x180 [ 1436.701817] ? create_io_thread+0xf0/0xf0 [ 1436.702637] ? ksys_write+0x21a/0x260 [ 1436.703406] ? lock_downgrade+0x6d0/0x6d0 [ 1436.704219] __do_sys_clone3+0x1e5/0x320 [ 1436.705060] ? __do_sys_clone+0x110/0x110 [ 1436.705934] ? rcu_read_lock_any_held+0x75/0xa0 [ 1436.706863] ? vfs_write+0x354/0xa70 [ 1436.707631] ? fput_many+0x2f/0x1a0 [ 1436.708356] ? ksys_write+0x1a9/0x260 [ 1436.709114] ? __ia32_sys_read+0xb0/0xb0 [ 1436.709929] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1436.710974] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1436.712002] ? trace_hardirqs_on+0x5b/0x180 [ 1436.712864] do_syscall_64+0x33/0x40 [ 1436.713605] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1436.714620] RIP: 0033:0x7f9be05f4b19 [ 1436.715372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1436.719025] RSP: 002b:00007f9bddb6a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1436.720542] RAX: ffffffffffffffda RBX: 00007f9be0707f60 RCX: 00007f9be05f4b19 [ 1436.721958] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1436.723383] RBP: 00007f9bddb6a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1436.724800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1436.726216] R13: 00007ffec4eef12f R14: 00007f9bddb6a300 R15: 0000000000022000 07:04:52 executing program 0: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:52 executing program 7: socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:52 executing program 3: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:52 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 2) 07:04:52 executing program 4: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1) 07:04:52 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 3) 07:04:52 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x10, 0x8000) [ 1453.505227] FAULT_INJECTION: forcing a failure. [ 1453.505227] name failslab, interval 1, probability 0, space 0, times 0 [ 1453.507714] CPU: 1 PID: 10514 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1453.509074] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1453.510780] Call Trace: [ 1453.511302] dump_stack+0x107/0x167 [ 1453.512041] should_fail.cold+0x5/0xa [ 1453.512791] ? copy_process+0x446c/0x6740 [ 1453.513617] should_failslab+0x5/0x20 [ 1453.514373] kmem_cache_alloc_node+0x55/0x330 [ 1453.515262] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.516365] copy_process+0x446c/0x6740 [ 1453.517151] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.518208] ? exc_page_fault+0xca/0x1a0 [ 1453.519049] ? trace_hardirqs_on+0x5b/0x180 [ 1453.519929] ? exc_page_fault+0xca/0x1a0 [ 1453.520780] ? __cleanup_sighand+0xb0/0xb0 [ 1453.521640] ? _copy_from_user+0xfb/0x1b0 [ 1453.522503] kernel_clone+0xe7/0x980 [ 1453.523270] ? __lockdep_reset_lock+0x180/0x180 [ 1453.524252] ? create_io_thread+0xf0/0xf0 [ 1453.525110] ? ksys_write+0x21a/0x260 [ 1453.525887] ? lock_downgrade+0x6d0/0x6d0 [ 1453.526754] __do_sys_clone3+0x1e5/0x320 [ 1453.527625] ? __do_sys_clone+0x110/0x110 [ 1453.528514] ? rcu_read_lock_any_held+0x75/0xa0 [ 1453.529418] ? vfs_write+0x354/0xa70 [ 1453.530198] ? fput_many+0x2f/0x1a0 [ 1453.530917] ? ksys_write+0x1a9/0x260 [ 1453.531685] ? __ia32_sys_read+0xb0/0xb0 [ 1453.532516] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.533535] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1453.534581] ? trace_hardirqs_on+0x5b/0x180 [ 1453.535492] do_syscall_64+0x33/0x40 [ 1453.536265] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1453.537312] RIP: 0033:0x7f92d9afeb19 [ 1453.538071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1453.541841] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1453.543389] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1453.544867] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1453.546324] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1453.547818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1453.549276] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 [ 1453.556435] FAULT_INJECTION: forcing a failure. [ 1453.556435] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1453.559023] CPU: 0 PID: 10523 Comm: syz-executor.1 Not tainted 5.10.186 #1 [ 1453.560425] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1453.561197] FAULT_INJECTION: forcing a failure. [ 1453.561197] name failslab, interval 1, probability 0, space 0, times 0 [ 1453.562264] Call Trace: [ 1453.562292] dump_stack+0x107/0x167 [ 1453.562320] should_fail.cold+0x5/0xa [ 1453.566562] _copy_from_user+0x2e/0x1b0 [ 1453.567371] copy_clone_args_from_user+0x147/0x790 [ 1453.568366] ? __lockdep_reset_lock+0x180/0x180 [ 1453.569324] ? sighand_ctor+0x40/0x40 [ 1453.570190] ? find_held_lock+0x2c/0x110 [ 1453.571241] ? ksys_write+0x21a/0x260 [ 1453.572234] ? lock_downgrade+0x6d0/0x6d0 [ 1453.573300] __do_sys_clone3+0x9d/0x320 [ 1453.574316] ? __do_sys_clone+0x110/0x110 [ 1453.575331] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1453.576379] ? wait_for_completion_io+0x270/0x270 [ 1453.577388] ? rcu_read_lock_any_held+0x75/0xa0 [ 1453.578405] ? vfs_write+0x354/0xa70 [ 1453.579172] ? fput_many+0x2f/0x1a0 [ 1453.579953] ? ksys_write+0x1a9/0x260 [ 1453.580714] ? __ia32_sys_read+0xb0/0xb0 [ 1453.581546] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.582595] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1453.583650] ? trace_hardirqs_on+0x5b/0x180 [ 1453.584558] do_syscall_64+0x33/0x40 [ 1453.585414] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1453.586446] RIP: 0033:0x7f6ce9af3b19 [ 1453.587193] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1453.590923] RSP: 002b:00007f6ce7069188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1453.592532] RAX: ffffffffffffffda RBX: 00007f6ce9c06f60 RCX: 00007f6ce9af3b19 [ 1453.593966] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1453.595386] RBP: 00007f6ce70691d0 R08: 0000000000000000 R09: 0000000000000000 [ 1453.596852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1453.598298] R13: 00007ffe6243298f R14: 00007f6ce7069300 R15: 0000000000022000 [ 1453.599882] CPU: 1 PID: 10526 Comm: syz-executor.6 Not tainted 5.10.186 #1 [ 1453.601276] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1453.602907] Call Trace: [ 1453.603420] dump_stack+0x107/0x167 [ 1453.604229] should_fail.cold+0x5/0xa [ 1453.605026] ? create_object.isra.0+0x3a/0xa20 [ 1453.605984] should_failslab+0x5/0x20 [ 1453.606775] kmem_cache_alloc+0x5b/0x310 [ 1453.607662] create_object.isra.0+0x3a/0xa20 [ 1453.608548] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1453.609591] kmem_cache_alloc_node+0x169/0x330 [ 1453.610507] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.611613] copy_process+0x446c/0x6740 [ 1453.612418] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.613472] ? exc_page_fault+0xca/0x1a0 [ 1453.614296] ? trace_hardirqs_on+0x5b/0x180 [ 1453.615174] ? exc_page_fault+0xca/0x1a0 [ 1453.616029] ? __cleanup_sighand+0xb0/0xb0 [ 1453.616891] ? _copy_from_user+0xfb/0x1b0 [ 1453.617740] kernel_clone+0xe7/0x980 [ 1453.618504] ? __lockdep_reset_lock+0x180/0x180 [ 1453.619494] ? create_io_thread+0xf0/0xf0 [ 1453.620365] ? ksys_write+0x21a/0x260 [ 1453.621143] ? lock_downgrade+0x6d0/0x6d0 [ 1453.621987] __do_sys_clone3+0x1e5/0x320 [ 1453.622803] ? __do_sys_clone+0x110/0x110 [ 1453.623680] ? rcu_read_lock_any_held+0x75/0xa0 [ 1453.624611] ? vfs_write+0x354/0xa70 [ 1453.625363] ? fput_many+0x2f/0x1a0 [ 1453.626102] ? ksys_write+0x1a9/0x260 [ 1453.626872] ? __ia32_sys_read+0xb0/0xb0 [ 1453.627726] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.628784] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1453.629814] ? trace_hardirqs_on+0x5b/0x180 [ 1453.630681] do_syscall_64+0x33/0x40 [ 1453.631429] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1453.632492] RIP: 0033:0x7f9be05f4b19 [ 1453.633240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1453.636945] RSP: 002b:00007f9bddb6a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1453.638469] RAX: ffffffffffffffda RBX: 00007f9be0707f60 RCX: 00007f9be05f4b19 [ 1453.639929] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1453.641357] RBP: 00007f9bddb6a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1453.642782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1453.644262] R13: 00007ffec4eef12f R14: 00007f9bddb6a300 R15: 0000000000022000 07:04:53 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x18, 0x8000) 07:04:53 executing program 4: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:04:53 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 2) 07:04:53 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 3) [ 1453.850863] FAULT_INJECTION: forcing a failure. [ 1453.850863] name failslab, interval 1, probability 0, space 0, times 0 [ 1453.853291] CPU: 1 PID: 10635 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1453.854673] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1453.856370] Call Trace: [ 1453.856906] dump_stack+0x107/0x167 [ 1453.857646] should_fail.cold+0x5/0xa [ 1453.858423] ? create_object.isra.0+0x3a/0xa20 [ 1453.859352] should_failslab+0x5/0x20 [ 1453.860155] kmem_cache_alloc+0x5b/0x310 [ 1453.860981] create_object.isra.0+0x3a/0xa20 [ 1453.861871] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1453.862912] kmem_cache_alloc_node+0x169/0x330 [ 1453.863989] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.865233] copy_process+0x446c/0x6740 [ 1453.866177] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.867411] ? exc_page_fault+0xca/0x1a0 [ 1453.868425] ? trace_hardirqs_on+0x5b/0x180 [ 1453.869480] ? exc_page_fault+0xca/0x1a0 [ 1453.870468] ? __cleanup_sighand+0xb0/0xb0 [ 1453.871490] ? _copy_from_user+0xfb/0x1b0 [ 1453.872494] kernel_clone+0xe7/0x980 [ 1453.873376] ? __lockdep_reset_lock+0x180/0x180 [ 1453.874492] ? create_io_thread+0xf0/0xf0 [ 1453.875501] ? ksys_write+0x21a/0x260 [ 1453.876431] ? lock_downgrade+0x6d0/0x6d0 [ 1453.877427] __do_sys_clone3+0x1e5/0x320 [ 1453.878392] ? __do_sys_clone+0x110/0x110 [ 1453.879394] ? rcu_read_lock_any_held+0x75/0xa0 [ 1453.880425] ? vfs_write+0x354/0xa70 [ 1453.881251] ? fput_many+0x2f/0x1a0 [ 1453.882194] ? ksys_write+0x1a9/0x260 [ 1453.883178] ? __ia32_sys_read+0xb0/0xb0 [ 1453.884253] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.885540] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1453.886615] ? trace_hardirqs_on+0x5b/0x180 [ 1453.887527] do_syscall_64+0x33/0x40 [ 1453.888293] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1453.889351] RIP: 0033:0x7f92d9afeb19 [ 1453.890117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1453.893907] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1453.895465] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1453.896942] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1453.898397] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1453.899883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1453.901343] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 [ 1453.937569] FAULT_INJECTION: forcing a failure. [ 1453.937569] name failslab, interval 1, probability 0, space 0, times 0 [ 1453.939966] CPU: 1 PID: 10640 Comm: syz-executor.1 Not tainted 5.10.186 #1 [ 1453.941387] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1453.943084] Call Trace: [ 1453.943650] dump_stack+0x107/0x167 [ 1453.944405] should_fail.cold+0x5/0xa [ 1453.945212] ? copy_process+0x446c/0x6740 [ 1453.946064] should_failslab+0x5/0x20 [ 1453.946845] kmem_cache_alloc_node+0x55/0x330 [ 1453.947771] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.948858] copy_process+0x446c/0x6740 [ 1453.949660] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.950735] ? exc_page_fault+0xca/0x1a0 [ 1453.951569] ? trace_hardirqs_on+0x5b/0x180 [ 1453.952451] ? exc_page_fault+0xca/0x1a0 [ 1453.953313] ? __cleanup_sighand+0xb0/0xb0 [ 1453.954192] ? _copy_from_user+0xfb/0x1b0 [ 1453.955047] kernel_clone+0xe7/0x980 [ 1453.955844] ? __lockdep_reset_lock+0x180/0x180 [ 1453.956802] ? create_io_thread+0xf0/0xf0 [ 1453.957656] ? ksys_write+0x21a/0x260 [ 1453.958438] ? lock_downgrade+0x6d0/0x6d0 [ 1453.959288] __do_sys_clone3+0x1e5/0x320 [ 1453.960133] ? __do_sys_clone+0x110/0x110 [ 1453.961012] ? rcu_read_lock_any_held+0x75/0xa0 [ 1453.961962] ? vfs_write+0x354/0xa70 [ 1453.962724] ? fput_many+0x2f/0x1a0 [ 1453.963487] ? ksys_write+0x1a9/0x260 [ 1453.964273] ? __ia32_sys_read+0xb0/0xb0 [ 1453.965118] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1453.966196] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1453.967243] ? trace_hardirqs_on+0x5b/0x180 [ 1453.968140] do_syscall_64+0x33/0x40 [ 1453.968921] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1453.969969] RIP: 0033:0x7f6ce9af3b19 [ 1453.970719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1453.974483] RSP: 002b:00007f6ce7069188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1453.976046] RAX: ffffffffffffffda RBX: 00007f6ce9c06f60 RCX: 00007f6ce9af3b19 [ 1453.977496] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1453.978946] RBP: 00007f6ce70691d0 R08: 0000000000000000 R09: 0000000000000000 [ 1453.980408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1453.981875] R13: 00007ffe6243298f R14: 00007f6ce7069300 R15: 0000000000022000 07:05:10 executing program 0: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:05:10 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 3) 07:05:10 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 4) 07:05:10 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1) 07:05:10 executing program 7: socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:05:10 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x102, 0x8000) 07:05:10 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:05:10 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 4) [ 1470.964522] FAULT_INJECTION: forcing a failure. [ 1470.964522] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 1470.967159] CPU: 1 PID: 10651 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1470.968658] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1470.970451] Call Trace: [ 1470.971026] dump_stack+0x107/0x167 [ 1470.971826] should_fail.cold+0x5/0xa [ 1470.972655] __alloc_pages_nodemask+0x182/0x600 [ 1470.973664] ? lock_downgrade+0x6d0/0x6d0 [ 1470.974573] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1470.974627] FAULT_INJECTION: forcing a failure. [ 1470.974627] name failslab, interval 1, probability 0, space 0, times 0 [ 1470.975896] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1470.975929] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1470.975958] copy_process+0x60a/0x6740 [ 1470.981170] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1470.982307] ? exc_page_fault+0xca/0x1a0 [ 1470.983188] ? trace_hardirqs_on+0x5b/0x180 [ 1470.984132] ? exc_page_fault+0xca/0x1a0 [ 1470.985026] ? __cleanup_sighand+0xb0/0xb0 [ 1470.985956] ? _copy_from_user+0xfb/0x1b0 [ 1470.986861] kernel_clone+0xe7/0x980 [ 1470.987683] ? __lockdep_reset_lock+0x180/0x180 [ 1470.988697] ? create_io_thread+0xf0/0xf0 [ 1470.989615] ? ksys_write+0x21a/0x260 [ 1470.990441] ? lock_downgrade+0x6d0/0x6d0 [ 1470.991339] __do_sys_clone3+0x1e5/0x320 [ 1470.992227] ? __do_sys_clone+0x110/0x110 [ 1470.993139] ? rcu_read_lock_any_held+0x75/0xa0 [ 1470.994148] ? vfs_write+0x354/0xa70 [ 1470.994957] ? fput_many+0x2f/0x1a0 [ 1470.995755] ? ksys_write+0x1a9/0x260 [ 1470.996577] ? __ia32_sys_read+0xb0/0xb0 [ 1470.997460] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1470.998591] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1470.999719] ? trace_hardirqs_on+0x5b/0x180 [ 1471.000645] do_syscall_64+0x33/0x40 [ 1471.001450] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1471.002550] RIP: 0033:0x7f92d9afeb19 [ 1471.003352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1471.007285] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1471.008930] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1471.010472] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1471.012026] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1471.013568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1471.015111] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 [ 1471.016694] CPU: 0 PID: 10659 Comm: syz-executor.1 Not tainted 5.10.186 #1 [ 1471.018139] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1471.019858] Call Trace: [ 1471.020408] dump_stack+0x107/0x167 [ 1471.021159] should_fail.cold+0x5/0xa [ 1471.022056] ? create_object.isra.0+0x3a/0xa20 [ 1471.023140] should_failslab+0x5/0x20 [ 1471.024064] kmem_cache_alloc+0x5b/0x310 [ 1471.025081] create_object.isra.0+0x3a/0xa20 [ 1471.026167] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1471.027394] kmem_cache_alloc_node+0x169/0x330 [ 1471.028496] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1471.029744] copy_process+0x446c/0x6740 [ 1471.030453] FAULT_INJECTION: forcing a failure. [ 1471.030453] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1471.030694] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1471.034379] ? exc_page_fault+0xca/0x1a0 [ 1471.035341] ? trace_hardirqs_on+0x5b/0x180 [ 1471.036381] ? exc_page_fault+0xca/0x1a0 [ 1471.037357] ? __cleanup_sighand+0xb0/0xb0 [ 1471.038372] ? _copy_from_user+0xfb/0x1b0 [ 1471.039363] kernel_clone+0xe7/0x980 [ 1471.040253] ? __lockdep_reset_lock+0x180/0x180 [ 1471.041377] ? create_io_thread+0xf0/0xf0 [ 1471.042376] ? ksys_write+0x21a/0x260 [ 1471.043285] ? lock_downgrade+0x6d0/0x6d0 [ 1471.044275] __do_sys_clone3+0x1e5/0x320 [ 1471.045236] ? __do_sys_clone+0x110/0x110 [ 1471.046239] ? rcu_read_lock_any_held+0x75/0xa0 [ 1471.047334] ? vfs_write+0x354/0xa70 [ 1471.048233] ? fput_many+0x2f/0x1a0 [ 1471.049125] ? ksys_write+0x1a9/0x260 [ 1471.050027] ? __ia32_sys_read+0xb0/0xb0 [ 1471.050986] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1471.052241] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1471.053454] ? trace_hardirqs_on+0x5b/0x180 [ 1471.054486] do_syscall_64+0x33/0x40 [ 1471.055370] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1471.056603] RIP: 0033:0x7f6ce9af3b19 [ 1471.057488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1471.061846] RSP: 002b:00007f6ce7069188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1471.063636] RAX: ffffffffffffffda RBX: 00007f6ce9c06f60 RCX: 00007f6ce9af3b19 [ 1471.065330] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1471.067013] RBP: 00007f6ce70691d0 R08: 0000000000000000 R09: 0000000000000000 [ 1471.068698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1471.070366] R13: 00007ffe6243298f R14: 00007f6ce7069300 R15: 0000000000022000 [ 1471.072071] CPU: 1 PID: 10671 Comm: syz-executor.3 Not tainted 5.10.186 #1 [ 1471.073584] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1471.075386] Call Trace: [ 1471.075985] dump_stack+0x107/0x167 [ 1471.076780] should_fail.cold+0x5/0xa [ 1471.077610] _copy_from_user+0x2e/0x1b0 [ 1471.077902] FAULT_INJECTION: forcing a failure. [ 1471.077902] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1471.078471] copy_clone_args_from_user+0x147/0x790 [ 1471.078496] ? __lockdep_reset_lock+0x180/0x180 [ 1471.078522] ? sighand_ctor+0x40/0x40 [ 1471.084146] ? find_held_lock+0x2c/0x110 [ 1471.085030] ? ksys_write+0x21a/0x260 [ 1471.085853] ? lock_downgrade+0x6d0/0x6d0 [ 1471.086754] __do_sys_clone3+0x9d/0x320 [ 1471.087613] ? __do_sys_clone+0x110/0x110 [ 1471.088533] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1471.089574] ? wait_for_completion_io+0x270/0x270 [ 1471.090618] ? rcu_read_lock_any_held+0x75/0xa0 [ 1471.091617] ? vfs_write+0x354/0xa70 [ 1471.092439] ? fput_many+0x2f/0x1a0 [ 1471.093226] ? ksys_write+0x1a9/0x260 [ 1471.094046] ? __ia32_sys_read+0xb0/0xb0 [ 1471.094924] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1471.096069] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1471.097176] ? trace_hardirqs_on+0x5b/0x180 [ 1471.098109] do_syscall_64+0x33/0x40 [ 1471.098912] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1471.100019] RIP: 0033:0x7fe4c4dedb19 [ 1471.100821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1471.104785] RSP: 002b:00007fe4c2363188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1471.106420] RAX: ffffffffffffffda RBX: 00007fe4c4f00f60 RCX: 00007fe4c4dedb19 [ 1471.107966] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1471.109505] RBP: 00007fe4c23631d0 R08: 0000000000000000 R09: 0000000000000000 [ 1471.111039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1471.112589] R13: 00007ffd7f08811f R14: 00007fe4c2363300 R15: 0000000000022000 [ 1471.114156] CPU: 0 PID: 10660 Comm: syz-executor.6 Not tainted 5.10.186 #1 [ 1471.115792] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1471.117714] Call Trace: [ 1471.118330] dump_stack+0x107/0x167 [ 1471.119188] should_fail.cold+0x5/0xa [ 1471.120098] __alloc_pages_nodemask+0x182/0x600 [ 1471.121173] ? lock_downgrade+0x6d0/0x6d0 [ 1471.122148] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1471.123539] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1471.124757] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1471.125861] copy_process+0x60a/0x6740 [ 1471.126766] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1471.127990] ? exc_page_fault+0xca/0x1a0 [ 1471.128931] ? trace_hardirqs_on+0x5b/0x180 [ 1471.129941] ? exc_page_fault+0xca/0x1a0 [ 1471.130898] ? __cleanup_sighand+0xb0/0xb0 [ 1471.131915] ? _copy_from_user+0xfb/0x1b0 [ 1471.132882] kernel_clone+0xe7/0x980 [ 1471.133749] ? __lockdep_reset_lock+0x180/0x180 [ 1471.134819] ? create_io_thread+0xf0/0xf0 [ 1471.135801] ? ksys_write+0x21a/0x260 [ 1471.136681] ? lock_downgrade+0x6d0/0x6d0 [ 1471.137638] __do_sys_clone3+0x1e5/0x320 [ 1471.138607] ? __do_sys_clone+0x110/0x110 [ 1471.139590] ? rcu_read_lock_any_held+0x75/0xa0 [ 1471.140710] ? vfs_write+0x354/0xa70 [ 1471.141571] ? fput_many+0x2f/0x1a0 [ 1471.142412] ? ksys_write+0x1a9/0x260 [ 1471.143290] ? __ia32_sys_read+0xb0/0xb0 [ 1471.144242] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1471.145449] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1471.146638] ? trace_hardirqs_on+0x5b/0x180 [ 1471.147639] do_syscall_64+0x33/0x40 [ 1471.148512] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1471.149696] RIP: 0033:0x7f9be05f4b19 [ 1471.150553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1471.154792] RSP: 002b:00007f9bddb6a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1471.156543] RAX: ffffffffffffffda RBX: 00007f9be0707f60 RCX: 00007f9be05f4b19 [ 1471.158173] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1471.159809] RBP: 00007f9bddb6a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1471.161429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1471.163055] R13: 00007ffec4eef12f R14: 00007f9bddb6a300 R15: 0000000000022000 07:05:10 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 5) 07:05:10 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) [ 1471.273135] FAULT_INJECTION: forcing a failure. [ 1471.273135] name failslab, interval 1, probability 0, space 0, times 0 [ 1471.275651] CPU: 1 PID: 10922 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1471.277174] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1471.278976] Call Trace: [ 1471.279557] dump_stack+0x107/0x167 [ 1471.280364] should_fail.cold+0x5/0xa [ 1471.281194] ? prepare_creds+0x25/0x5f0 [ 1471.282060] should_failslab+0x5/0x20 [ 1471.282894] kmem_cache_alloc+0x5b/0x310 [ 1471.283777] ? lock_downgrade+0x6d0/0x6d0 [ 1471.284677] prepare_creds+0x25/0x5f0 [ 1471.285499] copy_creds+0x72/0x580 [ 1471.286272] copy_process+0xfce/0x6740 [ 1471.287115] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1471.288271] ? exc_page_fault+0xca/0x1a0 [ 1471.289151] ? trace_hardirqs_on+0x5b/0x180 [ 1471.290091] ? exc_page_fault+0xca/0x1a0 [ 1471.291000] ? __cleanup_sighand+0xb0/0xb0 [ 1471.291936] ? _copy_from_user+0xfb/0x1b0 [ 1471.292852] kernel_clone+0xe7/0x980 [ 1471.293664] ? __lockdep_reset_lock+0x180/0x180 [ 1471.294680] ? create_io_thread+0xf0/0xf0 [ 1471.295606] ? ksys_write+0x21a/0x260 [ 1471.296443] ? lock_downgrade+0x6d0/0x6d0 [ 1471.297355] __do_sys_clone3+0x1e5/0x320 [ 1471.298242] ? __do_sys_clone+0x110/0x110 [ 1471.299169] ? rcu_read_lock_any_held+0x75/0xa0 [ 1471.300186] ? vfs_write+0x354/0xa70 [ 1471.300989] ? fput_many+0x2f/0x1a0 [ 1471.301772] ? ksys_write+0x1a9/0x260 [ 1471.302590] ? __ia32_sys_read+0xb0/0xb0 [ 1471.303468] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1471.304606] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1471.305713] ? trace_hardirqs_on+0x5b/0x180 [ 1471.306643] do_syscall_64+0x33/0x40 [ 1471.307446] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1471.308550] RIP: 0033:0x7f92d9afeb19 [ 1471.309351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1471.313328] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1471.314998] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1471.316544] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1471.318103] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1471.319651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1471.321212] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:05:10 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1) [ 1471.338648] FAULT_INJECTION: forcing a failure. [ 1471.338648] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1471.339971] CPU: 0 PID: 10970 Comm: syz-executor.0 Not tainted 5.10.186 #1 [ 1471.340737] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1471.341660] Call Trace: [ 1471.341959] dump_stack+0x107/0x167 [ 1471.342368] should_fail.cold+0x5/0xa [ 1471.342803] _copy_from_user+0x2e/0x1b0 [ 1471.343263] copy_clone_args_from_user+0x147/0x790 [ 1471.343820] ? __lockdep_reset_lock+0x180/0x180 [ 1471.344332] ? sighand_ctor+0x40/0x40 [ 1471.344759] ? find_held_lock+0x2c/0x110 [ 1471.345219] ? ksys_write+0x21a/0x260 [ 1471.345633] ? lock_downgrade+0x6d0/0x6d0 [ 1471.346111] __do_sys_clone3+0x9d/0x320 [ 1471.346534] ? __do_sys_clone+0x110/0x110 [ 1471.347004] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1471.347531] ? wait_for_completion_io+0x270/0x270 [ 1471.348080] ? rcu_read_lock_any_held+0x75/0xa0 [ 1471.348592] ? vfs_write+0x354/0xa70 [ 1471.349012] ? fput_many+0x2f/0x1a0 [ 1471.349436] ? ksys_write+0x1a9/0x260 [ 1471.349857] ? __ia32_sys_read+0xb0/0xb0 [ 1471.350319] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1471.350902] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1471.351476] ? trace_hardirqs_on+0x5b/0x180 [ 1471.351953] do_syscall_64+0x33/0x40 [ 1471.352367] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1471.352932] RIP: 0033:0x7f1220755b19 [ 1471.353350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1471.355359] RSP: 002b:00007f121dccb188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1471.356209] RAX: ffffffffffffffda RBX: 00007f1220868f60 RCX: 00007f1220755b19 [ 1471.356999] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1471.357758] RBP: 00007f121dccb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1471.358521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1471.359274] R13: 00007ffee8d49d0f R14: 00007f121dccb300 R15: 0000000000022000 07:05:10 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 2) [ 1471.399191] FAULT_INJECTION: forcing a failure. [ 1471.399191] name failslab, interval 1, probability 0, space 0, times 0 [ 1471.400517] CPU: 0 PID: 10974 Comm: syz-executor.3 Not tainted 5.10.186 #1 [ 1471.401249] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1471.402151] Call Trace: [ 1471.402445] dump_stack+0x107/0x167 [ 1471.402843] should_fail.cold+0x5/0xa [ 1471.403264] ? copy_process+0x446c/0x6740 [ 1471.403709] should_failslab+0x5/0x20 [ 1471.404118] kmem_cache_alloc_node+0x55/0x330 [ 1471.404601] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1471.405172] copy_process+0x446c/0x6740 [ 1471.405598] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1471.406162] ? exc_page_fault+0xca/0x1a0 [ 1471.406592] ? trace_hardirqs_on+0x5b/0x180 [ 1471.407063] ? exc_page_fault+0xca/0x1a0 [ 1471.407517] ? __cleanup_sighand+0xb0/0xb0 [ 1471.407979] ? _copy_from_user+0xfb/0x1b0 [ 1471.408428] kernel_clone+0xe7/0x980 [ 1471.408823] ? __lockdep_reset_lock+0x180/0x180 [ 1471.409343] ? create_io_thread+0xf0/0xf0 [ 1471.409798] ? ksys_write+0x21a/0x260 [ 1471.410215] ? lock_downgrade+0x6d0/0x6d0 [ 1471.410659] __do_sys_clone3+0x1e5/0x320 [ 1471.411109] ? __do_sys_clone+0x110/0x110 [ 1471.411569] ? rcu_read_lock_any_held+0x75/0xa0 [ 1471.412097] ? vfs_write+0x354/0xa70 [ 1471.412496] ? fput_many+0x2f/0x1a0 [ 1471.412883] ? ksys_write+0x1a9/0x260 [ 1471.413289] ? __ia32_sys_read+0xb0/0xb0 [ 1471.413728] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1471.414282] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1471.414831] ? trace_hardirqs_on+0x5b/0x180 [ 1471.415300] do_syscall_64+0x33/0x40 [ 1471.415713] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1471.416266] RIP: 0033:0x7fe4c4dedb19 [ 1471.416671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1471.418617] RSP: 002b:00007fe4c2363188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1471.419435] RAX: ffffffffffffffda RBX: 00007fe4c4f00f60 RCX: 00007fe4c4dedb19 [ 1471.420220] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1471.420980] RBP: 00007fe4c23631d0 R08: 0000000000000000 R09: 0000000000000000 [ 1471.421741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1471.422503] R13: 00007ffd7f08811f R14: 00007fe4c2363300 R15: 0000000000022000 07:05:27 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 6) 07:05:27 executing program 7: perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1488.525223] FAULT_INJECTION: forcing a failure. [ 1488.525223] name failslab, interval 1, probability 0, space 0, times 0 [ 1488.527652] CPU: 1 PID: 10984 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1488.529070] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1488.530777] Call Trace: [ 1488.531324] dump_stack+0x107/0x167 [ 1488.532085] should_fail.cold+0x5/0xa [ 1488.532859] ? create_object.isra.0+0x3a/0xa20 [ 1488.533794] should_failslab+0x5/0x20 [ 1488.534574] kmem_cache_alloc+0x5b/0x310 [ 1488.535412] create_object.isra.0+0x3a/0xa20 [ 1488.536317] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1488.537346] kmem_cache_alloc+0x159/0x310 [ 1488.538192] prepare_creds+0x25/0x5f0 [ 1488.538968] copy_creds+0x72/0x580 [ 1488.539692] copy_process+0xfce/0x6740 [ 1488.540490] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.541548] ? exc_page_fault+0xca/0x1a0 [ 1488.542367] ? trace_hardirqs_on+0x5b/0x180 [ 1488.543239] ? exc_page_fault+0xca/0x1a0 [ 1488.544091] ? __cleanup_sighand+0xb0/0xb0 [ 1488.544960] ? _copy_from_user+0xfb/0x1b0 [ 1488.545814] kernel_clone+0xe7/0x980 [ 1488.546569] ? __lockdep_reset_lock+0x180/0x180 07:05:27 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 4) 07:05:27 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:05:27 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x201, 0x8000) 07:05:27 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 5) 07:05:27 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 2) 07:05:27 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 3) [ 1488.547514] ? create_io_thread+0xf0/0xf0 [ 1488.548530] ? ksys_write+0x21a/0x260 [ 1488.549300] ? lock_downgrade+0x6d0/0x6d0 [ 1488.550144] __do_sys_clone3+0x1e5/0x320 [ 1488.550966] ? __do_sys_clone+0x110/0x110 [ 1488.551855] ? rcu_read_lock_any_held+0x75/0xa0 [ 1488.552801] ? vfs_write+0x354/0xa70 [ 1488.553561] ? fput_many+0x2f/0x1a0 [ 1488.553749] FAULT_INJECTION: forcing a failure. [ 1488.553749] name failslab, interval 1, probability 0, space 0, times 0 [ 1488.554313] ? ksys_write+0x1a9/0x260 [ 1488.554332] ? __ia32_sys_read+0xb0/0xb0 [ 1488.554358] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.559230] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1488.560314] ? trace_hardirqs_on+0x5b/0x180 [ 1488.561193] do_syscall_64+0x33/0x40 [ 1488.561954] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1488.562993] RIP: 0033:0x7f92d9afeb19 [ 1488.563755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1488.567510] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1488.569070] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1488.570526] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1488.571976] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1488.573423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1488.574864] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 [ 1488.576353] CPU: 0 PID: 10994 Comm: syz-executor.0 Not tainted 5.10.186 #1 [ 1488.577767] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1488.579455] Call Trace: [ 1488.580003] dump_stack+0x107/0x167 [ 1488.580754] should_fail.cold+0x5/0xa [ 1488.581537] ? copy_process+0x446c/0x6740 [ 1488.582384] should_failslab+0x5/0x20 [ 1488.583164] kmem_cache_alloc_node+0x55/0x330 [ 1488.584087] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.585177] copy_process+0x446c/0x6740 [ 1488.585990] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.587064] ? exc_page_fault+0xca/0x1a0 [ 1488.587916] ? trace_hardirqs_on+0x5b/0x180 [ 1488.588459] FAULT_INJECTION: forcing a failure. [ 1488.588459] name failslab, interval 1, probability 0, space 0, times 0 [ 1488.588812] ? exc_page_fault+0xca/0x1a0 [ 1488.591852] ? __cleanup_sighand+0xb0/0xb0 [ 1488.592739] ? _copy_from_user+0xfb/0x1b0 [ 1488.593599] kernel_clone+0xe7/0x980 [ 1488.594370] ? __lockdep_reset_lock+0x180/0x180 [ 1488.595316] ? create_io_thread+0xf0/0xf0 [ 1488.596174] ? ksys_write+0x21a/0x260 [ 1488.596951] ? lock_downgrade+0x6d0/0x6d0 [ 1488.597792] __do_sys_clone3+0x1e5/0x320 [ 1488.598614] ? __do_sys_clone+0x110/0x110 [ 1488.599471] ? rcu_read_lock_any_held+0x75/0xa0 [ 1488.600436] ? vfs_write+0x354/0xa70 [ 1488.601192] ? fput_many+0x2f/0x1a0 [ 1488.601945] ? ksys_write+0x1a9/0x260 [ 1488.602713] ? __ia32_sys_read+0xb0/0xb0 [ 1488.603554] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.604626] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1488.605686] ? trace_hardirqs_on+0x5b/0x180 [ 1488.606561] do_syscall_64+0x33/0x40 [ 1488.607321] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1488.608372] RIP: 0033:0x7f1220755b19 [ 1488.609132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1488.612839] RSP: 002b:00007f121dccb188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1488.614384] RAX: ffffffffffffffda RBX: 00007f1220868f60 RCX: 00007f1220755b19 [ 1488.615827] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1488.617296] RBP: 00007f121dccb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1488.618758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1488.620217] R13: 00007ffee8d49d0f R14: 00007f121dccb300 R15: 0000000000022000 [ 1488.621709] CPU: 1 PID: 10995 Comm: syz-executor.6 Not tainted 5.10.186 #1 [ 1488.623121] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1488.624739] FAULT_INJECTION: forcing a failure. [ 1488.624739] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1488.624808] Call Trace: [ 1488.624835] dump_stack+0x107/0x167 [ 1488.628447] should_fail.cold+0x5/0xa [ 1488.629221] ? prepare_creds+0x25/0x5f0 [ 1488.630028] should_failslab+0x5/0x20 [ 1488.630798] kmem_cache_alloc+0x5b/0x310 [ 1488.631621] ? lock_downgrade+0x6d0/0x6d0 [ 1488.632473] prepare_creds+0x25/0x5f0 [ 1488.633239] copy_creds+0x72/0x580 [ 1488.633966] copy_process+0xfce/0x6740 [ 1488.634751] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.635815] ? exc_page_fault+0xca/0x1a0 [ 1488.636648] ? trace_hardirqs_on+0x5b/0x180 [ 1488.637531] ? exc_page_fault+0xca/0x1a0 [ 1488.638368] ? __cleanup_sighand+0xb0/0xb0 [ 1488.639236] ? _copy_from_user+0xfb/0x1b0 [ 1488.640107] kernel_clone+0xe7/0x980 [ 1488.640866] ? __lockdep_reset_lock+0x180/0x180 [ 1488.641810] ? create_io_thread+0xf0/0xf0 [ 1488.642673] ? ksys_write+0x21a/0x260 [ 1488.643449] ? lock_downgrade+0x6d0/0x6d0 [ 1488.644297] __do_sys_clone3+0x1e5/0x320 [ 1488.645117] ? __do_sys_clone+0x110/0x110 [ 1488.645972] ? rcu_read_lock_any_held+0x75/0xa0 [ 1488.646926] ? vfs_write+0x354/0xa70 [ 1488.647684] ? fput_many+0x2f/0x1a0 [ 1488.648439] ? ksys_write+0x1a9/0x260 [ 1488.649213] ? __ia32_sys_read+0xb0/0xb0 [ 1488.650055] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.651123] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1488.652200] ? trace_hardirqs_on+0x5b/0x180 [ 1488.653094] do_syscall_64+0x33/0x40 [ 1488.653864] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1488.654920] RIP: 0033:0x7f9be05f4b19 [ 1488.655688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1488.659563] RSP: 002b:00007f9bddb6a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1488.661118] RAX: ffffffffffffffda RBX: 00007f9be0707f60 RCX: 00007f9be05f4b19 [ 1488.662555] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1488.664003] RBP: 00007f9bddb6a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1488.665446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1488.666883] R13: 00007ffec4eef12f R14: 00007f9bddb6a300 R15: 0000000000022000 [ 1488.668365] CPU: 0 PID: 10993 Comm: syz-executor.1 Not tainted 5.10.186 #1 [ 1488.669772] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1488.671449] Call Trace: [ 1488.671786] FAULT_INJECTION: forcing a failure. [ 1488.671786] name failslab, interval 1, probability 0, space 0, times 0 [ 1488.672012] dump_stack+0x107/0x167 [ 1488.672038] should_fail.cold+0x5/0xa [ 1488.675826] __alloc_pages_nodemask+0x182/0x600 [ 1488.676772] ? lock_downgrade+0x6d0/0x6d0 [ 1488.677639] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1488.678860] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1488.679938] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1488.680906] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.681977] copy_process+0x60a/0x6740 [ 1488.682768] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.683829] ? exc_page_fault+0xca/0x1a0 [ 1488.684674] ? trace_hardirqs_on+0x5b/0x180 [ 1488.685563] ? exc_page_fault+0xca/0x1a0 [ 1488.686396] ? __cleanup_sighand+0xb0/0xb0 [ 1488.687258] ? _copy_from_user+0xfb/0x1b0 [ 1488.688104] kernel_clone+0xe7/0x980 [ 1488.688851] ? __lockdep_reset_lock+0x180/0x180 [ 1488.689779] ? create_io_thread+0xf0/0xf0 [ 1488.690637] ? ksys_write+0x21a/0x260 [ 1488.691399] ? lock_downgrade+0x6d0/0x6d0 [ 1488.692247] __do_sys_clone3+0x1e5/0x320 [ 1488.693062] ? __do_sys_clone+0x110/0x110 [ 1488.693912] ? rcu_read_lock_any_held+0x75/0xa0 [ 1488.694846] ? vfs_write+0x354/0xa70 [ 1488.695593] ? fput_many+0x2f/0x1a0 [ 1488.696335] ? ksys_write+0x1a9/0x260 [ 1488.697092] ? __ia32_sys_read+0xb0/0xb0 [ 1488.697931] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.698981] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1488.700025] ? trace_hardirqs_on+0x5b/0x180 [ 1488.700897] do_syscall_64+0x33/0x40 [ 1488.701654] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1488.702676] RIP: 0033:0x7f6ce9af3b19 [ 1488.703436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1488.707102] RSP: 002b:00007f6ce7069188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1488.708668] RAX: ffffffffffffffda RBX: 00007f6ce9c06f60 RCX: 00007f6ce9af3b19 [ 1488.710090] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1488.711516] RBP: 00007f6ce70691d0 R08: 0000000000000000 R09: 0000000000000000 [ 1488.712946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1488.714369] R13: 00007ffe6243298f R14: 00007f6ce7069300 R15: 0000000000022000 [ 1488.715828] CPU: 1 PID: 10985 Comm: syz-executor.3 Not tainted 5.10.186 #1 [ 1488.717498] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1488.719458] Call Trace: [ 1488.720095] dump_stack+0x107/0x167 [ 1488.720964] should_fail.cold+0x5/0xa [ 1488.721870] ? create_object.isra.0+0x3a/0xa20 [ 1488.722955] should_failslab+0x5/0x20 [ 1488.723860] kmem_cache_alloc+0x5b/0x310 [ 1488.724849] create_object.isra.0+0x3a/0xa20 [ 1488.725897] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1488.727108] kmem_cache_alloc_node+0x169/0x330 [ 1488.728207] copy_process+0x446c/0x6740 [ 1488.729157] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.730403] ? exc_page_fault+0xca/0x1a0 [ 1488.731364] ? trace_hardirqs_on+0x5b/0x180 [ 1488.732406] ? exc_page_fault+0xca/0x1a0 [ 1488.733387] ? __cleanup_sighand+0xb0/0xb0 [ 1488.734395] ? _copy_from_user+0xfb/0x1b0 [ 1488.735389] kernel_clone+0xe7/0x980 [ 1488.736276] ? __lockdep_reset_lock+0x180/0x180 [ 1488.737381] ? create_io_thread+0xf0/0xf0 [ 1488.738376] ? ksys_write+0x21a/0x260 [ 1488.739272] ? lock_downgrade+0x6d0/0x6d0 [ 1488.740263] __do_sys_clone3+0x1e5/0x320 [ 1488.741221] ? __do_sys_clone+0x110/0x110 [ 1488.742219] ? rcu_read_lock_any_held+0x75/0xa0 [ 1488.743311] ? vfs_write+0x354/0xa70 [ 1488.744210] ? fput_many+0x2f/0x1a0 [ 1488.745079] ? ksys_write+0x1a9/0x260 [ 1488.745980] ? __ia32_sys_read+0xb0/0xb0 [ 1488.746942] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.748186] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1488.749406] ? trace_hardirqs_on+0x5b/0x180 [ 1488.750423] do_syscall_64+0x33/0x40 [ 1488.751309] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1488.752529] RIP: 0033:0x7fe4c4dedb19 [ 1488.753401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1488.757708] RSP: 002b:00007fe4c2363188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1488.759492] RAX: ffffffffffffffda RBX: 00007fe4c4f00f60 RCX: 00007fe4c4dedb19 [ 1488.761181] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1488.762853] RBP: 00007fe4c23631d0 R08: 0000000000000000 R09: 0000000000000000 [ 1488.764533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1488.766201] R13: 00007ffd7f08811f R14: 00007fe4c2363300 R15: 0000000000022000 07:05:28 executing program 7: perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:05:28 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x321, 0x8000) 07:05:28 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 7) 07:05:28 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1) [ 1488.921952] FAULT_INJECTION: forcing a failure. [ 1488.921952] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1488.924343] FAULT_INJECTION: forcing a failure. [ 1488.924343] name failslab, interval 1, probability 0, space 0, times 0 [ 1488.924368] CPU: 1 PID: 11107 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1488.928013] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1488.929867] Call Trace: [ 1488.930476] dump_stack+0x107/0x167 [ 1488.931319] should_fail.cold+0x5/0xa [ 1488.932199] ? security_prepare_creds+0x112/0x190 [ 1488.933297] should_failslab+0x5/0x20 [ 1488.934158] __kmalloc+0x72/0x390 [ 1488.934956] security_prepare_creds+0x112/0x190 [ 1488.936022] prepare_creds+0x458/0x5f0 [ 1488.936903] copy_creds+0x72/0x580 [ 1488.937712] copy_process+0xfce/0x6740 [ 1488.938596] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.939780] ? exc_page_fault+0xca/0x1a0 [ 1488.940714] ? trace_hardirqs_on+0x5b/0x180 [ 1488.941690] ? exc_page_fault+0xca/0x1a0 [ 1488.942627] ? __cleanup_sighand+0xb0/0xb0 [ 1488.943601] ? _copy_from_user+0xfb/0x1b0 [ 1488.944562] kernel_clone+0xe7/0x980 [ 1488.945416] ? __lockdep_reset_lock+0x180/0x180 [ 1488.946478] ? create_io_thread+0xf0/0xf0 [ 1488.947436] ? ksys_write+0x21a/0x260 [ 1488.948323] ? lock_downgrade+0x6d0/0x6d0 [ 1488.949272] __do_sys_clone3+0x1e5/0x320 [ 1488.950187] ? __do_sys_clone+0x110/0x110 [ 1488.951156] ? rcu_read_lock_any_held+0x75/0xa0 [ 1488.952199] ? vfs_write+0x354/0xa70 [ 1488.953036] ? fput_many+0x2f/0x1a0 [ 1488.953849] ? ksys_write+0x1a9/0x260 [ 1488.954698] ? __ia32_sys_read+0xb0/0xb0 [ 1488.955613] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.956791] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1488.957942] ? trace_hardirqs_on+0x5b/0x180 [ 1488.958907] do_syscall_64+0x33/0x40 [ 1488.959740] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1488.960904] RIP: 0033:0x7f92d9afeb19 [ 1488.961748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1488.965893] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1488.967608] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1488.969217] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1488.970803] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1488.972400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1488.973984] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 [ 1488.975587] CPU: 0 PID: 11106 Comm: syz-executor.4 Not tainted 5.10.186 #1 [ 1488.976853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1488.978338] Call Trace: [ 1488.978813] dump_stack+0x107/0x167 [ 1488.979476] should_fail.cold+0x5/0xa [ 1488.980174] _copy_from_user+0x2e/0x1b0 [ 1488.980894] copy_clone_args_from_user+0x147/0x790 [ 1488.981778] ? __lockdep_reset_lock+0x180/0x180 [ 1488.982613] ? sighand_ctor+0x40/0x40 [ 1488.983301] ? find_held_lock+0x2c/0x110 [ 1488.984049] ? ksys_write+0x21a/0x260 [ 1488.984735] ? lock_downgrade+0x6d0/0x6d0 [ 1488.985468] __do_sys_clone3+0x9d/0x320 [ 1488.986162] ? __do_sys_clone+0x110/0x110 [ 1488.986896] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1488.987780] ? wait_for_completion_io+0x270/0x270 [ 1488.988722] ? rcu_read_lock_any_held+0x75/0xa0 [ 1488.989539] ? vfs_write+0x354/0xa70 [ 1488.990211] ? fput_many+0x2f/0x1a0 [ 1488.990852] ? ksys_write+0x1a9/0x260 [ 1488.991537] ? __ia32_sys_read+0xb0/0xb0 [ 1488.992289] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.993207] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1488.994123] ? trace_hardirqs_on+0x5b/0x180 [ 1488.994894] do_syscall_64+0x33/0x40 [ 1488.995558] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1488.996468] RIP: 0033:0x7f7adc333b19 [ 1488.997127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1489.000386] RSP: 002b:00007f7ad98a9188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1489.001732] RAX: ffffffffffffffda RBX: 00007f7adc446f60 RCX: 00007f7adc333b19 [ 1489.002997] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1489.004282] RBP: 00007f7ad98a91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1489.005548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1489.006812] R13: 00007ffddebb93bf R14: 00007f7ad98a9300 R15: 0000000000022000 07:05:28 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 6) 07:05:28 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 3) 07:05:28 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 4) 07:05:28 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 5) [ 1489.083098] FAULT_INJECTION: forcing a failure. [ 1489.083098] name failslab, interval 1, probability 0, space 0, times 0 [ 1489.085463] CPU: 1 PID: 11111 Comm: syz-executor.0 Not tainted 5.10.186 #1 [ 1489.086894] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1489.088616] Call Trace: [ 1489.089166] dump_stack+0x107/0x167 [ 1489.089923] should_fail.cold+0x5/0xa [ 1489.090281] FAULT_INJECTION: forcing a failure. [ 1489.090281] name failslab, interval 1, probability 0, space 0, times 0 [ 1489.090702] ? create_object.isra.0+0x3a/0xa20 [ 1489.090727] should_failslab+0x5/0x20 [ 1489.093809] kmem_cache_alloc+0x5b/0x310 [ 1489.094653] create_object.isra.0+0x3a/0xa20 [ 1489.095576] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1489.096631] kmem_cache_alloc_node+0x169/0x330 [ 1489.097587] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1489.098658] copy_process+0x446c/0x6740 [ 1489.099493] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1489.100571] ? exc_page_fault+0xca/0x1a0 [ 1489.101395] ? trace_hardirqs_on+0x5b/0x180 [ 1489.102287] ? exc_page_fault+0xca/0x1a0 [ 1489.103128] ? __cleanup_sighand+0xb0/0xb0 [ 1489.104011] ? _copy_from_user+0xfb/0x1b0 [ 1489.104861] kernel_clone+0xe7/0x980 [ 1489.105632] ? __lockdep_reset_lock+0x180/0x180 [ 1489.106578] ? create_io_thread+0xf0/0xf0 [ 1489.107448] ? ksys_write+0x21a/0x260 [ 1489.108246] ? lock_downgrade+0x6d0/0x6d0 [ 1489.109095] __do_sys_clone3+0x1e5/0x320 [ 1489.109915] ? __do_sys_clone+0x110/0x110 [ 1489.110779] ? rcu_read_lock_any_held+0x75/0xa0 [ 1489.111718] ? vfs_write+0x354/0xa70 [ 1489.112488] ? fput_many+0x2f/0x1a0 [ 1489.113229] ? ksys_write+0x1a9/0x260 [ 1489.114016] ? __ia32_sys_read+0xb0/0xb0 [ 1489.114843] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1489.115924] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1489.116972] ? trace_hardirqs_on+0x5b/0x180 [ 1489.117853] do_syscall_64+0x33/0x40 [ 1489.118608] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1489.119643] RIP: 0033:0x7f1220755b19 [ 1489.120405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1489.124122] RSP: 002b:00007f121dccb188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1489.125677] RAX: ffffffffffffffda RBX: 00007f1220868f60 RCX: 00007f1220755b19 [ 1489.127145] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1489.128606] RBP: 00007f121dccb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1489.130048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1489.131489] R13: 00007ffee8d49d0f R14: 00007f121dccb300 R15: 0000000000022000 [ 1489.132965] CPU: 0 PID: 11113 Comm: syz-executor.6 Not tainted 5.10.186 #1 [ 1489.133939] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1489.135074] Call Trace: [ 1489.135449] dump_stack+0x107/0x167 [ 1489.135957] should_fail.cold+0x5/0xa [ 1489.136472] ? create_object.isra.0+0x3a/0xa20 [ 1489.137109] should_failslab+0x5/0x20 [ 1489.137671] kmem_cache_alloc+0x5b/0x310 [ 1489.138212] create_object.isra.0+0x3a/0xa20 [ 1489.138798] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1489.139487] kmem_cache_alloc+0x159/0x310 [ 1489.140071] prepare_creds+0x25/0x5f0 [ 1489.140595] copy_creds+0x72/0x580 [ 1489.141079] copy_process+0xfce/0x6740 [ 1489.141602] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1489.142335] ? exc_page_fault+0xca/0x1a0 [ 1489.142844] ? trace_hardirqs_on+0x5b/0x180 [ 1489.143418] ? exc_page_fault+0xca/0x1a0 [ 1489.143929] ? __cleanup_sighand+0xb0/0xb0 [ 1489.144451] ? _copy_from_user+0xfb/0x1b0 [ 1489.144957] kernel_clone+0xe7/0x980 [ 1489.145401] ? __lockdep_reset_lock+0x180/0x180 [ 1489.145969] ? create_io_thread+0xf0/0xf0 [ 1489.146472] ? ksys_write+0x21a/0x260 [ 1489.146932] ? lock_downgrade+0x6d0/0x6d0 [ 1489.147438] __do_sys_clone3+0x1e5/0x320 [ 1489.147932] ? __do_sys_clone+0x110/0x110 [ 1489.148441] ? rcu_read_lock_any_held+0x75/0xa0 [ 1489.149005] ? vfs_write+0x354/0xa70 [ 1489.149451] ? fput_many+0x2f/0x1a0 [ 1489.149889] ? ksys_write+0x1a9/0x260 [ 1489.150343] ? __ia32_sys_read+0xb0/0xb0 [ 1489.150833] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1489.151471] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1489.152150] ? trace_hardirqs_on+0x5b/0x180 [ 1489.152699] do_syscall_64+0x33/0x40 [ 1489.153178] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1489.153852] RIP: 0033:0x7f9be05f4b19 [ 1489.154329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1489.156704] RSP: 002b:00007f9bddb6a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1489.157696] RAX: ffffffffffffffda RBX: 00007f9be0707f60 RCX: 00007f9be05f4b19 [ 1489.158616] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1489.159504] RBP: 00007f9bddb6a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1489.160398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1489.161278] R13: 00007ffec4eef12f R14: 00007f9bddb6a300 R15: 0000000000022000 07:05:28 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x500, 0x8000) [ 1489.194760] FAULT_INJECTION: forcing a failure. [ 1489.194760] name failslab, interval 1, probability 0, space 0, times 0 [ 1489.197162] CPU: 1 PID: 11117 Comm: syz-executor.1 Not tainted 5.10.186 #1 [ 1489.198615] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1489.200361] Call Trace: [ 1489.200903] dump_stack+0x107/0x167 [ 1489.201677] should_fail.cold+0x5/0xa [ 1489.202738] ? prepare_creds+0x25/0x5f0 [ 1489.203699] should_failslab+0x5/0x20 [ 1489.204653] kmem_cache_alloc+0x5b/0x310 [ 1489.205630] ? lock_downgrade+0x6d0/0x6d0 [ 1489.206627] prepare_creds+0x25/0x5f0 [ 1489.207541] copy_creds+0x72/0x580 [ 1489.208411] copy_process+0xfce/0x6740 [ 1489.209344] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1489.210601] ? exc_page_fault+0xca/0x1a0 [ 1489.211579] ? trace_hardirqs_on+0x5b/0x180 [ 1489.212631] ? exc_page_fault+0xca/0x1a0 [ 1489.213477] ? __cleanup_sighand+0xb0/0xb0 [ 1489.214354] ? _copy_from_user+0xfb/0x1b0 [ 1489.215217] kernel_clone+0xe7/0x980 [ 1489.215991] ? __lockdep_reset_lock+0x180/0x180 [ 1489.216944] ? create_io_thread+0xf0/0xf0 [ 1489.217813] ? ksys_write+0x21a/0x260 [ 1489.218599] ? lock_downgrade+0x6d0/0x6d0 [ 1489.219455] __do_sys_clone3+0x1e5/0x320 [ 1489.220305] ? __do_sys_clone+0x110/0x110 [ 1489.221179] ? rcu_read_lock_any_held+0x75/0xa0 [ 1489.222132] ? vfs_write+0x354/0xa70 [ 1489.222896] ? fput_many+0x2f/0x1a0 [ 1489.223647] ? ksys_write+0x1a9/0x260 [ 1489.224452] ? __ia32_sys_read+0xb0/0xb0 [ 1489.225285] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1489.226369] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1489.227425] ? trace_hardirqs_on+0x5b/0x180 [ 1489.228325] do_syscall_64+0x33/0x40 [ 1489.229097] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1489.230149] RIP: 0033:0x7f6ce9af3b19 [ 1489.230921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1489.234723] RSP: 002b:00007f6ce7069188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1489.236293] RAX: ffffffffffffffda RBX: 00007f6ce9c06f60 RCX: 00007f6ce9af3b19 [ 1489.237757] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1489.239234] RBP: 00007f6ce70691d0 R08: 0000000000000000 R09: 0000000000000000 [ 1489.240703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1489.242164] R13: 00007ffe6243298f R14: 00007f6ce7069300 R15: 0000000000022000 [ 1489.255260] FAULT_INJECTION: forcing a failure. [ 1489.255260] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1489.257774] CPU: 1 PID: 11119 Comm: syz-executor.3 Not tainted 5.10.186 #1 [ 1489.259178] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1489.260921] Call Trace: [ 1489.261460] dump_stack+0x107/0x167 [ 1489.262228] should_fail.cold+0x5/0xa [ 1489.263011] __alloc_pages_nodemask+0x182/0x600 [ 1489.264011] ? lock_downgrade+0x6d0/0x6d0 [ 1489.264860] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1489.266096] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1489.267147] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1489.268131] copy_process+0x60a/0x6740 [ 1489.268923] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1489.270002] ? exc_page_fault+0xca/0x1a0 [ 1489.270824] ? trace_hardirqs_on+0x5b/0x180 [ 1489.271718] ? exc_page_fault+0xca/0x1a0 [ 1489.272569] ? __cleanup_sighand+0xb0/0xb0 [ 1489.273456] ? _copy_from_user+0xfb/0x1b0 [ 1489.274306] kernel_clone+0xe7/0x980 [ 1489.275077] ? __lockdep_reset_lock+0x180/0x180 [ 1489.276026] ? create_io_thread+0xf0/0xf0 [ 1489.276893] ? ksys_write+0x21a/0x260 [ 1489.277663] ? lock_downgrade+0x6d0/0x6d0 [ 1489.278526] __do_sys_clone3+0x1e5/0x320 [ 1489.279347] ? __do_sys_clone+0x110/0x110 [ 1489.280211] ? rcu_read_lock_any_held+0x75/0xa0 [ 1489.281147] ? vfs_write+0x354/0xa70 [ 1489.281904] ? fput_many+0x2f/0x1a0 [ 1489.282641] ? ksys_write+0x1a9/0x260 [ 1489.283413] ? __ia32_sys_read+0xb0/0xb0 [ 1489.284254] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1489.285312] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1489.286371] ? trace_hardirqs_on+0x5b/0x180 [ 1489.287247] do_syscall_64+0x33/0x40 [ 1489.288039] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1489.289077] RIP: 0033:0x7fe4c4dedb19 [ 1489.289858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1489.293582] RSP: 002b:00007fe4c2363188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1489.295180] RAX: ffffffffffffffda RBX: 00007fe4c4f00f60 RCX: 00007fe4c4dedb19 [ 1489.296630] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1489.298068] RBP: 00007fe4c23631d0 R08: 0000000000000000 R09: 0000000000000000 [ 1489.299515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1489.300974] R13: 00007ffd7f08811f R14: 00007fe4c2363300 R15: 0000000000022000 [ 1503.978032] FAULT_INJECTION: forcing a failure. [ 1503.978032] name failslab, interval 1, probability 0, space 0, times 0 [ 1503.979348] CPU: 0 PID: 11129 Comm: syz-executor.3 Not tainted 5.10.186 #1 [ 1503.980071] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1503.981236] Call Trace: 07:05:43 executing program 7: perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:05:43 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 5) [ 1503.981643] dump_stack+0x107/0x167 [ 1503.982359] should_fail.cold+0x5/0xa [ 1503.982949] ? prepare_creds+0x25/0x5f0 [ 1503.983561] ? prepare_creds+0x25/0x5f0 [ 1503.984188] should_failslab+0x5/0x20 [ 1503.984766] kmem_cache_alloc+0x5b/0x310 [ 1503.985392] ? lock_downgrade+0x6d0/0x6d0 [ 1503.986026] prepare_creds+0x25/0x5f0 [ 1503.986602] copy_creds+0x72/0x580 [ 1503.987163] copy_process+0xfce/0x6740 [ 1503.987756] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1503.988573] ? exc_page_fault+0xca/0x1a0 [ 1503.989224] ? trace_hardirqs_on+0x5b/0x180 [ 1503.989923] ? exc_page_fault+0xca/0x1a0 [ 1503.990591] ? __cleanup_sighand+0xb0/0xb0 [ 1503.991290] ? _copy_from_user+0xfb/0x1b0 [ 1503.991953] kernel_clone+0xe7/0x980 [ 1503.992517] ? __lockdep_reset_lock+0x180/0x180 [ 1503.993025] ? create_io_thread+0xf0/0xf0 [ 1503.993499] ? ksys_write+0x21a/0x260 [ 1503.993922] ? lock_downgrade+0x6d0/0x6d0 [ 1503.994387] __do_sys_clone3+0x1e5/0x320 [ 1503.994841] ? __do_sys_clone+0x110/0x110 [ 1503.995322] ? rcu_read_lock_any_held+0x75/0xa0 [ 1503.995837] ? vfs_write+0x354/0xa70 [ 1503.996265] ? fput_many+0x2f/0x1a0 [ 1503.996662] ? ksys_write+0x1a9/0x260 [ 1503.997081] ? __ia32_sys_read+0xb0/0xb0 [ 1503.997529] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1503.998110] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1503.998677] ? trace_hardirqs_on+0x5b/0x180 [ 1503.999158] do_syscall_64+0x33/0x40 [ 1503.999574] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1504.000157] RIP: 0033:0x7fe4c4dedb19 [ 1504.000567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1504.002578] RSP: 002b:00007fe4c2363188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1504.003416] RAX: ffffffffffffffda RBX: 00007fe4c4f00f60 RCX: 00007fe4c4dedb19 [ 1504.004199] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1504.004982] RBP: 00007fe4c23631d0 R08: 0000000000000000 R09: 0000000000000000 [ 1504.005766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1504.006549] R13: 00007ffd7f08811f R14: 00007fe4c2363300 R15: 0000000000022000 07:05:43 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 6) 07:05:43 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x700, 0x8000) 07:05:43 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 4) 07:05:43 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 2) 07:05:43 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 8) 07:05:43 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 7) [ 1504.034551] FAULT_INJECTION: forcing a failure. [ 1504.034551] name failslab, interval 1, probability 0, space 0, times 0 [ 1504.035872] CPU: 0 PID: 11136 Comm: syz-executor.6 Not tainted 5.10.186 #1 [ 1504.036637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1504.037550] Call Trace: [ 1504.037851] dump_stack+0x107/0x167 [ 1504.038257] should_fail.cold+0x5/0xa [ 1504.038685] ? security_prepare_creds+0x112/0x190 [ 1504.038818] FAULT_INJECTION: forcing a failure. [ 1504.038818] name failslab, interval 1, probability 0, space 0, times 0 [ 1504.039226] should_failslab+0x5/0x20 [ 1504.042001] __kmalloc+0x72/0x390 [ 1504.042394] security_prepare_creds+0x112/0x190 [ 1504.042906] prepare_creds+0x458/0x5f0 [ 1504.043336] copy_creds+0x72/0x580 [ 1504.043734] copy_process+0xfce/0x6740 [ 1504.044181] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1504.044759] ? exc_page_fault+0xca/0x1a0 [ 1504.045209] ? trace_hardirqs_on+0x5b/0x180 [ 1504.045683] ? exc_page_fault+0xca/0x1a0 [ 1504.046142] ? __cleanup_sighand+0xb0/0xb0 [ 1504.046621] ? _copy_from_user+0xfb/0x1b0 [ 1504.047083] kernel_clone+0xe7/0x980 [ 1504.047489] ? __lockdep_reset_lock+0x180/0x180 [ 1504.047995] ? create_io_thread+0xf0/0xf0 [ 1504.048471] ? ksys_write+0x21a/0x260 [ 1504.048887] ? lock_downgrade+0x6d0/0x6d0 [ 1504.049346] __do_sys_clone3+0x1e5/0x320 [ 1504.049788] ? __do_sys_clone+0x110/0x110 [ 1504.050257] ? rcu_read_lock_any_held+0x75/0xa0 [ 1504.050761] ? vfs_write+0x354/0xa70 [ 1504.051169] ? fput_many+0x2f/0x1a0 [ 1504.051576] ? ksys_write+0x1a9/0x260 [ 1504.051990] ? __ia32_sys_read+0xb0/0xb0 [ 1504.052453] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1504.053033] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1504.053606] ? trace_hardirqs_on+0x5b/0x180 [ 1504.054079] do_syscall_64+0x33/0x40 [ 1504.054493] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1504.055049] RIP: 0033:0x7f9be05f4b19 [ 1504.055462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1504.057490] RSP: 002b:00007f9bddb6a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1504.058322] RAX: ffffffffffffffda RBX: 00007f9be0707f60 RCX: 00007f9be05f4b19 [ 1504.059095] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1504.059880] RBP: 00007f9bddb6a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1504.060679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1504.061456] R13: 00007ffec4eef12f R14: 00007f9bddb6a300 R15: 0000000000022000 [ 1504.062267] CPU: 1 PID: 11139 Comm: syz-executor.4 Not tainted 5.10.186 #1 [ 1504.063022] FAULT_INJECTION: forcing a failure. [ 1504.063022] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1504.063758] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1504.063765] Call Trace: [ 1504.063789] dump_stack+0x107/0x167 [ 1504.063814] should_fail.cold+0x5/0xa [ 1504.068953] ? copy_process+0x446c/0x6740 [ 1504.069844] should_failslab+0x5/0x20 [ 1504.070664] kmem_cache_alloc_node+0x55/0x330 [ 1504.071628] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1504.072761] copy_process+0x446c/0x6740 [ 1504.073618] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1504.074738] ? exc_page_fault+0xca/0x1a0 [ 1504.075610] ? trace_hardirqs_on+0x5b/0x180 [ 1504.076564] ? exc_page_fault+0xca/0x1a0 [ 1504.077451] ? __cleanup_sighand+0xb0/0xb0 [ 1504.078375] ? _copy_from_user+0xfb/0x1b0 [ 1504.079273] kernel_clone+0xe7/0x980 [ 1504.080087] ? __lockdep_reset_lock+0x180/0x180 [ 1504.081086] ? create_io_thread+0xf0/0xf0 [ 1504.081991] ? ksys_write+0x21a/0x260 [ 1504.082818] ? lock_downgrade+0x6d0/0x6d0 [ 1504.083713] __do_sys_clone3+0x1e5/0x320 [ 1504.084608] ? __do_sys_clone+0x110/0x110 [ 1504.085519] ? rcu_read_lock_any_held+0x75/0xa0 [ 1504.086521] ? vfs_write+0x354/0xa70 [ 1504.087326] ? fput_many+0x2f/0x1a0 [ 1504.088124] ? ksys_write+0x1a9/0x260 [ 1504.088943] ? __ia32_sys_read+0xb0/0xb0 [ 1504.089822] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1504.090948] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1504.092059] ? trace_hardirqs_on+0x5b/0x180 [ 1504.092998] do_syscall_64+0x33/0x40 [ 1504.093804] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1504.094905] RIP: 0033:0x7f7adc333b19 [ 1504.095706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1504.099661] RSP: 002b:00007f7ad98a9188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1504.101315] RAX: ffffffffffffffda RBX: 00007f7adc446f60 RCX: 00007f7adc333b19 [ 1504.102848] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1504.104394] RBP: 00007f7ad98a91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1504.105924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1504.107455] R13: 00007ffddebb93bf R14: 00007f7ad98a9300 R15: 0000000000022000 [ 1504.109014] CPU: 0 PID: 11140 Comm: syz-executor.0 Not tainted 5.10.186 #1 [ 1504.109781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1504.110702] Call Trace: [ 1504.111006] dump_stack+0x107/0x167 [ 1504.111414] should_fail.cold+0x5/0xa [ 1504.111836] __alloc_pages_nodemask+0x182/0x600 [ 1504.112348] ? lock_downgrade+0x6d0/0x6d0 [ 1504.112810] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1504.113456] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1504.114032] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1504.114554] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1504.115140] copy_process+0x60a/0x6740 [ 1504.115563] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1504.116157] ? exc_page_fault+0xca/0x1a0 [ 1504.116590] ? trace_hardirqs_on+0x5b/0x180 [ 1504.117065] ? exc_page_fault+0xca/0x1a0 [ 1504.117507] ? __cleanup_sighand+0xb0/0xb0 [ 1504.117980] ? _copy_from_user+0xfb/0x1b0 [ 1504.118429] kernel_clone+0xe7/0x980 [ 1504.118842] ? __lockdep_reset_lock+0x180/0x180 [ 1504.119344] ? create_io_thread+0xf0/0xf0 [ 1504.119812] ? ksys_write+0x21a/0x260 [ 1504.120224] ? lock_downgrade+0x6d0/0x6d0 [ 1504.120681] __do_sys_clone3+0x1e5/0x320 [ 1504.121127] ? __do_sys_clone+0x110/0x110 [ 1504.121593] ? rcu_read_lock_any_held+0x75/0xa0 [ 1504.122082] ? vfs_write+0x354/0xa70 [ 1504.122479] ? fput_many+0x2f/0x1a0 [ 1504.122875] ? ksys_write+0x1a9/0x260 [ 1504.123340] ? __ia32_sys_read+0xb0/0xb0 [ 1504.124015] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1504.124579] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1504.125125] ? trace_hardirqs_on+0x5b/0x180 [ 1504.125592] do_syscall_64+0x33/0x40 [ 1504.125998] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1504.126562] RIP: 0033:0x7f1220755b19 [ 1504.126968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1504.127547] FAULT_INJECTION: forcing a failure. [ 1504.127547] name failslab, interval 1, probability 0, space 0, times 0 [ 1504.128976] RSP: 002b:00007f121dccb188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1504.128987] RAX: ffffffffffffffda RBX: 00007f1220868f60 RCX: 00007f1220755b19 [ 1504.128992] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1504.128998] RBP: 00007f121dccb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1504.129003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1504.129009] R13: 00007ffee8d49d0f R14: 00007f121dccb300 R15: 0000000000022000 [ 1504.141006] CPU: 1 PID: 11144 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1504.142484] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1504.144267] Call Trace: [ 1504.144839] dump_stack+0x107/0x167 [ 1504.145625] should_fail.cold+0x5/0xa [ 1504.146447] ? create_object.isra.0+0x3a/0xa20 [ 1504.147429] should_failslab+0x5/0x20 [ 1504.148249] kmem_cache_alloc+0x5b/0x310 [ 1504.149130] create_object.isra.0+0x3a/0xa20 [ 1504.150078] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1504.151166] __kmalloc+0x16e/0x390 [ 1504.151946] security_prepare_creds+0x112/0x190 [ 1504.152967] prepare_creds+0x458/0x5f0 [ 1504.153805] copy_creds+0x72/0x580 [ 1504.154574] copy_process+0xfce/0x6740 [ 1504.155418] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1504.156548] ? exc_page_fault+0xca/0x1a0 [ 1504.157423] ? trace_hardirqs_on+0x5b/0x180 [ 1504.158348] ? exc_page_fault+0xca/0x1a0 [ 1504.159235] ? __cleanup_sighand+0xb0/0xb0 [ 1504.160171] ? _copy_from_user+0xfb/0x1b0 [ 1504.161074] kernel_clone+0xe7/0x980 [ 1504.161876] ? __lockdep_reset_lock+0x180/0x180 [ 1504.162879] ? create_io_thread+0xf0/0xf0 [ 1504.163784] ? ksys_write+0x21a/0x260 [ 1504.164615] ? lock_downgrade+0x6d0/0x6d0 [ 1504.165509] __do_sys_clone3+0x1e5/0x320 [ 1504.166385] ? __do_sys_clone+0x110/0x110 [ 1504.167292] ? rcu_read_lock_any_held+0x75/0xa0 [ 1504.168292] ? vfs_write+0x354/0xa70 [ 1504.169096] ? fput_many+0x2f/0x1a0 [ 1504.169882] ? ksys_write+0x1a9/0x260 [ 1504.170697] ? __ia32_sys_read+0xb0/0xb0 [ 1504.171577] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1504.172719] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1504.173829] ? trace_hardirqs_on+0x5b/0x180 [ 1504.174764] do_syscall_64+0x33/0x40 [ 1504.175565] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1504.176668] RIP: 0033:0x7f92d9afeb19 [ 1504.177470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1504.181105] FAULT_INJECTION: forcing a failure. [ 1504.181105] name failslab, interval 1, probability 0, space 0, times 0 [ 1504.181433] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1504.184252] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1504.185780] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1504.187315] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1504.188854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1504.190388] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 [ 1504.191943] CPU: 0 PID: 11145 Comm: syz-executor.1 Not tainted 5.10.186 #1 [ 1504.192701] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1504.193588] Call Trace: [ 1504.193876] dump_stack+0x107/0x167 [ 1504.194268] should_fail.cold+0x5/0xa [ 1504.194670] ? create_object.isra.0+0x3a/0xa20 [ 1504.195165] should_failslab+0x5/0x20 [ 1504.195575] kmem_cache_alloc+0x5b/0x310 [ 1504.196009] create_object.isra.0+0x3a/0xa20 [ 1504.196489] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1504.197031] kmem_cache_alloc+0x159/0x310 [ 1504.197477] prepare_creds+0x25/0x5f0 [ 1504.197881] copy_creds+0x72/0x580 [ 1504.198260] copy_process+0xfce/0x6740 [ 1504.198669] ? lock_acquire+0x197/0x470 [ 1504.199111] ? find_held_lock+0x2c/0x110 [ 1504.199548] ? __might_fault+0xd3/0x180 [ 1504.199981] ? lock_downgrade+0x6d0/0x6d0 [ 1504.200430] ? __cleanup_sighand+0xb0/0xb0 [ 1504.200897] ? _copy_from_user+0xfb/0x1b0 [ 1504.201344] kernel_clone+0xe7/0x980 [ 1504.201755] ? __lockdep_reset_lock+0x180/0x180 [ 1504.202256] ? create_io_thread+0xf0/0xf0 [ 1504.202726] ? ksys_write+0x21a/0x260 [ 1504.203134] ? lock_downgrade+0x6d0/0x6d0 [ 1504.203587] __do_sys_clone3+0x1e5/0x320 [ 1504.204010] ? __do_sys_clone+0x110/0x110 [ 1504.204480] ? rcu_read_lock_any_held+0x75/0xa0 [ 1504.204975] ? vfs_write+0x354/0xa70 [ 1504.205385] ? fput_many+0x2f/0x1a0 [ 1504.205779] ? ksys_write+0x1a9/0x260 [ 1504.206188] ? __ia32_sys_read+0xb0/0xb0 [ 1504.206630] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1504.207191] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1504.207744] ? trace_hardirqs_on+0x5b/0x180 [ 1504.208216] do_syscall_64+0x33/0x40 [ 1504.208629] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1504.209182] RIP: 0033:0x7f6ce9af3b19 [ 1504.209582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1504.211514] RSP: 002b:00007f6ce7048188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1504.212359] RAX: ffffffffffffffda RBX: 00007f6ce9c07020 RCX: 00007f6ce9af3b19 [ 1504.213133] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1504.213906] RBP: 00007f6ce70481d0 R08: 0000000000000000 R09: 0000000000000000 [ 1504.214679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1504.215453] R13: 00007ffe6243298f R14: 00007f6ce7048300 R15: 0000000000022000 07:05:57 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 8) 07:05:57 executing program 7: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:05:57 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 6) 07:05:57 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 3) 07:05:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 5) 07:05:57 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xf00, 0x8000) 07:05:57 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 9) 07:05:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 7) [ 1518.624035] FAULT_INJECTION: forcing a failure. [ 1518.624035] name failslab, interval 1, probability 0, space 0, times 0 [ 1518.626378] CPU: 0 PID: 11159 Comm: syz-executor.3 Not tainted 5.10.186 #1 [ 1518.627730] FAULT_INJECTION: forcing a failure. [ 1518.627730] name failslab, interval 1, probability 0, space 0, times 0 [ 1518.627844] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1518.631797] Call Trace: [ 1518.632377] dump_stack+0x107/0x167 [ 1518.633158] should_fail.cold+0x5/0xa [ 1518.633972] ? create_object.isra.0+0x3a/0xa20 [ 1518.634945] should_failslab+0x5/0x20 [ 1518.635752] kmem_cache_alloc+0x5b/0x310 [ 1518.636634] create_object.isra.0+0x3a/0xa20 [ 1518.637571] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1518.638649] kmem_cache_alloc+0x159/0x310 [ 1518.639532] prepare_creds+0x25/0x5f0 [ 1518.640360] copy_creds+0x72/0x580 [ 1518.641123] copy_process+0xfce/0x6740 [ 1518.641948] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1518.643061] ? exc_page_fault+0xca/0x1a0 [ 1518.643921] ? trace_hardirqs_on+0x5b/0x180 [ 1518.644851] ? exc_page_fault+0xca/0x1a0 [ 1518.645723] ? __cleanup_sighand+0xb0/0xb0 [ 1518.646671] ? _copy_from_user+0xfb/0x1b0 [ 1518.647553] kernel_clone+0xe7/0x980 [ 1518.648369] ? __lockdep_reset_lock+0x180/0x180 [ 1518.649352] ? create_io_thread+0xf0/0xf0 [ 1518.650249] ? ksys_write+0x21a/0x260 [ 1518.651060] ? lock_downgrade+0x6d0/0x6d0 [ 1518.651943] __do_sys_clone3+0x1e5/0x320 [ 1518.652808] ? __do_sys_clone+0x110/0x110 [ 1518.653705] ? rcu_read_lock_any_held+0x75/0xa0 [ 1518.654682] ? vfs_write+0x354/0xa70 [ 1518.655479] ? fput_many+0x2f/0x1a0 [ 1518.656249] ? ksys_write+0x1a9/0x260 [ 1518.657074] ? __ia32_sys_read+0xb0/0xb0 [ 1518.657935] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1518.659049] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1518.660131] ? trace_hardirqs_on+0x5b/0x180 [ 1518.661069] do_syscall_64+0x33/0x40 [ 1518.661862] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1518.662950] RIP: 0033:0x7fe4c4dedb19 [ 1518.663738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1518.667620] RSP: 002b:00007fe4c2363188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1518.669244] RAX: ffffffffffffffda RBX: 00007fe4c4f00f60 RCX: 00007fe4c4dedb19 [ 1518.670747] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1518.672246] RBP: 00007fe4c23631d0 R08: 0000000000000000 R09: 0000000000000000 [ 1518.673758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1518.675260] R13: 00007ffd7f08811f R14: 00007fe4c2363300 R15: 0000000000022000 [ 1518.676812] CPU: 1 PID: 11162 Comm: syz-executor.1 Not tainted 5.10.186 #1 [ 1518.678202] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1518.679849] Call Trace: [ 1518.680398] dump_stack+0x107/0x167 [ 1518.681133] should_fail.cold+0x5/0xa [ 1518.681903] ? security_prepare_creds+0x112/0x190 [ 1518.682872] should_failslab+0x5/0x20 [ 1518.683786] __kmalloc+0x72/0x390 [ 1518.684523] security_prepare_creds+0x112/0x190 [ 1518.685645] prepare_creds+0x458/0x5f0 [ 1518.686428] copy_creds+0x72/0x580 [ 1518.687287] copy_process+0xfce/0x6740 [ 1518.688073] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1518.689189] ? exc_page_fault+0xca/0x1a0 [ 1518.690165] ? trace_hardirqs_on+0x5b/0x180 [ 1518.691033] ? exc_page_fault+0xca/0x1a0 [ 1518.692017] ? __cleanup_sighand+0xb0/0xb0 [ 1518.692908] ? _copy_from_user+0xfb/0x1b0 [ 1518.693309] FAULT_INJECTION: forcing a failure. [ 1518.693309] name failslab, interval 1, probability 0, space 0, times 0 [ 1518.693909] kernel_clone+0xe7/0x980 [ 1518.693927] ? __lockdep_reset_lock+0x180/0x180 [ 1518.693949] ? create_io_thread+0xf0/0xf0 [ 1518.699049] ? ksys_write+0x21a/0x260 [ 1518.699823] ? lock_downgrade+0x6d0/0x6d0 [ 1518.700835] __do_sys_clone3+0x1e5/0x320 [ 1518.701653] ? __do_sys_clone+0x110/0x110 [ 1518.702664] ? rcu_read_lock_any_held+0x75/0xa0 [ 1518.703593] ? vfs_write+0x354/0xa70 [ 1518.704513] ? fput_many+0x2f/0x1a0 [ 1518.705247] ? ksys_write+0x1a9/0x260 [ 1518.706157] ? __ia32_sys_read+0xb0/0xb0 [ 1518.706983] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1518.708238] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1518.709285] ? trace_hardirqs_on+0x5b/0x180 [ 1518.710323] do_syscall_64+0x33/0x40 [ 1518.711071] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1518.712319] RIP: 0033:0x7f6ce9af3b19 [ 1518.713087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1518.716807] RSP: 002b:00007f6ce7069188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1518.718641] RAX: ffffffffffffffda RBX: 00007f6ce9c06f60 RCX: 00007f6ce9af3b19 [ 1518.720360] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1518.721819] RBP: 00007f6ce70691d0 R08: 0000000000000000 R09: 0000000000000000 [ 1518.723258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1518.724732] R13: 00007ffe6243298f R14: 00007f6ce7069300 R15: 0000000000022000 [ 1518.726196] CPU: 0 PID: 11168 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1518.727655] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1518.729403] Call Trace: [ 1518.729966] dump_stack+0x107/0x167 [ 1518.730735] should_fail.cold+0x5/0xa [ 1518.731541] ? __delayacct_tsk_init+0x1b/0x80 [ 1518.732498] should_failslab+0x5/0x20 [ 1518.733301] kmem_cache_alloc+0x5b/0x310 [ 1518.734167] ? prepare_creds+0x46c/0x5f0 [ 1518.735029] __delayacct_tsk_init+0x1b/0x80 [ 1518.735936] copy_process+0x4500/0x6740 [ 1518.736804] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1518.737847] ? exc_page_fault+0xca/0x1a0 [ 1518.738658] ? trace_hardirqs_on+0x5b/0x180 [ 1518.739524] ? exc_page_fault+0xca/0x1a0 [ 1518.740676] ? __cleanup_sighand+0xb0/0xb0 [ 1518.741714] ? _copy_from_user+0xfb/0x1b0 [ 1518.742599] kernel_clone+0xe7/0x980 [ 1518.743383] ? __lockdep_reset_lock+0x180/0x180 [ 1518.744387] ? create_io_thread+0xf0/0xf0 [ 1518.745281] ? ksys_write+0x21a/0x260 [ 1518.746084] ? lock_downgrade+0x6d0/0x6d0 [ 1518.746963] __do_sys_clone3+0x1e5/0x320 [ 1518.747819] ? __do_sys_clone+0x110/0x110 [ 1518.748729] ? rcu_read_lock_any_held+0x75/0xa0 [ 1518.749707] ? vfs_write+0x354/0xa70 [ 1518.750496] ? fput_many+0x2f/0x1a0 [ 1518.751264] ? ksys_write+0x1a9/0x260 [ 1518.752068] ? __ia32_sys_read+0xb0/0xb0 [ 1518.752923] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1518.753963] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1518.754977] ? trace_hardirqs_on+0x5b/0x180 [ 1518.755835] do_syscall_64+0x33/0x40 [ 1518.756595] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1518.757609] RIP: 0033:0x7f92d9afeb19 [ 1518.758355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1518.762018] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1518.763860] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1518.765304] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1518.766726] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1518.768437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1518.769855] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 [ 1518.784214] FAULT_INJECTION: forcing a failure. [ 1518.784214] name failslab, interval 1, probability 0, space 0, times 0 [ 1518.786635] CPU: 1 PID: 11172 Comm: syz-executor.6 Not tainted 5.10.186 #1 [ 1518.788093] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1518.789851] Call Trace: [ 1518.790382] dump_stack+0x107/0x167 [ 1518.791124] should_fail.cold+0x5/0xa [ 1518.791902] ? create_object.isra.0+0x3a/0xa20 [ 1518.792856] should_failslab+0x5/0x20 [ 1518.793617] kmem_cache_alloc+0x5b/0x310 [ 1518.794439] create_object.isra.0+0x3a/0xa20 [ 1518.795328] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1518.796371] __kmalloc+0x16e/0x390 [ 1518.797116] security_prepare_creds+0x112/0x190 [ 1518.798063] prepare_creds+0x458/0x5f0 [ 1518.798862] copy_creds+0x72/0x580 [ 1518.799594] copy_process+0xfce/0x6740 [ 1518.800424] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1518.801491] ? exc_page_fault+0xca/0x1a0 [ 1518.802336] ? trace_hardirqs_on+0x5b/0x180 [ 1518.803205] ? exc_page_fault+0xca/0x1a0 [ 1518.804056] ? __cleanup_sighand+0xb0/0xb0 [ 1518.804938] ? _copy_from_user+0xfb/0x1b0 [ 1518.805783] kernel_clone+0xe7/0x980 [ 1518.806526] ? __lockdep_reset_lock+0x180/0x180 [ 1518.807464] ? create_io_thread+0xf0/0xf0 [ 1518.808445] ? ksys_write+0x21a/0x260 [ 1518.809246] ? lock_downgrade+0x6d0/0x6d0 [ 1518.810100] __do_sys_clone3+0x1e5/0x320 [ 1518.810926] ? __do_sys_clone+0x110/0x110 [ 1518.811786] ? rcu_read_lock_any_held+0x75/0xa0 [ 1518.812739] ? vfs_write+0x354/0xa70 [ 1518.813492] ? fput_many+0x2f/0x1a0 [ 1518.814228] ? ksys_write+0x1a9/0x260 [ 1518.815011] ? __ia32_sys_read+0xb0/0xb0 [ 1518.815840] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1518.816908] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1518.817944] ? trace_hardirqs_on+0x5b/0x180 [ 1518.818839] do_syscall_64+0x33/0x40 [ 1518.819595] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1518.820681] RIP: 0033:0x7f9be05f4b19 [ 1518.821432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1518.825233] RSP: 002b:00007f9bddb6a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1518.826785] RAX: ffffffffffffffda RBX: 00007f9be0707f60 RCX: 00007f9be05f4b19 [ 1518.828219] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1518.829678] RBP: 00007f9bddb6a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1518.831262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1518.832680] R13: 00007ffec4eef12f R14: 00007f9bddb6a300 R15: 0000000000022000 07:05:58 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x1800, 0x8000) 07:05:58 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:05:58 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:05:58 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 7) 07:05:58 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 10) [ 1519.069196] FAULT_INJECTION: forcing a failure. [ 1519.069196] name failslab, interval 1, probability 0, space 0, times 0 [ 1519.071599] CPU: 1 PID: 11387 Comm: syz-executor.3 Not tainted 5.10.186 #1 [ 1519.073006] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1519.074663] Call Trace: [ 1519.075199] dump_stack+0x107/0x167 [ 1519.075934] should_fail.cold+0x5/0xa [ 1519.076725] ? security_prepare_creds+0x112/0x190 [ 1519.077689] should_failslab+0x5/0x20 [ 1519.078451] __kmalloc+0x72/0x390 [ 1519.079156] security_prepare_creds+0x112/0x190 [ 1519.080091] prepare_creds+0x458/0x5f0 [ 1519.080883] copy_creds+0x72/0x580 [ 1519.081595] copy_process+0xfce/0x6740 [ 1519.082381] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1519.083446] ? exc_page_fault+0xca/0x1a0 [ 1519.084262] ? trace_hardirqs_on+0x5b/0x180 [ 1519.085143] ? exc_page_fault+0xca/0x1a0 [ 1519.085971] ? __cleanup_sighand+0xb0/0xb0 [ 1519.086827] ? _copy_from_user+0xfb/0x1b0 [ 1519.087678] kernel_clone+0xe7/0x980 [ 1519.088434] ? __lockdep_reset_lock+0x180/0x180 [ 1519.089364] ? create_io_thread+0xf0/0xf0 [ 1519.090204] ? ksys_write+0x21a/0x260 [ 1519.090977] ? lock_downgrade+0x6d0/0x6d0 [ 1519.091816] __do_sys_clone3+0x1e5/0x320 [ 1519.092643] ? __do_sys_clone+0x110/0x110 [ 1519.093492] ? rcu_read_lock_any_held+0x75/0xa0 [ 1519.094423] ? vfs_write+0x354/0xa70 [ 1519.095169] ? fput_many+0x2f/0x1a0 [ 1519.095899] ? ksys_write+0x1a9/0x260 [ 1519.096673] ? __ia32_sys_read+0xb0/0xb0 [ 1519.097505] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1519.098557] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1519.099590] ? trace_hardirqs_on+0x5b/0x180 [ 1519.100474] do_syscall_64+0x33/0x40 [ 1519.101223] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1519.102245] RIP: 0033:0x7fe4c4dedb19 [ 1519.102994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1519.106668] RSP: 002b:00007fe4c2363188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1519.108185] RAX: ffffffffffffffda RBX: 00007fe4c4f00f60 RCX: 00007fe4c4dedb19 [ 1519.109611] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1519.111031] RBP: 00007fe4c23631d0 R08: 0000000000000000 R09: 0000000000000000 [ 1519.112458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1519.113876] R13: 00007ffd7f08811f R14: 00007fe4c2363300 R15: 0000000000022000 07:05:58 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 8) 07:05:58 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x2103, 0x8000) [ 1519.151251] FAULT_INJECTION: forcing a failure. [ 1519.151251] name failslab, interval 1, probability 0, space 0, times 0 [ 1519.153575] CPU: 1 PID: 11390 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1519.154956] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1519.156629] Call Trace: [ 1519.157164] dump_stack+0x107/0x167 [ 1519.157898] should_fail.cold+0x5/0xa [ 1519.158662] ? create_object.isra.0+0x3a/0xa20 [ 1519.159576] should_failslab+0x5/0x20 [ 1519.160351] kmem_cache_alloc+0x5b/0x310 [ 1519.161168] create_object.isra.0+0x3a/0xa20 [ 1519.162048] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1519.163064] kmem_cache_alloc+0x159/0x310 [ 1519.163899] __delayacct_tsk_init+0x1b/0x80 [ 1519.164778] copy_process+0x4500/0x6740 [ 1519.165575] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1519.166624] ? exc_page_fault+0xca/0x1a0 [ 1519.167433] ? trace_hardirqs_on+0x5b/0x180 [ 1519.168302] ? exc_page_fault+0xca/0x1a0 [ 1519.169125] ? __cleanup_sighand+0xb0/0xb0 [ 1519.169977] ? _copy_from_user+0xfb/0x1b0 [ 1519.170811] kernel_clone+0xe7/0x980 [ 1519.171553] ? __lockdep_reset_lock+0x180/0x180 [ 1519.172493] ? create_io_thread+0xf0/0xf0 [ 1519.173332] ? ksys_write+0x21a/0x260 [ 1519.174091] ? lock_downgrade+0x6d0/0x6d0 [ 1519.174920] __do_sys_clone3+0x1e5/0x320 [ 1519.175733] ? __do_sys_clone+0x110/0x110 [ 1519.176594] ? rcu_read_lock_any_held+0x75/0xa0 [ 1519.177519] ? vfs_write+0x354/0xa70 [ 1519.178265] ? fput_many+0x2f/0x1a0 [ 1519.178993] ? ksys_write+0x1a9/0x260 [ 1519.179753] ? __ia32_sys_read+0xb0/0xb0 [ 1519.180577] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1519.181623] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1519.182649] ? trace_hardirqs_on+0x5b/0x180 [ 1519.183513] do_syscall_64+0x33/0x40 [ 1519.184258] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1519.185302] RIP: 0033:0x7f92d9afeb19 [ 1519.186046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1519.189713] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1519.191234] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1519.192660] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1519.194080] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1519.195505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1519.196939] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 [ 1519.200312] FAULT_INJECTION: forcing a failure. [ 1519.200312] name failslab, interval 1, probability 0, space 0, times 0 07:05:58 executing program 7: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1519.202832] CPU: 0 PID: 11393 Comm: syz-executor.1 Not tainted 5.10.186 #1 [ 1519.204489] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1519.206263] Call Trace: [ 1519.206832] dump_stack+0x107/0x167 [ 1519.207627] should_fail.cold+0x5/0xa [ 1519.208457] ? create_object.isra.0+0x3a/0xa20 [ 1519.209441] should_failslab+0x5/0x20 [ 1519.210267] kmem_cache_alloc+0x5b/0x310 [ 1519.211149] create_object.isra.0+0x3a/0xa20 [ 1519.212096] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1519.213206] __kmalloc+0x16e/0x390 [ 1519.213986] security_prepare_creds+0x112/0x190 [ 1519.214994] prepare_creds+0x458/0x5f0 [ 1519.215842] copy_creds+0x72/0x580 [ 1519.216895] copy_process+0xfce/0x6740 [ 1519.217885] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1519.219202] ? exc_page_fault+0xca/0x1a0 [ 1519.220227] ? trace_hardirqs_on+0x5b/0x180 [ 1519.221354] ? exc_page_fault+0xca/0x1a0 [ 1519.222395] ? __cleanup_sighand+0xb0/0xb0 [ 1519.223480] ? _copy_from_user+0xfb/0x1b0 [ 1519.224566] kernel_clone+0xe7/0x980 [ 1519.225509] ? __lockdep_reset_lock+0x180/0x180 [ 1519.226685] ? create_io_thread+0xf0/0xf0 [ 1519.227757] ? ksys_write+0x21a/0x260 [ 1519.228740] ? lock_downgrade+0x6d0/0x6d0 [ 1519.229699] __do_sys_clone3+0x1e5/0x320 [ 1519.230572] ? __do_sys_clone+0x110/0x110 [ 1519.231484] ? rcu_read_lock_any_held+0x75/0xa0 [ 1519.232497] ? vfs_write+0x354/0xa70 [ 1519.233301] ? fput_many+0x2f/0x1a0 [ 1519.234077] ? ksys_write+0x1a9/0x260 [ 1519.234895] ? __ia32_sys_read+0xb0/0xb0 [ 1519.235760] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1519.236899] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1519.237987] ? trace_hardirqs_on+0x5b/0x180 [ 1519.238923] do_syscall_64+0x33/0x40 [ 1519.239721] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1519.240845] RIP: 0033:0x7f6ce9af3b19 [ 1519.241639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1519.245598] RSP: 002b:00007f6ce7069188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1519.247206] RAX: ffffffffffffffda RBX: 00007f6ce9c06f60 RCX: 00007f6ce9af3b19 [ 1519.248731] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1519.250232] RBP: 00007f6ce70691d0 R08: 0000000000000000 R09: 0000000000000000 [ 1519.251739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1519.253255] R13: 00007ffe6243298f R14: 00007f6ce7069300 R15: 0000000000022000 07:05:58 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 9) 07:05:58 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 8) [ 1519.291042] FAULT_INJECTION: forcing a failure. [ 1519.291042] name failslab, interval 1, probability 0, space 0, times 0 [ 1519.293542] CPU: 0 PID: 11399 Comm: syz-executor.3 Not tainted 5.10.186 #1 [ 1519.295038] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1519.296841] Call Trace: [ 1519.297412] dump_stack+0x107/0x167 [ 1519.298215] should_fail.cold+0x5/0xa 07:05:58 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1519.299045] ? create_object.isra.0+0x3a/0xa20 [ 1519.300105] should_failslab+0x5/0x20 [ 1519.300932] kmem_cache_alloc+0x5b/0x310 [ 1519.301810] create_object.isra.0+0x3a/0xa20 [ 1519.302764] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1519.303854] __kmalloc+0x16e/0x390 [ 1519.304656] security_prepare_creds+0x112/0x190 [ 1519.305653] prepare_creds+0x458/0x5f0 [ 1519.306494] copy_creds+0x72/0x580 [ 1519.307265] copy_process+0xfce/0x6740 [ 1519.308103] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1519.309244] ? exc_page_fault+0xca/0x1a0 [ 1519.310113] ? trace_hardirqs_on+0x5b/0x180 [ 1519.311053] ? exc_page_fault+0xca/0x1a0 [ 1519.311937] ? __cleanup_sighand+0xb0/0xb0 [ 1519.312876] ? _copy_from_user+0xfb/0x1b0 07:05:58 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x3f00, 0x8000) [ 1519.313766] kernel_clone+0xe7/0x980 [ 1519.314605] ? __lockdep_reset_lock+0x180/0x180 [ 1519.315614] ? create_io_thread+0xf0/0xf0 [ 1519.316528] ? ksys_write+0x21a/0x260 [ 1519.317338] ? lock_downgrade+0x6d0/0x6d0 [ 1519.318230] __do_sys_clone3+0x1e5/0x320 [ 1519.319101] ? __do_sys_clone+0x110/0x110 [ 1519.320035] ? rcu_read_lock_any_held+0x75/0xa0 [ 1519.321032] ? vfs_write+0x354/0xa70 [ 1519.321849] ? fput_many+0x2f/0x1a0 [ 1519.322628] ? ksys_write+0x1a9/0x260 [ 1519.323465] ? __ia32_sys_read+0xb0/0xb0 [ 1519.324358] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1519.325500] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1519.326615] ? trace_hardirqs_on+0x5b/0x180 [ 1519.326675] FAULT_INJECTION: forcing a failure. [ 1519.326675] name failslab, interval 1, probability 0, space 0, times 0 [ 1519.327538] do_syscall_64+0x33/0x40 [ 1519.327567] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1519.330718] RIP: 0033:0x7fe4c4dedb19 [ 1519.331520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1519.335455] RSP: 002b:00007fe4c2363188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1519.337107] RAX: ffffffffffffffda RBX: 00007fe4c4f00f60 RCX: 00007fe4c4dedb19 [ 1519.338635] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1519.340163] RBP: 00007fe4c23631d0 R08: 0000000000000000 R09: 0000000000000000 [ 1519.341705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1519.343228] R13: 00007ffd7f08811f R14: 00007fe4c2363300 R15: 0000000000022000 [ 1519.344797] CPU: 1 PID: 11402 Comm: syz-executor.6 Not tainted 5.10.186 #1 [ 1519.345637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1519.346585] Call Trace: [ 1519.346903] dump_stack+0x107/0x167 [ 1519.347321] should_fail.cold+0x5/0xa [ 1519.347762] ? __delayacct_tsk_init+0x1b/0x80 [ 1519.348294] should_failslab+0x5/0x20 [ 1519.348736] kmem_cache_alloc+0x5b/0x310 [ 1519.349198] ? prepare_creds+0x46c/0x5f0 [ 1519.349658] __delayacct_tsk_init+0x1b/0x80 [ 1519.350154] copy_process+0x4500/0x6740 [ 1519.350612] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1519.351208] ? exc_page_fault+0xca/0x1a0 [ 1519.351671] ? trace_hardirqs_on+0x5b/0x180 [ 1519.352158] ? exc_page_fault+0xca/0x1a0 [ 1519.352637] ? __cleanup_sighand+0xb0/0xb0 [ 1519.353126] ? _copy_from_user+0xfb/0x1b0 [ 1519.353601] kernel_clone+0xe7/0x980 [ 1519.354026] ? __lockdep_reset_lock+0x180/0x180 [ 1519.354553] ? create_io_thread+0xf0/0xf0 [ 1519.355032] ? ksys_write+0x21a/0x260 [ 1519.355468] ? lock_downgrade+0x6d0/0x6d0 [ 1519.355936] __do_sys_clone3+0x1e5/0x320 [ 1519.356409] ? __do_sys_clone+0x110/0x110 [ 1519.356895] ? rcu_read_lock_any_held+0x75/0xa0 [ 1519.357421] ? vfs_write+0x354/0xa70 [ 1519.357845] ? fput_many+0x2f/0x1a0 [ 1519.358258] ? ksys_write+0x1a9/0x260 [ 1519.358689] ? __ia32_sys_read+0xb0/0xb0 [ 1519.359154] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1519.359750] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1519.360354] ? trace_hardirqs_on+0x5b/0x180 [ 1519.360848] do_syscall_64+0x33/0x40 [ 1519.361270] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1519.361870] RIP: 0033:0x7f9be05f4b19 [ 1519.362307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1519.364468] RSP: 002b:00007f9bddb6a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1519.365361] RAX: ffffffffffffffda RBX: 00007f9be0707f60 RCX: 00007f9be05f4b19 [ 1519.366200] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1519.367046] RBP: 00007f9bddb6a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1519.367886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1519.368734] R13: 00007ffec4eef12f R14: 00007f9bddb6a300 R15: 0000000000022000 07:05:58 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:13 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 9) 07:06:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x11, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:13 executing program 7: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:13 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 11) 07:06:13 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 10) 07:06:13 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x4000, 0x8000) 07:06:13 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:13 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x11, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1534.373303] FAULT_INJECTION: forcing a failure. [ 1534.373303] name failslab, interval 1, probability 0, space 0, times 0 [ 1534.375979] CPU: 1 PID: 11533 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1534.377433] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1534.379133] Call Trace: [ 1534.379678] dump_stack+0x107/0x167 [ 1534.380431] should_fail.cold+0x5/0xa [ 1534.381221] ? dup_fd+0x89/0xcf0 [ 1534.381917] should_failslab+0x5/0x20 [ 1534.382691] kmem_cache_alloc+0x5b/0x310 [ 1534.383526] dup_fd+0x89/0xcf0 [ 1534.384180] ? audit_filter_inodes+0x40/0x40 [ 1534.385096] ? security_task_alloc+0xe6/0x260 [ 1534.386017] copy_process+0x195b/0x6740 [ 1534.386831] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1534.387898] ? exc_page_fault+0xca/0x1a0 [ 1534.388739] ? trace_hardirqs_on+0x5b/0x180 [ 1534.389636] ? __cleanup_sighand+0xb0/0xb0 [ 1534.390506] ? _copy_from_user+0xfb/0x1b0 [ 1534.391361] kernel_clone+0xe7/0x980 [ 1534.392118] ? __lockdep_reset_lock+0x180/0x180 [ 1534.393072] ? create_io_thread+0xf0/0xf0 [ 1534.393924] ? ksys_write+0x21a/0x260 [ 1534.394690] ? lock_downgrade+0x6d0/0x6d0 [ 1534.395527] __do_sys_clone3+0x1e5/0x320 [ 1534.396342] ? __do_sys_clone+0x110/0x110 [ 1534.397237] ? rcu_read_lock_any_held+0x75/0xa0 [ 1534.398162] ? vfs_write+0x354/0xa70 [ 1534.398906] ? fput_many+0x2f/0x1a0 [ 1534.399634] ? ksys_write+0x1a9/0x260 [ 1534.400390] ? __ia32_sys_read+0xb0/0xb0 [ 1534.401220] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1534.402270] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1534.403295] ? trace_hardirqs_on+0x5b/0x180 [ 1534.404159] do_syscall_64+0x33/0x40 [ 1534.404915] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1534.405938] RIP: 0033:0x7f92d9afeb19 [ 1534.406682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1534.410407] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1534.411948] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1534.413391] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1534.414833] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1534.416275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1534.417733] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:06:13 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:13 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x60a8, 0x8000) 07:06:13 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:13 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 12) 07:06:13 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1534.713417] FAULT_INJECTION: forcing a failure. [ 1534.713417] name failslab, interval 1, probability 0, space 0, times 0 [ 1534.716012] CPU: 0 PID: 11856 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1534.717710] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1534.719722] Call Trace: [ 1534.720371] dump_stack+0x107/0x167 [ 1534.721272] should_fail.cold+0x5/0xa [ 1534.722170] ? create_object.isra.0+0x3a/0xa20 [ 1534.723086] should_failslab+0x5/0x20 [ 1534.723847] kmem_cache_alloc+0x5b/0x310 [ 1534.724691] create_object.isra.0+0x3a/0xa20 [ 1534.725570] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1534.726592] kmem_cache_alloc+0x159/0x310 [ 1534.727440] dup_fd+0x89/0xcf0 [ 1534.728087] ? audit_filter_inodes+0x40/0x40 [ 1534.729061] ? security_task_alloc+0xe6/0x260 [ 1534.730068] copy_process+0x195b/0x6740 [ 1534.730965] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1534.732058] ? exc_page_fault+0xca/0x1a0 [ 1534.732885] ? trace_hardirqs_on+0x5b/0x180 [ 1534.733760] ? __cleanup_sighand+0xb0/0xb0 [ 1534.734612] ? _copy_from_user+0xfb/0x1b0 [ 1534.735444] kernel_clone+0xe7/0x980 [ 1534.736189] ? __lockdep_reset_lock+0x180/0x180 [ 1534.737142] ? create_io_thread+0xf0/0xf0 [ 1534.737982] ? ksys_write+0x21a/0x260 [ 1534.738740] ? lock_downgrade+0x6d0/0x6d0 [ 1534.739573] __do_sys_clone3+0x1e5/0x320 [ 1534.740380] ? __do_sys_clone+0x110/0x110 [ 1534.741240] ? rcu_read_lock_any_held+0x75/0xa0 [ 1534.742161] ? vfs_write+0x354/0xa70 [ 1534.742902] ? fput_many+0x2f/0x1a0 [ 1534.743625] ? ksys_write+0x1a9/0x260 [ 1534.744378] ? __ia32_sys_read+0xb0/0xb0 [ 1534.745196] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1534.746240] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1534.747260] ? trace_hardirqs_on+0x5b/0x180 [ 1534.748118] do_syscall_64+0x33/0x40 [ 1534.748875] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1534.749895] RIP: 0033:0x7f92d9afeb19 [ 1534.750633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1534.754269] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1534.755782] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1534.757203] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1534.758607] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1534.760003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1534.761425] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:06:14 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:14 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xa860, 0x8000) [ 1534.799353] cgroup: fork rejected by pids controller in /syz1 07:06:14 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:14 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:14 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 13) 07:06:14 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xeffd, 0x8000) 07:06:14 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x11, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1535.104144] FAULT_INJECTION: forcing a failure. [ 1535.104144] name failslab, interval 1, probability 0, space 0, times 0 [ 1535.106770] CPU: 0 PID: 12132 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1535.108172] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1535.109852] Call Trace: [ 1535.110406] dump_stack+0x107/0x167 [ 1535.111151] should_fail.cold+0x5/0xa [ 1535.111930] ? alloc_fdtable+0x84/0x280 [ 1535.112770] should_failslab+0x5/0x20 [ 1535.113558] kmem_cache_alloc_trace+0x55/0x320 [ 1535.114504] ? rwlock_bug.part.0+0x90/0x90 [ 1535.115386] alloc_fdtable+0x84/0x280 [ 1535.116358] dup_fd+0x74d/0xcf0 [ 1535.117064] ? security_task_alloc+0xe6/0x260 [ 1535.117996] copy_process+0x195b/0x6740 [ 1535.118875] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1535.120012] ? exc_page_fault+0xca/0x1a0 [ 1535.120889] ? trace_hardirqs_on+0x5b/0x180 [ 1535.121849] ? __cleanup_sighand+0xb0/0xb0 [ 1535.122768] ? _copy_from_user+0xfb/0x1b0 [ 1535.123678] kernel_clone+0xe7/0x980 [ 1535.124497] ? __lockdep_reset_lock+0x180/0x180 [ 1535.125510] ? create_io_thread+0xf0/0xf0 [ 1535.126413] ? ksys_write+0x21a/0x260 [ 1535.127243] ? lock_downgrade+0x6d0/0x6d0 [ 1535.128135] __do_sys_clone3+0x1e5/0x320 [ 1535.129029] ? __do_sys_clone+0x110/0x110 [ 1535.129950] ? rcu_read_lock_any_held+0x75/0xa0 [ 1535.130954] ? vfs_write+0x354/0xa70 [ 1535.131767] ? fput_many+0x2f/0x1a0 [ 1535.132578] ? ksys_write+0x1a9/0x260 [ 1535.133406] ? __ia32_sys_read+0xb0/0xb0 [ 1535.134290] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1535.135426] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1535.136557] ? trace_hardirqs_on+0x5b/0x180 [ 1535.137497] do_syscall_64+0x33/0x40 [ 1535.138307] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1535.139413] RIP: 0033:0x7f92d9afeb19 [ 1535.140223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1535.144201] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1535.145861] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1535.147400] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1535.148959] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1535.150502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1535.152046] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:06:29 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:29 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:29 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1550.121640] FAULT_INJECTION: forcing a failure. [ 1550.121640] name failslab, interval 1, probability 0, space 0, times 0 [ 1550.122880] CPU: 0 PID: 12295 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1550.123601] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1550.124487] Call Trace: [ 1550.124797] dump_stack+0x107/0x167 [ 1550.125190] should_fail.cold+0x5/0xa [ 1550.125601] ? create_object.isra.0+0x3a/0xa20 [ 1550.126094] should_failslab+0x5/0x20 [ 1550.126501] kmem_cache_alloc+0x5b/0x310 [ 1550.126935] create_object.isra.0+0x3a/0xa20 [ 1550.127403] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1550.127948] kmem_cache_alloc_trace+0x151/0x320 [ 1550.128434] ? rwlock_bug.part.0+0x90/0x90 [ 1550.128905] alloc_fdtable+0x84/0x280 [ 1550.129310] dup_fd+0x74d/0xcf0 [ 1550.129665] ? security_task_alloc+0xe6/0x260 [ 1550.130148] copy_process+0x195b/0x6740 [ 1550.130571] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1550.131125] ? exc_page_fault+0xca/0x1a0 [ 1550.131566] ? trace_hardirqs_on+0x5b/0x180 [ 1550.132046] ? __cleanup_sighand+0xb0/0xb0 [ 1550.132522] ? _copy_from_user+0xfb/0x1b0 [ 1550.132993] kernel_clone+0xe7/0x980 [ 1550.133399] ? __lockdep_reset_lock+0x180/0x180 [ 1550.133920] ? create_io_thread+0xf0/0xf0 [ 1550.134383] ? ksys_write+0x21a/0x260 [ 1550.134809] ? lock_downgrade+0x6d0/0x6d0 [ 1550.135277] __do_sys_clone3+0x1e5/0x320 [ 1550.135725] ? __do_sys_clone+0x110/0x110 [ 1550.136182] ? rcu_read_lock_any_held+0x75/0xa0 [ 1550.136699] ? vfs_write+0x354/0xa70 [ 1550.137115] ? fput_many+0x2f/0x1a0 [ 1550.137526] ? ksys_write+0x1a9/0x260 [ 1550.137952] ? __ia32_sys_read+0xb0/0xb0 [ 1550.138398] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1550.138978] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1550.139549] ? trace_hardirqs_on+0x5b/0x180 [ 1550.140030] do_syscall_64+0x33/0x40 [ 1550.140430] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1550.141018] RIP: 0033:0x7f92d9afeb19 [ 1550.141432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1550.143443] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1550.144258] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1550.145022] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1550.145787] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1550.146551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1550.147313] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:06:29 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:29 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:29 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:29 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 14) 07:06:29 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xfdef, 0x8000) 07:06:29 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xff7f, 0x8000) 07:06:29 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1563.325921] FAULT_INJECTION: forcing a failure. [ 1563.325921] name failslab, interval 1, probability 0, space 0, times 0 07:06:42 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 15) 07:06:42 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x80000, 0x8000) [ 1563.327206] CPU: 0 PID: 12924 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1563.328139] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1563.329058] Call Trace: [ 1563.329356] dump_stack+0x107/0x167 [ 1563.329759] should_fail.cold+0x5/0xa [ 1563.330169] ? kvmalloc_node+0x119/0x170 [ 1563.330613] should_failslab+0x5/0x20 [ 1563.331025] __kmalloc_node+0x76/0x420 [ 1563.331449] kvmalloc_node+0x119/0x170 [ 1563.331865] alloc_fdtable+0xd3/0x280 [ 1563.332274] dup_fd+0x74d/0xcf0 [ 1563.332635] ? security_task_alloc+0xe6/0x260 [ 1563.333120] copy_process+0x195b/0x6740 [ 1563.333558] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.334124] ? exc_page_fault+0xca/0x1a0 [ 1563.334560] ? trace_hardirqs_on+0x5b/0x180 [ 1563.335043] ? __cleanup_sighand+0xb0/0xb0 [ 1563.335503] ? _copy_from_user+0xfb/0x1b0 [ 1563.335951] kernel_clone+0xe7/0x980 [ 1563.336353] ? __lockdep_reset_lock+0x180/0x180 [ 1563.336863] ? create_io_thread+0xf0/0xf0 [ 1563.337324] ? ksys_write+0x21a/0x260 [ 1563.337733] ? lock_downgrade+0x6d0/0x6d0 [ 1563.338199] __do_sys_clone3+0x1e5/0x320 [ 1563.338645] ? __do_sys_clone+0x110/0x110 07:06:42 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:42 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:42 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x11, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:42 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x11, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:42 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1563.339127] ? rcu_read_lock_any_held+0x75/0xa0 [ 1563.339665] ? vfs_write+0x354/0xa70 [ 1563.340066] ? fput_many+0x2f/0x1a0 [ 1563.340462] ? ksys_write+0x1a9/0x260 [ 1563.340880] ? __ia32_sys_read+0xb0/0xb0 [ 1563.341321] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.341896] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1563.342443] ? trace_hardirqs_on+0x5b/0x180 [ 1563.342948] do_syscall_64+0x33/0x40 [ 1563.343504] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1563.344051] RIP: 0033:0x7f92d9afeb19 [ 1563.344449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1563.346420] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1563.347225] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1563.347990] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1563.348746] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1563.349512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1563.350296] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:06:42 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x1000000, 0x8000) 07:06:42 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:42 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:42 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:42 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 16) 07:06:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1563.610702] FAULT_INJECTION: forcing a failure. [ 1563.610702] name failslab, interval 1, probability 0, space 0, times 0 [ 1563.613093] CPU: 0 PID: 13440 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1563.614482] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1563.616140] Call Trace: [ 1563.616688] dump_stack+0x107/0x167 [ 1563.617433] should_fail.cold+0x5/0xa [ 1563.618189] ? create_object.isra.0+0x3a/0xa20 [ 1563.619105] should_failslab+0x5/0x20 [ 1563.619864] kmem_cache_alloc+0x5b/0x310 [ 1563.620690] create_object.isra.0+0x3a/0xa20 [ 1563.621610] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1563.622696] __kmalloc_node+0x1ae/0x420 [ 1563.623522] kvmalloc_node+0x119/0x170 [ 1563.624347] alloc_fdtable+0xd3/0x280 [ 1563.625134] dup_fd+0x74d/0xcf0 [ 1563.625816] ? security_task_alloc+0xe6/0x260 [ 1563.626735] copy_process+0x195b/0x6740 [ 1563.627545] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.628614] ? exc_page_fault+0xca/0x1a0 [ 1563.629634] ? trace_hardirqs_on+0x5b/0x180 [ 1563.630531] ? __cleanup_sighand+0xb0/0xb0 [ 1563.631400] ? _copy_from_user+0xfb/0x1b0 [ 1563.632243] kernel_clone+0xe7/0x980 [ 1563.633006] ? __lockdep_reset_lock+0x180/0x180 [ 1563.633954] ? create_io_thread+0xf0/0xf0 [ 1563.634809] ? ksys_write+0x21a/0x260 [ 1563.635576] ? lock_downgrade+0x6d0/0x6d0 [ 1563.636419] __do_sys_clone3+0x1e5/0x320 [ 1563.637256] ? __do_sys_clone+0x110/0x110 [ 1563.638119] ? rcu_read_lock_any_held+0x75/0xa0 [ 1563.639050] ? vfs_write+0x354/0xa70 [ 1563.639812] ? fput_many+0x2f/0x1a0 [ 1563.640547] ? ksys_write+0x1a9/0x260 [ 1563.641324] ? __ia32_sys_read+0xb0/0xb0 [ 1563.642149] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.643199] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1563.644233] ? trace_hardirqs_on+0x5b/0x180 [ 1563.645109] do_syscall_64+0x33/0x40 [ 1563.645862] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1563.646885] RIP: 0033:0x7f92d9afeb19 [ 1563.647638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1563.651336] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1563.652878] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1563.654311] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1563.655728] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1563.657176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1563.658604] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:06:42 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:43 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x2000000, 0x8000) 07:06:43 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:43 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:43 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:43 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20010, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:43 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20010, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:43 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x2010000, 0x8000) 07:06:57 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 17) 07:06:57 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:57 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x4000000, 0x8000) 07:06:57 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20010, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:57 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:57 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1578.385868] FAULT_INJECTION: forcing a failure. [ 1578.385868] name failslab, interval 1, probability 0, space 0, times 0 [ 1578.387310] CPU: 1 PID: 14205 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1578.388161] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1578.389181] Call Trace: [ 1578.389518] dump_stack+0x107/0x167 [ 1578.389970] should_fail.cold+0x5/0xa [ 1578.390437] ? kvmalloc_node+0x119/0x170 [ 1578.390945] should_failslab+0x5/0x20 [ 1578.391414] __kmalloc_node+0x76/0x420 [ 1578.391894] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1578.392516] kvmalloc_node+0x119/0x170 [ 1578.392981] alloc_fdtable+0x13f/0x280 [ 1578.393473] dup_fd+0x74d/0xcf0 [ 1578.393888] ? security_task_alloc+0xe6/0x260 [ 1578.394443] copy_process+0x195b/0x6740 [ 1578.394937] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1578.395578] ? exc_page_fault+0xca/0x1a0 [ 1578.396088] ? trace_hardirqs_on+0x5b/0x180 [ 1578.396644] ? __cleanup_sighand+0xb0/0xb0 [ 1578.397195] ? _copy_from_user+0xfb/0x1b0 [ 1578.397729] kernel_clone+0xe7/0x980 [ 1578.398196] ? __lockdep_reset_lock+0x180/0x180 [ 1578.398789] ? create_io_thread+0xf0/0xf0 [ 1578.399318] ? ksys_write+0x21a/0x260 [ 1578.399794] ? lock_downgrade+0x6d0/0x6d0 [ 1578.400331] __do_sys_clone3+0x1e5/0x320 [ 1578.400847] ? __do_sys_clone+0x110/0x110 [ 1578.401390] ? rcu_read_lock_any_held+0x75/0xa0 [ 1578.401973] ? vfs_write+0x354/0xa70 [ 1578.402443] ? fput_many+0x2f/0x1a0 [ 1578.402898] ? ksys_write+0x1a9/0x260 [ 1578.403377] ? __ia32_sys_read+0xb0/0xb0 [ 1578.403894] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1578.404555] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1578.405197] ? trace_hardirqs_on+0x5b/0x180 [ 1578.405746] do_syscall_64+0x33/0x40 [ 1578.406198] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1578.406849] RIP: 0033:0x7f92d9afeb19 [ 1578.407302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1578.409608] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1578.410543] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1578.411439] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1578.412348] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1578.413241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1578.414125] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:06:57 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 18) 07:06:57 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x5000000, 0x8000) 07:06:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:57 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1578.602337] FAULT_INJECTION: forcing a failure. [ 1578.602337] name failslab, interval 1, probability 0, space 0, times 0 [ 1578.604752] CPU: 0 PID: 14659 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1578.606178] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1578.607847] Call Trace: [ 1578.608387] dump_stack+0x107/0x167 [ 1578.609140] should_fail.cold+0x5/0xa [ 1578.609905] ? create_object.isra.0+0x3a/0xa20 [ 1578.610825] should_failslab+0x5/0x20 [ 1578.611590] kmem_cache_alloc+0x5b/0x310 [ 1578.612410] create_object.isra.0+0x3a/0xa20 [ 1578.613326] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1578.614464] __kmalloc_node+0x1ae/0x420 [ 1578.615364] kvmalloc_node+0x119/0x170 [ 1578.616238] alloc_fdtable+0x13f/0x280 [ 1578.617132] dup_fd+0x74d/0xcf0 [ 1578.617885] ? security_task_alloc+0xe6/0x260 [ 1578.618898] copy_process+0x195b/0x6740 [ 1578.619792] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1578.620963] ? exc_page_fault+0xca/0x1a0 [ 1578.621879] ? trace_hardirqs_on+0x5b/0x180 [ 1578.622868] ? __cleanup_sighand+0xb0/0xb0 [ 1578.623831] ? _copy_from_user+0xfb/0x1b0 [ 1578.624767] kernel_clone+0xe7/0x980 [ 1578.625606] ? __lockdep_reset_lock+0x180/0x180 [ 1578.626646] ? create_io_thread+0xf0/0xf0 [ 1578.627549] ? ksys_write+0x21a/0x260 [ 1578.628316] ? lock_downgrade+0x6d0/0x6d0 [ 1578.629173] __do_sys_clone3+0x1e5/0x320 [ 1578.629989] ? __do_sys_clone+0x110/0x110 [ 1578.630844] ? rcu_read_lock_any_held+0x75/0xa0 07:06:57 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x7000000, 0x8000) [ 1578.631774] ? vfs_write+0x354/0xa70 [ 1578.632620] ? fput_many+0x2f/0x1a0 [ 1578.633362] ? ksys_write+0x1a9/0x260 [ 1578.634128] ? __ia32_sys_read+0xb0/0xb0 [ 1578.634948] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1578.636004] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1578.637053] ? trace_hardirqs_on+0x5b/0x180 [ 1578.637926] do_syscall_64+0x33/0x40 [ 1578.638678] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1578.639706] RIP: 0033:0x7f92d9afeb19 [ 1578.640457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1578.644145] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1578.645687] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1578.647118] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1578.648550] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1578.649990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1578.651443] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:06:57 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:58 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:58 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:06:58 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x8000000, 0x8000) 07:06:58 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:13 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:13 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x101000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:13 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x101000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:13 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xf000000, 0x8000) 07:07:13 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 19) 07:07:13 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20010, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:13 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20010, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1594.006918] FAULT_INJECTION: forcing a failure. [ 1594.006918] name failslab, interval 1, probability 0, space 0, times 0 [ 1594.009363] CPU: 0 PID: 15175 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1594.010602] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1594.012080] Call Trace: [ 1594.012563] dump_stack+0x107/0x167 [ 1594.013239] should_fail.cold+0x5/0xa [ 1594.013925] ? copy_fs_struct+0x45/0x340 [ 1594.014663] should_failslab+0x5/0x20 [ 1594.015339] kmem_cache_alloc+0x5b/0x310 [ 1594.016083] copy_fs_struct+0x45/0x340 [ 1594.016796] copy_process+0x461c/0x6740 [ 1594.017548] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1594.018500] ? exc_page_fault+0xca/0x1a0 [ 1594.019232] ? trace_hardirqs_on+0x5b/0x180 [ 1594.020019] ? __cleanup_sighand+0xb0/0xb0 [ 1594.020793] ? _copy_from_user+0xfb/0x1b0 [ 1594.021590] kernel_clone+0xe7/0x980 [ 1594.022271] ? __lockdep_reset_lock+0x180/0x180 [ 1594.023144] ? create_io_thread+0xf0/0xf0 [ 1594.023929] ? ksys_write+0x21a/0x260 [ 1594.024644] ? lock_downgrade+0x6d0/0x6d0 [ 1594.025435] __do_sys_clone3+0x1e5/0x320 [ 1594.026156] ? __do_sys_clone+0x110/0x110 [ 1594.026964] ? rcu_read_lock_any_held+0x75/0xa0 [ 1594.027816] ? vfs_write+0x354/0xa70 [ 1594.028514] ? fput_many+0x2f/0x1a0 [ 1594.029199] ? ksys_write+0x1a9/0x260 [ 1594.029937] ? __ia32_sys_read+0xb0/0xb0 [ 1594.030676] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1594.031668] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1594.032610] ? trace_hardirqs_on+0x5b/0x180 [ 1594.033459] do_syscall_64+0x33/0x40 [ 1594.034134] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1594.035098] RIP: 0033:0x7f92d9afeb19 [ 1594.035855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1594.039414] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1594.040808] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1594.042158] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1594.043494] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1594.044824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1594.046171] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:07:26 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 20) 07:07:26 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x10000000, 0x8000) 07:07:26 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:26 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:26 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0ff1f, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:26 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:26 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x101000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:26 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0ff1f, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1607.255336] FAULT_INJECTION: forcing a failure. [ 1607.255336] name failslab, interval 1, probability 0, space 0, times 0 [ 1607.257785] CPU: 1 PID: 15702 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1607.259172] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1607.260868] Call Trace: [ 1607.261439] dump_stack+0x107/0x167 [ 1607.262187] should_fail.cold+0x5/0xa [ 1607.262968] ? create_object.isra.0+0x3a/0xa20 [ 1607.263902] should_failslab+0x5/0x20 [ 1607.264822] kmem_cache_alloc+0x5b/0x310 [ 1607.265657] create_object.isra.0+0x3a/0xa20 [ 1607.266542] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1607.267565] kmem_cache_alloc+0x159/0x310 [ 1607.268410] copy_fs_struct+0x45/0x340 [ 1607.269197] copy_process+0x461c/0x6740 [ 1607.270011] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1607.271067] ? exc_page_fault+0xca/0x1a0 [ 1607.271886] ? trace_hardirqs_on+0x5b/0x180 [ 1607.272772] ? __cleanup_sighand+0xb0/0xb0 [ 1607.273681] ? _copy_from_user+0xfb/0x1b0 [ 1607.274521] kernel_clone+0xe7/0x980 [ 1607.275268] ? __lockdep_reset_lock+0x180/0x180 [ 1607.276194] ? create_io_thread+0xf0/0xf0 [ 1607.277047] ? ksys_write+0x21a/0x260 [ 1607.277843] ? lock_downgrade+0x6d0/0x6d0 [ 1607.278694] __do_sys_clone3+0x1e5/0x320 [ 1607.279532] ? __do_sys_clone+0x110/0x110 [ 1607.280424] ? rcu_read_lock_any_held+0x75/0xa0 [ 1607.281367] ? vfs_write+0x354/0xa70 [ 1607.282154] ? fput_many+0x2f/0x1a0 [ 1607.282895] ? ksys_write+0x1a9/0x260 [ 1607.283673] ? __ia32_sys_read+0xb0/0xb0 [ 1607.284497] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1607.285588] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1607.286626] ? trace_hardirqs_on+0x5b/0x180 [ 1607.287500] do_syscall_64+0x33/0x40 [ 1607.288255] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1607.289295] RIP: 0033:0x7f92d9afeb19 [ 1607.290059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1607.293804] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1607.295349] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1607.296792] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1607.298245] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1607.299667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1607.301100] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:07:26 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x18000000, 0x8000) 07:07:26 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:26 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:26 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 21) 07:07:26 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:26 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0ff1f, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:26 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:26 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1607.691037] FAULT_INJECTION: forcing a failure. [ 1607.691037] name failslab, interval 1, probability 0, space 0, times 0 [ 1607.693656] CPU: 0 PID: 16224 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1607.695066] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1607.697044] Call Trace: [ 1607.697611] dump_stack+0x107/0x167 [ 1607.698358] should_fail.cold+0x5/0xa [ 1607.699140] ? copy_process+0x1ac6/0x6740 [ 1607.699995] should_failslab+0x5/0x20 [ 1607.700771] kmem_cache_alloc+0x5b/0x310 [ 1607.701621] ? _raw_spin_unlock+0x1a/0x30 [ 1607.702473] copy_process+0x1ac6/0x6740 [ 1607.703293] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1607.704363] ? exc_page_fault+0xca/0x1a0 [ 1607.705189] ? trace_hardirqs_on+0x5b/0x180 [ 1607.706097] ? __cleanup_sighand+0xb0/0xb0 [ 1607.706973] ? _copy_from_user+0xfb/0x1b0 [ 1607.707833] kernel_clone+0xe7/0x980 [ 1607.708571] ? __lockdep_reset_lock+0x180/0x180 [ 1607.709713] ? create_io_thread+0xf0/0xf0 [ 1607.710565] ? ksys_write+0x21a/0x260 [ 1607.711327] ? lock_downgrade+0x6d0/0x6d0 [ 1607.712319] __do_sys_clone3+0x1e5/0x320 [ 1607.713153] ? __do_sys_clone+0x110/0x110 [ 1607.714183] ? rcu_read_lock_any_held+0x75/0xa0 [ 1607.715134] ? vfs_write+0x354/0xa70 [ 1607.716032] ? fput_many+0x2f/0x1a0 [ 1607.716774] ? ksys_write+0x1a9/0x260 [ 1607.717562] ? __ia32_sys_read+0xb0/0xb0 [ 1607.718389] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1607.719459] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1607.720503] ? trace_hardirqs_on+0x5b/0x180 [ 1607.721400] do_syscall_64+0x33/0x40 [ 1607.722169] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1607.723211] RIP: 0033:0x7f92d9afeb19 [ 1607.723972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1607.727695] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1607.729240] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1607.730691] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1607.732134] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1607.733600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1607.735047] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:07:27 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x21030000, 0x8000) 07:07:27 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:27 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x101000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:27 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x3f000000, 0x8000) 07:07:42 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:42 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x101000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:42 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0ff1f, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:42 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 22) 07:07:42 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:42 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x40000000, 0x8000) 07:07:42 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1622.866822] FAULT_INJECTION: forcing a failure. [ 1622.866822] name failslab, interval 1, probability 0, space 0, times 0 [ 1622.869453] CPU: 1 PID: 16959 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1622.871054] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1622.872939] Call Trace: [ 1622.873550] dump_stack+0x107/0x167 [ 1622.874396] should_fail.cold+0x5/0xa [ 1622.875268] ? create_object.isra.0+0x3a/0xa20 [ 1622.876343] should_failslab+0x5/0x20 [ 1622.877217] kmem_cache_alloc+0x5b/0x310 [ 1622.878173] create_object.isra.0+0x3a/0xa20 [ 1622.879189] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1622.880363] kmem_cache_alloc+0x159/0x310 [ 1622.881322] copy_process+0x1ac6/0x6740 [ 1622.882237] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1622.883559] ? exc_page_fault+0xca/0x1a0 [ 1622.884477] ? trace_hardirqs_on+0x5b/0x180 [ 1622.885475] ? __cleanup_sighand+0xb0/0xb0 [ 1622.886479] ? _copy_from_user+0xfb/0x1b0 [ 1622.887420] kernel_clone+0xe7/0x980 [ 1622.888271] ? __lockdep_reset_lock+0x180/0x180 [ 1622.889325] ? create_io_thread+0xf0/0xf0 [ 1622.890300] ? ksys_write+0x21a/0x260 [ 1622.891145] ? lock_downgrade+0x6d0/0x6d0 [ 1622.892097] __do_sys_clone3+0x1e5/0x320 [ 1622.892996] ? __do_sys_clone+0x110/0x110 [ 1622.893969] ? rcu_read_lock_any_held+0x75/0xa0 [ 1622.895009] ? vfs_write+0x354/0xa70 [ 1622.895857] ? fput_many+0x2f/0x1a0 [ 1622.896677] ? ksys_write+0x1a9/0x260 [ 1622.897539] ? __ia32_sys_read+0xb0/0xb0 [ 1622.898472] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1622.899656] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1622.900815] ? trace_hardirqs_on+0x5b/0x180 [ 1622.901800] do_syscall_64+0x33/0x40 [ 1622.902639] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1622.903803] RIP: 0033:0x7f92d9afeb19 [ 1622.904640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1622.908777] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1622.910506] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1622.912074] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1622.913652] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1622.915220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1622.916799] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:07:42 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x60a80000, 0x8000) 07:07:42 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0ff1f, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:42 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:42 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:42 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 23) 07:07:42 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x11000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:42 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1623.246144] FAULT_INJECTION: forcing a failure. [ 1623.246144] name failslab, interval 1, probability 0, space 0, times 0 [ 1623.247747] CPU: 0 PID: 17398 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1623.248687] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.249789] Call Trace: [ 1623.250140] dump_stack+0x107/0x167 [ 1623.250611] should_fail.cold+0x5/0xa [ 1623.251105] ? copy_process+0x1c44/0x6740 [ 1623.251645] should_failslab+0x5/0x20 [ 1623.252136] kmem_cache_alloc+0x5b/0x310 [ 1623.252665] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.253333] copy_process+0x1c44/0x6740 [ 1623.253853] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.254530] ? exc_page_fault+0xca/0x1a0 [ 1623.255061] ? trace_hardirqs_on+0x5b/0x180 [ 1623.255629] ? __cleanup_sighand+0xb0/0xb0 [ 1623.256185] ? _copy_from_user+0xfb/0x1b0 [ 1623.256719] kernel_clone+0xe7/0x980 [ 1623.257196] ? __lockdep_reset_lock+0x180/0x180 [ 1623.257805] ? create_io_thread+0xf0/0xf0 [ 1623.258347] ? ksys_write+0x21a/0x260 [ 1623.258828] ? lock_downgrade+0x6d0/0x6d0 [ 1623.259381] __do_sys_clone3+0x1e5/0x320 [ 1623.259912] ? __do_sys_clone+0x110/0x110 [ 1623.260461] ? rcu_read_lock_any_held+0x75/0xa0 [ 1623.261047] ? vfs_write+0x354/0xa70 [ 1623.261526] ? fput_many+0x2f/0x1a0 [ 1623.262016] ? ksys_write+0x1a9/0x260 [ 1623.262513] ? __ia32_sys_read+0xb0/0xb0 [ 1623.263037] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.263719] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.264378] ? trace_hardirqs_on+0x5b/0x180 [ 1623.264938] do_syscall_64+0x33/0x40 [ 1623.265424] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1623.266087] RIP: 0033:0x7f92d9afeb19 [ 1623.266564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.268914] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1623.269913] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1623.270812] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1623.271703] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1623.272598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1623.273490] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:07:57 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:57 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x86ffffff, 0x8000) 07:07:57 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1ffff000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:57 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:57 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:57 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 24) 07:07:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:07:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x11000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1638.188489] FAULT_INJECTION: forcing a failure. [ 1638.188489] name failslab, interval 1, probability 0, space 0, times 0 [ 1638.189923] CPU: 1 PID: 17824 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1638.190755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1638.191757] Call Trace: [ 1638.192080] dump_stack+0x107/0x167 [ 1638.192530] should_fail.cold+0x5/0xa [ 1638.192989] ? create_object.isra.0+0x3a/0xa20 [ 1638.193619] should_failslab+0x5/0x20 [ 1638.194236] kmem_cache_alloc+0x5b/0x310 [ 1638.194728] create_object.isra.0+0x3a/0xa20 [ 1638.195256] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1638.195881] kmem_cache_alloc+0x159/0x310 [ 1638.196382] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1638.197022] copy_process+0x1c44/0x6740 [ 1638.197500] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1638.198163] ? exc_page_fault+0xca/0x1a0 [ 1638.198651] ? trace_hardirqs_on+0x5b/0x180 [ 1638.199198] ? __cleanup_sighand+0xb0/0xb0 [ 1638.199717] ? _copy_from_user+0xfb/0x1b0 [ 1638.200248] kernel_clone+0xe7/0x980 [ 1638.200699] ? __lockdep_reset_lock+0x180/0x180 [ 1638.201269] ? create_io_thread+0xf0/0xf0 [ 1638.201795] ? ksys_write+0x21a/0x260 [ 1638.202260] ? lock_downgrade+0x6d0/0x6d0 [ 1638.202761] __do_sys_clone3+0x1e5/0x320 [ 1638.203254] ? __do_sys_clone+0x110/0x110 [ 1638.203770] ? rcu_read_lock_any_held+0x75/0xa0 [ 1638.204339] ? vfs_write+0x354/0xa70 [ 1638.204800] ? fput_many+0x2f/0x1a0 [ 1638.205248] ? ksys_write+0x1a9/0x260 [ 1638.205724] ? __ia32_sys_read+0xb0/0xb0 [ 1638.206228] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1638.206884] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1638.207547] ? trace_hardirqs_on+0x5b/0x180 [ 1638.208064] do_syscall_64+0x33/0x40 [ 1638.208530] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1638.209146] RIP: 0033:0x7f92d9afeb19 [ 1638.209610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1638.211817] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1638.212762] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1638.213653] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1638.214539] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1638.215427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1638.216315] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:07:57 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xe4ffffff, 0x8000) 07:08:11 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xeffd0000, 0x8000) 07:08:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x11000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:11 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:11 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1ffff000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:11 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:11 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 25) 07:08:11 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1652.040827] FAULT_INJECTION: forcing a failure. [ 1652.040827] name failslab, interval 1, probability 0, space 0, times 0 [ 1652.042071] CPU: 0 PID: 18054 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1652.042809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1652.043688] Call Trace: [ 1652.043985] dump_stack+0x107/0x167 [ 1652.044373] should_fail.cold+0x5/0xa [ 1652.044794] ? dup_mm+0x88/0x1110 [ 1652.045182] should_failslab+0x5/0x20 [ 1652.045589] kmem_cache_alloc+0x5b/0x310 [ 1652.046040] dup_mm+0x88/0x1110 [ 1652.046398] ? copy_process+0x2107/0x6740 [ 1652.046843] ? vm_area_dup+0x290/0x290 [ 1652.047265] ? __raw_spin_lock_init+0x36/0x110 [ 1652.047763] copy_process+0x24e2/0x6740 [ 1652.048189] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1652.048746] ? exc_page_fault+0xca/0x1a0 [ 1652.049177] ? trace_hardirqs_on+0x5b/0x180 [ 1652.049666] ? __cleanup_sighand+0xb0/0xb0 [ 1652.050145] ? _copy_from_user+0xfb/0x1b0 [ 1652.050615] kernel_clone+0xe7/0x980 [ 1652.051014] ? __lockdep_reset_lock+0x180/0x180 [ 1652.051520] ? create_io_thread+0xf0/0xf0 [ 1652.051989] ? ksys_write+0x21a/0x260 [ 1652.052388] ? lock_downgrade+0x6d0/0x6d0 [ 1652.052833] __do_sys_clone3+0x1e5/0x320 [ 1652.053261] ? __do_sys_clone+0x110/0x110 [ 1652.053733] ? rcu_read_lock_any_held+0x75/0xa0 [ 1652.054231] ? vfs_write+0x354/0xa70 [ 1652.054631] ? fput_many+0x2f/0x1a0 [ 1652.055021] ? ksys_write+0x1a9/0x260 [ 1652.055431] ? __ia32_sys_read+0xb0/0xb0 [ 1652.055862] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1652.056448] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1652.056991] ? trace_hardirqs_on+0x5b/0x180 [ 1652.057476] do_syscall_64+0x33/0x40 [ 1652.057871] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1652.058464] RIP: 0033:0x7f92d9afeb19 [ 1652.058881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1652.060942] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1652.061804] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1652.062596] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1652.063399] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1652.064201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1652.064993] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:08:11 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x11000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 26) 07:08:11 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1652.211494] FAULT_INJECTION: forcing a failure. [ 1652.211494] name failslab, interval 1, probability 0, space 0, times 0 [ 1652.212751] CPU: 0 PID: 18450 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1652.213517] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1652.214449] Call Trace: [ 1652.214754] dump_stack+0x107/0x167 [ 1652.215164] should_fail.cold+0x5/0xa [ 1652.215591] ? create_object.isra.0+0x3a/0xa20 [ 1652.216113] should_failslab+0x5/0x20 [ 1652.216538] kmem_cache_alloc+0x5b/0x310 [ 1652.217003] create_object.isra.0+0x3a/0xa20 [ 1652.217499] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1652.218087] kmem_cache_alloc+0x159/0x310 [ 1652.218560] dup_mm+0x88/0x1110 [ 1652.218936] ? copy_process+0x2107/0x6740 [ 1652.219384] ? vm_area_dup+0x290/0x290 [ 1652.219829] ? __raw_spin_lock_init+0x36/0x110 [ 1652.220346] copy_process+0x24e2/0x6740 [ 1652.220792] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1652.221380] ? exc_page_fault+0xca/0x1a0 [ 1652.221836] ? trace_hardirqs_on+0x5b/0x180 [ 1652.222311] ? __cleanup_sighand+0xb0/0xb0 [ 1652.222801] ? _copy_from_user+0xfb/0x1b0 [ 1652.223260] kernel_clone+0xe7/0x980 [ 1652.223675] ? __lockdep_reset_lock+0x180/0x180 [ 1652.224171] ? create_io_thread+0xf0/0xf0 [ 1652.224652] ? ksys_write+0x21a/0x260 [ 1652.225061] ? lock_downgrade+0x6d0/0x6d0 [ 1652.225534] __do_sys_clone3+0x1e5/0x320 [ 1652.225970] ? __do_sys_clone+0x110/0x110 [ 1652.226449] ? rcu_read_lock_any_held+0x75/0xa0 [ 1652.226967] ? vfs_write+0x354/0xa70 [ 1652.227368] ? fput_many+0x2f/0x1a0 [ 1652.227772] ? ksys_write+0x1a9/0x260 [ 1652.228177] ? __ia32_sys_read+0xb0/0xb0 [ 1652.228627] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1652.229197] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1652.229783] ? trace_hardirqs_on+0x5b/0x180 [ 1652.230273] do_syscall_64+0x33/0x40 [ 1652.230690] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1652.231243] RIP: 0033:0x7f92d9afeb19 [ 1652.231665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1652.233750] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1652.234603] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1652.235401] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1652.236195] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1652.236994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1652.237787] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:08:11 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xf4ffffff, 0x8000) 07:08:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1ffff000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:11 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:11 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xf5ffffff, 0x8000) 07:08:11 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1ffff000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:11 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 27) 07:08:11 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:11 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xfbffffff, 0x8000) 07:08:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1652.496850] FAULT_INJECTION: forcing a failure. [ 1652.496850] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1652.498228] CPU: 0 PID: 18993 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1652.499004] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1652.499924] Call Trace: [ 1652.500226] dump_stack+0x107/0x167 [ 1652.500639] should_fail.cold+0x5/0xa [ 1652.501079] __alloc_pages_nodemask+0x182/0x600 [ 1652.501612] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1652.502312] alloc_pages_current+0x187/0x280 [ 1652.502812] __get_free_pages+0xc/0xa0 [ 1652.503246] pgd_alloc+0x84/0x4e0 [ 1652.503641] ? pgd_page_get_mm+0x40/0x40 [ 1652.504072] ? lockdep_init_map_type+0x2c7/0x780 [ 1652.504603] ? lockdep_init_map_type+0x2c7/0x780 [ 1652.505139] mm_init+0x670/0xab0 [ 1652.505525] dup_mm+0xd5/0x1110 [ 1652.505882] ? copy_process+0x2107/0x6740 [ 1652.506363] ? vm_area_dup+0x290/0x290 [ 1652.506806] ? __raw_spin_lock_init+0x36/0x110 [ 1652.507318] copy_process+0x24e2/0x6740 [ 1652.507765] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1652.508356] ? exc_page_fault+0xca/0x1a0 [ 1652.508822] ? trace_hardirqs_on+0x5b/0x180 [ 1652.509316] ? __cleanup_sighand+0xb0/0xb0 [ 1652.509804] ? _copy_from_user+0xfb/0x1b0 [ 1652.510249] kernel_clone+0xe7/0x980 [ 1652.510669] ? __lockdep_reset_lock+0x180/0x180 [ 1652.511196] ? create_io_thread+0xf0/0xf0 [ 1652.511655] ? ksys_write+0x21a/0x260 [ 1652.512075] ? lock_downgrade+0x6d0/0x6d0 [ 1652.512519] __do_sys_clone3+0x1e5/0x320 [ 1652.512977] ? __do_sys_clone+0x110/0x110 [ 1652.513461] ? rcu_read_lock_any_held+0x75/0xa0 [ 1652.513994] ? vfs_write+0x354/0xa70 [ 1652.514415] ? fput_many+0x2f/0x1a0 [ 1652.514824] ? ksys_write+0x1a9/0x260 [ 1652.515248] ? __ia32_sys_read+0xb0/0xb0 [ 1652.515707] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1652.516296] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1652.516866] ? trace_hardirqs_on+0x5b/0x180 [ 1652.517351] do_syscall_64+0x33/0x40 [ 1652.517748] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1652.518322] RIP: 0033:0x7f92d9afeb19 [ 1652.518745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1652.520687] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1652.521527] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1652.522306] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1652.523089] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1652.523881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1652.524663] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:08:11 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xfeffffff, 0x8000) 07:08:28 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:28 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:28 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x11000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:28 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x40000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:28 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 28) 07:08:28 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:28 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:28 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xff7f0000, 0x8000) [ 1669.518443] FAULT_INJECTION: forcing a failure. [ 1669.518443] name failslab, interval 1, probability 0, space 0, times 0 [ 1669.521039] CPU: 0 PID: 19419 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1669.522343] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1669.523905] Call Trace: [ 1669.524417] dump_stack+0x107/0x167 [ 1669.525098] should_fail.cold+0x5/0xa [ 1669.525826] ? vm_area_dup+0x78/0x290 [ 1669.526591] should_failslab+0x5/0x20 [ 1669.527303] kmem_cache_alloc+0x5b/0x310 [ 1669.528087] vm_area_dup+0x78/0x290 [ 1669.528774] ? __lock_acquire+0xbb1/0x5b00 [ 1669.529571] ? perf_trace_lock+0xac/0x490 [ 1669.530331] ? __lockdep_reset_lock+0x180/0x180 [ 1669.531153] ? vm_area_alloc+0x110/0x110 [ 1669.531874] ? find_held_lock+0x2c/0x110 [ 1669.532609] ? get_mm_exe_file+0x139/0x310 [ 1669.533366] ? lock_downgrade+0x6d0/0x6d0 [ 1669.534101] ? down_write_nested+0xe4/0x160 [ 1669.534883] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 1669.535793] ? get_mm_exe_file+0x162/0x310 [ 1669.536549] dup_mm+0x44d/0x1110 [ 1669.537161] ? copy_process+0x2107/0x6740 [ 1669.537923] ? vm_area_dup+0x290/0x290 [ 1669.538632] ? __raw_spin_lock_init+0x36/0x110 [ 1669.539446] copy_process+0x24e2/0x6740 [ 1669.540150] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1669.541087] ? exc_page_fault+0xca/0x1a0 [ 1669.541812] ? trace_hardirqs_on+0x5b/0x180 [ 1669.542613] ? __cleanup_sighand+0xb0/0xb0 [ 1669.543386] ? _copy_from_user+0xfb/0x1b0 [ 1669.544132] kernel_clone+0xe7/0x980 [ 1669.544810] ? __lockdep_reset_lock+0x180/0x180 [ 1669.545633] ? create_io_thread+0xf0/0xf0 [ 1669.546409] ? ksys_write+0x21a/0x260 [ 1669.547093] ? lock_downgrade+0x6d0/0x6d0 [ 1669.547834] __do_sys_clone3+0x1e5/0x320 [ 1669.548572] ? __do_sys_clone+0x110/0x110 [ 1669.549358] ? rcu_read_lock_any_held+0x75/0xa0 [ 1669.550186] ? vfs_write+0x354/0xa70 [ 1669.550854] ? fput_many+0x2f/0x1a0 [ 1669.551495] ? ksys_write+0x1a9/0x260 [ 1669.552177] ? __ia32_sys_read+0xb0/0xb0 [ 1669.552902] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1669.553830] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1669.554761] ? trace_hardirqs_on+0x5b/0x180 [ 1669.555538] do_syscall_64+0x33/0x40 [ 1669.556205] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1669.557112] RIP: 0033:0x7f92d9afeb19 [ 1669.557777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1669.561022] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1669.562388] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1669.563643] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1669.564903] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1669.566137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1669.567396] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:08:28 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 29) 07:08:29 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xffffff86, 0x8000) 07:08:29 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:29 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1ffff000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:29 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x40000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1669.792096] FAULT_INJECTION: forcing a failure. [ 1669.792096] name failslab, interval 1, probability 0, space 0, times 0 [ 1669.794508] CPU: 1 PID: 19939 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1669.795926] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1669.797618] Call Trace: [ 1669.798171] dump_stack+0x107/0x167 [ 1669.798937] should_fail.cold+0x5/0xa [ 1669.799714] ? create_object.isra.0+0x3a/0xa20 [ 1669.800650] should_failslab+0x5/0x20 [ 1669.801424] kmem_cache_alloc+0x5b/0x310 [ 1669.802264] create_object.isra.0+0x3a/0xa20 [ 1669.803153] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1669.804187] kmem_cache_alloc+0x159/0x310 [ 1669.805161] vm_area_dup+0x78/0x290 [ 1669.805942] ? __lock_acquire+0xbb1/0x5b00 [ 1669.806832] ? perf_trace_lock+0xac/0x490 [ 1669.807679] ? __lockdep_reset_lock+0x180/0x180 [ 1669.808632] ? vm_area_alloc+0x110/0x110 [ 1669.809457] ? find_held_lock+0x2c/0x110 [ 1669.810311] ? get_mm_exe_file+0x139/0x310 [ 1669.811186] ? lock_downgrade+0x6d0/0x6d0 [ 1669.812132] ? down_write_nested+0xe4/0x160 [ 1669.813111] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 1669.814282] ? get_mm_exe_file+0x162/0x310 [ 1669.815230] dup_mm+0x44d/0x1110 [ 1669.816005] ? copy_process+0x2107/0x6740 [ 1669.816934] ? vm_area_dup+0x290/0x290 [ 1669.817811] ? __raw_spin_lock_init+0x36/0x110 [ 1669.818841] copy_process+0x24e2/0x6740 [ 1669.819736] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1669.820899] ? exc_page_fault+0xca/0x1a0 [ 1669.821806] ? trace_hardirqs_on+0x5b/0x180 [ 1669.822809] ? __cleanup_sighand+0xb0/0xb0 [ 1669.823768] ? _copy_from_user+0xfb/0x1b0 [ 1669.824700] kernel_clone+0xe7/0x980 [ 1669.825533] ? __lockdep_reset_lock+0x180/0x180 [ 1669.826574] ? create_io_thread+0xf0/0xf0 [ 1669.827476] ? ksys_write+0x21a/0x260 [ 1669.828235] ? lock_downgrade+0x6d0/0x6d0 [ 1669.829060] __do_sys_clone3+0x1e5/0x320 [ 1669.829887] ? __do_sys_clone+0x110/0x110 [ 1669.830776] ? rcu_read_lock_any_held+0x75/0xa0 [ 1669.831700] ? vfs_write+0x354/0xa70 [ 1669.832447] ? fput_many+0x2f/0x1a0 [ 1669.833175] ? ksys_write+0x1a9/0x260 [ 1669.833934] ? __ia32_sys_read+0xb0/0xb0 [ 1669.834759] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1669.835808] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1669.836833] ? trace_hardirqs_on+0x5b/0x180 [ 1669.837697] do_syscall_64+0x33/0x40 [ 1669.838462] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1669.839479] RIP: 0033:0x7f92d9afeb19 [ 1669.840232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1669.844297] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1669.845982] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1669.847575] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1669.849151] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1669.850694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1669.852110] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:08:29 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x100000800, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1b0c31f000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 30) 07:08:46 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x100000800, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x40000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1686.948416] FAULT_INJECTION: forcing a failure. [ 1686.948416] name failslab, interval 1, probability 0, space 0, times 0 [ 1686.950974] CPU: 0 PID: 20265 Comm: syz-executor.2 Not tainted 5.10.186 #1 07:08:46 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xffffffe4, 0x8000) [ 1686.952512] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1686.954731] Call Trace: [ 1686.955380] dump_stack+0x107/0x167 [ 1686.956376] should_fail.cold+0x5/0xa [ 1686.957416] ? vm_area_dup+0x78/0x290 [ 1686.958471] should_failslab+0x5/0x20 [ 1686.959511] kmem_cache_alloc+0x5b/0x310 [ 1686.960627] vm_area_dup+0x78/0x290 [ 1686.961650] ? copy_page_range+0x24fe/0x3820 [ 1686.962936] ? vm_area_alloc+0x110/0x110 [ 1686.964043] ? find_held_lock+0x2c/0x110 [ 1686.965157] ? vm_iomap_memory+0x190/0x190 [ 1686.966333] ? __vma_link_rb+0x540/0x700 [ 1686.967453] dup_mm+0x44d/0x1110 [ 1686.968398] ? vm_area_dup+0x290/0x290 [ 1686.969461] ? __raw_spin_lock_init+0x36/0x110 [ 1686.970728] copy_process+0x24e2/0x6740 [ 1686.971806] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1686.973222] ? exc_page_fault+0xca/0x1a0 [ 1686.974318] ? trace_hardirqs_on+0x5b/0x180 [ 1686.975522] ? __cleanup_sighand+0xb0/0xb0 [ 1686.976681] ? _copy_from_user+0xfb/0x1b0 [ 1686.977815] kernel_clone+0xe7/0x980 [ 1686.978848] ? __lockdep_reset_lock+0x180/0x180 [ 1686.980102] ? create_io_thread+0xf0/0xf0 [ 1686.981251] ? ksys_write+0x21a/0x260 [ 1686.982279] ? lock_downgrade+0x6d0/0x6d0 [ 1686.983410] __do_sys_clone3+0x1e5/0x320 [ 1686.984510] ? __do_sys_clone+0x110/0x110 [ 1686.985659] ? rcu_read_lock_any_held+0x75/0xa0 [ 1686.986912] ? vfs_write+0x354/0xa70 [ 1686.987914] ? fput_many+0x2f/0x1a0 [ 1686.988889] ? ksys_write+0x1a9/0x260 [ 1686.989905] ? __ia32_sys_read+0xb0/0xb0 [ 1686.991016] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1686.992415] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1686.993783] ? trace_hardirqs_on+0x5b/0x180 [ 1686.994949] do_syscall_64+0x33/0x40 [ 1686.995949] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1686.997316] RIP: 0033:0x7f92d9afeb19 [ 1686.998308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1687.003200] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1687.005218] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1687.007002] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1687.008888] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1687.010452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1687.012065] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:08:46 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x40000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xfffffff4, 0x8000) 07:08:46 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1b0bf1f000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x100000800, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 31) 07:08:46 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xfffffff5, 0x8000) 07:08:46 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x100000800, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2a2582812000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1b1031f000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xfffffffb, 0x8000) [ 1687.499633] perf: interrupt took too long (7987 > 7965), lowering kernel.perf_event_max_sample_rate to 25000 [ 1687.511946] FAULT_INJECTION: forcing a failure. [ 1687.511946] name failslab, interval 1, probability 0, space 0, times 0 [ 1687.514442] CPU: 0 PID: 21580 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1687.515912] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1687.517684] Call Trace: [ 1687.518255] dump_stack+0x107/0x167 [ 1687.519049] should_fail.cold+0x5/0xa [ 1687.519863] ? create_object.isra.0+0x3a/0xa20 [ 1687.520853] should_failslab+0x5/0x20 [ 1687.521660] kmem_cache_alloc+0x5b/0x310 [ 1687.522566] create_object.isra.0+0x3a/0xa20 [ 1687.523501] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1687.524606] kmem_cache_alloc+0x159/0x310 [ 1687.525496] vm_area_dup+0x78/0x290 07:08:46 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x40000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1687.526303] ? copy_page_range+0x24fe/0x3820 [ 1687.527437] ? vm_area_alloc+0x110/0x110 [ 1687.528352] ? find_held_lock+0x2c/0x110 [ 1687.529296] ? vm_iomap_memory+0x190/0x190 [ 1687.530283] ? __vma_link_rb+0x540/0x700 [ 1687.531234] dup_mm+0x44d/0x1110 [ 1687.532024] ? vm_area_dup+0x290/0x290 [ 1687.532918] ? __raw_spin_lock_init+0x36/0x110 [ 1687.533963] copy_process+0x24e2/0x6740 [ 1687.534870] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1687.536062] ? exc_page_fault+0xca/0x1a0 [ 1687.536984] ? trace_hardirqs_on+0x5b/0x180 [ 1687.537998] ? __cleanup_sighand+0xb0/0xb0 [ 1687.539013] ? _copy_from_user+0xfb/0x1b0 [ 1687.539975] kernel_clone+0xe7/0x980 [ 1687.540783] ? __lockdep_reset_lock+0x180/0x180 [ 1687.541837] ? create_io_thread+0xf0/0xf0 [ 1687.542798] ? ksys_write+0x21a/0x260 [ 1687.543673] ? lock_downgrade+0x6d0/0x6d0 [ 1687.544607] __do_sys_clone3+0x1e5/0x320 [ 1687.545520] ? __do_sys_clone+0x110/0x110 [ 1687.546504] ? rcu_read_lock_any_held+0x75/0xa0 [ 1687.547563] ? vfs_write+0x354/0xa70 [ 1687.548416] ? fput_many+0x2f/0x1a0 [ 1687.549256] ? ksys_write+0x1a9/0x260 [ 1687.550090] ? __ia32_sys_read+0xb0/0xb0 [ 1687.551044] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1687.552239] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1687.553411] ? trace_hardirqs_on+0x5b/0x180 [ 1687.554414] do_syscall_64+0x33/0x40 [ 1687.555268] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1687.556433] RIP: 0033:0x7f92d9afeb19 07:08:46 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1b0c01f000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:08:46 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x553a28d35000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1687.557286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1687.561465] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1687.563208] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1687.564801] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1687.566445] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1687.568051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1687.569653] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:09:02 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:02 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:02 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 32) 07:09:02 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2001000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:02 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xfffffffe, 0x8000) 07:09:02 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x100000800, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:02 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:02 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1703.051176] FAULT_INJECTION: forcing a failure. [ 1703.051176] name failslab, interval 1, probability 0, space 0, times 0 [ 1703.053563] CPU: 1 PID: 22054 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1703.055249] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1703.057316] Call Trace: [ 1703.057982] dump_stack+0x107/0x167 [ 1703.058948] should_fail.cold+0x5/0xa [ 1703.059893] ? vm_area_dup+0x78/0x290 [ 1703.060844] should_failslab+0x5/0x20 [ 1703.061779] kmem_cache_alloc+0x5b/0x310 [ 1703.062840] vm_area_dup+0x78/0x290 [ 1703.063748] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1703.064921] ? lock_downgrade+0x6d0/0x6d0 [ 1703.065979] ? perf_trace_lock+0xac/0x490 [ 1703.067051] ? copy_page_range+0x24fe/0x3820 [ 1703.068155] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1703.069507] ? __lockdep_reset_lock+0x180/0x180 [ 1703.070723] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1703.071879] ? avc_has_extended_perms+0xf40/0xf40 [ 1703.073102] ? dup_mm+0x631/0x1110 [ 1703.074017] ? vm_area_alloc+0x110/0x110 [ 1703.075064] ? find_held_lock+0x2c/0x110 [ 1703.076115] ? selinux_vm_enough_memory+0x114/0x180 [ 1703.077398] ? selinux_sb_statfs+0x250/0x250 [ 1703.078489] ? up_write+0x191/0x550 [ 1703.079453] ? percpu_counter_add_batch+0x8b/0x140 [ 1703.080696] ? __vm_enough_memory+0x184/0x360 [ 1703.081845] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1703.083192] dup_mm+0x44d/0x1110 [ 1703.084060] ? vm_area_dup+0x290/0x290 [ 1703.085079] ? __raw_spin_lock_init+0x36/0x110 [ 1703.086228] copy_process+0x24e2/0x6740 [ 1703.087272] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1703.088592] ? exc_page_fault+0xca/0x1a0 [ 1703.089631] ? trace_hardirqs_on+0x5b/0x180 [ 1703.090762] ? __cleanup_sighand+0xb0/0xb0 [ 1703.091865] ? _copy_from_user+0xfb/0x1b0 [ 1703.092939] kernel_clone+0xe7/0x980 [ 1703.093895] ? __lockdep_reset_lock+0x180/0x180 [ 1703.095103] ? create_io_thread+0xf0/0xf0 [ 1703.096183] ? ksys_write+0x21a/0x260 [ 1703.097136] ? lock_downgrade+0x6d0/0x6d0 [ 1703.098211] __do_sys_clone3+0x1e5/0x320 [ 1703.099229] ? __do_sys_clone+0x110/0x110 [ 1703.100300] ? rcu_read_lock_any_held+0x75/0xa0 [ 1703.101498] ? vfs_write+0x354/0xa70 [ 1703.102433] ? fput_many+0x2f/0x1a0 [ 1703.103229] ? ksys_write+0x1a9/0x260 [ 1703.104022] ? __ia32_sys_read+0xb0/0xb0 [ 1703.104855] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1703.105925] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1703.106994] ? trace_hardirqs_on+0x5b/0x180 [ 1703.107865] do_syscall_64+0x33/0x40 [ 1703.108632] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1703.109659] RIP: 0033:0x7f92d9afeb19 [ 1703.110417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1703.114124] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1703.115951] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1703.117816] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1703.119576] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1703.121061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1703.122510] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:09:02 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x8000000000000, 0x8000) 07:09:02 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:02 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2a8f6ba68000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:02 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2a1791ab0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:02 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1b0c61f000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:02 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x100000000000000, 0x8000) 07:09:20 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x553a23257000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:20 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2020000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:20 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x553a28899000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:20 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x29bcc84d7000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:20 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 33) 07:09:20 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x200000000000000, 0x8000) 07:09:20 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1721.199541] FAULT_INJECTION: forcing a failure. [ 1721.199541] name failslab, interval 1, probability 0, space 0, times 0 [ 1721.202032] CPU: 0 PID: 22704 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1721.203488] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1721.205173] Call Trace: [ 1721.205712] dump_stack+0x107/0x167 [ 1721.206460] should_fail.cold+0x5/0xa [ 1721.207254] ? create_object.isra.0+0x3a/0xa20 [ 1721.208177] should_failslab+0x5/0x20 [ 1721.208942] kmem_cache_alloc+0x5b/0x310 [ 1721.209769] create_object.isra.0+0x3a/0xa20 [ 1721.210657] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1721.211745] kmem_cache_alloc+0x159/0x310 [ 1721.212584] vm_area_dup+0x78/0x290 [ 1721.213337] ? mark_lock+0xf5/0x2df0 [ 1721.214085] ? lock_downgrade+0x6d0/0x6d0 [ 1721.214926] ? perf_trace_lock+0xac/0x490 [ 1721.215762] ? perf_trace_lock+0xac/0x490 [ 1721.216592] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1721.217648] ? lock_chain_count+0x20/0x20 [ 1721.218492] ? __lockdep_reset_lock+0x180/0x180 [ 1721.219453] ? lock_acquire+0x197/0x470 [ 1721.220260] ? find_held_lock+0x2c/0x110 [ 1721.221094] ? percpu_counter_add_batch+0x100/0x140 [ 1721.222098] ? vm_area_alloc+0x110/0x110 [ 1721.222942] ? mark_held_locks+0x9e/0xe0 [ 1721.223765] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1721.224816] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 1721.225836] ? trace_hardirqs_on+0x5b/0x180 [ 1721.226715] ? percpu_counter_add_batch+0x8b/0x140 [ 1721.227717] ? __vm_enough_memory+0x184/0x360 [ 1721.228627] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1721.229675] dup_mm+0x44d/0x1110 [ 1721.230378] ? vm_area_dup+0x290/0x290 [ 1721.231178] ? __raw_spin_lock_init+0x36/0x110 [ 1721.232108] copy_process+0x24e2/0x6740 [ 1721.232910] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1721.233969] ? exc_page_fault+0xca/0x1a0 [ 1721.234787] ? trace_hardirqs_on+0x5b/0x180 [ 1721.235703] ? __cleanup_sighand+0xb0/0xb0 [ 1721.236577] ? _copy_from_user+0xfb/0x1b0 [ 1721.237430] kernel_clone+0xe7/0x980 [ 1721.238190] ? __lockdep_reset_lock+0x180/0x180 [ 1721.239140] ? create_io_thread+0xf0/0xf0 [ 1721.239986] ? ksys_write+0x21a/0x260 [ 1721.240760] ? lock_downgrade+0x6d0/0x6d0 [ 1721.241612] __do_sys_clone3+0x1e5/0x320 [ 1721.242430] ? __do_sys_clone+0x110/0x110 [ 1721.243325] ? rcu_read_lock_any_held+0x75/0xa0 [ 1721.244273] ? vfs_write+0x354/0xa70 [ 1721.245036] ? fput_many+0x2f/0x1a0 [ 1721.245780] ? ksys_write+0x1a9/0x260 [ 1721.246546] ? __ia32_sys_read+0xb0/0xb0 [ 1721.247386] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1721.248447] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1721.249527] ? trace_hardirqs_on+0x5b/0x180 [ 1721.250427] do_syscall_64+0x33/0x40 [ 1721.251195] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1721.252218] RIP: 0033:0x7f92d9afeb19 [ 1721.252965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1721.256756] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1721.258324] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1721.259816] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1721.261292] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1721.262830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1721.264344] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:09:20 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:20 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2a4686ffb000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:20 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2001000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:20 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x201000000000000, 0x8000) 07:09:20 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xab91172a0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:38 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 34) 07:09:38 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2001000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:38 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x400000000000000, 0x8000) 07:09:38 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:38 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x553a27892000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:38 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2020000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:38 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:38 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x553a2850d000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1739.274848] FAULT_INJECTION: forcing a failure. [ 1739.274848] name failslab, interval 1, probability 0, space 0, times 0 [ 1739.277690] CPU: 1 PID: 23448 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1739.279110] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1739.280787] Call Trace: [ 1739.281328] dump_stack+0x107/0x167 [ 1739.282067] should_fail.cold+0x5/0xa [ 1739.282847] ? anon_vma_clone+0xdc/0x590 [ 1739.283700] should_failslab+0x5/0x20 [ 1739.284472] kmem_cache_alloc+0x5b/0x310 [ 1739.285306] anon_vma_clone+0xdc/0x590 [ 1739.286105] anon_vma_fork+0x82/0x640 [ 1739.286890] ? __vm_enough_memory+0x184/0x360 [ 1739.287818] dup_mm+0x861/0x1110 [ 1739.288527] ? vm_area_dup+0x290/0x290 [ 1739.289320] ? __raw_spin_lock_init+0x36/0x110 [ 1739.290250] copy_process+0x24e2/0x6740 [ 1739.291069] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1739.292135] ? exc_page_fault+0xca/0x1a0 [ 1739.292952] ? trace_hardirqs_on+0x5b/0x180 [ 1739.293845] ? __cleanup_sighand+0xb0/0xb0 [ 1739.294713] ? _copy_from_user+0xfb/0x1b0 [ 1739.295574] kernel_clone+0xe7/0x980 [ 1739.296330] ? __lockdep_reset_lock+0x180/0x180 [ 1739.297278] ? create_io_thread+0xf0/0xf0 [ 1739.298139] ? ksys_write+0x21a/0x260 [ 1739.298907] ? lock_downgrade+0x6d0/0x6d0 [ 1739.299764] __do_sys_clone3+0x1e5/0x320 [ 1739.300584] ? __do_sys_clone+0x110/0x110 [ 1739.301455] ? rcu_read_lock_any_held+0x75/0xa0 [ 1739.302382] ? vfs_write+0x354/0xa70 [ 1739.303148] ? fput_many+0x2f/0x1a0 [ 1739.303890] ? ksys_write+0x1a9/0x260 [ 1739.304664] ? __ia32_sys_read+0xb0/0xb0 [ 1739.305504] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1739.306575] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1739.307650] ? trace_hardirqs_on+0x5b/0x180 [ 1739.308521] do_syscall_64+0x33/0x40 [ 1739.309292] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1739.310331] RIP: 0033:0x7f92d9afeb19 [ 1739.311114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1739.314819] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1739.316401] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1739.317843] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1739.319299] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1739.320743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1739.322184] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:09:38 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:38 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x500000000000000, 0x8000) 07:09:38 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2001000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:38 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2020000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:38 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 35) 07:09:38 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000001000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1739.616070] FAULT_INJECTION: forcing a failure. [ 1739.616070] name failslab, interval 1, probability 0, space 0, times 0 [ 1739.618342] CPU: 1 PID: 23978 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1739.619700] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1739.621313] Call Trace: [ 1739.621832] dump_stack+0x107/0x167 [ 1739.622550] should_fail.cold+0x5/0xa [ 1739.623305] ? anon_vma_clone+0xdc/0x590 [ 1739.624097] should_failslab+0x5/0x20 [ 1739.624838] kmem_cache_alloc+0x5b/0x310 [ 1739.625632] anon_vma_clone+0xdc/0x590 [ 1739.626399] anon_vma_fork+0x82/0x640 [ 1739.627194] ? __vm_enough_memory+0x184/0x360 [ 1739.628081] dup_mm+0x861/0x1110 [ 1739.628757] ? vm_area_dup+0x290/0x290 [ 1739.629558] ? __raw_spin_lock_init+0x36/0x110 [ 1739.630463] copy_process+0x24e2/0x6740 [ 1739.631278] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1739.632295] ? exc_page_fault+0xca/0x1a0 [ 1739.633116] ? trace_hardirqs_on+0x5b/0x180 [ 1739.634011] ? __cleanup_sighand+0xb0/0xb0 [ 1739.634874] ? _copy_from_user+0xfb/0x1b0 [ 1739.635727] kernel_clone+0xe7/0x980 [ 1739.636475] ? __lockdep_reset_lock+0x180/0x180 [ 1739.637404] ? create_io_thread+0xf0/0xf0 [ 1739.638251] ? ksys_write+0x21a/0x260 [ 1739.639014] ? lock_downgrade+0x6d0/0x6d0 [ 1739.639861] __do_sys_clone3+0x1e5/0x320 [ 1739.640671] ? __do_sys_clone+0x110/0x110 [ 1739.641521] ? rcu_read_lock_any_held+0x75/0xa0 [ 1739.642449] ? vfs_write+0x354/0xa70 [ 1739.643213] ? fput_many+0x2f/0x1a0 [ 1739.643945] ? ksys_write+0x1a9/0x260 [ 1739.644708] ? __ia32_sys_read+0xb0/0xb0 [ 1739.645528] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1739.646578] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1739.647625] ? trace_hardirqs_on+0x5b/0x180 [ 1739.648491] do_syscall_64+0x33/0x40 [ 1739.649237] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1739.650261] RIP: 0033:0x7f92d9afeb19 [ 1739.651019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1739.654662] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1739.656188] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1739.657597] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1739.659009] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1739.660424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1739.661835] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:09:52 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000001000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:52 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10100000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:52 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 36) 07:09:52 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2020000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:52 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:52 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x700000000000000, 0x8000) 07:09:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2001000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1752.858425] FAULT_INJECTION: forcing a failure. [ 1752.858425] name failslab, interval 1, probability 0, space 0, times 0 [ 1752.860783] CPU: 0 PID: 24293 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1752.862178] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1752.863873] Call Trace: [ 1752.864411] dump_stack+0x107/0x167 [ 1752.865152] should_fail.cold+0x5/0xa [ 1752.865920] ? anon_vma_fork+0xf1/0x640 [ 1752.866724] should_failslab+0x5/0x20 [ 1752.867514] kmem_cache_alloc+0x5b/0x310 [ 1752.868352] anon_vma_fork+0xf1/0x640 [ 1752.869127] ? __vm_enough_memory+0x184/0x360 [ 1752.870046] dup_mm+0x861/0x1110 [ 1752.870751] ? vm_area_dup+0x290/0x290 [ 1752.871579] ? __raw_spin_lock_init+0x36/0x110 [ 1752.872506] copy_process+0x24e2/0x6740 [ 1752.873310] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1752.874367] ? exc_page_fault+0xca/0x1a0 [ 1752.875185] ? trace_hardirqs_on+0x5b/0x180 [ 1752.876103] ? __cleanup_sighand+0xb0/0xb0 [ 1752.876965] ? _copy_from_user+0xfb/0x1b0 [ 1752.877810] kernel_clone+0xe7/0x980 [ 1752.878570] ? __lockdep_reset_lock+0x180/0x180 [ 1752.879554] ? create_io_thread+0xf0/0xf0 [ 1752.880423] ? ksys_write+0x21a/0x260 [ 1752.881201] ? lock_downgrade+0x6d0/0x6d0 [ 1752.882039] __do_sys_clone3+0x1e5/0x320 [ 1752.882858] ? __do_sys_clone+0x110/0x110 [ 1752.883737] ? rcu_read_lock_any_held+0x75/0xa0 [ 1752.884662] ? vfs_write+0x354/0xa70 [ 1752.885416] ? fput_many+0x2f/0x1a0 [ 1752.886141] ? ksys_write+0x1a9/0x260 [ 1752.886916] ? __ia32_sys_read+0xb0/0xb0 [ 1752.887762] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1752.888830] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1752.889860] ? trace_hardirqs_on+0x5b/0x180 [ 1752.890731] do_syscall_64+0x33/0x40 [ 1752.891503] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1752.892542] RIP: 0033:0x7f92d9afeb19 [ 1752.893299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1752.897050] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1752.898832] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1752.900551] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1752.902232] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1752.903947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1752.905630] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:09:52 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 37) 07:09:52 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x800000000000000, 0x8000) 07:09:52 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:52 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2020000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1753.218034] FAULT_INJECTION: forcing a failure. [ 1753.218034] name failslab, interval 1, probability 0, space 0, times 0 [ 1753.220800] CPU: 0 PID: 24811 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1753.222176] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1753.223827] Call Trace: [ 1753.224361] dump_stack+0x107/0x167 [ 1753.225089] should_fail.cold+0x5/0xa [ 1753.225846] ? create_object.isra.0+0x3a/0xa20 [ 1753.226757] should_failslab+0x5/0x20 [ 1753.227548] kmem_cache_alloc+0x5b/0x310 [ 1753.228362] create_object.isra.0+0x3a/0xa20 [ 1753.229244] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1753.230419] kmem_cache_alloc+0x159/0x310 [ 1753.231295] anon_vma_fork+0xf1/0x640 [ 1753.232207] ? __vm_enough_memory+0x184/0x360 [ 1753.233120] dup_mm+0x861/0x1110 [ 1753.233952] ? vm_area_dup+0x290/0x290 [ 1753.234739] ? __raw_spin_lock_init+0x36/0x110 [ 1753.235851] copy_process+0x24e2/0x6740 [ 1753.236654] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1753.237911] ? exc_page_fault+0xca/0x1a0 [ 1753.238722] ? trace_hardirqs_on+0x5b/0x180 [ 1753.239790] ? __cleanup_sighand+0xb0/0xb0 [ 1753.240657] ? _copy_from_user+0xfb/0x1b0 [ 1753.241659] kernel_clone+0xe7/0x980 [ 1753.242404] ? __lockdep_reset_lock+0x180/0x180 [ 1753.243535] ? create_io_thread+0xf0/0xf0 [ 1753.244387] ? ksys_write+0x21a/0x260 [ 1753.245290] ? lock_downgrade+0x6d0/0x6d0 [ 1753.246121] __do_sys_clone3+0x1e5/0x320 [ 1753.246926] ? __do_sys_clone+0x110/0x110 [ 1753.247802] ? rcu_read_lock_any_held+0x75/0xa0 [ 1753.248733] ? vfs_write+0x354/0xa70 [ 1753.249486] ? fput_many+0x2f/0x1a0 [ 1753.250208] ? ksys_write+0x1a9/0x260 [ 1753.250967] ? __ia32_sys_read+0xb0/0xb0 [ 1753.251794] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1753.252834] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1753.253851] ? trace_hardirqs_on+0x5b/0x180 [ 1753.254707] do_syscall_64+0x33/0x40 [ 1753.255487] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1753.256503] RIP: 0033:0x7f92d9afeb19 [ 1753.257347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1753.261023] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1753.262847] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1753.264578] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1753.266276] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1753.267984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1753.269689] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:09:52 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10100000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:52 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x208182252a0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:52 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xf00000000000000, 0x8000) 07:09:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000001000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:09:52 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x1000000000000000, 0x8000) 07:10:09 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x1800000000000000, 0x8000) 07:10:09 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10100000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:09 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x80a66b8f2a0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:09 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:09 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 38) 07:10:09 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:09 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x50d3283a550000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:09 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000001000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1770.384085] FAULT_INJECTION: forcing a failure. [ 1770.384085] name failslab, interval 1, probability 0, space 0, times 0 [ 1770.386699] CPU: 0 PID: 25259 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1770.388266] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1770.390129] Call Trace: [ 1770.390730] dump_stack+0x107/0x167 [ 1770.391583] should_fail.cold+0x5/0xa [ 1770.392443] ? anon_vma_fork+0x1ff/0x640 [ 1770.393359] should_failslab+0x5/0x20 [ 1770.394212] kmem_cache_alloc+0x5b/0x310 [ 1770.395131] anon_vma_fork+0x1ff/0x640 [ 1770.396015] dup_mm+0x861/0x1110 [ 1770.396789] ? vm_area_dup+0x290/0x290 [ 1770.397665] ? __raw_spin_lock_init+0x36/0x110 [ 1770.398690] copy_process+0x24e2/0x6740 [ 1770.399588] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1770.400759] ? exc_page_fault+0xca/0x1a0 [ 1770.401669] ? trace_hardirqs_on+0x5b/0x180 [ 1770.402654] ? __cleanup_sighand+0xb0/0xb0 [ 1770.403633] ? _copy_from_user+0xfb/0x1b0 [ 1770.404570] kernel_clone+0xe7/0x980 [ 1770.405416] ? __lockdep_reset_lock+0x180/0x180 [ 1770.406454] ? create_io_thread+0xf0/0xf0 [ 1770.407403] ? ksys_write+0x21a/0x260 [ 1770.408265] ? lock_downgrade+0x6d0/0x6d0 [ 1770.409208] __do_sys_clone3+0x1e5/0x320 [ 1770.410117] ? __do_sys_clone+0x110/0x110 [ 1770.411079] ? rcu_read_lock_any_held+0x75/0xa0 [ 1770.412141] ? vfs_write+0x354/0xa70 [ 1770.412980] ? fput_many+0x2f/0x1a0 [ 1770.413801] ? ksys_write+0x1a9/0x260 [ 1770.414647] ? __ia32_sys_read+0xb0/0xb0 [ 1770.415571] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1770.416738] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1770.417883] ? trace_hardirqs_on+0x5b/0x180 [ 1770.418849] do_syscall_64+0x33/0x40 [ 1770.419693] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1770.420834] RIP: 0033:0x7f92d9afeb19 [ 1770.421686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1770.425777] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1770.427472] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1770.429051] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1770.430620] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1770.432229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1770.433827] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:10:09 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10100000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:09 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000001000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:09 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x2103000000000000, 0x8000) 07:10:09 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0310c1b000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:09 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x9089283a550000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:09 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 39) 07:10:09 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1770.651203] FAULT_INJECTION: forcing a failure. [ 1770.651203] name failslab, interval 1, probability 0, space 0, times 0 [ 1770.652580] CPU: 1 PID: 25962 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1770.653317] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1770.654204] Call Trace: [ 1770.654498] dump_stack+0x107/0x167 [ 1770.654890] should_fail.cold+0x5/0xa [ 1770.655309] ? create_object.isra.0+0x3a/0xa20 [ 1770.655812] should_failslab+0x5/0x20 [ 1770.656217] kmem_cache_alloc+0x5b/0x310 [ 1770.656657] create_object.isra.0+0x3a/0xa20 [ 1770.657128] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1770.657673] kmem_cache_alloc+0x159/0x310 [ 1770.658136] anon_vma_fork+0x1ff/0x640 [ 1770.658558] dup_mm+0x861/0x1110 [ 1770.658938] ? vm_area_dup+0x290/0x290 [ 1770.659373] ? __raw_spin_lock_init+0x36/0x110 [ 1770.659873] copy_process+0x24e2/0x6740 [ 1770.660306] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1770.660866] ? exc_page_fault+0xca/0x1a0 [ 1770.661295] ? trace_hardirqs_on+0x5b/0x180 [ 1770.661772] ? __cleanup_sighand+0xb0/0xb0 [ 1770.662227] ? _copy_from_user+0xfb/0x1b0 [ 1770.662671] kernel_clone+0xe7/0x980 [ 1770.663063] ? __lockdep_reset_lock+0x180/0x180 [ 1770.663574] ? create_io_thread+0xf0/0xf0 [ 1770.664030] ? ksys_write+0x21a/0x260 [ 1770.664444] ? lock_downgrade+0x6d0/0x6d0 [ 1770.664890] __do_sys_clone3+0x1e5/0x320 [ 1770.665322] ? __do_sys_clone+0x110/0x110 [ 1770.665783] ? rcu_read_lock_any_held+0x75/0xa0 [ 1770.666278] ? vfs_write+0x354/0xa70 [ 1770.666685] ? fput_many+0x2f/0x1a0 [ 1770.667072] ? ksys_write+0x1a9/0x260 [ 1770.667479] ? __ia32_sys_read+0xb0/0xb0 [ 1770.667928] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1770.668478] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1770.669025] ? trace_hardirqs_on+0x5b/0x180 [ 1770.669478] do_syscall_64+0x33/0x40 [ 1770.669876] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1770.670414] RIP: 0033:0x7f92d9afeb19 [ 1770.670812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1770.672757] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1770.673557] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1770.674308] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1770.675066] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1770.675826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1770.676572] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:10:26 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xb0ff86462a0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:26 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0ff1f00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:26 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:26 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 40) 07:10:26 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10100000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:26 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0010c1b000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:26 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x7025233a550000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:26 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x3f00000000000000, 0x8000) [ 1787.087132] FAULT_INJECTION: forcing a failure. [ 1787.087132] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1787.089701] CPU: 1 PID: 26407 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1787.091144] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1787.092874] Call Trace: [ 1787.093433] dump_stack+0x107/0x167 [ 1787.094193] should_fail.cold+0x5/0xa [ 1787.094997] __alloc_pages_nodemask+0x182/0x600 [ 1787.095988] ? __lockdep_reset_lock+0x180/0x180 [ 1787.096972] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1787.098236] ? copy_page_range+0x28f6/0x3820 [ 1787.099160] alloc_pages_current+0x187/0x280 [ 1787.100097] get_zeroed_page+0x14/0xb0 [ 1787.100912] __pud_alloc+0x33/0x270 [ 1787.101793] copy_page_range+0x2cb6/0x3820 [ 1787.102680] ? perf_trace_lock+0xac/0x490 [ 1787.103551] ? lock_chain_count+0x20/0x20 [ 1787.104462] ? lock_downgrade+0x6d0/0x6d0 [ 1787.105354] ? up_write+0x191/0x550 [ 1787.106113] ? vm_iomap_memory+0x190/0x190 [ 1787.106986] ? downgrade_write+0x3a0/0x3a0 [ 1787.107881] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1787.109010] ? __vma_link_rb+0x540/0x700 [ 1787.109858] dup_mm+0x8b9/0x1110 [ 1787.110582] ? vm_area_dup+0x290/0x290 [ 1787.111395] ? __raw_spin_lock_init+0x36/0x110 [ 1787.112402] copy_process+0x24e2/0x6740 [ 1787.113236] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1787.114335] ? exc_page_fault+0xca/0x1a0 [ 1787.115181] ? trace_hardirqs_on+0x5b/0x180 [ 1787.116113] ? __cleanup_sighand+0xb0/0xb0 [ 1787.117001] ? _copy_from_user+0xfb/0x1b0 [ 1787.117873] kernel_clone+0xe7/0x980 [ 1787.118644] ? __lockdep_reset_lock+0x180/0x180 [ 1787.119612] ? create_io_thread+0xf0/0xf0 [ 1787.120501] ? ksys_write+0x21a/0x260 [ 1787.121298] ? lock_downgrade+0x6d0/0x6d0 [ 1787.122159] __do_sys_clone3+0x1e5/0x320 [ 1787.123006] ? __do_sys_clone+0x110/0x110 [ 1787.123905] ? rcu_read_lock_any_held+0x75/0xa0 [ 1787.124871] ? vfs_write+0x354/0xa70 [ 1787.125650] ? fput_many+0x2f/0x1a0 [ 1787.126411] ? ksys_write+0x1a9/0x260 [ 1787.127205] ? __ia32_sys_read+0xb0/0xb0 [ 1787.128069] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1787.129167] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1787.130239] ? trace_hardirqs_on+0x5b/0x180 [ 1787.131145] do_syscall_64+0x33/0x40 [ 1787.131930] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1787.132989] RIP: 0033:0x7f92d9afeb19 [ 1787.133766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1787.137574] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1787.139140] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1787.140625] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1787.142080] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1787.143535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1787.145010] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:10:26 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x4000000000000000, 0x8000) 07:10:26 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf031101b000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:26 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:26 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0ff1f00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:26 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:26 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 41) 07:10:26 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x60a8000000000000, 0x8000) 07:10:26 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xd050283a550000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:26 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2089273a550000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1787.490851] FAULT_INJECTION: forcing a failure. [ 1787.490851] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1787.493394] CPU: 1 PID: 27299 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1787.494831] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1787.496559] Call Trace: [ 1787.497117] dump_stack+0x107/0x167 [ 1787.497860] should_fail.cold+0x5/0xa [ 1787.498649] __alloc_pages_nodemask+0x182/0x600 [ 1787.499591] ? lock_acquire+0x197/0x470 [ 1787.500415] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1787.501625] ? lock_downgrade+0x6d0/0x6d0 [ 1787.502460] ? do_raw_spin_lock+0x121/0x260 [ 1787.503334] alloc_pages_current+0x187/0x280 [ 1787.504238] __pmd_alloc+0x37/0x5e0 [ 1787.504976] copy_page_range+0x2bed/0x3820 [ 1787.505824] ? perf_trace_lock+0xac/0x490 [ 1787.506670] ? lock_chain_count+0x20/0x20 [ 1787.507547] ? up_write+0x191/0x550 [ 1787.508306] ? vm_iomap_memory+0x190/0x190 [ 1787.509187] ? downgrade_write+0x3a0/0x3a0 [ 1787.510149] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1787.511361] ? __vma_link_rb+0x540/0x700 [ 1787.512305] dup_mm+0x8b9/0x1110 [ 1787.513102] ? vm_area_dup+0x290/0x290 [ 1787.513988] ? __raw_spin_lock_init+0x36/0x110 [ 1787.515033] copy_process+0x24e2/0x6740 [ 1787.515951] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1787.517140] ? exc_page_fault+0xca/0x1a0 [ 1787.518056] ? trace_hardirqs_on+0x5b/0x180 [ 1787.519051] ? __cleanup_sighand+0xb0/0xb0 [ 1787.520029] ? _copy_from_user+0xfb/0x1b0 [ 1787.520985] kernel_clone+0xe7/0x980 [ 1787.521829] ? __lockdep_reset_lock+0x180/0x180 [ 1787.522884] ? create_io_thread+0xf0/0xf0 [ 1787.523853] ? ksys_write+0x21a/0x260 [ 1787.524715] ? lock_downgrade+0x6d0/0x6d0 [ 1787.525652] __do_sys_clone3+0x1e5/0x320 [ 1787.526566] ? __do_sys_clone+0x110/0x110 [ 1787.527522] ? rcu_read_lock_any_held+0x75/0xa0 [ 1787.528574] ? vfs_write+0x354/0xa70 [ 1787.529419] ? fput_many+0x2f/0x1a0 [ 1787.530239] ? ksys_write+0x1a9/0x260 [ 1787.531106] ? __ia32_sys_read+0xb0/0xb0 [ 1787.532040] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1787.533223] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1787.534394] ? trace_hardirqs_on+0x5b/0x180 [ 1787.535372] do_syscall_64+0x33/0x40 [ 1787.536218] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1787.537367] RIP: 0033:0x7f92d9afeb19 [ 1787.538199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1787.542279] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1787.543989] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1787.545605] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1787.547178] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1787.548777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1787.550355] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:10:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x704dc8bc290000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:41 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0610c1b000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:41 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0ff1f00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:41 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:41 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x800000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:41 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:41 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 42) [ 1802.274217] FAULT_INJECTION: forcing a failure. [ 1802.274217] name failslab, interval 1, probability 0, space 0, times 0 [ 1802.276774] CPU: 1 PID: 27559 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1802.278310] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1802.280145] Call Trace: [ 1802.280738] dump_stack+0x107/0x167 [ 1802.281548] should_fail.cold+0x5/0xa [ 1802.282397] ? __pmd_alloc+0x94/0x5e0 [ 1802.283243] should_failslab+0x5/0x20 [ 1802.284108] kmem_cache_alloc+0x5b/0x310 [ 1802.285013] __pmd_alloc+0x94/0x5e0 [ 1802.285823] copy_page_range+0x2bed/0x3820 [ 1802.286754] ? perf_trace_lock+0xac/0x490 [ 1802.287665] ? lock_chain_count+0x20/0x20 [ 1802.288657] ? up_write+0x191/0x550 [ 1802.289465] ? vm_iomap_memory+0x190/0x190 [ 1802.290409] ? downgrade_write+0x3a0/0x3a0 [ 1802.291348] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1802.292571] ? __vma_link_rb+0x540/0x700 [ 1802.293483] dup_mm+0x8b9/0x1110 [ 1802.294258] ? vm_area_dup+0x290/0x290 [ 1802.295126] ? __raw_spin_lock_init+0x36/0x110 [ 1802.296172] copy_process+0x24e2/0x6740 [ 1802.297055] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1802.298230] ? exc_page_fault+0xca/0x1a0 [ 1802.299127] ? trace_hardirqs_on+0x5b/0x180 [ 1802.300123] ? __cleanup_sighand+0xb0/0xb0 [ 1802.301066] ? _copy_from_user+0xfb/0x1b0 [ 1802.301988] kernel_clone+0xe7/0x980 [ 1802.302807] ? __lockdep_reset_lock+0x180/0x180 [ 1802.303848] ? create_io_thread+0xf0/0xf0 [ 1802.304787] ? ksys_write+0x21a/0x260 [ 1802.305622] ? lock_downgrade+0x6d0/0x6d0 [ 1802.306546] __do_sys_clone3+0x1e5/0x320 [ 1802.307438] ? __do_sys_clone+0x110/0x110 [ 1802.308395] ? rcu_read_lock_any_held+0x75/0xa0 [ 1802.309427] ? vfs_write+0x354/0xa70 [ 1802.310252] ? fput_many+0x2f/0x1a0 [ 1802.311054] ? ksys_write+0x1a9/0x260 [ 1802.311897] ? __ia32_sys_read+0xb0/0xb0 [ 1802.312794] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1802.313946] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1802.315073] ? trace_hardirqs_on+0x5b/0x180 [ 1802.316041] do_syscall_64+0x33/0x40 [ 1802.316861] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1802.317988] RIP: 0033:0x7f92d9afeb19 [ 1802.318812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1802.322807] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1802.324491] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1802.326044] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1802.327596] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1802.329154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1802.330708] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:10:41 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x86ffffff00000000, 0x8000) 07:10:41 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x800000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:41 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:41 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xe4ffffff00000000, 0x8000) 07:10:41 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0ff1f00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:41 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0f10b1b000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:41 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xeffd000000000000, 0x8000) 07:10:55 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:55 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x0, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:55 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x800000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:55 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0ff1f00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:55 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 43) 07:10:55 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xf4ffffff00000000, 0x8000) 07:10:55 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1815.959726] FAULT_INJECTION: forcing a failure. [ 1815.959726] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.962280] CPU: 1 PID: 28503 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1815.963769] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.965558] Call Trace: [ 1815.966134] dump_stack+0x107/0x167 [ 1815.966925] should_fail.cold+0x5/0xa [ 1815.967747] ? create_object.isra.0+0x3a/0xa20 [ 1815.968825] should_failslab+0x5/0x20 [ 1815.969648] kmem_cache_alloc+0x5b/0x310 [ 1815.970536] create_object.isra.0+0x3a/0xa20 [ 1815.971487] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1815.972601] kmem_cache_alloc+0x159/0x310 [ 1815.973503] __pmd_alloc+0x94/0x5e0 [ 1815.974297] copy_page_range+0x2bed/0x3820 [ 1815.975208] ? perf_trace_lock+0xac/0x490 [ 1815.976110] ? lock_chain_count+0x20/0x20 [ 1815.977046] ? up_write+0x191/0x550 [ 1815.978063] ? vm_iomap_memory+0x190/0x190 [ 1815.978976] ? downgrade_write+0x3a0/0x3a0 [ 1815.979893] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1815.981078] ? __vma_link_rb+0x540/0x700 [ 1815.981965] dup_mm+0x8b9/0x1110 [ 1815.982714] ? vm_area_dup+0x290/0x290 [ 1815.983562] ? __raw_spin_lock_init+0x36/0x110 [ 1815.984560] copy_process+0x24e2/0x6740 [ 1815.985423] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.986555] ? exc_page_fault+0xca/0x1a0 [ 1815.987432] ? trace_hardirqs_on+0x5b/0x180 [ 1815.988400] ? __cleanup_sighand+0xb0/0xb0 [ 1815.989331] ? _copy_from_user+0xfb/0x1b0 [ 1815.990236] kernel_clone+0xe7/0x980 [ 1815.991040] ? __lockdep_reset_lock+0x180/0x180 [ 1815.992053] ? create_io_thread+0xf0/0xf0 [ 1815.992966] ? ksys_write+0x21a/0x260 [ 1815.993789] ? lock_downgrade+0x6d0/0x6d0 [ 1815.994691] __do_sys_clone3+0x1e5/0x320 [ 1815.995567] ? __do_sys_clone+0x110/0x110 [ 1815.996495] ? rcu_read_lock_any_held+0x75/0xa0 [ 1815.997495] ? vfs_write+0x354/0xa70 [ 1815.998304] ? fput_many+0x2f/0x1a0 [ 1815.999089] ? ksys_write+0x1a9/0x260 [ 1815.999911] ? __ia32_sys_read+0xb0/0xb0 [ 1816.000807] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1816.001937] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1816.003047] ? trace_hardirqs_on+0x5b/0x180 [ 1816.003989] do_syscall_64+0x33/0x40 [ 1816.004795] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1816.005898] RIP: 0033:0x7f92d9afeb19 [ 1816.006702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1816.010661] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1816.012307] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1816.013838] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1816.015367] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1816.016915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1816.018457] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:10:55 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xf5ffffff00000000, 0x8000) 07:10:55 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x800000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:55 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:55 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:55 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:55 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f00000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:55 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x0, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:10:55 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xfbffffff00000000, 0x8000) 07:10:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 44) [ 1816.551229] FAULT_INJECTION: forcing a failure. [ 1816.551229] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1816.553807] CPU: 0 PID: 29073 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1816.555213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1816.556908] Call Trace: [ 1816.557456] dump_stack+0x107/0x167 [ 1816.558215] should_fail.cold+0x5/0xa [ 1816.559003] __alloc_pages_nodemask+0x182/0x600 [ 1816.559956] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1816.561181] ? find_held_lock+0x2c/0x110 [ 1816.562017] ? __pmd_alloc+0x2db/0x5e0 [ 1816.562806] ? lock_downgrade+0x6d0/0x6d0 [ 1816.563653] ? do_raw_spin_lock+0x121/0x260 [ 1816.564561] alloc_pages_current+0x187/0x280 [ 1816.565457] pte_alloc_one+0x16/0x1a0 [ 1816.566230] __pte_alloc+0x1d/0x330 [ 1816.566973] copy_page_range+0x1b77/0x3820 [ 1816.567829] ? perf_trace_lock+0xac/0x490 [ 1816.568687] ? lock_chain_count+0x20/0x20 [ 1816.569563] ? up_write+0x191/0x550 [ 1816.570287] ? vm_iomap_memory+0x190/0x190 [ 1816.571116] ? downgrade_write+0x3a0/0x3a0 [ 1816.571967] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1816.573096] ? __vma_link_rb+0x540/0x700 [ 1816.573914] dup_mm+0x8b9/0x1110 [ 1816.574626] ? vm_area_dup+0x290/0x290 [ 1816.575403] ? __raw_spin_lock_init+0x36/0x110 [ 1816.576369] copy_process+0x24e2/0x6740 [ 1816.577182] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1816.578256] ? exc_page_fault+0xca/0x1a0 [ 1816.579078] ? trace_hardirqs_on+0x5b/0x180 [ 1816.579977] ? __cleanup_sighand+0xb0/0xb0 [ 1816.580858] ? _copy_from_user+0xfb/0x1b0 [ 1816.581711] kernel_clone+0xe7/0x980 [ 1816.582466] ? __lockdep_reset_lock+0x180/0x180 [ 1816.583420] ? create_io_thread+0xf0/0xf0 [ 1816.584295] ? ksys_write+0x21a/0x260 [ 1816.585068] ? lock_downgrade+0x6d0/0x6d0 [ 1816.585915] __do_sys_clone3+0x1e5/0x320 [ 1816.586743] ? __do_sys_clone+0x110/0x110 [ 1816.587628] ? rcu_read_lock_any_held+0x75/0xa0 [ 1816.588579] ? vfs_write+0x354/0xa70 [ 1816.589342] ? fput_many+0x2f/0x1a0 [ 1816.590087] ? ksys_write+0x1a9/0x260 [ 1816.590862] ? __ia32_sys_read+0xb0/0xb0 [ 1816.591686] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1816.592761] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1816.593812] ? trace_hardirqs_on+0x5b/0x180 [ 1816.594683] do_syscall_64+0x33/0x40 [ 1816.595441] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1816.596485] RIP: 0033:0x7f92d9afeb19 [ 1816.597240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1816.600980] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1816.602535] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1816.603967] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1816.605420] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1816.606853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1816.608314] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:11:11 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x800000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:11 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:11 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x0, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:11 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xfeffffff00000000, 0x8000) 07:11:11 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f00000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 45) 07:11:11 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1832.239439] FAULT_INJECTION: forcing a failure. [ 1832.239439] name failslab, interval 1, probability 0, space 0, times 0 [ 1832.241983] CPU: 1 PID: 29367 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1832.243485] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1832.245283] Call Trace: [ 1832.245869] dump_stack+0x107/0x167 [ 1832.246677] should_fail.cold+0x5/0xa [ 1832.247515] ? ptlock_alloc+0x1d/0x70 [ 1832.248365] should_failslab+0x5/0x20 [ 1832.249200] kmem_cache_alloc+0x5b/0x310 [ 1832.250201] ptlock_alloc+0x1d/0x70 [ 1832.250993] pte_alloc_one+0x68/0x1a0 [ 1832.251821] __pte_alloc+0x1d/0x330 [ 1832.252634] copy_page_range+0x1b77/0x3820 [ 1832.253550] ? perf_trace_lock+0xac/0x490 [ 1832.254444] ? lock_chain_count+0x20/0x20 [ 1832.255392] ? up_write+0x191/0x550 [ 1832.256216] ? vm_iomap_memory+0x190/0x190 [ 1832.257139] ? downgrade_write+0x3a0/0x3a0 [ 1832.258067] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1832.259473] ? __vma_link_rb+0x540/0x700 [ 1832.260380] dup_mm+0x8b9/0x1110 [ 1832.261142] ? vm_area_dup+0x290/0x290 [ 1832.261997] ? __raw_spin_lock_init+0x36/0x110 [ 1832.262999] copy_process+0x24e2/0x6740 [ 1832.263866] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1832.265024] ? exc_page_fault+0xca/0x1a0 [ 1832.265913] ? trace_hardirqs_on+0x5b/0x180 [ 1832.266873] ? __cleanup_sighand+0xb0/0xb0 [ 1832.267807] ? _copy_from_user+0xfb/0x1b0 [ 1832.268728] kernel_clone+0xe7/0x980 [ 1832.269537] ? __lockdep_reset_lock+0x180/0x180 [ 1832.270547] ? create_io_thread+0xf0/0xf0 [ 1832.271469] ? ksys_write+0x21a/0x260 [ 1832.272307] ? lock_downgrade+0x6d0/0x6d0 [ 1832.273215] __do_sys_clone3+0x1e5/0x320 [ 1832.274103] ? __do_sys_clone+0x110/0x110 [ 1832.275038] ? rcu_read_lock_any_held+0x75/0xa0 [ 1832.276048] ? vfs_write+0x354/0xa70 [ 1832.276884] ? fput_many+0x2f/0x1a0 [ 1832.277682] ? ksys_write+0x1a9/0x260 [ 1832.278515] ? __ia32_sys_read+0xb0/0xb0 [ 1832.279409] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1832.280564] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1832.281686] ? trace_hardirqs_on+0x5b/0x180 [ 1832.282629] do_syscall_64+0x33/0x40 [ 1832.283448] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1832.284581] RIP: 0033:0x7f92d9afeb19 [ 1832.285393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1832.289361] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1832.291013] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1832.292562] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1832.294105] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1832.295642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1832.297202] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:11:11 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xff7f000000000000, 0x8000) 07:11:11 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xffffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:11 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f00000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f00000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 46) 07:11:27 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xffffffffffffffff, 0x8000) [ 1848.169390] FAULT_INJECTION: forcing a failure. [ 1848.169390] name failslab, interval 1, probability 0, space 0, times 0 [ 1848.172001] CPU: 0 PID: 30112 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1848.173809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1848.175572] Call Trace: [ 1848.176259] dump_stack+0x107/0x167 [ 1848.177059] should_fail.cold+0x5/0xa [ 1848.178041] ? create_object.isra.0+0x3a/0xa20 [ 1848.179027] should_failslab+0x5/0x20 [ 1848.180007] kmem_cache_alloc+0x5b/0x310 [ 1848.180893] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1848.182450] create_object.isra.0+0x3a/0xa20 [ 1848.183385] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1848.184718] kmem_cache_alloc+0x159/0x310 [ 1848.185614] ptlock_alloc+0x1d/0x70 [ 1848.186552] pte_alloc_one+0x68/0x1a0 [ 1848.187370] __pte_alloc+0x1d/0x330 [ 1848.188315] copy_page_range+0x1b77/0x3820 [ 1848.189226] ? perf_trace_lock+0xac/0x490 [ 1848.190289] ? lock_chain_count+0x20/0x20 [ 1848.191231] ? up_write+0x191/0x550 [ 1848.192168] ? vm_iomap_memory+0x190/0x190 [ 1848.193090] ? downgrade_write+0x3a0/0x3a0 [ 1848.194183] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1848.195348] ? __vma_link_rb+0x540/0x700 [ 1848.196416] dup_mm+0x8b9/0x1110 [ 1848.197175] ? vm_area_dup+0x290/0x290 [ 1848.198186] ? __raw_spin_lock_init+0x36/0x110 [ 1848.199168] copy_process+0x24e2/0x6740 [ 1848.200195] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1848.201342] ? exc_page_fault+0xca/0x1a0 [ 1848.202394] ? trace_hardirqs_on+0x5b/0x180 [ 1848.203342] ? __cleanup_sighand+0xb0/0xb0 [ 1848.204453] ? _copy_from_user+0xfb/0x1b0 [ 1848.205367] kernel_clone+0xe7/0x980 07:11:27 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x2) [ 1848.206293] ? __lockdep_reset_lock+0x180/0x180 [ 1848.207495] ? create_io_thread+0xf0/0xf0 [ 1848.208424] ? ksys_write+0x21a/0x260 [ 1848.209251] ? lock_downgrade+0x6d0/0x6d0 [ 1848.210154] __do_sys_clone3+0x1e5/0x320 [ 1848.211031] ? __do_sys_clone+0x110/0x110 [ 1848.211951] ? rcu_read_lock_any_held+0x75/0xa0 [ 1848.212973] ? vfs_write+0x354/0xa70 [ 1848.213784] ? fput_many+0x2f/0x1a0 [ 1848.214567] ? ksys_write+0x1a9/0x260 [ 1848.215389] ? __ia32_sys_read+0xb0/0xb0 [ 1848.216264] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1848.217408] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1848.218516] ? trace_hardirqs_on+0x5b/0x180 [ 1848.219450] do_syscall_64+0x33/0x40 [ 1848.220254] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1848.221360] RIP: 0033:0x7f92d9afeb19 [ 1848.222162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1848.226098] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1848.227722] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1848.229248] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1848.230774] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1848.232294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1848.234135] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:11:27 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xffffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x2868) 07:11:27 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:27 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 47) 07:11:27 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8002) [ 1848.700194] FAULT_INJECTION: forcing a failure. [ 1848.700194] name failslab, interval 1, probability 0, space 0, times 0 [ 1848.702651] CPU: 0 PID: 30635 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1848.704071] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1848.705772] Call Trace: [ 1848.706319] dump_stack+0x107/0x167 [ 1848.707075] should_fail.cold+0x5/0xa [ 1848.707860] ? create_object.isra.0+0x3a/0xa20 [ 1848.708816] should_failslab+0x5/0x20 [ 1848.709600] kmem_cache_alloc+0x5b/0x310 [ 1848.710438] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1848.711678] create_object.isra.0+0x3a/0xa20 [ 1848.712598] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1848.713663] kmem_cache_alloc+0x159/0x310 [ 1848.714526] ptlock_alloc+0x1d/0x70 [ 1848.715282] pte_alloc_one+0x68/0x1a0 [ 1848.716069] __pte_alloc+0x1d/0x330 [ 1848.716832] copy_page_range+0x1b77/0x3820 [ 1848.717710] ? perf_trace_lock+0xac/0x490 [ 1848.718571] ? lock_chain_count+0x20/0x20 [ 1848.719474] ? up_write+0x191/0x550 [ 1848.720228] ? vm_iomap_memory+0x190/0x190 [ 1848.721113] ? downgrade_write+0x3a0/0x3a0 [ 1848.721986] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1848.723106] ? __vma_link_rb+0x540/0x700 [ 1848.723951] dup_mm+0x8b9/0x1110 [ 1848.724670] ? vm_area_dup+0x290/0x290 [ 1848.725473] ? __raw_spin_lock_init+0x36/0x110 [ 1848.726419] copy_process+0x24e2/0x6740 [ 1848.727249] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1848.728332] ? exc_page_fault+0xca/0x1a0 [ 1848.729227] ? trace_hardirqs_on+0x5b/0x180 [ 1848.730137] ? __cleanup_sighand+0xb0/0xb0 [ 1848.731027] ? _copy_from_user+0xfb/0x1b0 [ 1848.731897] kernel_clone+0xe7/0x980 [ 1848.732683] ? create_io_thread+0xf0/0xf0 [ 1848.733552] ? perf_event_sched_in.isra.0+0x80/0x80 [ 1848.734598] __do_sys_clone3+0x1e5/0x320 [ 1848.735433] ? __do_sys_clone+0x110/0x110 [ 1848.736312] ? finish_task_switch+0x126/0x5d0 [ 1848.737258] ? finish_task_switch+0xef/0x5d0 [ 1848.738190] ? io_schedule_timeout+0x140/0x140 [ 1848.739121] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 1848.740112] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1848.741257] ? ksys_write+0x1a9/0x260 [ 1848.742070] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1848.743137] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1848.744200] ? trace_hardirqs_on+0x5b/0x180 [ 1848.745113] do_syscall_64+0x33/0x40 [ 1848.745876] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1848.746935] RIP: 0033:0x7f92d9afeb19 [ 1848.747691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1848.751446] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1848.753013] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1848.754469] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1848.755945] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1848.757422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1848.758877] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:11:28 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:28 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:28 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:28 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xffffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:28 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8004) 07:11:28 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xffffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:44 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:44 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f00000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:44 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:44 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:44 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 48) 07:11:44 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8005) 07:11:44 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:44 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1865.085572] FAULT_INJECTION: forcing a failure. [ 1865.085572] name failslab, interval 1, probability 0, space 0, times 0 [ 1865.087899] CPU: 0 PID: 31491 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1865.089293] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1865.090937] Call Trace: [ 1865.091467] dump_stack+0x107/0x167 [ 1865.092189] should_fail.cold+0x5/0xa [ 1865.092988] ? create_object.isra.0+0x3a/0xa20 [ 1865.093887] should_failslab+0x5/0x20 [ 1865.094639] kmem_cache_alloc+0x5b/0x310 [ 1865.095444] create_object.isra.0+0x3a/0xa20 [ 1865.096308] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1865.097317] kmem_cache_alloc+0x159/0x310 [ 1865.098142] vm_area_dup+0x78/0x290 [ 1865.098866] ? _cond_resched+0x12/0x80 [ 1865.099691] ? copy_page_range+0x24fe/0x3820 [ 1865.100620] ? vm_area_alloc+0x110/0x110 [ 1865.101463] ? up_write+0x191/0x550 [ 1865.102196] ? vm_iomap_memory+0x190/0x190 [ 1865.103058] ? downgrade_write+0x3a0/0x3a0 [ 1865.103907] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1865.105027] ? __vma_link_rb+0x540/0x700 [ 1865.105845] dup_mm+0x44d/0x1110 [ 1865.106557] ? vm_area_dup+0x290/0x290 [ 1865.107337] ? __raw_spin_lock_init+0x36/0x110 [ 1865.108278] copy_process+0x24e2/0x6740 [ 1865.109072] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1865.110115] ? exc_page_fault+0xca/0x1a0 [ 1865.110924] ? trace_hardirqs_on+0x5b/0x180 [ 1865.111809] ? __cleanup_sighand+0xb0/0xb0 [ 1865.112682] ? _copy_from_user+0xfb/0x1b0 [ 1865.113510] kernel_clone+0xe7/0x980 [ 1865.114256] ? __lockdep_reset_lock+0x180/0x180 [ 1865.115181] ? create_io_thread+0xf0/0xf0 [ 1865.116021] ? ksys_write+0x21a/0x260 [ 1865.116793] ? lock_downgrade+0x6d0/0x6d0 [ 1865.117620] __do_sys_clone3+0x1e5/0x320 [ 1865.118437] ? __do_sys_clone+0x110/0x110 [ 1865.119296] ? rcu_read_lock_any_held+0x75/0xa0 [ 1865.120215] ? vfs_write+0x354/0xa70 [ 1865.120984] ? fput_many+0x2f/0x1a0 [ 1865.121712] ? ksys_write+0x1a9/0x260 [ 1865.122471] ? __ia32_sys_read+0xb0/0xb0 [ 1865.123279] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1865.124336] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1865.125398] ? trace_hardirqs_on+0x5b/0x180 [ 1865.126268] do_syscall_64+0x33/0x40 [ 1865.127035] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1865.128055] RIP: 0033:0x7f92d9afeb19 [ 1865.128834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1865.132472] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1865.133974] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1865.135371] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1865.136791] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1865.138185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1865.139577] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 [ 1880.545949] FAULT_INJECTION: forcing a failure. [ 1880.545949] name failslab, interval 1, probability 0, space 0, times 0 [ 1880.547244] CPU: 0 PID: 31908 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1880.547981] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1880.548889] Call Trace: [ 1880.549202] dump_stack+0x107/0x167 [ 1880.549644] should_fail.cold+0x5/0xa [ 1880.550061] ? vm_area_dup+0x78/0x290 [ 1880.550479] should_failslab+0x5/0x20 [ 1880.550893] kmem_cache_alloc+0x5b/0x310 [ 1880.551336] vm_area_dup+0x78/0x290 [ 1880.551740] ? copy_page_range+0x24fe/0x3820 [ 1880.552242] ? vm_area_alloc+0x110/0x110 [ 1880.552689] ? vm_iomap_memory+0x190/0x190 [ 1880.553159] ? __vma_link_rb+0x540/0x700 [ 1880.553604] dup_mm+0x44d/0x1110 [ 1880.553981] ? vm_area_dup+0x290/0x290 [ 1880.554409] ? __raw_spin_lock_init+0x36/0x110 [ 1880.554922] copy_process+0x24e2/0x6740 [ 1880.555351] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1880.555942] ? exc_page_fault+0xca/0x1a0 [ 1880.556380] ? trace_hardirqs_on+0x5b/0x180 [ 1880.556868] ? __cleanup_sighand+0xb0/0xb0 [ 1880.557332] ? _copy_from_user+0xfb/0x1b0 [ 1880.557786] kernel_clone+0xe7/0x980 [ 1880.558183] ? __lockdep_reset_lock+0x180/0x180 [ 1880.558685] ? create_io_thread+0xf0/0xf0 [ 1880.559141] ? ksys_write+0x21a/0x260 [ 1880.559549] ? lock_downgrade+0x6d0/0x6d0 [ 1880.559999] __do_sys_clone3+0x1e5/0x320 [ 1880.560431] ? __do_sys_clone+0x110/0x110 [ 1880.560912] ? rcu_read_lock_any_held+0x75/0xa0 [ 1880.561405] ? vfs_write+0x354/0xa70 [ 1880.561819] ? fput_many+0x2f/0x1a0 [ 1880.562214] ? ksys_write+0x1a9/0x260 [ 1880.562628] ? __ia32_sys_read+0xb0/0xb0 [ 1880.563069] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1880.563629] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1880.564187] ? trace_hardirqs_on+0x5b/0x180 [ 1880.564652] do_syscall_64+0x33/0x40 [ 1880.565061] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1880.565610] RIP: 0033:0x7f92d9afeb19 [ 1880.566018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1880.568015] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1880.568874] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1880.569659] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 07:11:59 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 49) 07:11:59 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:59 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:59 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:59 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:59 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:11:59 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1880.570443] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1880.571431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1880.572179] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:11:59 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8007) 07:11:59 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8008) 07:12:00 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:00 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:00 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x800f) 07:12:00 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 50) [ 1880.902025] FAULT_INJECTION: forcing a failure. [ 1880.902025] name failslab, interval 1, probability 0, space 0, times 0 [ 1880.904355] CPU: 1 PID: 32343 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1880.905736] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1880.907373] Call Trace: [ 1880.907906] dump_stack+0x107/0x167 [ 1880.908636] should_fail.cold+0x5/0xa [ 1880.909424] ? create_object.isra.0+0x3a/0xa20 [ 1880.910331] should_failslab+0x5/0x20 [ 1880.911088] kmem_cache_alloc+0x5b/0x310 [ 1880.911893] create_object.isra.0+0x3a/0xa20 [ 1880.912760] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1880.913779] kmem_cache_alloc+0x159/0x310 [ 1880.914609] vm_area_dup+0x78/0x290 [ 1880.915345] ? copy_page_range+0x24fe/0x3820 [ 1880.916260] ? vm_area_alloc+0x110/0x110 [ 1880.917092] ? vm_iomap_memory+0x190/0x190 [ 1880.917950] ? __vma_link_rb+0x540/0x700 [ 1880.918767] dup_mm+0x44d/0x1110 [ 1880.919480] ? vm_area_dup+0x290/0x290 [ 1880.920294] ? __raw_spin_lock_init+0x36/0x110 [ 1880.921225] copy_process+0x24e2/0x6740 [ 1880.922044] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1880.923137] ? exc_page_fault+0xca/0x1a0 [ 1880.923973] ? trace_hardirqs_on+0x5b/0x180 [ 1880.924877] ? __cleanup_sighand+0xb0/0xb0 [ 1880.925754] ? _copy_from_user+0xfb/0x1b0 [ 1880.926616] kernel_clone+0xe7/0x980 [ 1880.927378] ? __lockdep_reset_lock+0x180/0x180 [ 1880.928353] ? create_io_thread+0xf0/0xf0 [ 1880.929233] ? ksys_write+0x21a/0x260 [ 1880.930001] ? lock_downgrade+0x6d0/0x6d0 [ 1880.930843] __do_sys_clone3+0x1e5/0x320 [ 1880.931669] ? __do_sys_clone+0x110/0x110 [ 1880.932534] ? rcu_read_lock_any_held+0x75/0xa0 [ 1880.933474] ? vfs_write+0x354/0xa70 [ 1880.934232] ? fput_many+0x2f/0x1a0 [ 1880.934965] ? ksys_write+0x1a9/0x260 [ 1880.935743] ? __ia32_sys_read+0xb0/0xb0 [ 1880.936568] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1880.937633] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1880.938667] ? trace_hardirqs_on+0x5b/0x180 [ 1880.939541] do_syscall_64+0x33/0x40 [ 1880.940298] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1880.941344] RIP: 0033:0x7f92d9afeb19 [ 1880.942100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1880.945810] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1880.947346] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1880.948780] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1880.950239] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1880.951680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1880.953091] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:12:00 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8010) 07:12:00 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:00 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xffffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:00 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:00 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:00 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:17 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8018) 07:12:17 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:17 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 51) 07:12:17 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:17 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:17 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:17 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1897.829396] FAULT_INJECTION: forcing a failure. [ 1897.829396] name failslab, interval 1, probability 0, space 0, times 0 [ 1897.831759] CPU: 1 PID: 32988 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1897.833171] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1897.834847] Call Trace: [ 1897.835391] dump_stack+0x107/0x167 [ 1897.836134] should_fail.cold+0x5/0xa [ 1897.836919] ? vm_area_dup+0x78/0x290 [ 1897.837722] should_failslab+0x5/0x20 [ 1897.838500] kmem_cache_alloc+0x5b/0x310 [ 1897.839329] vm_area_dup+0x78/0x290 [ 1897.840070] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1897.841029] ? lock_downgrade+0x6d0/0x6d0 [ 1897.841889] ? perf_trace_lock+0xac/0x490 [ 1897.842824] ? copy_page_range+0x24fe/0x3820 [ 1897.843713] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1897.844765] ? __lockdep_reset_lock+0x180/0x180 [ 1897.845715] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1897.846658] ? avc_has_extended_perms+0xf40/0xf40 [ 1897.847622] ? dup_mm+0x631/0x1110 [ 1897.848345] ? vm_area_alloc+0x110/0x110 [ 1897.849178] ? selinux_vm_enough_memory+0x114/0x180 [ 1897.850180] ? selinux_sb_statfs+0x250/0x250 [ 1897.851059] ? up_write+0x191/0x550 [ 1897.851797] ? percpu_counter_add_batch+0x8b/0x140 [ 1897.852791] ? __vm_enough_memory+0x184/0x360 [ 1897.853726] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1897.854767] dup_mm+0x44d/0x1110 [ 1897.855466] ? vm_area_dup+0x290/0x290 [ 1897.856260] ? __raw_spin_lock_init+0x36/0x110 [ 1897.857193] copy_process+0x24e2/0x6740 [ 1897.858005] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1897.859058] ? exc_page_fault+0xca/0x1a0 [ 1897.859882] ? trace_hardirqs_on+0x5b/0x180 [ 1897.860782] ? __cleanup_sighand+0xb0/0xb0 [ 1897.861653] ? _copy_from_user+0xfb/0x1b0 [ 1897.862515] kernel_clone+0xe7/0x980 [ 1897.863267] ? __lockdep_reset_lock+0x180/0x180 [ 1897.864212] ? create_io_thread+0xf0/0xf0 [ 1897.865085] ? ksys_write+0x21a/0x260 [ 1897.865851] ? lock_downgrade+0x6d0/0x6d0 [ 1897.866694] __do_sys_clone3+0x1e5/0x320 [ 1897.867515] ? __do_sys_clone+0x110/0x110 [ 1897.868390] ? rcu_read_lock_any_held+0x75/0xa0 [ 1897.869332] ? vfs_write+0x354/0xa70 [ 1897.870090] ? fput_many+0x2f/0x1a0 [ 1897.870834] ? ksys_write+0x1a9/0x260 [ 1897.871607] ? __ia32_sys_read+0xb0/0xb0 [ 1897.872434] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1897.873511] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1897.874555] ? trace_hardirqs_on+0x5b/0x180 [ 1897.875433] do_syscall_64+0x33/0x40 [ 1897.876187] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1897.877230] RIP: 0033:0x7f92d9afeb19 [ 1897.877985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1897.881698] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1897.883236] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1897.884682] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1897.886130] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1897.887570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1897.889014] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:12:17 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0xa867) 07:12:17 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 52) 07:12:17 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1898.155668] FAULT_INJECTION: forcing a failure. [ 1898.155668] name failslab, interval 1, probability 0, space 0, times 0 [ 1898.158031] CPU: 0 PID: 33598 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1898.159424] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1898.161098] Call Trace: [ 1898.161643] dump_stack+0x107/0x167 [ 1898.162385] should_fail.cold+0x5/0xa [ 1898.163155] ? create_object.isra.0+0x3a/0xa20 [ 1898.164078] should_failslab+0x5/0x20 [ 1898.164848] kmem_cache_alloc+0x5b/0x310 [ 1898.165692] create_object.isra.0+0x3a/0xa20 [ 1898.166575] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1898.167597] kmem_cache_alloc+0x159/0x310 [ 1898.168437] vm_area_dup+0x78/0x290 [ 1898.169185] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1898.170129] ? lock_downgrade+0x6d0/0x6d0 [ 1898.170975] ? perf_trace_lock+0xac/0x490 [ 1898.171821] ? copy_page_range+0x24fe/0x3820 [ 1898.172720] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1898.173815] ? __lockdep_reset_lock+0x180/0x180 [ 1898.174767] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1898.175715] ? avc_has_extended_perms+0xf40/0xf40 [ 1898.176704] ? dup_mm+0x631/0x1110 [ 1898.177432] ? vm_area_alloc+0x110/0x110 [ 1898.178277] ? selinux_vm_enough_memory+0x114/0x180 [ 1898.179280] ? selinux_sb_statfs+0x250/0x250 [ 1898.180164] ? up_write+0x191/0x550 [ 1898.180904] ? percpu_counter_add_batch+0x8b/0x140 [ 1898.181932] ? __vm_enough_memory+0x184/0x360 [ 1898.182836] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1898.183878] dup_mm+0x44d/0x1110 [ 1898.184573] ? vm_area_dup+0x290/0x290 [ 1898.185369] ? __raw_spin_lock_init+0x36/0x110 [ 1898.186290] copy_process+0x24e2/0x6740 [ 1898.187087] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1898.188138] ? exc_page_fault+0xca/0x1a0 [ 1898.188965] ? trace_hardirqs_on+0x5b/0x180 [ 1898.189876] ? __cleanup_sighand+0xb0/0xb0 [ 1898.190736] ? _copy_from_user+0xfb/0x1b0 [ 1898.191590] kernel_clone+0xe7/0x980 [ 1898.192363] ? __lockdep_reset_lock+0x180/0x180 [ 1898.193311] ? create_io_thread+0xf0/0xf0 [ 1898.194164] ? ksys_write+0x21a/0x260 [ 1898.194937] ? lock_downgrade+0x6d0/0x6d0 [ 1898.195784] __do_sys_clone3+0x1e5/0x320 [ 1898.196600] ? __do_sys_clone+0x110/0x110 [ 1898.197489] ? rcu_read_lock_any_held+0x75/0xa0 [ 1898.198435] ? vfs_write+0x354/0xa70 [ 1898.199190] ? fput_many+0x2f/0x1a0 [ 1898.199922] ? ksys_write+0x1a9/0x260 [ 1898.200687] ? __ia32_sys_read+0xb0/0xb0 [ 1898.201529] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1898.202585] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1898.203619] ? trace_hardirqs_on+0x5b/0x180 [ 1898.204494] do_syscall_64+0x33/0x40 [ 1898.205249] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1898.206288] RIP: 0033:0x7f92d9afeb19 [ 1898.207046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1898.210763] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1898.212298] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1898.213736] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1898.215180] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1898.216622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1898.218061] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:12:17 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:17 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:17 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20010}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:17 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:17 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0xfdef) 07:12:17 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 53) [ 1898.573937] FAULT_INJECTION: forcing a failure. [ 1898.573937] name failslab, interval 1, probability 0, space 0, times 0 [ 1898.576400] CPU: 0 PID: 34008 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1898.577822] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1898.579497] Call Trace: [ 1898.580040] dump_stack+0x107/0x167 [ 1898.580784] should_fail.cold+0x5/0xa [ 1898.581564] ? anon_vma_clone+0xdc/0x590 [ 1898.582386] should_failslab+0x5/0x20 [ 1898.583153] kmem_cache_alloc+0x5b/0x310 [ 1898.583974] anon_vma_clone+0xdc/0x590 [ 1898.584767] anon_vma_fork+0x82/0x640 [ 1898.585544] ? __vm_enough_memory+0x184/0x360 [ 1898.586452] dup_mm+0x861/0x1110 [ 1898.587153] ? vm_area_dup+0x290/0x290 [ 1898.587945] ? __raw_spin_lock_init+0x36/0x110 [ 1898.588889] copy_process+0x24e2/0x6740 [ 1898.589711] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1898.590761] ? exc_page_fault+0xca/0x1a0 [ 1898.591580] ? trace_hardirqs_on+0x5b/0x180 [ 1898.592464] ? __cleanup_sighand+0xb0/0xb0 [ 1898.593342] ? _copy_from_user+0xfb/0x1b0 [ 1898.594183] kernel_clone+0xe7/0x980 [ 1898.594928] ? __lockdep_reset_lock+0x180/0x180 [ 1898.595869] ? create_io_thread+0xf0/0xf0 [ 1898.596720] ? ksys_write+0x21a/0x260 [ 1898.597497] ? lock_downgrade+0x6d0/0x6d0 [ 1898.598338] __do_sys_clone3+0x1e5/0x320 [ 1898.599154] ? __do_sys_clone+0x110/0x110 [ 1898.600012] ? rcu_read_lock_any_held+0x75/0xa0 [ 1898.600944] ? vfs_write+0x354/0xa70 [ 1898.601704] ? fput_many+0x2f/0x1a0 [ 1898.602437] ? ksys_write+0x1a9/0x260 [ 1898.603202] ? __ia32_sys_read+0xb0/0xb0 [ 1898.604022] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1898.605086] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1898.606124] ? trace_hardirqs_on+0x5b/0x180 [ 1898.606998] do_syscall_64+0x33/0x40 [ 1898.607754] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1898.608784] RIP: 0033:0x7f92d9afeb19 [ 1898.609548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1898.613259] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1898.614792] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1898.616232] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1898.617690] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1898.619124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1898.620550] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:12:32 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 54) 07:12:32 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:32 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:32 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:32 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:32 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20010}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:32 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x4010040b000) [ 1913.394317] FAULT_INJECTION: forcing a failure. [ 1913.394317] name failslab, interval 1, probability 0, space 0, times 0 [ 1913.395573] CPU: 1 PID: 34044 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1913.396308] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1913.397207] Call Trace: [ 1913.397509] dump_stack+0x107/0x167 [ 1913.397900] should_fail.cold+0x5/0xa [ 1913.398309] ? create_object.isra.0+0x3a/0xa20 [ 1913.398803] should_failslab+0x5/0x20 [ 1913.399211] kmem_cache_alloc+0x5b/0x310 [ 1913.399657] create_object.isra.0+0x3a/0xa20 [ 1913.400124] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1913.400673] kmem_cache_alloc+0x159/0x310 [ 1913.401121] anon_vma_clone+0xdc/0x590 [ 1913.401550] anon_vma_fork+0x82/0x640 [ 1913.401958] ? __vm_enough_memory+0x184/0x360 [ 1913.402441] dup_mm+0x861/0x1110 [ 1913.402817] ? vm_area_dup+0x290/0x290 [ 1913.403239] ? __raw_spin_lock_init+0x36/0x110 [ 1913.403753] copy_process+0x24e2/0x6740 [ 1913.404195] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1913.404793] ? exc_page_fault+0xca/0x1a0 [ 1913.405247] ? trace_hardirqs_on+0x5b/0x180 [ 1913.405744] ? __cleanup_sighand+0xb0/0xb0 [ 1913.406230] ? _copy_from_user+0xfb/0x1b0 [ 1913.406699] kernel_clone+0xe7/0x980 [ 1913.407112] ? __lockdep_reset_lock+0x180/0x180 [ 1913.408322] ? create_io_thread+0xf0/0xf0 [ 1913.409362] ? ksys_write+0x21a/0x260 [ 1913.410284] ? lock_downgrade+0x6d0/0x6d0 [ 1913.411296] __do_sys_clone3+0x1e5/0x320 [ 1913.412280] ? __do_sys_clone+0x110/0x110 [ 1913.413337] ? rcu_read_lock_any_held+0x75/0xa0 [ 1913.414350] ? vfs_write+0x354/0xa70 [ 1913.415161] ? fput_many+0x2f/0x1a0 [ 1913.415954] ? ksys_write+0x1a9/0x260 [ 1913.416793] ? __ia32_sys_read+0xb0/0xb0 [ 1913.417692] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1913.418830] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1913.419947] ? trace_hardirqs_on+0x5b/0x180 [ 1913.420888] do_syscall_64+0x33/0x40 [ 1913.421705] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1913.422819] RIP: 0033:0x7f92d9afeb19 [ 1913.423628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1913.427638] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1913.429241] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1913.430793] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1913.432350] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1913.433913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1913.435469] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:12:32 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:32 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0xffffffff000) 07:12:32 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:32 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:32 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:32 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:48 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x101}}, './file0/file0\x00'}) write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file0/file0', [{0x20, '!^'}, {0x20, '-'}, {0x20, '-'}, {0x20, '\\'}], 0xa, "cb3af917eadd41866cc43b2d8ec2ff7762dca70267f1580067ba5373af9a599821600f0e61b250208130b14110434c3a2835cf633e407ce093c4fe81a72df383d2dc59f93840c89bcd0e173c887a214bc03a15ac47183f732234c57c118427ef616d06bd2b8c8cfb914e2ab263846eda2759d5fe7b8fc44caf2d3f0c73a2354555b833cffb1bf85930aa0f56ff1cb16edf29ea90bf4a0ad050beda196f711f963323161d337e6e7bfdaeb324e821d3da2353c9373f4d5b9c71"}, 0xd3) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:12:48 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:48 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:48 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 55) 07:12:48 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20010}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:48 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x101000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1929.101126] FAULT_INJECTION: forcing a failure. [ 1929.101126] name failslab, interval 1, probability 0, space 0, times 0 [ 1929.104245] CPU: 0 PID: 34890 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1929.105917] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1929.107556] Call Trace: [ 1929.108194] dump_stack+0x107/0x167 [ 1929.108930] should_fail.cold+0x5/0xa [ 1929.109855] ? down_write+0xe0/0x160 [ 1929.110603] ? anon_vma_clone+0xdc/0x590 [ 1929.111552] should_failslab+0x5/0x20 [ 1929.112309] kmem_cache_alloc+0x5b/0x310 [ 1929.113122] anon_vma_clone+0xdc/0x590 [ 1929.113937] anon_vma_fork+0x82/0x640 [ 1929.114779] ? __vm_enough_memory+0x184/0x360 [ 1929.115776] dup_mm+0x861/0x1110 [ 1929.116550] ? vm_area_dup+0x290/0x290 [ 1929.117428] ? __raw_spin_lock_init+0x36/0x110 [ 1929.118452] copy_process+0x24e2/0x6740 [ 1929.119338] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1929.120503] ? exc_page_fault+0xca/0x1a0 [ 1929.121412] ? trace_hardirqs_on+0x5b/0x180 [ 1929.122400] ? __cleanup_sighand+0xb0/0xb0 [ 1929.123356] ? _copy_from_user+0xfb/0x1b0 [ 1929.124291] kernel_clone+0xe7/0x980 [ 1929.125117] ? __lockdep_reset_lock+0x180/0x180 [ 1929.126172] ? create_io_thread+0xf0/0xf0 [ 1929.127113] ? ksys_write+0x21a/0x260 [ 1929.127957] ? lock_downgrade+0x6d0/0x6d0 [ 1929.128884] __do_sys_clone3+0x1e5/0x320 [ 1929.129794] ? __do_sys_clone+0x110/0x110 [ 1929.130743] ? rcu_read_lock_any_held+0x75/0xa0 [ 1929.131768] ? vfs_write+0x354/0xa70 [ 1929.132601] ? fput_many+0x2f/0x1a0 [ 1929.133416] ? ksys_write+0x1a9/0x260 [ 1929.134261] ? __ia32_sys_read+0xb0/0xb0 [ 1929.135167] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1929.136327] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1929.137482] ? trace_hardirqs_on+0x5b/0x180 [ 1929.138442] do_syscall_64+0x33/0x40 [ 1929.139275] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1929.140486] RIP: 0033:0x7f92d9afeb19 [ 1929.141315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1929.145400] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1929.147088] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1929.148661] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1929.150263] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1929.151839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1929.153425] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:12:48 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = accept$inet(r0, &(0x7f0000000000)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) sendfile(r1, r2, &(0x7f00000000c0)=0x7f, 0x2) fallocate(r0, 0x3, 0x0, 0x8000) ftruncate(r0, 0x100d6a51) fallocate(r0, 0x0, 0x0, 0xfdef) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x8) fallocate(r3, 0x1, 0xffffffffffffffff, 0x9000) 07:12:48 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:48 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:48 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20010}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:48 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0xf0ff1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:48 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0xb) r1 = accept4$bt_l2cap(r0, &(0x7f00000000c0)={0x1f, 0x0, @none}, &(0x7f0000000140)=0xe, 0x81800) write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="b7f699bef72c872086e07769a0134624d23da2b395794b87a9e7e182fb04d3438f21326bfac0c879979dd9bd158cd54a6dbcfe59a7805e0b8689d38a8e389052fd978da650bb83a968fd4a595cabc1237092d9aa3d818695b50ce0806b2f1dbece3323cff8480b"], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r3 = syz_mount_image$nfs4(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x6, 0x8, &(0x7f00000027c0)=[{&(0x7f0000000300)="f032c3c86431bc177efe3320c4b70459b29c8a6880fcc06309c857f2bb559de7f6f75e7b79c75acbaeae1a3cade0aaefa5d8fd0309f3e6040d9d805889b0e5d6554308944c6f9299be8554d15904f6b68d6f4d7e78ed1917fe2f19a0af9aa01fb7855538183106ac078bdc33b7b92ec5191d4d73c030ddce2ab5ff1a744ee219bf4b46e4", 0x84, 0x6}, {&(0x7f00000003c0)="7d8d0f440e6fb9deca19ce13e982317ccf55dd6ef0cae3e1b870fe5118b699b53d52d210a56e62625d5f0dd2659ea7916ef767629e4e8ef8aa2c0203a9b6d56f5b5ef57c6ce00d96c9ef11eed71ca85e49eafbd91719ce1cdcd7f3cdb3832c38f9431b06673161ea46ba078c0f1da5ff3ef58ba5b5b47104892b27151a085fdf698a763f5cf0ae2ae863e05e2c837217cf7587eb3c875cddd9fd6bd0b146ed62fbaa97a3565e6f06a8c44520cbf315cc994d46a99faf07c741474afaa3cd94adf9c65079c7dce1807aa1de5436c256457c76f33e8f36798131", 0xd9, 0xd2d}, {&(0x7f00000004c0)="adfaa86c3ea49c3b763a69e542f2a101650984f1cae93fc366c34798c60f9515d06fb5b8167b1ad520ef8294159956ae54a8d618e5d30573386860c0a83162f8e86f47dcf25d13b48205c30e8c85b4f52693f00b0c222bb89611b0571461ac715095cdc168ceb3fd3980106dcc09195621038d67ed0e328f2535fbeee600fd7f75259ec3b6fd5fd2f8a1f6124d6a653ddbcfe0c8ffc304d09462598b61fe989d0b04c03bfbd814ba60a56d05f66c10da32c20658ac7542c08c2050f304f179b30972d13c69bd59699bee6f152086cba2e0ae18a0cf39e7ec4bf5a243b329c48091190f0bcb276b2cb32aefd543b8ce8cd56afa", 0xf3, 0x6}, {&(0x7f00000005c0)="34f57709347a4df12bc0e2022d684fb9f266d54ba426dba3f107e8b76bf60625e98422efd34bf10ae181f4d3dd26c77460c7f150c07aeb26b2bd4c63eaad6fdf74d6656e9e4c64e21823965ec01f8b36987a6058cc02189ff49d140a8e19608a91a041443ee2bb40b13d7ecd530986c0c7af7288af8e8b10e013a58c874eee6bdbeaea5a185e6590bd6c3107dd4679a76778be3cde6b704008807c26fcb0ebaf3bac4fa03d75e24a3143265fd1d6353209ebf95965fb3b5993b9e528da1763167bdd6054628d4712cf9d229b863197a8c9ae3d", 0xd3, 0x80000000}, {&(0x7f00000006c0)="b1271c1e1aa80f63a1d109111002e68a4174fb699aa282a9b46a35468b1495f74f8047bb89cf3fcd2e0de9c51925890ec50b8a79454cc4ec911fb6d44d089adf6d", 0x41, 0x80000001}, {&(0x7f0000000740)="7d3a12f8b0acfd8bc2fa3ab51e6f367ceaa011a9c33b1dd7c995080ec1b7a13a42c7083238ee413fe33236ba52dc62dddc9a5c9a553d4a70489a1928c9e94b79fcc00c3341b14604", 0x48, 0x9}, {&(0x7f00000007c0)="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", 0x1000, 0x450b}, {&(0x7f00000017c0)="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", 0x1000, 0x80000001}], 0x40008, &(0x7f0000002880)={[{'!,/'}, {'//\\['}, {':^*'}, {'@$$@-['}, {'\''}], [{@euid_eq={'euid', 0x3d, 0xee00}}, {@fsmagic={'fsmagic', 0x3d, 0x4}}, {@appraise_type}, {@obj_role={'obj_role', 0x3d, '!-/%..{,*\\/'}}, {@smackfsfloor}, {@func={'func', 0x3d, 'MMAP_CHECK'}}, {@smackfsdef={'smackfsdef', 0x3d, ':'}}, {@uid_eq={'uid', 0x3d, 0xee00}}, {@smackfstransmute={'smackfstransmute', 0x3d, '\\'}}, {@seclabel}]}) mknodat$null(r3, &(0x7f0000000280)='./file1\x00', 0x8000, 0x103) clock_gettime(0x0, &(0x7f0000000080)) futimesat(r0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100)) fallocate(r2, 0x3, 0x0, 0x8000) 07:12:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:12:48 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 56) 07:12:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1929.595971] FAULT_INJECTION: forcing a failure. [ 1929.595971] name failslab, interval 1, probability 0, space 0, times 0 [ 1929.598315] CPU: 1 PID: 35522 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1929.599703] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1929.601353] Call Trace: [ 1929.601901] dump_stack+0x107/0x167 [ 1929.602642] should_fail.cold+0x5/0xa [ 1929.603416] ? anon_vma_clone+0xdc/0x590 [ 1929.604243] should_failslab+0x5/0x20 [ 1929.605016] kmem_cache_alloc+0x5b/0x310 [ 1929.605853] anon_vma_clone+0xdc/0x590 [ 1929.606657] anon_vma_fork+0x82/0x640 [ 1929.607430] ? __vm_enough_memory+0x184/0x360 [ 1929.608340] dup_mm+0x861/0x1110 [ 1929.609044] ? vm_area_dup+0x290/0x290 [ 1929.609861] ? __raw_spin_lock_init+0x36/0x110 [ 1929.610792] copy_process+0x24e2/0x6740 [ 1929.611596] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1929.612656] ? exc_page_fault+0xca/0x1a0 [ 1929.613487] ? trace_hardirqs_on+0x5b/0x180 [ 1929.614381] ? __cleanup_sighand+0xb0/0xb0 [ 1929.615246] ? _copy_from_user+0xfb/0x1b0 [ 1929.616091] kernel_clone+0xe7/0x980 [ 1929.616847] ? __lockdep_reset_lock+0x180/0x180 [ 1929.617804] ? create_io_thread+0xf0/0xf0 [ 1929.618661] ? ksys_write+0x21a/0x260 [ 1929.619427] ? lock_downgrade+0x6d0/0x6d0 [ 1929.620271] __do_sys_clone3+0x1e5/0x320 [ 1929.621090] ? __do_sys_clone+0x110/0x110 [ 1929.621954] ? rcu_read_lock_any_held+0x75/0xa0 [ 1929.622884] ? vfs_write+0x354/0xa70 [ 1929.623640] ? fput_many+0x2f/0x1a0 [ 1929.624375] ? ksys_write+0x1a9/0x260 [ 1929.625139] ? __ia32_sys_read+0xb0/0xb0 [ 1929.625983] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1929.627046] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1929.628089] ? trace_hardirqs_on+0x5b/0x180 [ 1929.628967] do_syscall_64+0x33/0x40 [ 1929.629727] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1929.630769] RIP: 0033:0x7f92d9afeb19 [ 1929.631522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1929.635233] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1929.636771] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1929.638218] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1929.639653] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1929.641084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1929.642530] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:12:49 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) sendmsg$NFT_MSG_GETGEN(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0x5}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20004810}, 0x840) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) 07:13:10 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:10 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:10 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 57) 07:13:10 executing program 5: ioctl$F2FS_IOC_GET_PIN_FILE(0xffffffffffffffff, 0x8004f50e, &(0x7f0000000000)) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x21) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) r3 = syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x74, r3, 0x0, 0x70bd2d, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x18, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @dev={0xfe, 0x80, '\x00', 0xd}}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xfe000000}, @IPVS_CMD_ATTR_SERVICE={0x30, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2b}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x10}}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0xc}, @IPVS_SVC_ATTR_NETMASK={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3f}]}, 0x74}, 0x1, 0x0, 0x0, 0x40800}, 0x20044041) sendmsg$IPVS_CMD_GET_CONFIG(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140), 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x70, r3, 0x800, 0x70bd29, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x5c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x8000}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x1f}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x7}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @empty}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x3}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_macvtap\x00'}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x11}, 0x8800) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[@ANYRESDEC=r1], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r4, 0xf93d1b330a22b506, 0x81, 0x8002) 07:13:10 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:10 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:10 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x101000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:10 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1951.128099] FAULT_INJECTION: forcing a failure. [ 1951.128099] name failslab, interval 1, probability 0, space 0, times 0 [ 1951.130855] CPU: 0 PID: 35943 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1951.132505] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1951.134505] Call Trace: [ 1951.135073] dump_stack+0x107/0x167 [ 1951.135822] should_fail.cold+0x5/0xa [ 1951.136595] ? anon_vma_clone+0xdc/0x590 [ 1951.137424] should_failslab+0x5/0x20 [ 1951.138202] kmem_cache_alloc+0x5b/0x310 [ 1951.139040] anon_vma_clone+0xdc/0x590 [ 1951.139841] anon_vma_fork+0x82/0x640 [ 1951.140628] ? __vm_enough_memory+0x184/0x360 [ 1951.141537] dup_mm+0x861/0x1110 [ 1951.142259] ? vm_area_dup+0x290/0x290 [ 1951.143054] ? __raw_spin_lock_init+0x36/0x110 [ 1951.144003] copy_process+0x24e2/0x6740 [ 1951.144808] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1951.145886] ? exc_page_fault+0xca/0x1a0 [ 1951.146702] ? trace_hardirqs_on+0x5b/0x180 [ 1951.147593] ? __cleanup_sighand+0xb0/0xb0 [ 1951.148462] ? _copy_from_user+0xfb/0x1b0 [ 1951.149308] kernel_clone+0xe7/0x980 [ 1951.150066] ? __lockdep_reset_lock+0x180/0x180 [ 1951.151006] ? create_io_thread+0xf0/0xf0 [ 1951.151869] ? ksys_write+0x21a/0x260 [ 1951.152630] ? lock_downgrade+0x6d0/0x6d0 [ 1951.153469] __do_sys_clone3+0x1e5/0x320 [ 1951.154298] ? __do_sys_clone+0x110/0x110 [ 1951.155174] ? rcu_read_lock_any_held+0x75/0xa0 [ 1951.156113] ? vfs_write+0x354/0xa70 [ 1951.156879] ? fput_many+0x2f/0x1a0 [ 1951.157623] ? ksys_write+0x1a9/0x260 [ 1951.158405] ? __ia32_sys_read+0xb0/0xb0 [ 1951.159244] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1951.160310] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1951.161361] ? trace_hardirqs_on+0x5b/0x180 [ 1951.162254] do_syscall_64+0x33/0x40 [ 1951.163018] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1951.164067] RIP: 0033:0x7f92d9afeb19 [ 1951.164836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1951.168578] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1951.170131] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1951.171578] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1951.173019] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1951.174476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1951.175931] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:13:10 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0xf0ff1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:10 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:10 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:10 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x101000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:10 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="73190a04ab09d6d18ae61e", @ANYRES16=r0], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:13:10 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20010}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:10 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 58) 07:13:10 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1951.671609] FAULT_INJECTION: forcing a failure. [ 1951.671609] name failslab, interval 1, probability 0, space 0, times 0 [ 1951.673969] CPU: 1 PID: 36423 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1951.675373] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1951.677080] Call Trace: [ 1951.677626] dump_stack+0x107/0x167 [ 1951.678389] should_fail.cold+0x5/0xa [ 1951.679174] ? ___slab_alloc+0x155/0x700 [ 1951.680004] ? create_object.isra.0+0x3a/0xa20 [ 1951.680947] should_failslab+0x5/0x20 [ 1951.681740] kmem_cache_alloc+0x5b/0x310 [ 1951.682571] create_object.isra.0+0x3a/0xa20 [ 1951.683464] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1951.684495] kmem_cache_alloc+0x159/0x310 [ 1951.685351] anon_vma_clone+0xdc/0x590 [ 1951.686161] anon_vma_fork+0x82/0x640 [ 1951.686934] ? __vm_enough_memory+0x184/0x360 [ 1951.687852] dup_mm+0x861/0x1110 [ 1951.688560] ? vm_area_dup+0x290/0x290 [ 1951.689362] ? __raw_spin_lock_init+0x36/0x110 [ 1951.690307] copy_process+0x24e2/0x6740 [ 1951.691116] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1951.692182] ? exc_page_fault+0xca/0x1a0 [ 1951.693005] ? trace_hardirqs_on+0x5b/0x180 [ 1951.693925] ? __cleanup_sighand+0xb0/0xb0 [ 1951.694797] ? _copy_from_user+0xfb/0x1b0 [ 1951.695649] kernel_clone+0xe7/0x980 [ 1951.696404] ? __lockdep_reset_lock+0x180/0x180 [ 1951.697350] ? create_io_thread+0xf0/0xf0 [ 1951.698217] ? ksys_write+0x21a/0x260 [ 1951.698989] ? lock_downgrade+0x6d0/0x6d0 [ 1951.699838] __do_sys_clone3+0x1e5/0x320 [ 1951.700665] ? __do_sys_clone+0x110/0x110 [ 1951.701532] ? rcu_read_lock_any_held+0x75/0xa0 [ 1951.702478] ? vfs_write+0x354/0xa70 [ 1951.703243] ? fput_many+0x2f/0x1a0 [ 1951.703982] ? ksys_write+0x1a9/0x260 [ 1951.704751] ? __ia32_sys_read+0xb0/0xb0 [ 1951.705579] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1951.706653] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1951.707705] ? trace_hardirqs_on+0x5b/0x180 [ 1951.708583] do_syscall_64+0x33/0x40 [ 1951.709347] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1951.710388] RIP: 0033:0x7f92d9afeb19 [ 1951.711152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1951.714870] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1951.716416] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1951.717868] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1951.719308] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1951.720759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1951.722210] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:13:11 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x10000200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:11 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:11 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0xb, 0x5, 0x8000) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) dup(r1) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x107142, 0x0) fallocate(r2, 0x63, 0x0, 0x66f3) creat(&(0x7f0000000000)='./file0\x00', 0x20) ioctl$AUTOFS_IOC_EXPIRE(r2, 0x810c9365, &(0x7f0000000100)={{0x80000001, 0x5}, 0x100, './file0\x00'}) 07:13:11 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0xf0ff1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:29 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:29 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x101000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:29 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:29 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 59) 07:13:29 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:29 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:29 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000001300)) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x8ccc, 0xffffffff) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e23}, 0x6e) listen(r2, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r2, {r0}}, './file0\x00'}) connect$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_SNAP_CREATE(r2, 0x50009401, &(0x7f0000000300)={{r0}, "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"}) 07:13:29 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1969.789722] FAULT_INJECTION: forcing a failure. [ 1969.789722] name failslab, interval 1, probability 0, space 0, times 0 [ 1969.791940] CPU: 0 PID: 37123 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1969.793256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1969.794860] Call Trace: [ 1969.795369] dump_stack+0x107/0x167 [ 1969.796067] should_fail.cold+0x5/0xa [ 1969.796797] ? anon_vma_fork+0xf1/0x640 [ 1969.797555] should_failslab+0x5/0x20 [ 1969.798292] kmem_cache_alloc+0x5b/0x310 [ 1969.799090] anon_vma_fork+0xf1/0x640 [ 1969.799819] ? __vm_enough_memory+0x184/0x360 [ 1969.800675] dup_mm+0x861/0x1110 [ 1969.801334] ? vm_area_dup+0x290/0x290 [ 1969.802098] ? __raw_spin_lock_init+0x36/0x110 [ 1969.802961] copy_process+0x24e2/0x6740 [ 1969.803716] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1969.804715] ? exc_page_fault+0xca/0x1a0 [ 1969.805483] ? trace_hardirqs_on+0x5b/0x180 [ 1969.806324] ? __cleanup_sighand+0xb0/0xb0 [ 1969.807138] ? _copy_from_user+0xfb/0x1b0 [ 1969.807940] kernel_clone+0xe7/0x980 [ 1969.808649] ? __lockdep_reset_lock+0x180/0x180 [ 1969.809519] ? create_io_thread+0xf0/0xf0 [ 1969.810312] ? ksys_write+0x21a/0x260 [ 1969.811018] ? lock_downgrade+0x6d0/0x6d0 [ 1969.811787] __do_sys_clone3+0x1e5/0x320 [ 1969.812537] ? __do_sys_clone+0x110/0x110 [ 1969.813330] ? rcu_read_lock_any_held+0x75/0xa0 [ 1969.814203] ? vfs_write+0x354/0xa70 [ 1969.814899] ? fput_many+0x2f/0x1a0 [ 1969.815580] ? ksys_write+0x1a9/0x260 [ 1969.816285] ? __ia32_sys_read+0xb0/0xb0 [ 1969.817059] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1969.818042] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1969.819009] ? trace_hardirqs_on+0x5b/0x180 [ 1969.819806] do_syscall_64+0x33/0x40 [ 1969.820514] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1969.821451] RIP: 0033:0x7f92d9afeb19 [ 1969.822168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1969.825535] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1969.826978] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1969.828281] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1969.829580] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1969.830895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1969.832205] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:13:29 executing program 5: r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000000, 0x4000010, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0xae3d, 0x0, 0x1000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0xa63fd6a5717620d2, 0x0, {0x0, r5}}, 0x0) syz_io_uring_submit(r0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x5, 0x4004, @fd_index=0x3, 0x3, 0x0, 0x0, 0x12, 0x1, {0x3, r5}}, 0x8) r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r6, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r6, 0x3, 0x0, 0x8000) fallocate(r6, 0x0, 0x0, 0xfdef) r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) ioctl$FITRIM(r6, 0xc0185879, &(0x7f0000000140)={0x4, 0x7b0f}) fallocate(r7, 0x3, 0x0, 0x8000) 07:13:29 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 60) 07:13:29 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0xf0ff1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:29 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x10000200}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1970.075943] FAULT_INJECTION: forcing a failure. [ 1970.075943] name failslab, interval 1, probability 0, space 0, times 0 [ 1970.077793] CPU: 0 PID: 37638 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1970.078880] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1970.080159] Call Trace: [ 1970.080614] dump_stack+0x107/0x167 [ 1970.081202] should_fail.cold+0x5/0xa [ 1970.081809] ? create_object.isra.0+0x3a/0xa20 [ 1970.082559] should_failslab+0x5/0x20 [ 1970.083160] kmem_cache_alloc+0x5b/0x310 [ 1970.083812] create_object.isra.0+0x3a/0xa20 [ 1970.084511] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1970.085323] kmem_cache_alloc+0x159/0x310 [ 1970.085989] anon_vma_fork+0xf1/0x640 [ 1970.086583] ? __vm_enough_memory+0x184/0x360 [ 1970.087293] dup_mm+0x861/0x1110 [ 1970.087848] ? vm_area_dup+0x290/0x290 [ 1970.088461] ? __raw_spin_lock_init+0x36/0x110 [ 1970.089196] copy_process+0x24e2/0x6740 [ 1970.089872] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1970.090755] ? exc_page_fault+0xca/0x1a0 [ 1970.091420] ? trace_hardirqs_on+0x5b/0x180 [ 1970.092115] ? __cleanup_sighand+0xb0/0xb0 [ 1970.092789] ? _copy_from_user+0xfb/0x1b0 [ 1970.093433] kernel_clone+0xe7/0x980 [ 1970.094032] ? __lockdep_reset_lock+0x180/0x180 [ 1970.094750] ? create_io_thread+0xf0/0xf0 [ 1970.095415] ? ksys_write+0x21a/0x260 [ 1970.095996] ? lock_downgrade+0x6d0/0x6d0 [ 1970.096658] __do_sys_clone3+0x1e5/0x320 [ 1970.097301] ? __do_sys_clone+0x110/0x110 [ 1970.097985] ? rcu_read_lock_any_held+0x75/0xa0 [ 1970.098713] ? vfs_write+0x354/0xa70 [ 1970.099286] ? fput_many+0x2f/0x1a0 [ 1970.099850] ? ksys_write+0x1a9/0x260 [ 1970.100437] ? __ia32_sys_read+0xb0/0xb0 [ 1970.101100] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1970.101913] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1970.102729] ? trace_hardirqs_on+0x5b/0x180 [ 1970.103406] do_syscall_64+0x33/0x40 [ 1970.103976] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1970.104768] RIP: 0033:0x7f92d9afeb19 [ 1970.105344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1970.108181] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1970.109346] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1970.110428] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1970.111515] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1970.112613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1970.113774] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:13:44 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:13:44 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:44 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:44 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:44 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:44 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:44 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 61) 07:13:44 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) creat(&(0x7f0000000000)='./file1\x00', 0x1) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = socket$inet_icmp(0x2, 0x2, 0x1) fallocate(r1, 0x3, 0xffffffffffffffff, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) [ 1985.701282] FAULT_INJECTION: forcing a failure. [ 1985.701282] name failslab, interval 1, probability 0, space 0, times 0 [ 1985.703643] CPU: 0 PID: 37865 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1985.705044] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1985.707168] Call Trace: [ 1985.707811] dump_stack+0x107/0x167 [ 1985.708685] should_fail.cold+0x5/0xa [ 1985.709598] ? anon_vma_fork+0x1ff/0x640 [ 1985.710593] should_failslab+0x5/0x20 [ 1985.711383] kmem_cache_alloc+0x5b/0x310 [ 1985.712206] anon_vma_fork+0x1ff/0x640 [ 1985.712994] dup_mm+0x861/0x1110 [ 1985.713689] ? vm_area_dup+0x290/0x290 [ 1985.714489] ? __raw_spin_lock_init+0x36/0x110 [ 1985.715415] copy_process+0x24e2/0x6740 [ 1985.716218] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1985.717271] ? exc_page_fault+0xca/0x1a0 [ 1985.718111] ? trace_hardirqs_on+0x5b/0x180 [ 1985.719002] ? __cleanup_sighand+0xb0/0xb0 [ 1985.719869] ? _copy_from_user+0xfb/0x1b0 [ 1985.720712] kernel_clone+0xe7/0x980 [ 1985.721466] ? __lockdep_reset_lock+0x180/0x180 [ 1985.722412] ? create_io_thread+0xf0/0xf0 [ 1985.723264] ? ksys_write+0x21a/0x260 [ 1985.724031] ? lock_downgrade+0x6d0/0x6d0 [ 1985.724869] __do_sys_clone3+0x1e5/0x320 [ 1985.725686] ? __do_sys_clone+0x110/0x110 [ 1985.726552] ? rcu_read_lock_any_held+0x75/0xa0 [ 1985.727484] ? vfs_write+0x354/0xa70 [ 1985.728239] ? fput_many+0x2f/0x1a0 [ 1985.728972] ? ksys_write+0x1a9/0x260 [ 1985.729741] ? __ia32_sys_read+0xb0/0xb0 [ 1985.730578] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1985.731634] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1985.732672] ? trace_hardirqs_on+0x5b/0x180 [ 1985.733545] do_syscall_64+0x33/0x40 [ 1985.734309] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1985.735350] RIP: 0033:0x7f92d9afeb19 [ 1985.736103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1985.739828] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1985.741368] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1985.742811] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1985.744249] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1985.745688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1985.747132] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:13:45 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:13:45 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:45 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:45 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:13:45 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 62) 07:13:45 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) [ 1985.932140] FAULT_INJECTION: forcing a failure. [ 1985.932140] name failslab, interval 1, probability 0, space 0, times 0 [ 1985.934652] CPU: 0 PID: 38307 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 1985.936059] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1985.937739] Call Trace: [ 1985.938287] dump_stack+0x107/0x167 [ 1985.939028] should_fail.cold+0x5/0xa [ 1985.939804] ? create_object.isra.0+0x3a/0xa20 [ 1985.940736] should_failslab+0x5/0x20 [ 1985.941498] kmem_cache_alloc+0x5b/0x310 [ 1985.942350] create_object.isra.0+0x3a/0xa20 [ 1985.943240] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1985.944279] kmem_cache_alloc+0x159/0x310 [ 1985.945130] anon_vma_fork+0x1ff/0x640 [ 1985.945929] dup_mm+0x861/0x1110 [ 1985.946645] ? vm_area_dup+0x290/0x290 [ 1985.947445] ? __raw_spin_lock_init+0x36/0x110 [ 1985.948378] copy_process+0x24e2/0x6740 [ 1985.949189] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1985.950263] ? exc_page_fault+0xca/0x1a0 [ 1985.951089] ? trace_hardirqs_on+0x5b/0x180 [ 1985.951985] ? __cleanup_sighand+0xb0/0xb0 [ 1985.952857] ? _copy_from_user+0xfb/0x1b0 [ 1985.953709] kernel_clone+0xe7/0x980 [ 1985.954492] ? __lockdep_reset_lock+0x180/0x180 [ 1985.955437] ? create_io_thread+0xf0/0xf0 [ 1985.956295] ? ksys_write+0x21a/0x260 [ 1985.957070] ? lock_downgrade+0x6d0/0x6d0 [ 1985.957919] __do_sys_clone3+0x1e5/0x320 [ 1985.958751] ? __do_sys_clone+0x110/0x110 [ 1985.959616] ? rcu_read_lock_any_held+0x75/0xa0 [ 1985.960556] ? vfs_write+0x354/0xa70 [ 1985.961315] ? fput_many+0x2f/0x1a0 [ 1985.962070] ? ksys_write+0x1a9/0x260 [ 1985.962864] ? __ia32_sys_read+0xb0/0xb0 [ 1985.963704] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1985.964774] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1985.965824] ? trace_hardirqs_on+0x5b/0x180 [ 1985.966714] do_syscall_64+0x33/0x40 [ 1985.967473] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1985.968512] RIP: 0033:0x7f92d9afeb19 [ 1985.969255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1985.972966] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1985.974530] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 1985.975961] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 1985.977395] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1985.978838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1985.980265] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:13:45 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fsmount(r0, 0x0, 0x8) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x1, 0x0, 0x8000) fallocate(r0, 0x2a, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:13:45 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x10000200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:01 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(0x0, 0x0) 07:14:01 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:01 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 63) 07:14:01 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x0, '\x00', [{0x3ff, 0x45, 0x3fff, 0x7120, 0x2, 0x9}, {0x3, 0x66, 0x4, 0x6, 0x3, 0x7842b234}], ['\x00', '\x00']}) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000000, 0x2010, r0, 0x8000000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:14:01 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x10000200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:01 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x101000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:01 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:01 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2001.954638] FAULT_INJECTION: forcing a failure. [ 2001.954638] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2001.957189] CPU: 0 PID: 39012 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2001.958630] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2001.960333] Call Trace: [ 2001.960884] dump_stack+0x107/0x167 [ 2001.961646] should_fail.cold+0x5/0xa [ 2001.962450] __alloc_pages_nodemask+0x182/0x600 [ 2001.963414] ? __lockdep_reset_lock+0x180/0x180 [ 2001.964384] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2001.965622] ? copy_page_range+0x28f6/0x3820 [ 2001.966541] alloc_pages_current+0x187/0x280 [ 2001.967444] get_zeroed_page+0x14/0xb0 [ 2001.968237] __pud_alloc+0x33/0x270 [ 2001.968984] copy_page_range+0x2cb6/0x3820 [ 2001.969846] ? perf_trace_lock+0xac/0x490 [ 2001.970701] ? lock_chain_count+0x20/0x20 [ 2001.971571] ? lock_downgrade+0x6d0/0x6d0 [ 2001.972523] ? up_write+0x191/0x550 [ 2001.973323] ? vm_iomap_memory+0x190/0x190 [ 2001.974186] ? downgrade_write+0x3a0/0x3a0 [ 2001.975087] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2001.976207] ? __vma_link_rb+0x540/0x700 [ 2001.977050] dup_mm+0x8b9/0x1110 [ 2001.977762] ? vm_area_dup+0x290/0x290 [ 2001.978572] ? __raw_spin_lock_init+0x36/0x110 [ 2001.979512] copy_process+0x24e2/0x6740 [ 2001.980324] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2001.981395] ? exc_page_fault+0xca/0x1a0 [ 2001.982224] ? trace_hardirqs_on+0x5b/0x180 [ 2001.983136] ? __cleanup_sighand+0xb0/0xb0 [ 2001.984012] ? _copy_from_user+0xfb/0x1b0 [ 2001.984879] kernel_clone+0xe7/0x980 [ 2001.985642] ? __lockdep_reset_lock+0x180/0x180 [ 2001.986595] ? create_io_thread+0xf0/0xf0 [ 2001.987454] ? ksys_write+0x21a/0x260 [ 2001.988230] ? lock_downgrade+0x6d0/0x6d0 [ 2001.989076] __do_sys_clone3+0x1e5/0x320 [ 2001.989901] ? __do_sys_clone+0x110/0x110 [ 2001.990781] ? rcu_read_lock_any_held+0x75/0xa0 [ 2001.991723] ? vfs_write+0x354/0xa70 [ 2001.992483] ? fput_many+0x2f/0x1a0 [ 2001.993227] ? ksys_write+0x1a9/0x260 [ 2001.994001] ? __ia32_sys_read+0xb0/0xb0 [ 2001.994834] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2001.995891] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2001.996930] ? trace_hardirqs_on+0x5b/0x180 [ 2001.997799] do_syscall_64+0x33/0x40 [ 2001.998554] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2001.999585] RIP: 0033:0x7f92d9afeb19 [ 2002.000342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2002.004044] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2002.005568] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2002.007002] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2002.008425] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2002.009851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2002.011323] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:14:01 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) sendmsg$IPSET_CMD_GET_BYNAME(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x6c, 0xe, 0x6, 0x301, 0x0, 0x0, {0xc, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x6c}, 0x1, 0x0, 0x0, 0x8000}, 0x20008010) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:14:01 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:01 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 64) [ 2002.318881] FAULT_INJECTION: forcing a failure. [ 2002.318881] name failslab, interval 1, probability 0, space 0, times 0 [ 2002.321235] CPU: 0 PID: 39438 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2002.322670] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2002.324360] Call Trace: [ 2002.324916] dump_stack+0x107/0x167 [ 2002.325666] should_fail.cold+0x5/0xa [ 2002.326475] ? anon_vma_fork+0x1ff/0x640 [ 2002.327317] should_failslab+0x5/0x20 [ 2002.328102] kmem_cache_alloc+0x5b/0x310 [ 2002.328934] anon_vma_fork+0x1ff/0x640 [ 2002.329749] dup_mm+0x861/0x1110 [ 2002.330470] ? vm_area_dup+0x290/0x290 [ 2002.331280] ? __raw_spin_lock_init+0x36/0x110 [ 2002.332219] copy_process+0x24e2/0x6740 [ 2002.333039] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2002.334110] ? exc_page_fault+0xca/0x1a0 [ 2002.334947] ? trace_hardirqs_on+0x5b/0x180 [ 2002.335852] ? __cleanup_sighand+0xb0/0xb0 [ 2002.336718] ? _copy_from_user+0xfb/0x1b0 [ 2002.337574] kernel_clone+0xe7/0x980 [ 2002.338342] ? __lockdep_reset_lock+0x180/0x180 [ 2002.339289] ? create_io_thread+0xf0/0xf0 [ 2002.340161] ? ksys_write+0x21a/0x260 [ 2002.340942] ? lock_downgrade+0x6d0/0x6d0 [ 2002.341797] __do_sys_clone3+0x1e5/0x320 [ 2002.342662] ? __do_sys_clone+0x110/0x110 [ 2002.343534] ? rcu_read_lock_any_held+0x75/0xa0 [ 2002.344486] ? vfs_write+0x354/0xa70 [ 2002.345259] ? fput_many+0x2f/0x1a0 [ 2002.346009] ? ksys_write+0x1a9/0x260 [ 2002.346802] ? __ia32_sys_read+0xb0/0xb0 [ 2002.347642] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2002.348709] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2002.349767] ? trace_hardirqs_on+0x5b/0x180 [ 2002.350667] do_syscall_64+0x33/0x40 [ 2002.351424] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2002.352468] RIP: 0033:0x7f92d9afeb19 [ 2002.353238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2002.357013] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2002.358587] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2002.360058] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2002.361528] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2002.362988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2002.364427] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:14:01 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:01 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0xf0ff1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:01 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:01 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:01 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r2 = open_tree(r1, &(0x7f0000000000)='./file0\x00', 0x801) write(r2, &(0x7f0000000080)="f82f03af624a7e076b88180b8a8e1ac98ae62b2cf511e1641bbfe222d4c48d0826933ef23ad196fb2f1987ef2d94db0eff8f9ab3d867532680f784b92b5f3d4877e52c317e0719d6d6fcc2b53bdeb7209a8a86744f2e97f6730417383a2995b58c36f1ac081a481476", 0x69) fallocate(r1, 0x3, 0x0, 0x8000) 07:14:01 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x0, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:17 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:17 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:17 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:17 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 65) 07:14:17 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) r2 = socket$unix(0x1, 0x1, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) read(r2, &(0x7f0000000080)=""/144, 0x90) 07:14:17 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:17 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58) [ 2017.972297] FAULT_INJECTION: forcing a failure. [ 2017.972297] name failslab, interval 1, probability 0, space 0, times 0 [ 2017.975090] CPU: 0 PID: 39974 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2017.976587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2017.978375] Call Trace: [ 2017.978965] dump_stack+0x107/0x167 [ 2017.979762] should_fail.cold+0x5/0xa [ 2017.980588] ? __pmd_alloc+0x94/0x5e0 [ 2017.981414] should_failslab+0x5/0x20 [ 2017.982236] kmem_cache_alloc+0x5b/0x310 [ 2017.983147] __pmd_alloc+0x94/0x5e0 [ 2017.983942] copy_page_range+0x2bed/0x3820 [ 2017.984856] ? perf_trace_lock+0xac/0x490 [ 2017.985748] ? lock_chain_count+0x20/0x20 [ 2017.986705] ? up_write+0x191/0x550 [ 2017.987491] ? vm_iomap_memory+0x190/0x190 [ 2017.988405] ? downgrade_write+0x3a0/0x3a0 [ 2017.989322] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2017.990519] ? __vma_link_rb+0x540/0x700 [ 2017.991410] dup_mm+0x8b9/0x1110 [ 2017.992162] ? vm_area_dup+0x290/0x290 [ 2017.993001] ? __raw_spin_lock_init+0x36/0x110 [ 2017.993998] copy_process+0x24e2/0x6740 [ 2017.994856] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2017.995993] ? exc_page_fault+0xca/0x1a0 [ 2017.996860] ? trace_hardirqs_on+0x5b/0x180 [ 2017.997816] ? __cleanup_sighand+0xb0/0xb0 [ 2017.998736] ? _copy_from_user+0xfb/0x1b0 [ 2017.999668] kernel_clone+0xe7/0x980 [ 2018.000460] ? __lockdep_reset_lock+0x180/0x180 [ 2018.001475] ? create_io_thread+0xf0/0xf0 [ 2018.002379] ? ksys_write+0x21a/0x260 [ 2018.003202] ? lock_downgrade+0x6d0/0x6d0 [ 2018.004109] __do_sys_clone3+0x1e5/0x320 [ 2018.004973] ? __do_sys_clone+0x110/0x110 [ 2018.005910] ? rcu_read_lock_any_held+0x75/0xa0 [ 2018.006900] ? vfs_write+0x354/0xa70 [ 2018.007714] ? fput_many+0x2f/0x1a0 [ 2018.008486] ? ksys_write+0x1a9/0x260 [ 2018.009313] ? __ia32_sys_read+0xb0/0xb0 [ 2018.010179] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2018.011317] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2018.012436] ? trace_hardirqs_on+0x5b/0x180 [ 2018.013360] do_syscall_64+0x33/0x40 [ 2018.014168] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2018.015263] RIP: 0033:0x7f92d9afeb19 [ 2018.016072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2018.019949] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2018.021590] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2018.023112] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2018.024649] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2018.026191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2018.027743] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:14:17 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x2a) fallocate(r1, 0x3, 0x0, 0x8000) 07:14:17 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 66) 07:14:17 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2018.272906] FAULT_INJECTION: forcing a failure. [ 2018.272906] name failslab, interval 1, probability 0, space 0, times 0 [ 2018.275368] CPU: 1 PID: 40384 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2018.276785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2018.278466] Call Trace: [ 2018.279039] dump_stack+0x107/0x167 [ 2018.279822] should_fail.cold+0x5/0xa [ 2018.280671] ? create_object.isra.0+0x3a/0xa20 [ 2018.281608] should_failslab+0x5/0x20 [ 2018.282388] kmem_cache_alloc+0x5b/0x310 [ 2018.283247] create_object.isra.0+0x3a/0xa20 [ 2018.284144] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2018.285186] kmem_cache_alloc+0x159/0x310 [ 2018.286047] __pmd_alloc+0x94/0x5e0 [ 2018.286813] copy_page_range+0x2bed/0x3820 [ 2018.287691] ? perf_trace_lock+0xac/0x490 [ 2018.288545] ? lock_chain_count+0x20/0x20 [ 2018.289436] ? up_write+0x191/0x550 [ 2018.290170] ? vm_iomap_memory+0x190/0x190 [ 2018.291049] ? downgrade_write+0x3a0/0x3a0 [ 2018.291930] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2018.293038] ? __vma_link_rb+0x540/0x700 [ 2018.293874] dup_mm+0x8b9/0x1110 [ 2018.294595] ? vm_area_dup+0x290/0x290 [ 2018.295407] ? __raw_spin_lock_init+0x36/0x110 [ 2018.296355] copy_process+0x24e2/0x6740 [ 2018.297154] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2018.298246] ? exc_page_fault+0xca/0x1a0 [ 2018.299090] ? trace_hardirqs_on+0x5b/0x180 [ 2018.300000] ? __cleanup_sighand+0xb0/0xb0 [ 2018.300873] ? _copy_from_user+0xfb/0x1b0 [ 2018.301725] kernel_clone+0xe7/0x980 [ 2018.302482] ? __lockdep_reset_lock+0x180/0x180 [ 2018.303437] ? create_io_thread+0xf0/0xf0 [ 2018.304309] ? ksys_write+0x21a/0x260 [ 2018.305075] ? lock_downgrade+0x6d0/0x6d0 [ 2018.305928] __do_sys_clone3+0x1e5/0x320 [ 2018.306780] ? __do_sys_clone+0x110/0x110 [ 2018.307646] ? rcu_read_lock_any_held+0x75/0xa0 [ 2018.308611] ? vfs_write+0x354/0xa70 [ 2018.309377] ? fput_many+0x2f/0x1a0 [ 2018.310116] ? ksys_write+0x1a9/0x260 [ 2018.310913] ? __ia32_sys_read+0xb0/0xb0 [ 2018.311764] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2018.312842] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2018.313898] ? trace_hardirqs_on+0x5b/0x180 [ 2018.314799] do_syscall_64+0x33/0x40 [ 2018.315572] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2018.316627] RIP: 0033:0x7f92d9afeb19 [ 2018.317407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2018.321129] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2018.322720] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2018.324158] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2018.325611] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2018.327072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2018.328517] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:14:17 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:17 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58) 07:14:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:17 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58) 07:14:17 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:34 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58) 07:14:34 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x10000200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:34 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58) 07:14:34 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:34 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 67) 07:14:34 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:34 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:34 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x7}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1, {0xfffffffe}}, './file0\x00'}) fcntl$dupfd(r2, 0x0, r3) dup2(r1, r0) fallocate(r0, 0x0, 0x0, 0xfdef) r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r4, 0x3, 0x0, 0x8000) [ 2035.206310] FAULT_INJECTION: forcing a failure. [ 2035.206310] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2035.208866] CPU: 1 PID: 41029 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2035.210278] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2035.211974] Call Trace: [ 2035.212519] dump_stack+0x107/0x167 [ 2035.213270] should_fail.cold+0x5/0xa [ 2035.214061] __alloc_pages_nodemask+0x182/0x600 [ 2035.215031] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2035.216253] ? find_held_lock+0x2c/0x110 [ 2035.217092] ? __pmd_alloc+0x2db/0x5e0 [ 2035.217885] ? lock_downgrade+0x6d0/0x6d0 [ 2035.218766] ? do_raw_spin_lock+0x121/0x260 [ 2035.219654] alloc_pages_current+0x187/0x280 [ 2035.220563] pte_alloc_one+0x16/0x1a0 [ 2035.221339] __pte_alloc+0x1d/0x330 [ 2035.222095] copy_page_range+0x1b77/0x3820 [ 2035.222951] ? perf_trace_lock+0xac/0x490 [ 2035.223805] ? lock_chain_count+0x20/0x20 [ 2035.224719] ? up_write+0x191/0x550 [ 2035.225462] ? vm_iomap_memory+0x190/0x190 [ 2035.226328] ? downgrade_write+0x3a0/0x3a0 [ 2035.227207] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2035.228329] ? __vma_link_rb+0x540/0x700 [ 2035.229167] dup_mm+0x8b9/0x1110 [ 2035.229866] ? vm_area_dup+0x290/0x290 [ 2035.230674] ? __raw_spin_lock_init+0x36/0x110 [ 2035.231611] copy_process+0x24e2/0x6740 [ 2035.232433] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2035.233487] ? exc_page_fault+0xca/0x1a0 [ 2035.234336] ? trace_hardirqs_on+0x5b/0x180 [ 2035.235248] ? __cleanup_sighand+0xb0/0xb0 [ 2035.236121] ? _copy_from_user+0xfb/0x1b0 [ 2035.236973] kernel_clone+0xe7/0x980 [ 2035.237731] ? __lockdep_reset_lock+0x180/0x180 [ 2035.238683] ? create_io_thread+0xf0/0xf0 [ 2035.239563] ? ksys_write+0x21a/0x260 [ 2035.240339] ? lock_downgrade+0x6d0/0x6d0 [ 2035.241189] __do_sys_clone3+0x1e5/0x320 [ 2035.242014] ? __do_sys_clone+0x110/0x110 [ 2035.242893] ? rcu_read_lock_any_held+0x75/0xa0 [ 2035.243834] ? vfs_write+0x354/0xa70 [ 2035.244601] ? fput_many+0x2f/0x1a0 [ 2035.245341] ? ksys_write+0x1a9/0x260 [ 2035.246117] ? __ia32_sys_read+0xb0/0xb0 [ 2035.246968] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2035.248038] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2035.249085] ? trace_hardirqs_on+0x5b/0x180 [ 2035.249967] do_syscall_64+0x33/0x40 [ 2035.250734] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2035.251773] RIP: 0033:0x7f92d9afeb19 [ 2035.252529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2035.256250] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2035.257769] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2035.259186] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2035.260618] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2035.262057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2035.263499] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:14:34 executing program 7: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1ffff000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:34 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(0xffffffffffffffff, 0x30, 0x2, 0x80000000008000) 07:14:34 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 68) 07:14:34 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58) 07:14:34 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58) 07:14:34 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2035.565417] FAULT_INJECTION: forcing a failure. [ 2035.565417] name failslab, interval 1, probability 0, space 0, times 0 [ 2035.567944] CPU: 1 PID: 41649 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2035.569463] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2035.571197] Call Trace: [ 2035.571745] dump_stack+0x107/0x167 [ 2035.572472] should_fail.cold+0x5/0xa [ 2035.573278] ? ptlock_alloc+0x1d/0x70 [ 2035.574056] should_failslab+0x5/0x20 [ 2035.574839] kmem_cache_alloc+0x5b/0x310 [ 2035.575644] ptlock_alloc+0x1d/0x70 [ 2035.576387] pte_alloc_one+0x68/0x1a0 [ 2035.577139] __pte_alloc+0x1d/0x330 [ 2035.577901] copy_page_range+0x1b77/0x3820 [ 2035.578758] ? perf_trace_lock+0xac/0x490 [ 2035.579575] ? lock_chain_count+0x20/0x20 [ 2035.580442] ? up_write+0x191/0x550 [ 2035.581176] ? vm_iomap_memory+0x190/0x190 [ 2035.582005] ? downgrade_write+0x3a0/0x3a0 [ 2035.582855] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2035.583942] ? __vma_link_rb+0x540/0x700 [ 2035.584756] dup_mm+0x8b9/0x1110 [ 2035.585451] ? vm_area_dup+0x290/0x290 [ 2035.586266] ? __raw_spin_lock_init+0x36/0x110 [ 2035.587203] copy_process+0x24e2/0x6740 [ 2035.587983] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2035.589011] ? exc_page_fault+0xca/0x1a0 [ 2035.589817] ? trace_hardirqs_on+0x5b/0x180 [ 2035.590695] ? __cleanup_sighand+0xb0/0xb0 [ 2035.591553] ? _copy_from_user+0xfb/0x1b0 [ 2035.592388] kernel_clone+0xe7/0x980 [ 2035.593138] ? __lockdep_reset_lock+0x180/0x180 [ 2035.594070] ? create_io_thread+0xf0/0xf0 [ 2035.594953] ? ksys_write+0x21a/0x260 [ 2035.595700] ? lock_downgrade+0x6d0/0x6d0 [ 2035.596546] __do_sys_clone3+0x1e5/0x320 [ 2035.597352] ? __do_sys_clone+0x110/0x110 [ 2035.598196] ? rcu_read_lock_any_held+0x75/0xa0 [ 2035.599168] ? vfs_write+0x354/0xa70 [ 2035.599913] ? fput_many+0x2f/0x1a0 [ 2035.600656] ? ksys_write+0x1a9/0x260 [ 2035.601420] ? __ia32_sys_read+0xb0/0xb0 [ 2035.602258] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2035.603330] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2035.604378] ? trace_hardirqs_on+0x5b/0x180 [ 2035.605258] do_syscall_64+0x33/0x40 [ 2035.606019] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2035.607067] RIP: 0033:0x7f92d9afeb19 [ 2035.607826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2035.611575] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2035.613122] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2035.614571] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2035.616031] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2035.617482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2035.618950] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:14:34 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:34 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58) 07:14:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:50 executing program 7: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1ffff000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:50 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58) 07:14:50 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x22, 0x37, 0x1, {0x0, 0x38e3, 0xff, 0x0, 0x4, '/\\&\''}}, 0x22) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = accept(r0, &(0x7f0000000080)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000100)=0x80) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) readv(r3, &(0x7f0000001500)=[{&(0x7f0000000040)=""/19, 0x13}], 0x1) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r3, 0x40505412, &(0x7f00000002c0)={0x4, 0x9, 0xaf0e, 0x0, 0x11}) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000380), r3) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r3, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x34, r4, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xbf38}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x4}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x10) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r4, 0x1, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4050}, 0x48001) r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r5, 0x3, 0x0, 0x8000) 07:14:50 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 69) [ 2050.730073] FAULT_INJECTION: forcing a failure. [ 2050.730073] name failslab, interval 1, probability 0, space 0, times 0 [ 2050.732586] CPU: 1 PID: 42081 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2050.734000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2050.735713] Call Trace: [ 2050.736268] dump_stack+0x107/0x167 [ 2050.737020] should_fail.cold+0x5/0xa [ 2050.737802] ? create_object.isra.0+0x3a/0xa20 [ 2050.738741] should_failslab+0x5/0x20 07:14:50 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58) 07:14:50 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58) 07:14:50 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58) [ 2050.739532] kmem_cache_alloc+0x5b/0x310 [ 2050.740484] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2050.741716] create_object.isra.0+0x3a/0xa20 [ 2050.742635] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2050.743702] kmem_cache_alloc+0x159/0x310 [ 2050.744552] ptlock_alloc+0x1d/0x70 [ 2050.745300] pte_alloc_one+0x68/0x1a0 [ 2050.746078] __pte_alloc+0x1d/0x330 [ 2050.746831] copy_page_range+0x1b77/0x3820 [ 2050.747705] ? perf_trace_lock+0xac/0x490 [ 2050.748559] ? lock_chain_count+0x20/0x20 [ 2050.749450] ? up_write+0x191/0x550 [ 2050.750195] ? vm_iomap_memory+0x190/0x190 [ 2050.751192] ? downgrade_write+0x3a0/0x3a0 [ 2050.752060] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2050.753169] ? __vma_link_rb+0x540/0x700 [ 2050.754017] dup_mm+0x8b9/0x1110 [ 2050.754726] ? vm_area_dup+0x290/0x290 [ 2050.755545] ? __raw_spin_lock_init+0x36/0x110 [ 2050.756485] copy_process+0x24e2/0x6740 [ 2050.757299] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2050.758369] ? exc_page_fault+0xca/0x1a0 [ 2050.759217] ? trace_hardirqs_on+0x5b/0x180 [ 2050.760117] ? __cleanup_sighand+0xb0/0xb0 [ 2050.761003] ? _copy_from_user+0xfb/0x1b0 [ 2050.761877] kernel_clone+0xe7/0x980 [ 2050.762614] ? __lockdep_reset_lock+0x180/0x180 [ 2050.763592] ? create_io_thread+0xf0/0xf0 [ 2050.764431] ? ksys_write+0x21a/0x260 [ 2050.765218] ? lock_downgrade+0x6d0/0x6d0 [ 2050.766043] __do_sys_clone3+0x1e5/0x320 [ 2050.766873] ? __do_sys_clone+0x110/0x110 [ 2050.767736] ? rcu_read_lock_any_held+0x75/0xa0 [ 2050.768686] ? vfs_write+0x354/0xa70 [ 2050.769437] ? fput_many+0x2f/0x1a0 [ 2050.770188] ? ksys_write+0x1a9/0x260 [ 2050.770962] ? __ia32_sys_read+0xb0/0xb0 [ 2050.771799] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2050.772841] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2050.773893] ? trace_hardirqs_on+0x5b/0x180 [ 2050.774759] do_syscall_64+0x33/0x40 [ 2050.775534] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2050.776588] RIP: 0033:0x7f92d9afeb19 [ 2050.777349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2050.781034] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2050.782607] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2050.784045] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2050.785503] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2050.786929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2050.788389] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:14:50 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58) 07:14:50 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) open(&(0x7f0000000000)='./file0\x00', 0x200, 0x121) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:14:50 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58) 07:14:50 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 70) 07:14:50 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58) [ 2051.035138] FAULT_INJECTION: forcing a failure. [ 2051.035138] name failslab, interval 1, probability 0, space 0, times 0 [ 2051.036487] CPU: 1 PID: 42602 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2051.037237] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2051.038131] Call Trace: [ 2051.038426] dump_stack+0x107/0x167 [ 2051.038825] should_fail.cold+0x5/0xa [ 2051.039256] ? vm_area_dup+0x78/0x290 [ 2051.039680] should_failslab+0x5/0x20 [ 2051.040106] kmem_cache_alloc+0x5b/0x310 [ 2051.040538] ? lock_downgrade+0x6d0/0x6d0 [ 2051.040995] vm_area_dup+0x78/0x290 [ 2051.041394] ? _cond_resched+0x12/0x80 [ 2051.041811] ? copy_page_range+0x24fe/0x3820 [ 2051.042306] ? vm_area_alloc+0x110/0x110 [ 2051.042746] ? up_write+0x191/0x550 [ 2051.043142] ? vm_iomap_memory+0x190/0x190 [ 2051.043599] ? downgrade_write+0x3a0/0x3a0 [ 2051.044050] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2051.044644] ? __vma_link_rb+0x540/0x700 [ 2051.045095] dup_mm+0x44d/0x1110 [ 2051.045472] ? vm_area_dup+0x290/0x290 [ 2051.045896] ? __raw_spin_lock_init+0x36/0x110 [ 2051.046395] copy_process+0x24e2/0x6740 [ 2051.046829] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2051.047394] ? exc_page_fault+0xca/0x1a0 [ 2051.047844] ? trace_hardirqs_on+0x5b/0x180 [ 2051.048316] ? __cleanup_sighand+0xb0/0xb0 [ 2051.048787] ? _copy_from_user+0xfb/0x1b0 [ 2051.049236] kernel_clone+0xe7/0x980 [ 2051.049645] ? __lockdep_reset_lock+0x180/0x180 [ 2051.050144] ? create_io_thread+0xf0/0xf0 [ 2051.050603] ? ksys_write+0x21a/0x260 [ 2051.051019] ? lock_downgrade+0x6d0/0x6d0 [ 2051.051467] __do_sys_clone3+0x1e5/0x320 [ 2051.051903] ? __do_sys_clone+0x110/0x110 [ 2051.052366] ? rcu_read_lock_any_held+0x75/0xa0 [ 2051.052864] ? vfs_write+0x354/0xa70 [ 2051.053268] ? fput_many+0x2f/0x1a0 [ 2051.053660] ? ksys_write+0x1a9/0x260 [ 2051.054071] ? __ia32_sys_read+0xb0/0xb0 [ 2051.054510] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2051.055081] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2051.055635] ? trace_hardirqs_on+0x5b/0x180 [ 2051.056096] do_syscall_64+0x33/0x40 [ 2051.056497] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2051.057043] RIP: 0033:0x7f92d9afeb19 [ 2051.057445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2051.059462] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2051.060276] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2051.061079] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2051.061864] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2051.062655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2051.063445] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:14:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:50 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58) 07:14:50 executing program 7: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x0, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:14:50 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20010, 0x0, 0x0}, 0x58) 07:14:50 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) write$binfmt_script(r0, &(0x7f0000000140)={'#! ', './file0', [{0x20, '{].:\xe8'}], 0xa, "9dbb364c465788e5576a99d3085cd40037f30bceb67d7329efebd7a2390810827c5cd2a9bf35796d1b333e251cd60f36d6e4b78851a325a8bed310c634e6df134d4ec98f34d692a3a5ea0e282cc1073b8ed3f406224e335bf362f927b72baa0830702eb37faeb5473560d95f19e8e6fd78935a2f633301df5cf4b6c92d"}, 0x8e) fallocate(r0, 0x3, 0x0, 0x8000) mq_timedsend(r0, &(0x7f0000000080)="6d238483f22529a6dbb3cd48eb3145691d2d00f69bbb2b640363dcfa0b22f1cd8a812a9710b74121a921d9c7d7ef272637ff7c173fdaa6707e82200559e477be5adfeea909e785b36347afa20f07accfec18e30d28175d640b41d8befe0ffeeee39c8075012212d01a9a0a4a7ea6e2690aa634cb896d2ddaf8acdfd2b9dd99ebb089ccc612d482c55aceec8a55c022d4ec57e2a4ecb24000cf4df8f92fe0a07bd3996aa98a4b5902c730e33aef47cd6e71e805f6a87ca2f614688a37e4fe2c", 0xbf, 0x3b43, 0x0) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0xc8) fallocate(r1, 0x23, 0x0, 0x8000) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0x808, 0x40, 0xfff, 0x7, 0x4}) 07:14:50 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 71) [ 2051.256224] FAULT_INJECTION: forcing a failure. [ 2051.256224] name failslab, interval 1, probability 0, space 0, times 0 [ 2051.257551] CPU: 1 PID: 42921 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2051.258292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2051.259195] Call Trace: [ 2051.259487] dump_stack+0x107/0x167 [ 2051.259884] should_fail.cold+0x5/0xa [ 2051.260298] ? create_object.isra.0+0x3a/0xa20 [ 2051.260804] should_failslab+0x5/0x20 [ 2051.261216] kmem_cache_alloc+0x5b/0x310 [ 2051.261666] create_object.isra.0+0x3a/0xa20 [ 2051.262140] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2051.262700] kmem_cache_alloc+0x159/0x310 [ 2051.263171] vm_area_dup+0x78/0x290 [ 2051.263586] ? _cond_resched+0x12/0x80 [ 2051.264001] ? copy_page_range+0x24fe/0x3820 [ 2051.264510] ? vm_area_alloc+0x110/0x110 [ 2051.264955] ? up_write+0x191/0x550 [ 2051.265344] ? vm_iomap_memory+0x190/0x190 [ 2051.265799] ? downgrade_write+0x3a0/0x3a0 [ 2051.266262] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2051.266849] ? __vma_link_rb+0x540/0x700 [ 2051.267296] dup_mm+0x44d/0x1110 [ 2051.267680] ? vm_area_dup+0x290/0x290 [ 2051.268104] ? __raw_spin_lock_init+0x36/0x110 [ 2051.268611] copy_process+0x24e2/0x6740 [ 2051.269040] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2051.269616] ? exc_page_fault+0xca/0x1a0 [ 2051.270057] ? trace_hardirqs_on+0x5b/0x180 [ 2051.270538] ? __cleanup_sighand+0xb0/0xb0 [ 2051.271007] ? _copy_from_user+0xfb/0x1b0 [ 2051.271465] kernel_clone+0xe7/0x980 [ 2051.271866] ? __lockdep_reset_lock+0x180/0x180 [ 2051.272386] ? create_io_thread+0xf0/0xf0 [ 2051.272839] ? ksys_write+0x21a/0x260 [ 2051.273248] ? lock_downgrade+0x6d0/0x6d0 [ 2051.273698] __do_sys_clone3+0x1e5/0x320 [ 2051.274144] ? __do_sys_clone+0x110/0x110 [ 2051.274602] ? rcu_read_lock_any_held+0x75/0xa0 [ 2051.275115] ? vfs_write+0x354/0xa70 [ 2051.275519] ? fput_many+0x2f/0x1a0 [ 2051.275917] ? ksys_write+0x1a9/0x260 [ 2051.276332] ? __ia32_sys_read+0xb0/0xb0 [ 2051.276782] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2051.277344] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2051.277901] ? trace_hardirqs_on+0x5b/0x180 [ 2051.278369] do_syscall_64+0x33/0x40 [ 2051.278779] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2051.279338] RIP: 0033:0x7f92d9afeb19 [ 2051.279751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2051.281710] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2051.282555] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2051.283343] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2051.284120] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2051.284887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2051.285674] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:15:05 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, 0x0}, 0x58) 07:15:05 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58) 07:15:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:15:05 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0) sendfile(r0, r1, &(0x7f0000000000)=0x2, 0xf581) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x38, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_TX_RATES={0x1c, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14}]}]}]}, 0x38}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x44, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@void, @val={0x8}, @void}}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x6d}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x7c}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x11}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r6}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0x44}, 0x1, 0x0, 0x0, 0x44080}, 0x24044000) fallocate(r2, 0x3, 0x0, 0x8000) 07:15:05 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58) 07:15:05 executing program 7: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:15:05 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 72) 07:15:05 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58) [ 2066.085712] FAULT_INJECTION: forcing a failure. [ 2066.085712] name failslab, interval 1, probability 0, space 0, times 0 [ 2066.087503] CPU: 0 PID: 43249 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2066.088568] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2066.089829] Call Trace: [ 2066.090248] dump_stack+0x107/0x167 [ 2066.090812] should_fail.cold+0x5/0xa [ 2066.091419] ? create_object.isra.0+0x3a/0xa20 [ 2066.092128] should_failslab+0x5/0x20 [ 2066.092721] kmem_cache_alloc+0x5b/0x310 [ 2066.093352] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2066.094278] create_object.isra.0+0x3a/0xa20 [ 2066.094983] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2066.095911] kmem_cache_alloc+0x159/0x310 [ 2066.096558] ptlock_alloc+0x1d/0x70 [ 2066.097128] pte_alloc_one+0x68/0x1a0 [ 2066.097721] __pte_alloc+0x1d/0x330 [ 2066.098288] copy_page_range+0x1b77/0x3820 [ 2066.098952] ? perf_trace_lock+0xac/0x490 [ 2066.099615] ? lock_chain_count+0x20/0x20 [ 2066.100290] ? up_write+0x191/0x550 [ 2066.100859] ? vm_iomap_memory+0x190/0x190 [ 2066.101521] ? downgrade_write+0x3a0/0x3a0 [ 2066.102176] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2066.103031] ? __vma_link_rb+0x540/0x700 [ 2066.103682] dup_mm+0x8b9/0x1110 [ 2066.104224] ? vm_area_dup+0x290/0x290 [ 2066.104838] ? __raw_spin_lock_init+0x36/0x110 [ 2066.105554] copy_process+0x24e2/0x6740 [ 2066.106175] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2066.106991] ? exc_page_fault+0xca/0x1a0 [ 2066.107665] ? trace_hardirqs_on+0x5b/0x180 [ 2066.108395] ? __cleanup_sighand+0xb0/0xb0 [ 2066.109098] ? _copy_from_user+0xfb/0x1b0 [ 2066.109795] kernel_clone+0xe7/0x980 [ 2066.110412] ? __lockdep_reset_lock+0x180/0x180 [ 2066.111179] ? create_io_thread+0xf0/0xf0 [ 2066.111880] ? ksys_write+0x21a/0x260 [ 2066.112503] ? lock_downgrade+0x6d0/0x6d0 [ 2066.113176] __do_sys_clone3+0x1e5/0x320 [ 2066.113850] ? __do_sys_clone+0x110/0x110 [ 2066.114539] ? rcu_read_lock_any_held+0x75/0xa0 [ 2066.115300] ? vfs_write+0x354/0xa70 [ 2066.115915] ? fput_many+0x2f/0x1a0 [ 2066.116517] ? ksys_write+0x1a9/0x260 [ 2066.117145] ? __ia32_sys_read+0xb0/0xb0 [ 2066.117823] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2066.118670] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2066.119527] ? trace_hardirqs_on+0x5b/0x180 [ 2066.120233] do_syscall_64+0x33/0x40 [ 2066.120841] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2066.121652] RIP: 0033:0x7f92d9afeb19 [ 2066.122264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2066.125229] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2066.126461] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2066.127622] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2066.128763] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2066.129904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2066.131052] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 [ 2066.235819] Zero length message leads to an empty skb 07:15:20 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20010, 0x0, 0x0}, 0x58) 07:15:20 executing program 7: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:15:20 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 73) 07:15:20 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58) 07:15:20 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58) 07:15:20 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8003) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:15:20 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58) 07:15:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2081.071102] FAULT_INJECTION: forcing a failure. [ 2081.071102] name failslab, interval 1, probability 0, space 0, times 0 [ 2081.073698] CPU: 1 PID: 43676 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2081.075187] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2081.076962] Call Trace: [ 2081.077560] dump_stack+0x107/0x167 [ 2081.078420] should_fail.cold+0x5/0xa [ 2081.079320] ? create_object.isra.0+0x3a/0xa20 [ 2081.080365] should_failslab+0x5/0x20 [ 2081.081245] kmem_cache_alloc+0x5b/0x310 [ 2081.082269] create_object.isra.0+0x3a/0xa20 [ 2081.083287] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2081.084446] kmem_cache_alloc+0x159/0x310 [ 2081.085415] vm_area_dup+0x78/0x290 [ 2081.086265] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2081.087339] ? lock_downgrade+0x6d0/0x6d0 [ 2081.088369] ? copy_page_range+0x24fe/0x3820 [ 2081.089340] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 2081.090331] ? avc_has_extended_perms+0xf40/0xf40 [ 2081.091387] ? vm_area_alloc+0x110/0x110 [ 2081.092266] ? selinux_vm_enough_memory+0x114/0x180 [ 2081.093337] ? selinux_sb_statfs+0x250/0x250 [ 2081.094281] ? percpu_counter_add_batch+0x8b/0x140 [ 2081.095341] ? __vm_enough_memory+0x184/0x360 [ 2081.096289] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 2081.097390] dup_mm+0x44d/0x1110 [ 2081.098132] ? vm_area_dup+0x290/0x290 [ 2081.098959] ? __raw_spin_lock_init+0x36/0x110 [ 2081.099955] copy_process+0x24e2/0x6740 [ 2081.100799] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2081.101906] ? exc_page_fault+0xca/0x1a0 [ 2081.102755] ? trace_hardirqs_on+0x5b/0x180 [ 2081.103708] ? __cleanup_sighand+0xb0/0xb0 [ 2081.104630] ? _copy_from_user+0xfb/0x1b0 [ 2081.105679] kernel_clone+0xe7/0x980 [ 2081.106457] ? __lockdep_reset_lock+0x180/0x180 [ 2081.107620] ? create_io_thread+0xf0/0xf0 [ 2081.108500] ? ksys_write+0x21a/0x260 [ 2081.109445] ? lock_downgrade+0x6d0/0x6d0 [ 2081.110308] __do_sys_clone3+0x1e5/0x320 [ 2081.111332] ? __do_sys_clone+0x110/0x110 [ 2081.112217] ? rcu_read_lock_any_held+0x75/0xa0 [ 2081.113358] ? vfs_write+0x354/0xa70 [ 2081.114128] ? fput_many+0x2f/0x1a0 [ 2081.115032] ? ksys_write+0x1a9/0x260 [ 2081.115829] ? __ia32_sys_read+0xb0/0xb0 [ 2081.116839] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2081.117951] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2081.119220] ? trace_hardirqs_on+0x5b/0x180 [ 2081.120133] do_syscall_64+0x33/0x40 [ 2081.121046] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2081.122090] RIP: 0033:0x7f92d9afeb19 [ 2081.122996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2081.127457] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2081.129003] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2081.130747] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2081.132203] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2081.133939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2081.135399] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:15:20 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="3010"]) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x64, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}]}, 0x64}}, 0x0) socket$packet(0x11, 0x2, 0x300) ioctl$BTRFS_IOC_SUBVOL_CREATE(r1, 0x5000940e, &(0x7f0000000300)={{r0}, "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"}) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r3, 0x3, 0x0, 0x8000) 07:15:20 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0xa860, 0x8000) 07:15:20 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 74) 07:15:20 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x101000, 0x0, 0x0}, 0x58) 07:15:20 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58) 07:15:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58) [ 2081.498931] FAULT_INJECTION: forcing a failure. [ 2081.498931] name failslab, interval 1, probability 0, space 0, times 0 [ 2081.500522] CPU: 0 PID: 44345 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2081.501387] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2081.502434] Call Trace: [ 2081.502771] dump_stack+0x107/0x167 [ 2081.503232] should_fail.cold+0x5/0xa [ 2081.503740] ? anon_vma_clone+0xdc/0x590 [ 2081.504263] should_failslab+0x5/0x20 [ 2081.504745] kmem_cache_alloc+0x5b/0x310 [ 2081.505267] anon_vma_clone+0xdc/0x590 [ 2081.505774] anon_vma_fork+0x82/0x640 [ 2081.506250] ? __vm_enough_memory+0x184/0x360 [ 2081.506812] dup_mm+0x861/0x1110 [ 2081.507246] ? vm_area_dup+0x290/0x290 [ 2081.507749] ? __raw_spin_lock_init+0x36/0x110 [ 2081.508332] copy_process+0x24e2/0x6740 [ 2081.508878] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2081.509586] ? exc_page_fault+0xca/0x1a0 [ 2081.510125] ? trace_hardirqs_on+0x5b/0x180 [ 2081.510724] ? __cleanup_sighand+0xb0/0xb0 [ 2081.511316] ? _copy_from_user+0xfb/0x1b0 [ 2081.511896] kernel_clone+0xe7/0x980 [ 2081.512398] ? __lockdep_reset_lock+0x180/0x180 [ 2081.513031] ? create_io_thread+0xf0/0xf0 [ 2081.513592] ? ksys_write+0x21a/0x260 [ 2081.514099] ? lock_downgrade+0x6d0/0x6d0 [ 2081.514649] __do_sys_clone3+0x1e5/0x320 [ 2081.515195] ? __do_sys_clone+0x110/0x110 [ 2081.515766] ? rcu_read_lock_any_held+0x75/0xa0 [ 2081.516351] ? vfs_write+0x354/0xa70 [ 2081.516820] ? fput_many+0x2f/0x1a0 [ 2081.517279] ? ksys_write+0x1a9/0x260 [ 2081.517798] ? __ia32_sys_read+0xb0/0xb0 [ 2081.518315] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2081.518970] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2081.519682] ? trace_hardirqs_on+0x5b/0x180 [ 2081.520257] do_syscall_64+0x33/0x40 [ 2081.520719] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2081.521371] RIP: 0033:0x7f92d9afeb19 [ 2081.521873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2081.524370] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2081.525319] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2081.526197] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2081.527086] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2081.528060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2081.529002] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:15:20 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) openat(r0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:15:20 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58) 07:15:20 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58) 07:15:20 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, 0x0}, 0x58) 07:15:20 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58) 07:15:20 executing program 7: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:15:21 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000000)={0x1, 0x0, {0x36, 0x25, 0x3, 0x11, 0x5, 0x1, 0x4, 0x2b, 0x1}}) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:15:34 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58) 07:15:34 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58) [ 2094.919599] FAULT_INJECTION: forcing a failure. [ 2094.919599] name failslab, interval 1, probability 0, space 0, times 0 [ 2094.922558] CPU: 1 PID: 44944 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2094.924328] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2094.926234] Call Trace: [ 2094.926798] dump_stack+0x107/0x167 [ 2094.927549] should_fail.cold+0x5/0xa [ 2094.928354] ? create_object.isra.0+0x3a/0xa20 07:15:34 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20010, 0x0, 0x0}, 0x58) 07:15:34 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 75) 07:15:34 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20010, 0x0, 0x0}, 0x58) 07:15:34 executing program 7: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:15:34 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:15:34 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58) [ 2094.929285] should_failslab+0x5/0x20 [ 2094.930195] kmem_cache_alloc+0x5b/0x310 [ 2094.931066] create_object.isra.0+0x3a/0xa20 [ 2094.932000] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2094.933046] kmem_cache_alloc+0x159/0x310 [ 2094.933907] anon_vma_clone+0xdc/0x590 [ 2094.934722] anon_vma_fork+0x82/0x640 [ 2094.935517] ? __vm_enough_memory+0x184/0x360 [ 2094.936447] dup_mm+0x861/0x1110 [ 2094.937166] ? vm_area_dup+0x290/0x290 [ 2094.937973] ? __raw_spin_lock_init+0x36/0x110 [ 2094.938917] copy_process+0x24e2/0x6740 [ 2094.939763] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2094.940833] ? exc_page_fault+0xca/0x1a0 [ 2094.941669] ? trace_hardirqs_on+0x5b/0x180 [ 2094.942579] ? __cleanup_sighand+0xb0/0xb0 [ 2094.943485] ? _copy_from_user+0xfb/0x1b0 [ 2094.944368] kernel_clone+0xe7/0x980 [ 2094.945147] ? create_io_thread+0xf0/0xf0 [ 2094.946014] ? perf_event_sched_in.isra.0+0x80/0x80 [ 2094.947054] __do_sys_clone3+0x1e5/0x320 [ 2094.947907] ? __do_sys_clone+0x110/0x110 [ 2094.948766] ? finish_task_switch+0x126/0x5d0 [ 2094.949689] ? finish_task_switch+0xef/0x5d0 [ 2094.950601] ? io_schedule_timeout+0x140/0x140 [ 2094.951549] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 2094.952503] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 2094.953604] ? ksys_write+0x1a9/0x260 [ 2094.954400] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2094.955498] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2094.956562] ? trace_hardirqs_on+0x5b/0x180 [ 2094.957452] do_syscall_64+0x33/0x40 [ 2094.958235] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2094.959289] RIP: 0033:0x7f92d9afeb19 [ 2094.960079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2094.963883] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2094.965434] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2094.966902] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2094.968380] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2094.969856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2094.971305] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:15:34 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r1, 0x0) stat(&(0x7f0000000340)='.\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r1, r2, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x9, 0x2, &(0x7f00000001c0)=[{&(0x7f00000000c0)="9775b9b705202e157a9494bc12c80cc9681308ac44862137f3f313df7f326bc007a26c336861759d67faa3f5b85577971ae09fa1e1923ec34713cb02afb810a8d948e54d38fac446f2d26a1677a7632c53fca8ec34d4cc1ca87ec581889e09dceb14edf73587db4f50396c0a394bc7bff7aabcd10d358d0d5620293bcf7a51eb004da836d6923240b2463e39bb2abafb81a73214a3bac0c14160023f98a1ff12b7c0c6887a22dc284f9a8bad49c4b854e05adf39f9cd782a3bb3c257de9a6587ad546906d3b257fc0dbc61874f143d5ec0e27787c0", 0xd5, 0x2f}, {&(0x7f0000000300)="eb3d3f8fec2a28893fd5b0b0b4a2f6b6cf5795e16a7ced7af6221cf2e8c60eefb71e6301826ff844ddad4631e755f99f8cf2a49be9779aca17fae8a06b7621c26b0af80175b074e81744ca58111f1f806cffdd3883e524d79de09b8e3dfc5bbb2e67f76d77b238ed0fedf908732f8dfca0057322c2771f56e31b5b74c0b3af2c3167f6a6c045e4e0437062f9b7e5094cfe28a999b2cc190c93f40eaf89216e972c6b7e68ae8018111ea6c38d5905c28ed098ce7157dd761b485cb8275b55ec00058bae5d82987aa7ba37923d4b056797b691ae8aa63b9ffb7094aab4f15d7715dff30325c74c7d6fb3bccce82e4c6b9905ecc9aea42b8808c86bebcbc3384a3df694002e983942faa15cb77beed576b0537d0308e982792292fbc597f05f811c35683b0d5af82d666da42aee436bc020f534190b10ebbb8bb879547edcc4d2517af08546d71e5f2670c4ba22b448ad67c53b9e90ed8606402763954cc5c3bff22957c9f1d5f37604909152bd3ed4fdaf8f2fa64cb792b0c7a07a7dcc4380e47ed2377a2ddac8974d6b5db0f031d27bbbf69a7bff5205cc0618376476d93717750c06cb15cd1b2d8ea9fbefb1a54177e52e464b1e0a901257d465ba8e9009bdd337aae1b3bf90d73b613b2e223dd3fc502d5987564ab76c46c462b558bed4a37074a2a59c82dbc37b4bc0ce16bf2aa83ed4d69ebff6d5820b7c09ddf624fec7bd84053971e57abebb487ab12a047f630539783c33423bf402bbe2bcb9bb867676c20b3eca9063a4564be19650443a24397016c31b4654c6a590a858ec46210625a8a2898311e39d1387c635b5062cd90faf3bd2fdce97ef9207f54a5bfb793a98a505cb8bbb160f4516d8144aeebc798f49be38336dc26e6c27ad843b834cc4b5cef33128bbafd68d74e6ac65213d1f707076d264a57492af4854fe1b675395e7c6ee9cf1afc6eee34be3907595f9b88374ea3e4efaf1f3cb6e458a2cad01fda54c25b4c3d1437d2144ce6e2ebe1d065dd9abcda32adee7ba56bdb0eed5edff2eb823ff489b2e97b0b7275c6d3ec720a2991e3c58699be85770597058382dc1d4a9533f4c400fe6a0b23f9637fbe78c98555277914e5b96071700a20d7ff17f6990e7d5becbbde3af3a4e1f08be221e2d077195e406305f15ebf69587aebc4f032d733c8b68c4c379615d918639b1bb0b1271512dae9aeb667f7391f9ee506acfa4b0696b37109190eebe713931722a8e16a80eb40d3539a141db7004aa6fd8aff785cb922b9a29db11519bc7a6436cb9e9e8fe4113773b8e07c8658929f48e9a61f6bcaa83049a03740277b26314ba5b23657f8a77b5071647e02f553954ebe1db3ddb144171f6845cc102c800abb18cd5f3726c55810a1d9cc19ab1aea29cd89554d8a76bc22c521806aee1c151a9f6c93322524d6734afe71b9d35a4553c2da864330974962992535f0a169aaf13f01bf5724adc5266bb066cce2741b9bac442360636212696f8434622e0e07b42acc2183d1f763703a812efa7dedc629393cfad0e18c0c9acaad6b90d54b256fa24dacc333360eacf3f833f54b684006e3f114ce336a86d5534e1309d96785155a348e1e3aca62c134d72ab782cbfa7e8ed9954729f18b18b8482d72bb53fcea949c6baa111e7f140ba84693de1e8ac69145b736b1024b18bc3553c7d6bb603043ed533f48b417297a1f9be5e722c9ead6060eef03aa087fa1dee5c2a1e12b3e3359f137049d7b0de1d31e1fc8615c4617f80061b2d1c2c0f7e044826bceece130d4e68b87d1bfe7274a71621153456386fe46525d1193c4b80937790332e5cd9b118e7b22efa676198d7de8cb81797556015d0b9438d5a73aa8a749a8c444716936f10d9311508e0edb6f335f8cde0aafacfc261d94e0de7bacf6e5de6a5fd042cb10b0677b3a8211c0346124582742ba4781a197442478b827f1a76509d1198c39288de32923e746d34833e1c87f7bbe68b1d9faf698adb4d9c92b3374eded4f05f2f3879d077c6777b185eda718ed2d7bd024509d6ab6ba21715f07693a4b87c86ada01aaa0f170a36e6356cbc20d3a9ee3f9e2c9cd30286606af88fe5562cc4096ea3fd6fda283cf85f61d48eea63dbbb6ba69ce4008bef6ecda8a3ca827d4b687e472ea557bb164769d150b07d6874040b123b82b602e6761ec98529efb15bd463f09c8720529360c2cdca871a3eb4eef3fbf4a0f1ecbe59daa78c64c8242a53873c0fc598780f6c2526492fe120ace748b745f3415bf9f364d5f64976d6732ef214af4183bdcfd56da4023ce22bad90e4147a0edd3b757c0e5cacf49564479aea65f5c6a80391ee4e41b70958d5dbfa98bfff582937b7b357631e98c9a47dffc83c16e66d32ee3d44709099e171a39d6e47f8427c229c31886c11316cb3ada4f135a6f3a6ebeee16ccb747701e3c9c969e349870043f83bd37caebd11c41b8ad2eb4558af217531d896b737ce43c6187c0ebbaefb5fab132415a0a3383429965d7d8e8e24ba0f59acaf914f3497d9bed38f6be0311a1053c5d58854b5bb3ea8f89654ae1958fba5d491f524d64f114ac49e9123823d41ef8ae1df7d6b50ddc85f3dd2a47e0e1da05661bc51c548a4306eb5583cd5177c5893e1151742ee6e14a0c6d34466b502101579094c81e6bad853c32eeb8d03504766a0d35f1594439442130fe27076135308c7744349f57a17532df2503a538d0689da86ff20eb45ebd4c9d4083916edabe94f31fe42c4744060a18a23ce27025d9b2a168d9e0d22afa3e6fba1649925e343cdee855d102bc8bd6578ed7e286a0858bc68850fc57652a79c7588fc6d787b79f004a579f84f392a8155d034fcbd07e50fe5950bbea3f651f5de337573dac372fe862e7510f12cdb665339fac7d2254922423508b01d875fee397bf73b51f6893191a8275eaa7e47253228b09fb8659d64764c519b5980edc10e6b4cbe36a0505e6fcae0460c486efc22d3306d7dea48f92c3ecf10b023789d5baff7eb5ee62ae4929380b7f27a27dc4889474d2c21d99aa3f9fdddba1ec9f04b4e3d206313153028ee9dca82379037b300ce2fcfedfa952b3d687449025362f28bc849bfb22dd209671fcdd38da21abd156433095180df98a8d4b5f2665410e30de19efd6f019d66f9b94b9e07c31ef4d8dcd9163440f0c284eaa4aa152db32b20f01016b84910c6c15beabf0e12a6f49ebfb421cfdf9888cd4af6f718754068c203223a027775a8c707af5b113d4a375a5512a4622f832ff2e123b4e262815af924e8a83ef1bd9a4418d279876aa8753abfef77257337efa36d43e87d6a8d7de24925d190fc559b449017b4d58ea87009caf7d15ab5f001a8ff0add69c5fc8a468d40c62999d94960d6a9ce84b3e47d8cca083f24bbb238474fbf60eb107b8a62e142f201b2cfbe7a490f277fbc5a13cd8c7e0fedf5f5ae933f7b93e27463db310feccf264fb7e7f0850da5b7b7ac9ec7a245a2539342e94c568ee17454755f23cb67431ecb8a2c1a8e8e8e452a83fb701032e66310d5fc7c8dfce0e01bd201654eef2c1efbb5340c7a65bcfe42200365747d169f93cf0fe7aca1d594d8e6af2eb5ad5f0a1e1196cb91be3658ba006437ea057fd52d8d0346d52a5ffff738ec9cf47af6e82f1e098c030deb7147da6fd9218ef101fb5943a9098f242123e03072a7386bf11577dd689bbd7c12febf5db2df062cb6a0e2eba703330d05ca6cdbe57da5ba44593c1f77b8f036b8cf1936840e60660f4cdc0e5111f3302d72ec6074c81bffc8554c5b60a5f93da71143a33b029aa89065281b0f15a2901440cac5608bc21f604b65c08eda4bc302de96360c9f8dd6171f7bf6b60036311d55135b96b3012bcc3726d56a04480808519dffa671f8881cb96e842af748ad573575d139907446fb9438c39a470f337117ced3d0941edd27b426f29c80c367106135abcbaf333044729d372fb4802f78ae95fc1361befee0eab7b96a8084248b689d0e45d5e77581739486bd927331221eeb11c8750aaf36d8f1a3f431ae22192472fb60e938473b11c11a9f94c99d37c7187ff026c9074b899e45275f93d5f253668260d51909a42c48aaf2575e444b5002c731f82107eac7892f019a6cd2983a2a125a6db79e57cde62027238b7b9bd6e8271f644040720045efc9a38e76a7348e25ec60d32aa5e5016dab27c9781fbdb1d490575c1dd5514d0dbf98b7b589ff69ddc44d66b770f168dccc60cfbae402d2a0269ef325e77f706d242965341984dbffe1e863f93aeb78e8cd3a1fc869b149425db7a0613bf042cc0315daf2a8d4f300e3bc64442cde9b1678a9257b1fbc00fd4d115187c4865bea8dbd96f583ee0db9c87ba4ddca6a16d147f90eca4f0f630e1f78bb4b85566f1113b973544cf5205160b8a229aaeb0cfd1d59edac653927d86fdd00d8da0b21a9c7406a5d751d7746349d86d3265c1f69d6e696eb90f3b79d6c6555ef3632308f7f1cb65e3b843c9ebbacee0a3709d116330e86dd1973aa0334e95fb899b1119029b648ac9f7c065ace58d03156e9dead8b8620a07567924104f38d8aca87d0a870de35cf428c9996513612a0761170c4c5afcf7085a235edeb24b376034c00baedbf91fd2cd1624669429ebb7b33dad0121e670c455c2817017b91f35f630788fd70ca34083477a9cd20d701ada1b1d1a64ed9ddd03e0b00a070937c64a8d45217aedb43d0321896b04f3c1ebeea5cc6eed6c59f4620edb32ac003c19738ef41c890a666ffc4e09c9f93beb7e0bd1a0a5823ede46c1bc9f0e57e96c9ddd0dea87ee1c1fd0d9ae5f388a30e444a7742505d486fe20b0b1a8ba7f39c67bedd168aea5b0a22542e01fd7354dbd662cab9ed22f34ed97d27950514c55b24e229adc647e131a0028c6e0aec6d309aca5bccb024f2547f74b7fbf781975f1cbaf52e050d1e5c12f3dce9f2161efd32b71331c3ffcf22801f4453ca8e733dfd68ff41715f328268abafb58f5ba2c30a43ea6c28de793b2cd315f882aba98310bcc023a373a0950e41d4821577d4a636d960d0b2b0c7e8e9f1b90808012a3dac52fbae706a5e0462dc391ccf4d0627046dcc84a0b3e768bf46a2d33e35a374239d2e5781ef530bde23221fcf9c8eb93ead1021bc7be759101749073e543ff5faa823891e1f331695b8601cacad4ac3c2a879e75652a45de0ba0d973204da2ad2cba662d00ef33ef3d118c4e2064cd166d1d5ae5e84f9255a31b83c21752fa0602dd2dccda795489bcf9d78f6beb6ee0510ee27cb1f358e96d92a65dee8ed450ba6eb0494f18e50c99debfe2f95086b8579da5f05eca30aec05ab7a55586b0d3364e7a3b1e0b62e5e055ce30f767d7d75073a167480e6109bdb55b2ea78ba5b5cbb547b96df2625daa8da70c6da7bdad9fa9a6eaf2a94410a75d3168709055f71bdaa084091e5962b758b505a3e14cbb4bec2bf742039cf8905112708f4007c2b516e87726044e49590a8e93c80d35fef5778ff6a9f5660513b4b39214b2d8118a1b4981f2d451c61448ff3d45f2c41a39b59f4306df810e7d4c360bc1d41c6276b7cccff042de82d13d2a4488241f8e9bd286c51a6d3928413beccefa20a0d689fc11677ef2b5f241e1155dbb534e7801e48dc34f19479b4b6998d5d745480ccd6ef97a5ace0339c30be1ded81f6328f83e83c61dc60715bd5b877a523316f29638f654960f7c55e1b07a8eda933426ffe1dd5c5a42e90ab859b61f8d4d2a2609eb4005e56b18612284a5f9f57a95525b78705a08933a69a", 0x1000, 0xf64}], 0xc0, &(0x7f0000001300)={[{@shortname_lower}, {@shortname_mixed}, {@shortname_winnt}, {@uni_xlate}, {@rodir}, {@uni_xlateno}], [{@euid_eq={'euid', 0x3d, 0xee01}}, {@fowner_gt={'fowner>', r2}}, {@smackfstransmute}, {@fowner_eq={'fowner', 0x3d, 0xee01}}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}]}) fallocate(r0, 0x0, 0x0, 0xfdef) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r3, 0x3, 0x0, 0x8000) 07:15:34 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, 0x0}, 0x58) 07:15:34 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x101000, 0x0, 0x0}, 0x58) 07:15:34 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 76) 07:15:34 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0}, 0x58) 07:15:34 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58) 07:15:34 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, 0x0}, 0x58) [ 2095.372250] FAULT_INJECTION: forcing a failure. [ 2095.372250] name failslab, interval 1, probability 0, space 0, times 0 [ 2095.374605] CPU: 0 PID: 45376 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2095.376021] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2095.377698] Call Trace: [ 2095.378239] dump_stack+0x107/0x167 [ 2095.378986] should_fail.cold+0x5/0xa [ 2095.379782] ? anon_vma_fork+0xf1/0x640 [ 2095.380592] should_failslab+0x5/0x20 [ 2095.381375] kmem_cache_alloc+0x5b/0x310 [ 2095.382205] anon_vma_fork+0xf1/0x640 [ 2095.382977] ? __vm_enough_memory+0x184/0x360 [ 2095.383923] dup_mm+0x861/0x1110 [ 2095.384631] ? vm_area_dup+0x290/0x290 [ 2095.385432] ? __raw_spin_lock_init+0x36/0x110 [ 2095.386365] copy_process+0x24e2/0x6740 [ 2095.387170] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2095.388249] ? exc_page_fault+0xca/0x1a0 [ 2095.389068] ? trace_hardirqs_on+0x5b/0x180 [ 2095.389957] ? __cleanup_sighand+0xb0/0xb0 [ 2095.390825] ? _copy_from_user+0xfb/0x1b0 [ 2095.391683] kernel_clone+0xe7/0x980 [ 2095.392438] ? __lockdep_reset_lock+0x180/0x180 [ 2095.393379] ? create_io_thread+0xf0/0xf0 [ 2095.394239] ? ksys_write+0x21a/0x260 [ 2095.395014] ? lock_downgrade+0x6d0/0x6d0 [ 2095.395873] __do_sys_clone3+0x1e5/0x320 [ 2095.396696] ? __do_sys_clone+0x110/0x110 [ 2095.397573] ? rcu_read_lock_any_held+0x75/0xa0 [ 2095.398518] ? vfs_write+0x354/0xa70 [ 2095.399278] ? fput_many+0x2f/0x1a0 [ 2095.400035] ? ksys_write+0x1a9/0x260 [ 2095.400807] ? __ia32_sys_read+0xb0/0xb0 [ 2095.401636] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2095.402691] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2095.403740] ? trace_hardirqs_on+0x5b/0x180 [ 2095.404614] do_syscall_64+0x33/0x40 [ 2095.405371] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2095.406418] RIP: 0033:0x7f92d9afeb19 [ 2095.407175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2095.410872] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2095.412406] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2095.413839] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2095.415270] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2095.416708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2095.418140] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:15:50 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58) 07:15:50 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) sendfile(r0, r0, &(0x7f00000000c0)=0x400, 0x80) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) ioctl$BTRFS_IOC_SYNC(r2, 0x9408, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x224a00, 0x27) ftruncate(r3, 0x4) ioctl$TIOCGWINSZ(0xffffffffffffffff, 0x5413, &(0x7f0000000000)) fallocate(r1, 0x3, 0x0, 0x8000) 07:15:50 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58) 07:15:50 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000200, 0x0, 0x0}, 0x58) 07:15:50 executing program 7: perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:15:50 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 77) 07:15:50 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58) 07:15:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58) [ 2111.648367] FAULT_INJECTION: forcing a failure. [ 2111.648367] name failslab, interval 1, probability 0, space 0, times 0 [ 2111.650264] CPU: 0 PID: 45800 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2111.651406] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2111.652835] Call Trace: [ 2111.653279] dump_stack+0x107/0x167 [ 2111.653886] should_fail.cold+0x5/0xa [ 2111.654513] ? create_object.isra.0+0x3a/0xa20 [ 2111.655272] should_failslab+0x5/0x20 [ 2111.655898] kmem_cache_alloc+0x5b/0x310 [ 2111.656577] create_object.isra.0+0x3a/0xa20 [ 2111.657297] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2111.658131] kmem_cache_alloc+0x159/0x310 [ 2111.658820] anon_vma_fork+0xf1/0x640 [ 2111.659445] ? __vm_enough_memory+0x184/0x360 [ 2111.660193] dup_mm+0x861/0x1110 [ 2111.660764] ? vm_area_dup+0x290/0x290 [ 2111.661416] ? __raw_spin_lock_init+0x36/0x110 [ 2111.662164] copy_process+0x24e2/0x6740 [ 2111.662799] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2111.663688] ? exc_page_fault+0xca/0x1a0 [ 2111.664369] ? trace_hardirqs_on+0x5b/0x180 [ 2111.665098] ? __cleanup_sighand+0xb0/0xb0 [ 2111.665773] ? _copy_from_user+0xfb/0x1b0 [ 2111.666472] kernel_clone+0xe7/0x980 [ 2111.667063] ? __lockdep_reset_lock+0x180/0x180 [ 2111.667840] ? create_io_thread+0xf0/0xf0 [ 2111.668510] ? ksys_write+0x21a/0x260 [ 2111.669134] ? lock_downgrade+0x6d0/0x6d0 [ 2111.669804] __do_sys_clone3+0x1e5/0x320 [ 2111.670476] ? __do_sys_clone+0x110/0x110 [ 2111.671183] ? rcu_read_lock_any_held+0x75/0xa0 [ 2111.671967] ? vfs_write+0x354/0xa70 [ 2111.672590] ? fput_many+0x2f/0x1a0 [ 2111.673192] ? ksys_write+0x1a9/0x260 [ 2111.673818] ? __ia32_sys_read+0xb0/0xb0 [ 2111.674494] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2111.675357] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2111.676218] ? trace_hardirqs_on+0x5b/0x180 [ 2111.676929] do_syscall_64+0x33/0x40 [ 2111.677518] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2111.678360] RIP: 0033:0x7f92d9afeb19 [ 2111.678972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2111.681990] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2111.683234] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2111.684410] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2111.685598] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2111.686764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2111.687935] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:15:51 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) ioctl$PIO_CMAP(r0, 0x4b71, &(0x7f0000000000)={0x3, 0x80, 0x8000, 0x0, 0x9, 0x200}) r2 = syz_open_dev$vcsn(&(0x7f0000000080), 0x2, 0x600) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000000700)={0x0, 0x5, 0x100000000}) ioctl$BTRFS_IOC_SCRUB(r2, 0xc400941b, &(0x7f0000000300)={r3, 0x1, 0x2}) fallocate(r1, 0x3, 0x0, 0x8000) openat(r0, &(0x7f00000000c0)='./file0\x00', 0x10b000, 0x1f8) 07:15:51 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58) 07:15:51 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x101000, 0x0, 0x0}, 0x58) 07:15:51 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fsmount(0xffffffffffffffff, 0x0, 0x0) fallocate(r0, 0x3, 0x0, 0x8000) sendto$inet6(r1, &(0x7f0000000080)="f0234140943f2d2f2456ca02b3769bcadaf0e8cb7d0819a93905ab5eb6d95f7e9a569aba6849cb8042e6dd0f420578cafc638a4283f27af22d5a3cdf6c5224da2914abe46990d0acb2bdb4f186826b885eb3776a016912ec26d76a8c70ec8513334301422df20491e7a86724e8ff8d3f06752dd569bf0800b6f48e0b20e0bbb8cc13a8f0974a8690cb2ea82f1d824f04a10640558706e5bd7174782552f1cbbd854b29cd0cb4a16900ac1fbcbb872f55773a947873af0fd8de302b3d1ee3b648bc835fc11e6674e35b4acc20137e82ac1b264762894dbafbca9e2651d11a9056a2a9b65f6cb5f587aa6e35f370e527772ad67f", 0xf3, 0x20000000, &(0x7f0000000000)={0xa, 0x4e21, 0x40, @local, 0x6}, 0x1c) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:15:51 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 78) 07:15:51 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x101000, 0x0, 0x0}, 0x58) 07:15:51 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58) [ 2111.996092] FAULT_INJECTION: forcing a failure. [ 2111.996092] name failslab, interval 1, probability 0, space 0, times 0 [ 2111.997606] CPU: 0 PID: 46328 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2111.998527] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2111.999619] Call Trace: [ 2111.999987] dump_stack+0x107/0x167 [ 2112.000466] should_fail.cold+0x5/0xa [ 2112.000963] ? anon_vma_fork+0x1ff/0x640 [ 2112.001490] should_failslab+0x5/0x20 [ 2112.001980] kmem_cache_alloc+0x5b/0x310 [ 2112.002509] anon_vma_fork+0x1ff/0x640 [ 2112.003016] dup_mm+0x861/0x1110 [ 2112.003477] ? vm_area_dup+0x290/0x290 [ 2112.003990] ? __raw_spin_lock_init+0x36/0x110 [ 2112.004584] copy_process+0x24e2/0x6740 [ 2112.005098] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2112.005786] ? exc_page_fault+0xca/0x1a0 [ 2112.006323] ? trace_hardirqs_on+0x5b/0x180 [ 2112.006901] ? __cleanup_sighand+0xb0/0xb0 [ 2112.007461] ? _copy_from_user+0xfb/0x1b0 [ 2112.008024] kernel_clone+0xe7/0x980 [ 2112.008508] ? __lockdep_reset_lock+0x180/0x180 [ 2112.009104] ? create_io_thread+0xf0/0xf0 [ 2112.009659] ? ksys_write+0x21a/0x260 [ 2112.010155] ? lock_downgrade+0x6d0/0x6d0 [ 2112.010697] __do_sys_clone3+0x1e5/0x320 [ 2112.011218] ? __do_sys_clone+0x110/0x110 [ 2112.011788] ? rcu_read_lock_any_held+0x75/0xa0 [ 2112.012386] ? vfs_write+0x354/0xa70 [ 2112.012871] ? fput_many+0x2f/0x1a0 [ 2112.013349] ? ksys_write+0x1a9/0x260 [ 2112.013846] ? __ia32_sys_read+0xb0/0xb0 [ 2112.014380] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2112.015063] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2112.015740] ? trace_hardirqs_on+0x5b/0x180 [ 2112.016305] do_syscall_64+0x33/0x40 [ 2112.016789] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2112.017457] RIP: 0033:0x7f92d9afeb19 [ 2112.017948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2112.020312] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2112.021280] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2112.022210] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2112.023134] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2112.024061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2112.024982] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:15:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58) 07:15:51 executing program 7: perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:15:51 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f0000000000)) 07:15:51 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58) 07:15:51 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 79) [ 2112.255454] FAULT_INJECTION: forcing a failure. [ 2112.255454] name failslab, interval 1, probability 0, space 0, times 0 [ 2112.256769] CPU: 0 PID: 46875 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2112.257511] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2112.258392] Call Trace: [ 2112.258685] dump_stack+0x107/0x167 [ 2112.259080] should_fail.cold+0x5/0xa [ 2112.259500] ? create_object.isra.0+0x3a/0xa20 [ 2112.260024] should_failslab+0x5/0x20 [ 2112.260442] kmem_cache_alloc+0x5b/0x310 [ 2112.260890] create_object.isra.0+0x3a/0xa20 [ 2112.261373] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2112.261925] kmem_cache_alloc+0x159/0x310 [ 2112.262398] anon_vma_fork+0x1ff/0x640 [ 2112.262836] dup_mm+0x861/0x1110 [ 2112.263233] ? vm_area_dup+0x290/0x290 [ 2112.263686] ? __raw_spin_lock_init+0x36/0x110 [ 2112.264186] copy_process+0x24e2/0x6740 [ 2112.264619] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2112.265179] ? exc_page_fault+0xca/0x1a0 [ 2112.265616] ? trace_hardirqs_on+0x5b/0x180 [ 2112.266093] ? __cleanup_sighand+0xb0/0xb0 [ 2112.266567] ? _copy_from_user+0xfb/0x1b0 [ 2112.267018] kernel_clone+0xe7/0x980 [ 2112.267414] ? __lockdep_reset_lock+0x180/0x180 [ 2112.267923] ? create_io_thread+0xf0/0xf0 [ 2112.268385] ? ksys_write+0x21a/0x260 [ 2112.268803] ? lock_downgrade+0x6d0/0x6d0 [ 2112.269250] __do_sys_clone3+0x1e5/0x320 [ 2112.269684] ? __do_sys_clone+0x110/0x110 [ 2112.270148] ? rcu_read_lock_any_held+0x75/0xa0 [ 2112.270644] ? vfs_write+0x354/0xa70 [ 2112.271044] ? fput_many+0x2f/0x1a0 [ 2112.271435] ? ksys_write+0x1a9/0x260 [ 2112.271859] ? __ia32_sys_read+0xb0/0xb0 [ 2112.272302] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2112.272872] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2112.273423] ? trace_hardirqs_on+0x5b/0x180 [ 2112.273887] do_syscall_64+0x33/0x40 [ 2112.274292] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2112.274844] RIP: 0033:0x7f92d9afeb19 [ 2112.275240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2112.277201] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2112.278009] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2112.278764] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2112.279520] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2112.280283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2112.281036] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:16:06 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58) 07:16:06 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0}, 0x58) 07:16:06 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0) openat(r1, &(0x7f0000000080)='./file0\x00', 0x880, 0x120) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:16:06 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58) 07:16:06 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, 0x0}, 0x58) 07:16:06 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58) 07:16:06 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 80) 07:16:06 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f0000000000)) [ 2127.139672] FAULT_INJECTION: forcing a failure. [ 2127.139672] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2127.142317] CPU: 0 PID: 46974 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2127.143687] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2127.145349] Call Trace: [ 2127.145882] dump_stack+0x107/0x167 [ 2127.146617] should_fail.cold+0x5/0xa [ 2127.147392] __alloc_pages_nodemask+0x182/0x600 [ 2127.148330] ? __lockdep_reset_lock+0x180/0x180 [ 2127.149292] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2127.150508] ? copy_page_range+0x28f6/0x3820 [ 2127.151388] alloc_pages_current+0x187/0x280 [ 2127.152292] get_zeroed_page+0x14/0xb0 [ 2127.153066] __pud_alloc+0x33/0x270 [ 2127.153801] copy_page_range+0x2cb6/0x3820 [ 2127.154641] ? perf_trace_lock+0xac/0x490 [ 2127.155475] ? lock_chain_count+0x20/0x20 [ 2127.156336] ? lock_downgrade+0x6d0/0x6d0 [ 2127.157182] ? up_write+0x191/0x550 [ 2127.157906] ? vm_iomap_memory+0x190/0x190 [ 2127.158746] ? downgrade_write+0x3a0/0x3a0 [ 2127.159590] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2127.160811] ? __vma_link_rb+0x540/0x700 [ 2127.161700] dup_mm+0x8b9/0x1110 [ 2127.162401] ? vm_area_dup+0x290/0x290 [ 2127.163188] ? __raw_spin_lock_init+0x36/0x110 [ 2127.164129] copy_process+0x24e2/0x6740 [ 2127.164921] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2127.165964] ? exc_page_fault+0xca/0x1a0 [ 2127.166773] ? trace_hardirqs_on+0x5b/0x180 [ 2127.167655] ? __cleanup_sighand+0xb0/0xb0 [ 2127.168521] ? _copy_from_user+0xfb/0x1b0 [ 2127.169358] kernel_clone+0xe7/0x980 [ 2127.170113] ? __lockdep_reset_lock+0x180/0x180 [ 2127.171040] ? create_io_thread+0xf0/0xf0 [ 2127.171906] ? ksys_write+0x21a/0x260 [ 2127.172678] ? lock_downgrade+0x6d0/0x6d0 [ 2127.173511] __do_sys_clone3+0x1e5/0x320 [ 2127.174328] ? __do_sys_clone+0x110/0x110 [ 2127.175180] ? rcu_read_lock_any_held+0x75/0xa0 [ 2127.176132] ? vfs_write+0x354/0xa70 [ 2127.176878] ? fput_many+0x2f/0x1a0 [ 2127.177613] ? ksys_write+0x1a9/0x260 [ 2127.178388] ? __ia32_sys_read+0xb0/0xb0 [ 2127.179219] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2127.180292] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2127.181329] ? trace_hardirqs_on+0x5b/0x180 [ 2127.182205] do_syscall_64+0x33/0x40 [ 2127.182958] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2127.184017] RIP: 0033:0x7f92d9afeb19 [ 2127.184767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2127.188485] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2127.190013] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2127.191451] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2127.192911] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2127.194343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2127.195778] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:16:06 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f0000000000)) 07:16:06 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 81) 07:16:06 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0xa) fallocate(r1, 0x3, 0x0, 0x8000) 07:16:06 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58) 07:16:06 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58) 07:16:06 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000200, 0x0, 0x0}, 0x58) 07:16:06 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20010, 0x0, 0x0}, 0x58) [ 2127.500697] FAULT_INJECTION: forcing a failure. [ 2127.500697] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2127.503204] CPU: 0 PID: 47487 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2127.504629] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2127.506303] Call Trace: [ 2127.506842] dump_stack+0x107/0x167 [ 2127.507583] should_fail.cold+0x5/0xa [ 2127.508371] __alloc_pages_nodemask+0x182/0x600 [ 2127.509313] ? lock_acquire+0x197/0x470 [ 2127.510116] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2127.511325] ? lock_downgrade+0x6d0/0x6d0 [ 2127.512170] ? do_raw_spin_lock+0x121/0x260 [ 2127.513045] alloc_pages_current+0x187/0x280 [ 2127.513931] __pmd_alloc+0x37/0x5e0 [ 2127.514669] copy_page_range+0x2bed/0x3820 [ 2127.515518] ? perf_trace_lock+0xac/0x490 [ 2127.516377] ? lock_chain_count+0x20/0x20 [ 2127.517287] ? up_write+0x191/0x550 [ 2127.518026] ? vm_iomap_memory+0x190/0x190 [ 2127.518882] ? downgrade_write+0x3a0/0x3a0 [ 2127.519740] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2127.520841] ? __vma_link_rb+0x540/0x700 [ 2127.521679] dup_mm+0x8b9/0x1110 [ 2127.522384] ? vm_area_dup+0x290/0x290 [ 2127.523179] ? __raw_spin_lock_init+0x36/0x110 [ 2127.524116] copy_process+0x24e2/0x6740 [ 2127.524927] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2127.525982] ? exc_page_fault+0xca/0x1a0 [ 2127.526798] ? trace_hardirqs_on+0x5b/0x180 [ 2127.527696] ? __cleanup_sighand+0xb0/0xb0 [ 2127.528573] ? _copy_from_user+0xfb/0x1b0 [ 2127.529414] kernel_clone+0xe7/0x980 [ 2127.530157] ? __lockdep_reset_lock+0x180/0x180 [ 2127.531092] ? create_io_thread+0xf0/0xf0 [ 2127.531957] ? ksys_write+0x21a/0x260 [ 2127.532727] ? lock_downgrade+0x6d0/0x6d0 [ 2127.533571] __do_sys_clone3+0x1e5/0x320 [ 2127.534386] ? __do_sys_clone+0x110/0x110 [ 2127.535250] ? rcu_read_lock_any_held+0x75/0xa0 [ 2127.536204] ? vfs_write+0x354/0xa70 [ 2127.536962] ? fput_many+0x2f/0x1a0 [ 2127.537706] ? ksys_write+0x1a9/0x260 [ 2127.538477] ? __ia32_sys_read+0xb0/0xb0 [ 2127.539304] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2127.540367] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2127.541401] ? trace_hardirqs_on+0x5b/0x180 [ 2127.542284] do_syscall_64+0x33/0x40 [ 2127.543037] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2127.544082] RIP: 0033:0x7f92d9afeb19 [ 2127.544838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2127.548529] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2127.550065] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2127.551501] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2127.552945] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2127.554374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2127.555807] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:16:25 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, 0x0}, 0x58) 07:16:25 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58) 07:16:25 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58) 07:16:25 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f0000000000)) 07:16:25 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) write$binfmt_elf64(r0, &(0x7f0000000300)=ANY=[@ANYRES64=r0, @ANYBLOB="0d80563e2e239540f0066e00e422b6e2bd5f3721c29251f477821de8e72197725bd2a9bd28ee82e36e53c458f2fffdfb089281517aeffdbbc1737524ac91e6ffbd47e543f87ad80d811fd04cdcc46005651a8824014bf0a275cfd1de48299de4ac8a8b60deffadf6e420322062f5a0e136e1e479f9456d12ad822bda4c83966a842e3a6d41e8bdd814649d8d36638a5e08df844157d53d344e7c6a4b35a8eb8a8613d13130f002a970f51198e3499935c388d40090377db78e21130a1c86927e4d8b9e2e6c4ddc", @ANYRES16=r0, @ANYBLOB="43c73f51cce67d3c5b23d3053896917a9a727af013aae0cbb835724094711670f5292d33c5c3845030113b74940b6a36889fc547c0d184b60eacfc2222e5787a6f311f6d7d1699af052c751aa144e564e3d4c1f01fc92ab739f404c2235e14f6013164d35fb2b7f9a3c3290b906c9bef95468f234d7f231e1a3e1177172aede66e05a20457b8709f2bff4cdd569706916db9068488d12108ac29a5244918dda11193bb626a910a3dcbd99b68efa4c2b6be48abc540c3c66680902f2e470193e520b73e29040c67398ff2a5ba3f36edc3f613fd672fb08cc8ae1a75f39422b5306433e55dff88b3c7", @ANYRESDEC=r2, @ANYRESDEC, @ANYRES16=r1, @ANYRESOCT, @ANYRESOCT=r2, @ANYRES16=r0], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r3, 0x3, 0x0, 0x8000) 07:16:25 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 82) 07:16:25 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0}, 0x58) 07:16:25 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0}, 0x58) [ 2145.870932] FAULT_INJECTION: forcing a failure. [ 2145.870932] name failslab, interval 1, probability 0, space 0, times 0 [ 2145.873269] CPU: 1 PID: 47920 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2145.874653] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2145.876314] Call Trace: [ 2145.876849] dump_stack+0x107/0x167 [ 2145.877588] should_fail.cold+0x5/0xa [ 2145.878358] ? __pmd_alloc+0x94/0x5e0 [ 2145.879122] should_failslab+0x5/0x20 [ 2145.879901] kmem_cache_alloc+0x5b/0x310 [ 2145.880792] __pmd_alloc+0x94/0x5e0 [ 2145.881550] copy_page_range+0x2bed/0x3820 [ 2145.882403] ? perf_trace_lock+0xac/0x490 [ 2145.883250] ? lock_chain_count+0x20/0x20 [ 2145.884164] ? up_write+0x191/0x550 [ 2145.884917] ? vm_iomap_memory+0x190/0x190 [ 2145.885778] ? downgrade_write+0x3a0/0x3a0 [ 2145.886648] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2145.887770] ? __vma_link_rb+0x540/0x700 [ 2145.888623] dup_mm+0x8b9/0x1110 [ 2145.889328] ? vm_area_dup+0x290/0x290 [ 2145.890138] ? __raw_spin_lock_init+0x36/0x110 [ 2145.891077] copy_process+0x24e2/0x6740 [ 2145.891901] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2145.892979] ? exc_page_fault+0xca/0x1a0 [ 2145.893812] ? trace_hardirqs_on+0x5b/0x180 [ 2145.894710] ? __cleanup_sighand+0xb0/0xb0 [ 2145.895594] ? _copy_from_user+0xfb/0x1b0 [ 2145.896440] kernel_clone+0xe7/0x980 [ 2145.897187] ? __lockdep_reset_lock+0x180/0x180 [ 2145.898123] ? create_io_thread+0xf0/0xf0 [ 2145.898972] ? ksys_write+0x21a/0x260 [ 2145.899738] ? lock_downgrade+0x6d0/0x6d0 [ 2145.900593] __do_sys_clone3+0x1e5/0x320 [ 2145.901407] ? __do_sys_clone+0x110/0x110 [ 2145.902269] ? rcu_read_lock_any_held+0x75/0xa0 [ 2145.903211] ? vfs_write+0x354/0xa70 [ 2145.903970] ? fput_many+0x2f/0x1a0 [ 2145.904726] ? ksys_write+0x1a9/0x260 [ 2145.905496] ? __ia32_sys_read+0xb0/0xb0 [ 2145.906330] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2145.907390] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2145.908460] ? trace_hardirqs_on+0x5b/0x180 [ 2145.909338] do_syscall_64+0x33/0x40 [ 2145.910101] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2145.911154] RIP: 0033:0x7f92d9afeb19 [ 2145.911911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2145.915638] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2145.917231] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2145.918673] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2145.920152] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2145.921584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2145.923052] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:16:25 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:16:25 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/scsi_host', 0x294000, 0x20) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000080)={r1, 0x3, 0x100, 0x2}) openat(r2, &(0x7f00000000c0)='./file0/file0\x00', 0x40, 0x90) 07:16:25 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 83) 07:16:25 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) fallocate(0xffffffffffffffff, 0x3, 0x0, 0x8000) 07:16:25 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58) 07:16:25 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58) 07:16:25 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000200, 0x0, 0x0}, 0x58) [ 2146.154300] FAULT_INJECTION: forcing a failure. [ 2146.154300] name failslab, interval 1, probability 0, space 0, times 0 [ 2146.156646] CPU: 1 PID: 48136 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2146.158036] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2146.159700] Call Trace: [ 2146.160261] dump_stack+0x107/0x167 [ 2146.161001] should_fail.cold+0x5/0xa [ 2146.161774] ? create_object.isra.0+0x3a/0xa20 [ 2146.162696] should_failslab+0x5/0x20 [ 2146.163463] kmem_cache_alloc+0x5b/0x310 [ 2146.164296] create_object.isra.0+0x3a/0xa20 [ 2146.165182] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2146.166208] kmem_cache_alloc+0x159/0x310 [ 2146.167053] anon_vma_fork+0xf1/0x640 [ 2146.167824] ? __vm_enough_memory+0x184/0x360 [ 2146.168752] dup_mm+0x861/0x1110 [ 2146.169453] ? vm_area_dup+0x290/0x290 [ 2146.170243] ? __raw_spin_lock_init+0x36/0x110 [ 2146.171168] copy_process+0x24e2/0x6740 [ 2146.171970] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2146.173053] ? exc_page_fault+0xca/0x1a0 [ 2146.173872] ? trace_hardirqs_on+0x5b/0x180 [ 2146.174764] ? __cleanup_sighand+0xb0/0xb0 [ 2146.175636] ? _copy_from_user+0xfb/0x1b0 [ 2146.176503] kernel_clone+0xe7/0x980 [ 2146.177257] ? __lockdep_reset_lock+0x180/0x180 [ 2146.178197] ? create_io_thread+0xf0/0xf0 [ 2146.179049] ? ksys_write+0x21a/0x260 [ 2146.179819] ? lock_downgrade+0x6d0/0x6d0 [ 2146.180672] __do_sys_clone3+0x1e5/0x320 [ 2146.181489] ? __do_sys_clone+0x110/0x110 [ 2146.182349] ? rcu_read_lock_any_held+0x75/0xa0 [ 2146.183281] ? vfs_write+0x354/0xa70 [ 2146.184040] ? fput_many+0x2f/0x1a0 [ 2146.184792] ? ksys_write+0x1a9/0x260 [ 2146.185559] ? __ia32_sys_read+0xb0/0xb0 [ 2146.186382] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2146.187434] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2146.188487] ? trace_hardirqs_on+0x5b/0x180 [ 2146.189365] do_syscall_64+0x33/0x40 [ 2146.190118] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2146.191152] RIP: 0033:0x7f92d9afeb19 [ 2146.191904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2146.195591] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2146.197138] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2146.198573] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2146.200003] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2146.201442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2146.202871] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:16:40 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x101000, 0x0, 0x0}, 0x58) 07:16:40 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000200, 0x0, 0x0}, 0x58) 07:16:40 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 84) 07:16:40 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, 0x0}, 0x58) 07:16:40 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000080)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x4000010, r0, 0x8000000) syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x3, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x15, 0x1}, 0x20000000) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x11080, 0x0) ioctl$BTRFS_IOC_ADD_DEV(r2, 0x5000940a, &(0x7f0000000300)={{}, "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"}) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) bind$unix(r4, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r4, 0x0) ppoll(&(0x7f0000000240)=[{r4, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) readv(r4, &(0x7f0000001440)=[{&(0x7f00000000c0)=""/251, 0xfb}, {&(0x7f00000001c0)=""/228, 0xe4}, {&(0x7f0000001300)=""/33, 0x21}, {&(0x7f0000001340)=""/7, 0x7}, {&(0x7f0000001380)=""/147, 0x93}], 0x5) fallocate(r3, 0x67, 0x0, 0x4) 07:16:40 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) fallocate(0xffffffffffffffff, 0x3, 0x0, 0x8000) 07:16:40 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000800, 0x0, 0x0}, 0x58) 07:16:40 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58) [ 2161.174262] FAULT_INJECTION: forcing a failure. [ 2161.174262] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2161.176732] CPU: 0 PID: 48370 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2161.178104] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2161.179730] Call Trace: [ 2161.180272] dump_stack+0x107/0x167 [ 2161.181003] should_fail.cold+0x5/0xa [ 2161.181942] __alloc_pages_nodemask+0x182/0x600 [ 2161.182919] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2161.184112] ? find_held_lock+0x2c/0x110 [ 2161.184935] ? __pmd_alloc+0x2db/0x5e0 [ 2161.185715] ? lock_downgrade+0x6d0/0x6d0 [ 2161.186534] ? do_raw_spin_lock+0x121/0x260 [ 2161.187392] alloc_pages_current+0x187/0x280 [ 2161.188280] pte_alloc_one+0x16/0x1a0 [ 2161.189044] __pte_alloc+0x1d/0x330 [ 2161.189779] copy_page_range+0x1b77/0x3820 [ 2161.190622] ? perf_trace_lock+0xac/0x490 [ 2161.191430] ? lock_chain_count+0x20/0x20 [ 2161.192320] ? up_write+0x191/0x550 [ 2161.193055] ? vm_iomap_memory+0x190/0x190 [ 2161.193897] ? downgrade_write+0x3a0/0x3a0 [ 2161.194753] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2161.195849] ? __vma_link_rb+0x540/0x700 [ 2161.196686] dup_mm+0x8b9/0x1110 [ 2161.197388] ? vm_area_dup+0x290/0x290 [ 2161.198184] ? __raw_spin_lock_init+0x36/0x110 [ 2161.199099] copy_process+0x24e2/0x6740 [ 2161.199895] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2161.200952] ? exc_page_fault+0xca/0x1a0 [ 2161.201767] ? trace_hardirqs_on+0x5b/0x180 [ 2161.202649] ? __cleanup_sighand+0xb0/0xb0 [ 2161.203515] ? _copy_from_user+0xfb/0x1b0 [ 2161.204368] kernel_clone+0xe7/0x980 [ 2161.205114] ? __lockdep_reset_lock+0x180/0x180 [ 2161.206052] ? create_io_thread+0xf0/0xf0 [ 2161.206902] ? ksys_write+0x21a/0x260 [ 2161.207672] ? lock_downgrade+0x6d0/0x6d0 [ 2161.208512] __do_sys_clone3+0x1e5/0x320 [ 2161.209365] ? __do_sys_clone+0x110/0x110 [ 2161.210237] ? rcu_read_lock_any_held+0x75/0xa0 [ 2161.211172] ? vfs_write+0x354/0xa70 [ 2161.211956] ? fput_many+0x2f/0x1a0 [ 2161.212716] ? ksys_write+0x1a9/0x260 [ 2161.213514] ? __ia32_sys_read+0xb0/0xb0 [ 2161.214329] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2161.215372] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2161.216474] ? trace_hardirqs_on+0x5b/0x180 [ 2161.217388] do_syscall_64+0x33/0x40 [ 2161.218172] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2161.219244] RIP: 0033:0x7f92d9afeb19 [ 2161.220016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2161.223877] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2161.225459] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2161.226916] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2161.228384] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2161.229844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2161.231305] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:16:40 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) r2 = syz_io_uring_complete(0x0) ppoll(&(0x7f0000000000)=[{r1}, {r2, 0x6a9}], 0x2, &(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r1, 0x942e, 0x0) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r3, 0x3, 0x0, 0x8000) 07:16:40 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) fallocate(0xffffffffffffffff, 0x3, 0x0, 0x8000) 07:16:40 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 85) 07:16:40 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58) [ 2161.505113] FAULT_INJECTION: forcing a failure. [ 2161.505113] name failslab, interval 1, probability 0, space 0, times 0 [ 2161.507552] CPU: 0 PID: 48885 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2161.508963] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2161.510658] Call Trace: [ 2161.511201] dump_stack+0x107/0x167 [ 2161.511949] should_fail.cold+0x5/0xa [ 2161.512756] ? create_object.isra.0+0x3a/0xa20 [ 2161.513697] should_failslab+0x5/0x20 [ 2161.514472] kmem_cache_alloc+0x5b/0x310 [ 2161.515307] create_object.isra.0+0x3a/0xa20 [ 2161.516198] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2161.517238] kmem_cache_alloc+0x159/0x310 [ 2161.518085] __pmd_alloc+0x94/0x5e0 [ 2161.518837] copy_page_range+0x2bed/0x3820 [ 2161.519699] ? perf_trace_lock+0xac/0x490 [ 2161.520561] ? lock_chain_count+0x20/0x20 [ 2161.521445] ? up_write+0x191/0x550 [ 2161.522202] ? vm_iomap_memory+0x190/0x190 [ 2161.523062] ? downgrade_write+0x3a0/0x3a0 [ 2161.523929] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2161.525045] ? __vma_link_rb+0x540/0x700 [ 2161.525885] dup_mm+0x8b9/0x1110 [ 2161.526597] ? vm_area_dup+0x290/0x290 [ 2161.527398] ? __raw_spin_lock_init+0x36/0x110 [ 2161.528337] copy_process+0x24e2/0x6740 [ 2161.529347] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2161.530417] ? exc_page_fault+0xca/0x1a0 [ 2161.531241] ? trace_hardirqs_on+0x5b/0x180 [ 2161.532136] ? __cleanup_sighand+0xb0/0xb0 [ 2161.533302] ? _copy_from_user+0xfb/0x1b0 [ 2161.534149] kernel_clone+0xe7/0x980 [ 2161.534903] ? __lockdep_reset_lock+0x180/0x180 [ 2161.535842] ? create_io_thread+0xf0/0xf0 [ 2161.536717] ? ksys_write+0x21a/0x260 [ 2161.537487] ? lock_downgrade+0x6d0/0x6d0 [ 2161.538328] __do_sys_clone3+0x1e5/0x320 [ 2161.539149] ? __do_sys_clone+0x110/0x110 [ 2161.540007] ? rcu_read_lock_any_held+0x75/0xa0 [ 2161.540960] ? vfs_write+0x354/0xa70 [ 2161.541716] ? fput_many+0x2f/0x1a0 [ 2161.542452] ? ksys_write+0x1a9/0x260 [ 2161.543221] ? __ia32_sys_read+0xb0/0xb0 [ 2161.544050] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2161.545121] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2161.546160] ? trace_hardirqs_on+0x5b/0x180 [ 2161.547035] do_syscall_64+0x33/0x40 [ 2161.547793] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2161.548844] RIP: 0033:0x7f92d9afeb19 [ 2161.549599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2161.553333] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2161.554869] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2161.556318] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2161.557724] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2161.559136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2161.560563] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:16:55 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, 0x0}, 0x58) 07:16:55 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, 0x0}, 0x58) 07:16:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 86) 07:16:55 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58) 07:16:55 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58) 07:16:55 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1b0c31f000, 0x0, 0x0}, 0x58) 07:16:55 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:16:55 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) syncfs(r0) write$binfmt_elf64(r0, &(0x7f0000000180)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) read(r0, &(0x7f0000000080)=""/174, 0xae) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x101142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) creat(&(0x7f0000000140)='./file0\x00', 0x31) [ 2176.251834] FAULT_INJECTION: forcing a failure. [ 2176.251834] name failslab, interval 1, probability 0, space 0, times 0 [ 2176.253109] CPU: 0 PID: 49018 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2176.253907] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2176.254826] Call Trace: [ 2176.255207] dump_stack+0x107/0x167 [ 2176.255636] should_fail.cold+0x5/0xa [ 2176.256063] ? create_object.isra.0+0x3a/0xa20 [ 2176.256583] should_failslab+0x5/0x20 [ 2176.257009] kmem_cache_alloc+0x5b/0x310 [ 2176.257463] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2176.258128] create_object.isra.0+0x3a/0xa20 [ 2176.258615] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2176.259181] kmem_cache_alloc+0x159/0x310 [ 2176.259654] ptlock_alloc+0x1d/0x70 [ 2176.260060] pte_alloc_one+0x68/0x1a0 [ 2176.260518] __pte_alloc+0x1d/0x330 [ 2176.260926] copy_page_range+0x1b77/0x3820 [ 2176.261398] ? perf_trace_lock+0xac/0x490 [ 2176.261857] ? lock_chain_count+0x20/0x20 [ 2176.262356] ? up_write+0x191/0x550 [ 2176.262761] ? vm_iomap_memory+0x190/0x190 [ 2176.263239] ? downgrade_write+0x3a0/0x3a0 [ 2176.263730] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2176.264335] ? __vma_link_rb+0x540/0x700 [ 2176.264827] dup_mm+0x8b9/0x1110 [ 2176.265222] ? vm_area_dup+0x290/0x290 [ 2176.265674] ? __raw_spin_lock_init+0x36/0x110 [ 2176.266186] copy_process+0x24e2/0x6740 [ 2176.266643] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2176.267232] ? exc_page_fault+0xca/0x1a0 [ 2176.267707] ? trace_hardirqs_on+0x5b/0x180 [ 2176.268202] ? __cleanup_sighand+0xb0/0xb0 [ 2176.268720] ? _copy_from_user+0xfb/0x1b0 [ 2176.269191] kernel_clone+0xe7/0x980 [ 2176.269623] ? __lockdep_reset_lock+0x180/0x180 [ 2176.270136] ? create_io_thread+0xf0/0xf0 [ 2176.270625] ? ksys_write+0x21a/0x260 [ 2176.271046] ? lock_downgrade+0x6d0/0x6d0 [ 2176.271533] __do_sys_clone3+0x1e5/0x320 [ 2176.271986] ? __do_sys_clone+0x110/0x110 [ 2176.272497] ? rcu_read_lock_any_held+0x75/0xa0 [ 2176.273010] ? vfs_write+0x354/0xa70 [ 2176.273451] ? fput_many+0x2f/0x1a0 [ 2176.273855] ? ksys_write+0x1a9/0x260 [ 2176.274315] ? __ia32_sys_read+0xb0/0xb0 [ 2176.274768] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2176.275427] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2176.276067] ? trace_hardirqs_on+0x5b/0x180 [ 2176.276616] do_syscall_64+0x33/0x40 [ 2176.277081] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2176.277682] RIP: 0033:0x7f92d9afeb19 [ 2176.278094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2176.280239] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2176.281201] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2176.282089] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2176.282974] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2176.283868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2176.284768] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:16:55 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:16:55 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58) 07:16:55 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = fsopen(&(0x7f0000000080)='hfs\x00', 0x0) fallocate(r1, 0x0, 0x3, 0x81) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, r2, 0x0) r3 = semget$private(0x0, 0x6, 0x0) semop(r3, &(0x7f0000000000)=[{}], 0x1) fallocate(r2, 0x3, 0x0, 0x8000) 07:16:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 87) [ 2176.532367] FAULT_INJECTION: forcing a failure. [ 2176.532367] name failslab, interval 1, probability 0, space 0, times 0 [ 2176.534854] CPU: 1 PID: 49530 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2176.536304] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2176.538056] Call Trace: [ 2176.538623] dump_stack+0x107/0x167 [ 2176.539402] should_fail.cold+0x5/0xa [ 2176.540213] ? vm_area_dup+0x78/0x290 [ 2176.541035] should_failslab+0x5/0x20 07:16:55 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:16:55 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58) 07:16:55 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000000000, 0x0, 0x0}, 0x58) [ 2176.541844] kmem_cache_alloc+0x5b/0x310 [ 2176.542921] ? lock_downgrade+0x6d0/0x6d0 [ 2176.543813] vm_area_dup+0x78/0x290 [ 2176.544777] ? _cond_resched+0x12/0x80 [ 2176.545666] ? copy_page_range+0x24fe/0x3820 [ 2176.546851] ? vm_area_alloc+0x110/0x110 [ 2176.547783] ? up_write+0x191/0x550 [ 2176.548737] ? vm_iomap_memory+0x190/0x190 [ 2176.549695] ? downgrade_write+0x3a0/0x3a0 [ 2176.550790] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2176.552015] ? __vma_link_rb+0x540/0x700 [ 2176.552996] dup_mm+0x44d/0x1110 [ 2176.553776] ? vm_area_dup+0x290/0x290 [ 2176.554665] ? __raw_spin_lock_init+0x36/0x110 [ 2176.555692] copy_process+0x24e2/0x6740 [ 2176.556601] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2176.557772] ? exc_page_fault+0xca/0x1a0 [ 2176.558689] ? trace_hardirqs_on+0x5b/0x180 [ 2176.559675] ? __cleanup_sighand+0xb0/0xb0 [ 2176.560660] ? _copy_from_user+0xfb/0x1b0 [ 2176.561605] kernel_clone+0xe7/0x980 [ 2176.562449] ? __lockdep_reset_lock+0x180/0x180 [ 2176.563484] ? create_io_thread+0xf0/0xf0 [ 2176.564445] ? ksys_write+0x21a/0x260 [ 2176.565327] ? lock_downgrade+0x6d0/0x6d0 [ 2176.566271] __do_sys_clone3+0x1e5/0x320 [ 2176.567182] ? __do_sys_clone+0x110/0x110 [ 2176.568150] ? rcu_read_lock_any_held+0x75/0xa0 [ 2176.569201] ? vfs_write+0x354/0xa70 [ 2176.570052] ? fput_many+0x2f/0x1a0 [ 2176.570877] ? ksys_write+0x1a9/0x260 [ 2176.571739] ? __ia32_sys_read+0xb0/0xb0 [ 2176.572676] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2176.573865] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2176.575016] ? trace_hardirqs_on+0x5b/0x180 [ 2176.576000] do_syscall_64+0x33/0x40 [ 2176.576863] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2176.578031] RIP: 0033:0x7f92d9afeb19 [ 2176.578975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2176.583104] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2176.584831] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2176.586416] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2176.588007] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2176.589638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2176.591243] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:16:55 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58) 07:16:55 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58) 07:16:55 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fcntl$dupfd(r0, 0x0, r0) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:16:55 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58) 07:16:56 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58) 07:16:56 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fcntl$dupfd(r0, 0x0, r0) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:17:12 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58) 07:17:12 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fcntl$dupfd(r0, 0x0, r0) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:17:12 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 88) 07:17:12 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0}, 0x58) 07:17:12 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58) 07:17:12 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000800, 0x0, 0x0}, 0x58) 07:17:12 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2a2582812000, 0x0, 0x0}, 0x58) 07:17:12 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x48) r1 = socket$inet_tcp(0x2, 0x1, 0x0) ppoll(&(0x7f0000000240)=[{0xffffffffffffffff, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r2 = accept$inet(r1, &(0x7f00000011c0)={0x2, 0x0, @loopback}, &(0x7f0000001200)=0x10) r3 = socket$unix(0x1, 0x5, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r3, 0x0) ppoll(&(0x7f0000000240)=[{r3, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) bind$unix(r4, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r4, 0x0) ppoll(&(0x7f0000000240)=[{r4, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001380)={&(0x7f0000000140)=@proc={0x10, 0x0, 0x25dfdbfe, 0x10}, 0xc, &(0x7f0000001040)=[{&(0x7f0000001740)={0x440, 0x2f, 0x100, 0x70bd2d, 0x25dfdbff, "", [@generic="c9aaebd26a196d18ced0621d460015569a6c32e9da2ca71bd7b5be20eb23c8bca97292e33e3b812d2ae09ec8c03895fb8ec3a474679b7a6800437a14dab16a33f588e37c4f0a9d00", @nested={0x276, 0x34, 0x0, 0x1, [@generic="5d5808a4f165321eeada3ba36c2f7b5069dd02f76878b2c675dbdb7a892e01279b23edf51ea99a58d9cc1f9869571725de52f60aa2ca6a21552b52e4a16065b6621c8e3735232d52adbe453074eab13de40241aff26b91a2987b07f8a163d8aeb7f4ffcbc0d84d76d0980c6de86f8d5c68b52e99bed37642561a44c759a0bbd8b7b344d37fc75bd0e08c72c74828a249", @generic="c6d4e9407037d67057a0de189a550517a02ded3f5df9fea62173948401f99817b0e9cbbcc65b87b336f1d6b476f06cd9e89c5a1e50395925c28e21501a19a1dc4b27465ac0d73d32825d661301f2a1f89a26d22ee506219fceeb157b586d36baff4959c9f4d077504854a83d3ed22b939338ec8dd8342da83df34ff06d1d683f47a1bc6b3be2e76f563479df01ea4a1e486d87caf8857b28ae08694bb708ff40a48e900216cf58ffb6c86a685f5c13c2274a5847e83dd59c769f891f7330538383b8dd9dc700f0f0601bc0f3e79538974e1f8efc1677c2809f0ed8be", @generic="e98b3977c88bc62f0f586451c0eff662a048215406d1d86ccdc710bc870043ed8f3a88f8f8e0ab9fbfbef0d349c63f2394c4e967369cddff5aac8208", @typed={0x8, 0x57, 0x0, 0x0, @u32=0x3}, @generic="226fe6f8920cc6372b6c83661cb50e6e8779c656d5f372710dedd6cb5740951230d92002c2e451371e569aded71510351474389a331b332979d20c5f8c3e74c21ab739a7eba23c2784fd069912fe930fa8eb98ab61094fab1e3442fed75f82da47490f5b1f567a8c2605b02b00a60cc34025cb4b724d2593b9be11243ccb0dbf1ea37aa8a4d20a17f081c333ab514ee4af66b1c2d8951c2d3e51b1567c6a197dcb38f774e8eafc88", @typed={0xc, 0x40, 0x0, 0x0, @u64=0x77}, @generic="ce10ff59566e310835d3", @typed={0x4, 0x25}]}, @nested={0x10e, 0x32, 0x0, 0x1, [@generic="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", @typed={0x8, 0x84, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x8, 0x85, 0x0, 0x0, @uid=0xee00}]}, @nested={0x5e, 0x59, 0x0, 0x1, [@typed={0x8, 0x847, 0x0, 0x0, @u32=0x100}, @generic="d8a82878f16775da0f4e11b53aab759c26571bf3b235a864385f23a249bd739dd3f40e51caacffc1b8193bad7a3e322f808f653e954bd794dbdc156ff8380ba7ee5b", @typed={0x8, 0x61, 0x0, 0x0, @u32=0x9}, @typed={0x8, 0xa, 0x0, 0x0, @uid}]}]}, 0x440}, {&(0x7f0000000640)={0x10, 0x2b, 0x200, 0x70bd26, 0x25dfdbfb}, 0x10}, {&(0x7f0000002680)={0x574, 0x29, 0x400, 0x70bd29, 0x25dfdbfd, "", [@nested={0x265, 0x2, 0x0, 0x1, [@typed={0x8, 0x53, 0x0, 0x0, @pid}, @generic="cb5172efd55534e5d6749fbecad999953f372670732eff3fdefd7fbca55373f6c7e9d527ab5eb3bb8f437564468d7f7efa8dbdd152c89e27fcbff2733b60146dac65a680f4221163711d964b12e08bdd12279944c38855b872e0d90be10311977e41287b5eda5cdda77f9390dc28426212269868598cedab367eb5e4265c7e2e9030ea7a22e76649ada7f0cc19bb52f5ec9c0e40fada2a8b052123457d20359c4a6c706307067056f9c54df9b6f8b9e09938b3adf5b1d07d32a951c89bbb7f9d0d19edab91acc3df8aa45527b2b8858f4812dc5b4c7a6c66608eb149bc80", @generic="5ecfcafb91ddfa9498ff8349681383c783750d314e3c3f8a61f237bd9d27e9e3141a6c54e34eef7dc8b9798d01fdafd319247b73bfdd373f3dfb1eb198ccdb4269b34145e5c9513316cc5500295fff426b74ca9c663e90af6b90fc79170aed83880c809396decb3017c7f01fe1cc423d527d8817070477b1653b7024ef068756095c951482d8ecf9993a56eafdeee5feadb47a862a0eac53f93a9a7275bbcbf89d5ae0111ae8bcf1c86d31d8567573f2de4ceb1856069831d4363758b890680d5879ebc2749477c2c12805998a579392ca41115b1dc0a33201ef705928", @generic="3ddc64658ba9869492b0261adc6c2d828feb967d7bc5a664b83a3daa03520bc961290ff939fc70474c5636b14663bf26fc5330bf10dfedd95f77a4629ba3912afb848304391c5b07964c4ef46ac3f8d4241d7d3ec66deeddb3c25b7eb7008591ec106a2d6bec00", @typed={0x8, 0x29, 0x0, 0x0, @uid=0xee01}, @generic="30754bbb390b45fabc52fac6961c3946f96af7d66c3e5137b9f1014b142ce405972fbf9893b04253dd4becdbeb5124"]}, @nested={0x187, 0x50, 0x0, 0x1, [@typed={0x8, 0x31, 0x0, 0x0, @ipv4=@private=0xa010101}, @typed={0x4, 0x21}, @generic="cfe2664f6379e4888d7a5c3bd724ce35a38007cc62de8b979f04d7dd7fc69d8696956440554c47c0592ae990095e005ae6a2a776e1ac36c5bdadcd92d1a17b4736c1d903dada0bd90a9524ef22ee27ea5c1598021f3b2bb3b736e9d5e7d6bb91d805daf9dd304f821c8c", @typed={0x4, 0x17d}, @typed={0x6, 0x95, 0x0, 0x0, @str=')\x00'}, @typed={0x8, 0x3a, 0x0, 0x0, @fd}, @generic="452b547903d55f0035f845ef565bdb13d10681cff616a28c23e254a72db29a2f328a5210ae83b10222e8c6f89e818db764f31e6c288cd56b1cab25a068e4ecefb3ea6a21b793c296f058b98ca5c482fc5ea527923f09eddc38219e104c256ec6bd6272c162bbea973151c8f7fc5f899905c9a51c2a09806b2acdb2e88918ee43731a0cb5cd29dd3273363e393eb989185d37a40f700b7cbd563f531aa25216668d50a6e0a280420eb3c3fe3b5768e41e1712e006cb612c391bca61f1285355d3be3e3701f6ab082194bc0b9aa551a43adf542e5e14f65b34cfb2ba9885d77495f2acfef118318c1e68c2cf7b72fef3b1bc039b6707b08f81ca"]}, @typed={0x8, 0xe, 0x0, 0x0, @uid}, @nested={0x80, 0x4f, 0x0, 0x1, [@typed={0x8, 0x8, 0x0, 0x0, @u32=0x3}, @generic="64eb2d258f9cd56c7382c33ff1e008a11eac969365ebbe6346b806408c3b0cfa75424b46b469b75e7c53900df4600234ad7356ec6c645f8d0c802714a0c658f1d294439a1e4037d34d4d09", @typed={0xc, 0x8a, 0x0, 0x0, @u64=0xf73}, @typed={0x6, 0x8, 0x0, 0x0, @str=')\x00'}, @typed={0x4, 0x79}, @typed={0x8, 0x70, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="3afba92a2de068a869"]}, @nested={0x8, 0x5e, 0x0, 0x1, [@typed={0x4, 0x1f}]}, @nested={0xe3, 0x8b, 0x0, 0x1, [@typed={0x8, 0x69, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="82990bfc5d6d090e7de3c4724e548454f9fdf83fa7d8a224e923c402916a91d456e6e2ad2c97605a362f67d9b227582e9d1b7c3cc9dea97934d4b74e04585ee70a7308d011c1cfaf2a01a6f89233db7513044648976e475de499d24d8ecb71c5d0c36dd863d1f24824175616f7d2e4769744f8123eae187748f89284288953f6e32153daea87aaa51b08e07f14cda5720795de92b2b82bb612bb832c18e76fd69e1699c6ae72bebfb58d65f4cdb5ce5509095d3622439e71c617ca960980c5d79832df763e64360143877a72fc43d35b895f2f02745620"]}]}, 0x574}, {&(0x7f0000000b80)={0x49c, 0x1, 0x800, 0x70bd2d, 0x25dfdbff, "", [@nested={0x7c, 0x39, 0x0, 0x1, [@generic="d80f28a8727c4f2ef80cfddaa9592264837cf547848bdd0c8a65069721c364997e9b87c4b9702a5ead7a75776ea8bc77f7d39adaa198b15789a0e37aa6420e05de5b4ce1b57e79c476a18b5ffd574c2a", @typed={0x8, 0x5b8, 0x0, 0x0, @pid}, @typed={0x8, 0x1b, 0x0, 0x0, @uid}, @typed={0x8, 0x6a, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0x8, 0x7, 0x0, 0x0, @pid}, @typed={0x8, 0x4f, 0x0, 0x0, @u32=0x1ff}]}, @generic="8cfafd268e47e5310ee2e67711044c734a15bbd5d6f4c180ff1526d3a51b43830bc4ea1b244f0726bacbecbdeffa46d12b7fab70dc0979e7f671c4b3398bf6a1da48467256f6374cae9c38309cb4326949b16ee2b1950f1cefd50f9321559195f338ea8ef4cf5102ae8ab2ce52783bde7fdd03", @generic="560579a0cf4dea13ea8a5324aa0256139f0ab458993f5e50ebe010b0ec8ee9ab706e20d0d97d6178b1550fbff29df7b2d3fabee2c62e42cbeae824b4cd2c9a4c7b3a612439bce5c995ef5ff97310c41f58255fe27065c0c1e139b96070967558f5a5a081e8fc6e90b8d2d68b608d0027cb2097383eb12eee03cb9bf0d3483b7724", @generic="f1d44de5d3fc9e7c56d5", @nested={0xf8, 0x40, 0x0, 0x1, [@typed={0xc, 0x76, 0x0, 0x0, @u64=0x9}, @generic="1426b0b855672fbaa397a87e435955a35b2dbd0cc6db27a3956cc6d20f0401bf2f79e18dca870f6ce7a4d581", @typed={0x8, 0x4a, 0x0, 0x0, @fd=r0}, @typed={0xb2, 0x5a, 0x0, 0x0, @binary="d856ef82dbb65ad19f87d8785dcdf96e93aaf34196f2dd5880c3a8411745bf91469b010d6b3c9d7d2cc1b5bced4debad97c1185c481554fce4ed247525e85beefa791bda4cadbcc9a83486dd695e18ceb8f87c6d83ceba2c2eab7dbf8a9d1388532e3250500d6752bd6de2edd641e898d28849194ce41f7055ba3719ea5421d49d475f51969fea9da24dabb79929969ec684d18f956a9f71b6d57edc90cb2d21930bebe0e68b4b8380226d22af6d"}]}, @typed={0x4, 0x24, 0x0, 0x0, @binary}, @generic="f1be6f6957408288d1fee4d1a202c7e76b46eb5dfc654f0c0eca2b34d3d60512c123327adff4f43e13096a0d331d66b7993537875a52c10150e80e982f953d245aafa7858bdb5c5abcd899f37b3f8a027126bd5d76d3bf2ef9781a", @generic="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", @nested={0xb2, 0x73, 0x0, 0x1, [@generic="e6d28ee5e1d69501bc3d19c8fec1c7bb462506acae3978839708fa8305d2eb6fc2a95af5bcf4170705e6b60ecb90e62b1a6ab4eac90a49a18620fbce55efe5cc12b672a0c61e0df0a1e2c71ea5bdaed669a637d33463ef828ed8ed81a1b9b880c463e95b9dbeb90adeb7e9dd6d474198262e5e5be2158bbee15a0601eaadf9d6ba500744e85fa3ecc6fdf96f283245e585087d55c7f42018a05fa89ad6d3b96fec81f91d59eb3955748b5603d189"]}, @typed={0x8, 0x93, 0x0, 0x0, @fd=r1}]}, 0x49c}], 0x4, &(0x7f0000000800)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, r1, r1, r0]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r2, r3, r4]}}, @rights={{0x18, 0x1, 0x1, [r1, r1]}}], 0x120}, 0x8080) ioctl$EXT4_IOC_MIGRATE(r1, 0x6609) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000000)=0x3) r5 = openat(r0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) fallocate(r5, 0x3, 0x0, 0x8000) [ 2193.370338] FAULT_INJECTION: forcing a failure. [ 2193.370338] name failslab, interval 1, probability 0, space 0, times 0 [ 2193.372610] CPU: 1 PID: 50177 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2193.373987] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2193.375633] Call Trace: [ 2193.376168] dump_stack+0x107/0x167 [ 2193.377024] should_fail.cold+0x5/0xa [ 2193.377797] ? create_object.isra.0+0x3a/0xa20 [ 2193.378896] should_failslab+0x5/0x20 [ 2193.379680] kmem_cache_alloc+0x5b/0x310 [ 2193.380536] create_object.isra.0+0x3a/0xa20 [ 2193.381454] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2193.382473] kmem_cache_alloc+0x159/0x310 [ 2193.383312] vm_area_dup+0x78/0x290 [ 2193.384048] ? _cond_resched+0x12/0x80 [ 2193.384849] ? copy_page_range+0x24fe/0x3820 [ 2193.385766] ? vm_area_alloc+0x110/0x110 [ 2193.386588] ? up_write+0x191/0x550 [ 2193.387314] ? vm_iomap_memory+0x190/0x190 [ 2193.388157] ? downgrade_write+0x3a0/0x3a0 [ 2193.389029] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2193.390114] ? __vma_link_rb+0x540/0x700 [ 2193.391013] dup_mm+0x44d/0x1110 [ 2193.391724] ? vm_area_dup+0x290/0x290 [ 2193.392662] ? __raw_spin_lock_init+0x36/0x110 [ 2193.393617] copy_process+0x24e2/0x6740 [ 2193.394577] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2193.395660] ? exc_page_fault+0xca/0x1a0 [ 2193.396489] ? trace_hardirqs_on+0x5b/0x180 [ 2193.397564] ? __cleanup_sighand+0xb0/0xb0 [ 2193.398429] ? _copy_from_user+0xfb/0x1b0 [ 2193.399434] kernel_clone+0xe7/0x980 [ 2193.400191] ? __lockdep_reset_lock+0x180/0x180 [ 2193.401320] ? create_io_thread+0xf0/0xf0 [ 2193.402257] ? ksys_write+0x21a/0x260 [ 2193.403221] ? lock_downgrade+0x6d0/0x6d0 [ 2193.404062] __do_sys_clone3+0x1e5/0x320 [ 2193.405044] ? __do_sys_clone+0x110/0x110 [ 2193.405903] ? rcu_read_lock_any_held+0x75/0xa0 [ 2193.407011] ? vfs_write+0x354/0xa70 [ 2193.407770] ? fput_many+0x2f/0x1a0 [ 2193.408641] ? ksys_write+0x1a9/0x260 [ 2193.409413] ? __ia32_sys_read+0xb0/0xb0 [ 2193.410473] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2193.411723] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2193.412761] ? trace_hardirqs_on+0x5b/0x180 [ 2193.413801] do_syscall_64+0x33/0x40 [ 2193.414557] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2193.415779] RIP: 0033:0x7f92d9afeb19 [ 2193.416534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2193.420944] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2193.422463] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2193.424166] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2193.425601] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2193.427297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2193.428718] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:17:12 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(0xffffffffffffffff, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:17:12 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58) 07:17:12 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) openat(r0, &(0x7f0000000100)='./file0\x00', 0x206001, 0x4) fallocate(r0, 0x0, 0x0, 0xfdef) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) signalfd4(r1, &(0x7f0000000000)={[0x7]}, 0x8, 0x180800) fallocate(r0, 0x49, 0x80000000, 0x7ff8) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r2) sendmsg$TIPC_CMD_SET_LINK_TOL(r3, 0x0, 0x80) fallocate(r3, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) sendmsg$IPSET_CMD_TEST(r2, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xbc, 0xb, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_ADT={0x7c, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, {0xfffffffffffffe36, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x1}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz1\x00'}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x5}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0x10001}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e24}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0xffffffff}}, {0x18, 0x7, 0x0, 0x1, @IPSET_ATTR_IFACE={0x14, 0x17, 'macvtap0\x00'}}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0xbc}}, 0x400c0) 07:17:12 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 89) 07:17:13 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1b0c01f000, 0x0, 0x0}, 0x58) 07:17:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000200, 0x0, 0x0}, 0x58) 07:17:13 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000800, 0x0, 0x0}, 0x58) [ 2193.755599] FAULT_INJECTION: forcing a failure. [ 2193.755599] name failslab, interval 1, probability 0, space 0, times 0 [ 2193.757936] CPU: 1 PID: 50604 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2193.759300] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2193.760958] Call Trace: [ 2193.761499] dump_stack+0x107/0x167 [ 2193.762221] should_fail.cold+0x5/0xa [ 2193.762982] ? vm_area_dup+0x78/0x290 [ 2193.763748] should_failslab+0x5/0x20 [ 2193.764510] kmem_cache_alloc+0x5b/0x310 [ 2193.765345] vm_area_dup+0x78/0x290 [ 2193.766089] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2193.767022] ? lock_downgrade+0x6d0/0x6d0 [ 2193.767844] ? copy_page_range+0x24fe/0x3820 [ 2193.768769] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 2193.769754] ? avc_has_extended_perms+0xf40/0xf40 [ 2193.770780] ? vm_area_alloc+0x110/0x110 [ 2193.771645] ? selinux_vm_enough_memory+0x114/0x180 [ 2193.772705] ? selinux_sb_statfs+0x250/0x250 [ 2193.773644] ? percpu_counter_add_batch+0x8b/0x140 [ 2193.774688] ? __vm_enough_memory+0x184/0x360 [ 2193.775637] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 2193.776739] dup_mm+0x44d/0x1110 [ 2193.777475] ? vm_area_dup+0x290/0x290 [ 2193.778306] ? __raw_spin_lock_init+0x36/0x110 [ 2193.779272] copy_process+0x24e2/0x6740 [ 2193.780112] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2193.781223] ? exc_page_fault+0xca/0x1a0 [ 2193.782081] ? trace_hardirqs_on+0x5b/0x180 [ 2193.783014] ? __cleanup_sighand+0xb0/0xb0 [ 2193.783917] ? _copy_from_user+0xfb/0x1b0 [ 2193.784815] kernel_clone+0xe7/0x980 [ 2193.785602] ? __lockdep_reset_lock+0x180/0x180 [ 2193.786579] ? create_io_thread+0xf0/0xf0 [ 2193.787469] ? ksys_write+0x21a/0x260 [ 2193.788272] ? lock_downgrade+0x6d0/0x6d0 [ 2193.789165] __do_sys_clone3+0x1e5/0x320 [ 2193.790020] ? __do_sys_clone+0x110/0x110 [ 2193.790921] ? rcu_read_lock_any_held+0x75/0xa0 [ 2193.791897] ? vfs_write+0x354/0xa70 [ 2193.792699] ? fput_many+0x2f/0x1a0 [ 2193.793478] ? ksys_write+0x1a9/0x260 [ 2193.794280] ? __ia32_sys_read+0xb0/0xb0 [ 2193.795143] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2193.796246] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2193.797347] ? trace_hardirqs_on+0x5b/0x180 [ 2193.798264] do_syscall_64+0x33/0x40 [ 2193.799050] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2193.800126] RIP: 0033:0x7f92d9afeb19 [ 2193.800924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2193.804778] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2193.806373] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2193.807867] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2193.809370] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2193.810849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2193.812333] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:17:27 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58) 07:17:27 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x553a28d35000, 0x0, 0x0}, 0x58) 07:17:27 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1b1031f000, 0x0, 0x0}, 0x58) 07:17:27 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000000000, 0x0, 0x0}, 0x58) 07:17:27 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x624d80, 0x0) read(r2, &(0x7f0000000080)=""/42, 0x2a) 07:17:27 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(0xffffffffffffffff, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:17:27 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000800, 0x0, 0x0}, 0x58) 07:17:27 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 90) [ 2208.248788] FAULT_INJECTION: forcing a failure. [ 2208.248788] name failslab, interval 1, probability 0, space 0, times 0 [ 2208.251194] CPU: 0 PID: 51035 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2208.252589] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2208.254264] Call Trace: [ 2208.254809] dump_stack+0x107/0x167 [ 2208.255548] should_fail.cold+0x5/0xa [ 2208.256320] ? vm_area_dup+0x78/0x290 [ 2208.257107] should_failslab+0x5/0x20 [ 2208.257879] kmem_cache_alloc+0x5b/0x310 [ 2208.258701] ? lock_downgrade+0x6d0/0x6d0 [ 2208.259548] vm_area_dup+0x78/0x290 [ 2208.260297] ? _cond_resched+0x12/0x80 [ 2208.261117] ? copy_page_range+0x24fe/0x3820 [ 2208.262043] ? vm_area_alloc+0x110/0x110 [ 2208.262878] ? up_write+0x191/0x550 [ 2208.263614] ? vm_iomap_memory+0x190/0x190 [ 2208.264478] ? downgrade_write+0x3a0/0x3a0 [ 2208.265356] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2208.266481] ? __vma_link_rb+0x540/0x700 [ 2208.267305] dup_mm+0x44d/0x1110 [ 2208.268012] ? vm_area_dup+0x290/0x290 [ 2208.268804] ? __raw_spin_lock_init+0x36/0x110 [ 2208.269786] copy_process+0x24e2/0x6740 [ 2208.270597] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2208.271665] ? exc_page_fault+0xca/0x1a0 [ 2208.272483] ? trace_hardirqs_on+0x5b/0x180 [ 2208.273387] ? __cleanup_sighand+0xb0/0xb0 [ 2208.274249] ? _copy_from_user+0xfb/0x1b0 [ 2208.275100] kernel_clone+0xe7/0x980 [ 2208.275853] ? __lockdep_reset_lock+0x180/0x180 [ 2208.276796] ? create_io_thread+0xf0/0xf0 [ 2208.277665] ? ksys_write+0x21a/0x260 [ 2208.278597] ? lock_downgrade+0x6d0/0x6d0 [ 2208.279440] __do_sys_clone3+0x1e5/0x320 [ 2208.280251] ? __do_sys_clone+0x110/0x110 [ 2208.281122] ? rcu_read_lock_any_held+0x75/0xa0 [ 2208.282050] ? vfs_write+0x354/0xa70 [ 2208.282811] ? fput_many+0x2f/0x1a0 [ 2208.283542] ? ksys_write+0x1a9/0x260 [ 2208.284312] ? __ia32_sys_read+0xb0/0xb0 [ 2208.285141] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2208.286199] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2208.287228] ? trace_hardirqs_on+0x5b/0x180 [ 2208.288096] do_syscall_64+0x33/0x40 [ 2208.288873] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2208.289904] RIP: 0033:0x7f92d9afeb19 [ 2208.290671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2208.294358] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2208.295883] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2208.297320] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2208.298744] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2208.300168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2208.301612] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:17:27 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(0xffffffffffffffff, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:17:27 executing program 5: r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8100) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000200)={&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, &(0x7f00000000c0)=""/219, 0xdb, 0x0, &(0x7f00000001c0)=""/58, 0x3a}, &(0x7f0000000240)=0x40) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r1, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, 0x0) setsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000000)=0x3, 0x2) 07:17:27 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, 0x0}, 0x58) 07:17:27 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:17:27 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1b0c61f000, 0x0, 0x0}, 0x58) 07:17:27 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000000000, 0x0, 0x0}, 0x58) 07:17:27 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2a8f6ba68000, 0x0, 0x0}, 0x58) 07:17:42 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 91) 07:17:42 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000000000, 0x0, 0x0}, 0x58) 07:17:42 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2001000000000, 0x0, 0x0}, 0x58) 07:17:42 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x553a28899000, 0x0, 0x0}, 0x58) 07:17:42 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r2 = geteuid() getsockopt$IP6T_SO_GET_ENTRIES(r1, 0x29, 0x41, &(0x7f0000000100)={'nat\x00', 0xf8, "b1b1177a959f20f83975b50d0f3a665a83f459f9963efcdd1a0ecd199f18edbbda9cf65780a20710464546a399857eac38849d93df51cd1f1704818d2cab8bc5f7a06f3942f1f81e9682c7d4c4be6336a4d3a3c62febe1d7addba4556a793b31002de9aba452badb1015b9aceb1e0beaa7b8247dfc8790cb4b7bdf4c7444950ec76f50bee00522135afe1ca8b745eb31181c0ab7b460c6001e63448a5023aa13f80e6413862d7df3ccffa9089591b09d94f825141fc65e71c04272d342a42f8d7c234ef8b1a0d7656078c2f513b78298c229761375fe15225ccf7780a354611f902686981585300c8a199315b6b01f8210faa80788fba91d"}, &(0x7f0000000240)=0x11c) setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x5}, [{0x2, 0x4, r2}], {0x4, 0x43f64a6be6a06c43}, [{0x8, 0x1, 0xee00}], {0x10, 0x5}, {0x20, 0x3}}, 0x34, 0x3) fallocate(r1, 0x3, 0x0, 0x8000) 07:17:42 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:17:42 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2a1791ab0000, 0x0, 0x0}, 0x58) 07:17:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58) [ 2223.262900] FAULT_INJECTION: forcing a failure. [ 2223.262900] name failslab, interval 1, probability 0, space 0, times 0 [ 2223.265211] CPU: 0 PID: 51881 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2223.266580] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2223.268211] Call Trace: [ 2223.268743] dump_stack+0x107/0x167 [ 2223.269483] should_fail.cold+0x5/0xa [ 2223.270246] ? anon_vma_clone+0xdc/0x590 [ 2223.271059] should_failslab+0x5/0x20 [ 2223.271818] kmem_cache_alloc+0x5b/0x310 [ 2223.272637] anon_vma_clone+0xdc/0x590 [ 2223.273433] anon_vma_fork+0x82/0x640 [ 2223.274195] ? __vm_enough_memory+0x184/0x360 [ 2223.275093] dup_mm+0x861/0x1110 [ 2223.275783] ? vm_area_dup+0x290/0x290 [ 2223.276569] ? __raw_spin_lock_init+0x36/0x110 [ 2223.277498] copy_process+0x24e2/0x6740 [ 2223.278290] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2223.279324] ? exc_page_fault+0xca/0x1a0 [ 2223.280124] ? trace_hardirqs_on+0x5b/0x180 [ 2223.280996] ? __cleanup_sighand+0xb0/0xb0 [ 2223.281845] ? _copy_from_user+0xfb/0x1b0 [ 2223.282668] kernel_clone+0xe7/0x980 [ 2223.283401] ? __lockdep_reset_lock+0x180/0x180 [ 2223.284322] ? create_io_thread+0xf0/0xf0 [ 2223.285160] ? ksys_write+0x21a/0x260 [ 2223.285911] ? lock_downgrade+0x6d0/0x6d0 [ 2223.286742] __do_sys_clone3+0x1e5/0x320 [ 2223.287539] ? __do_sys_clone+0x110/0x110 [ 2223.288375] ? rcu_read_lock_any_held+0x75/0xa0 [ 2223.289298] ? vfs_write+0x354/0xa70 [ 2223.290032] ? fput_many+0x2f/0x1a0 [ 2223.290748] ? ksys_write+0x1a9/0x260 [ 2223.291496] ? __ia32_sys_read+0xb0/0xb0 [ 2223.292298] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2223.293330] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2223.294369] ? trace_hardirqs_on+0x5b/0x180 [ 2223.295223] do_syscall_64+0x33/0x40 [ 2223.295962] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2223.296981] RIP: 0033:0x7f92d9afeb19 [ 2223.297742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2223.301389] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2223.302905] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2223.304305] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2223.305713] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2223.307112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2223.308542] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:17:42 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:17:42 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r3 = open_tree(r0, &(0x7f0000000180)='./file1\x00', 0x41000) r4 = syz_open_dev$vcsa(&(0x7f0000000280), 0x20, 0x111480) accept4$inet6(0xffffffffffffffff, &(0x7f00000003c0), &(0x7f0000000400)=0x1c, 0x80800) ioctl$SIOCSIFHWADDR(r4, 0x8924, &(0x7f0000000380)={'veth0_vlan\x00', @remote}) sendto$unix(r3, &(0x7f00000001c0)="c4db28d57b4ecb9fcc088da8e4602a59518aee6f719219a3aa7cd86cceef78da83909dcbf6febc213d4a0a830a4272a9bfc80efb9e09b8b79663dbb294df2aca960956ae5cabe5a31f8d00f6317efb6193eac7348a229b9bbd624223d08212ab62c205e685aaf3afe744eb9b9d9ac16e", 0x70, 0x10, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e21}, 0x6e) tee(r0, r2, 0x80000000, 0xb) fallocate(r1, 0x3, 0x0, 0x8000) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r0, 0x8010671f, &(0x7f0000000000)={&(0x7f0000000080)=""/240, 0xf0}) 07:17:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x553a23257000, 0x0, 0x0}, 0x58) 07:17:57 executing program 7: write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0xfdef) r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) fallocate(r0, 0x3, 0x2000, 0x8000) fallocate(0xffffffffffffffff, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:17:57 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2001000000000, 0x0, 0x0}, 0x58) 07:17:57 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 92) [ 2237.858348] FAULT_INJECTION: forcing a failure. [ 2237.858348] name failslab, interval 1, probability 0, space 0, times 0 [ 2237.859741] CPU: 1 PID: 52211 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2237.860578] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 07:17:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58) 07:17:57 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2020000000000, 0x0, 0x0}, 0x58) [ 2237.861596] Call Trace: [ 2237.862049] dump_stack+0x107/0x167 [ 2237.862494] should_fail.cold+0x5/0xa 07:17:57 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2a4686ffb000, 0x0, 0x0}, 0x58) 07:17:57 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x115142, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) dup(r2) fallocate(r0, 0x21, 0x1, 0x3) sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x38, 0x0, 0x10, 0x70bd27, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x7, 0x1b}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000) fallocate(r1, 0x3, 0x0, 0x8000) ioctl$sock_inet_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000100)) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x4800) ioctl$CDROMREADAUDIO(r4, 0x530e, &(0x7f00000001c0)={@msf={0x5, 0x2, 0x1}, 0x0, 0x1f, &(0x7f0000000180)=""/31}) sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x54, 0x0, 0x2, 0x70bd2c, 0x25dfdbfb, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x80000000}, {0x6, 0x11, 0xfff}, {0x8, 0x15, 0x2}}]}, 0x54}}, 0x20000004) openat(r3, &(0x7f00000000c0)='./file0\x00', 0x6600, 0x4) [ 2237.862978] ? create_object.isra.0+0x3a/0xa20 [ 2237.863673] should_failslab+0x5/0x20 [ 2237.864137] kmem_cache_alloc+0x5b/0x310 [ 2237.864652] create_object.isra.0+0x3a/0xa20 [ 2237.865201] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2237.865868] kmem_cache_alloc+0x159/0x310 [ 2237.866397] anon_vma_clone+0xdc/0x590 [ 2237.866891] anon_vma_fork+0x82/0x640 [ 2237.867367] ? __vm_enough_memory+0x184/0x360 [ 2237.867925] dup_mm+0x861/0x1110 [ 2237.868360] ? vm_area_dup+0x290/0x290 [ 2237.868849] ? __raw_spin_lock_init+0x36/0x110 [ 2237.869426] copy_process+0x24e2/0x6740 [ 2237.869931] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2237.870584] ? exc_page_fault+0xca/0x1a0 [ 2237.871091] ? trace_hardirqs_on+0x5b/0x180 [ 2237.871642] ? __cleanup_sighand+0xb0/0xb0 [ 2237.872174] ? _copy_from_user+0xfb/0x1b0 [ 2237.872693] kernel_clone+0xe7/0x980 [ 2237.873156] ? __lockdep_reset_lock+0x180/0x180 [ 2237.873751] ? create_io_thread+0xf0/0xf0 [ 2237.874263] ? ksys_write+0x21a/0x260 [ 2237.874737] ? lock_downgrade+0x6d0/0x6d0 [ 2237.875260] __do_sys_clone3+0x1e5/0x320 [ 2237.875766] ? __do_sys_clone+0x110/0x110 [ 2237.876302] ? rcu_read_lock_any_held+0x75/0xa0 [ 2237.876875] ? vfs_write+0x354/0xa70 [ 2237.877369] ? fput_many+0x2f/0x1a0 [ 2237.877823] ? ksys_write+0x1a9/0x260 [ 2237.878296] ? __ia32_sys_read+0xb0/0xb0 [ 2237.878803] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2237.879448] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2237.880084] ? trace_hardirqs_on+0x5b/0x180 [ 2237.880616] do_syscall_64+0x33/0x40 [ 2237.881083] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2237.881721] RIP: 0033:0x7f92d9afeb19 [ 2237.882189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2237.884441] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2237.885406] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2237.886285] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2237.887162] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2237.888040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2237.888918] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:17:57 executing program 7: write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0xfdef) r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) fallocate(r0, 0x3, 0x2000, 0x8000) fallocate(0xffffffffffffffff, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:17:57 executing program 7: write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0xfdef) r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) fallocate(r0, 0x3, 0x2000, 0x8000) fallocate(0xffffffffffffffff, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:17:57 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x553a2850d000, 0x0, 0x0}, 0x58) 07:17:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58) 07:17:57 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2020000000000, 0x0, 0x0}, 0x58) 07:17:57 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000000000, 0x0, 0x0}, 0x58) 07:17:57 executing program 7: r0 = creat(0x0, 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:17:57 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:17:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xab91172a0000, 0x0, 0x0}, 0x58) 07:17:57 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 93) [ 2238.258184] FAULT_INJECTION: forcing a failure. [ 2238.258184] name failslab, interval 1, probability 0, space 0, times 0 [ 2238.260847] CPU: 0 PID: 52953 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2238.262437] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2238.264334] Call Trace: [ 2238.264948] dump_stack+0x107/0x167 [ 2238.265808] should_fail.cold+0x5/0xa [ 2238.266675] ? down_write+0xe0/0x160 [ 2238.267549] ? anon_vma_clone+0xdc/0x590 [ 2238.268495] should_failslab+0x5/0x20 [ 2238.269381] kmem_cache_alloc+0x5b/0x310 [ 2238.270325] anon_vma_clone+0xdc/0x590 [ 2238.271236] anon_vma_fork+0x82/0x640 [ 2238.272112] ? __vm_enough_memory+0x184/0x360 [ 2238.273145] dup_mm+0x861/0x1110 [ 2238.273956] ? vm_area_dup+0x290/0x290 [ 2238.274865] ? __raw_spin_lock_init+0x36/0x110 [ 2238.275945] copy_process+0x24e2/0x6740 [ 2238.276863] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2238.278092] ? exc_page_fault+0xca/0x1a0 [ 2238.279030] ? trace_hardirqs_on+0x5b/0x180 [ 2238.280050] ? __cleanup_sighand+0xb0/0xb0 [ 2238.281040] ? _copy_from_user+0xfb/0x1b0 [ 2238.282025] kernel_clone+0xe7/0x980 [ 2238.282879] ? __lockdep_reset_lock+0x180/0x180 [ 2238.283954] ? create_io_thread+0xf0/0xf0 [ 2238.284936] ? ksys_write+0x21a/0x260 [ 2238.285821] ? lock_downgrade+0x6d0/0x6d0 [ 2238.286782] __do_sys_clone3+0x1e5/0x320 [ 2238.287713] ? __do_sys_clone+0x110/0x110 [ 2238.288697] ? rcu_read_lock_any_held+0x75/0xa0 [ 2238.289779] ? vfs_write+0x354/0xa70 [ 2238.290647] ? fput_many+0x2f/0x1a0 [ 2238.291487] ? ksys_write+0x1a9/0x260 [ 2238.292365] ? __ia32_sys_read+0xb0/0xb0 [ 2238.293317] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2238.294518] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2238.295696] ? trace_hardirqs_on+0x5b/0x180 [ 2238.296695] do_syscall_64+0x33/0x40 [ 2238.297569] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2238.298743] RIP: 0033:0x7f92d9afeb19 [ 2238.299602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2238.303818] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2238.305581] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2238.307214] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2238.308842] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2238.310494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2238.312122] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:18:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000800, 0x0, 0x0}, 0x58) 07:18:13 executing program 7: r0 = creat(0x0, 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:18:13 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2001000000000, 0x0, 0x0}, 0x58) [ 2254.587692] FAULT_INJECTION: forcing a failure. [ 2254.587692] name failslab, interval 1, probability 0, space 0, times 0 [ 2254.588937] CPU: 0 PID: 53171 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2254.589684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2254.590560] Call Trace: [ 2254.590859] dump_stack+0x107/0x167 [ 2254.591254] should_fail.cold+0x5/0xa [ 2254.591678] ? create_object.isra.0+0x3a/0xa20 [ 2254.592180] should_failslab+0x5/0x20 [ 2254.592590] kmem_cache_alloc+0x5b/0x310 [ 2254.593027] create_object.isra.0+0x3a/0xa20 [ 2254.593507] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2254.594051] kmem_cache_alloc+0x159/0x310 [ 2254.594494] anon_vma_clone+0xdc/0x590 [ 2254.594912] anon_vma_fork+0x82/0x640 [ 2254.595321] ? __vm_enough_memory+0x184/0x360 [ 2254.595815] dup_mm+0x861/0x1110 [ 2254.596187] ? vm_area_dup+0x290/0x290 [ 2254.596611] ? __raw_spin_lock_init+0x36/0x110 [ 2254.597110] copy_process+0x24e2/0x6740 [ 2254.597556] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2254.598130] ? exc_page_fault+0xca/0x1a0 [ 2254.598585] ? trace_hardirqs_on+0x5b/0x180 [ 2254.599056] ? __cleanup_sighand+0xb0/0xb0 [ 2254.599525] ? _copy_from_user+0xfb/0x1b0 [ 2254.599985] kernel_clone+0xe7/0x980 [ 2254.600385] ? __lockdep_reset_lock+0x180/0x180 [ 2254.600890] ? create_io_thread+0xf0/0xf0 [ 2254.601359] ? ksys_write+0x21a/0x260 [ 2254.601796] ? lock_downgrade+0x6d0/0x6d0 [ 2254.602259] __do_sys_clone3+0x1e5/0x320 [ 2254.602702] ? __do_sys_clone+0x110/0x110 [ 2254.603175] ? rcu_read_lock_any_held+0x75/0xa0 [ 2254.603671] ? vfs_write+0x354/0xa70 [ 2254.604082] ? fput_many+0x2f/0x1a0 [ 2254.604489] ? ksys_write+0x1a9/0x260 [ 2254.604915] ? __ia32_sys_read+0xb0/0xb0 [ 2254.605355] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2254.605943] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2254.606518] ? trace_hardirqs_on+0x5b/0x180 [ 2254.606999] do_syscall_64+0x33/0x40 [ 2254.607411] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2254.607981] RIP: 0033:0x7f92d9afeb19 [ 2254.608374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2254.610402] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2254.611245] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2254.612029] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2254.612816] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2254.613642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2254.614441] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:18:13 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000000000, 0x0, 0x0}, 0x58) 07:18:13 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x42101, 0x318) 07:18:13 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000001000000, 0x0, 0x0}, 0x58) 07:18:13 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 94) 07:18:13 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2001000000000, 0x0, 0x0}, 0x58) 07:18:14 executing program 7: r0 = creat(0x0, 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:18:14 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2020000000000, 0x0, 0x0}, 0x58) 07:18:14 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2020000000000, 0x0, 0x0}, 0x58) 07:18:14 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = accept$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev}, &(0x7f0000000080)=0x10) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r1, 0x80047210, &(0x7f00000000c0)) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:18:14 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000001000000, 0x0, 0x0}, 0x58) 07:18:14 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 95) 07:18:14 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) [ 2254.850846] FAULT_INJECTION: forcing a failure. [ 2254.850846] name failslab, interval 1, probability 0, space 0, times 0 [ 2254.852233] CPU: 0 PID: 53639 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2254.853010] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2254.853934] Call Trace: [ 2254.854246] dump_stack+0x107/0x167 [ 2254.854648] should_fail.cold+0x5/0xa [ 2254.855077] ? anon_vma_fork+0xf1/0x640 [ 2254.855533] should_failslab+0x5/0x20 [ 2254.855947] kmem_cache_alloc+0x5b/0x310 [ 2254.856403] anon_vma_fork+0xf1/0x640 [ 2254.856829] ? __vm_enough_memory+0x184/0x360 [ 2254.857329] dup_mm+0x861/0x1110 [ 2254.857732] ? vm_area_dup+0x290/0x290 [ 2254.858177] ? __raw_spin_lock_init+0x36/0x110 [ 2254.858695] copy_process+0x24e2/0x6740 [ 2254.859143] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2254.859725] ? exc_page_fault+0xca/0x1a0 [ 2254.860179] ? trace_hardirqs_on+0x5b/0x180 [ 2254.860651] ? __cleanup_sighand+0xb0/0xb0 [ 2254.861135] ? _copy_from_user+0xfb/0x1b0 [ 2254.861596] kernel_clone+0xe7/0x980 [ 2254.862012] ? __lockdep_reset_lock+0x180/0x180 [ 2254.862526] ? create_io_thread+0xf0/0xf0 [ 2254.863001] ? ksys_write+0x21a/0x260 [ 2254.863428] ? lock_downgrade+0x6d0/0x6d0 [ 2254.863893] __do_sys_clone3+0x1e5/0x320 [ 2254.864328] ? __do_sys_clone+0x110/0x110 [ 2254.864811] ? rcu_read_lock_any_held+0x75/0xa0 [ 2254.865321] ? vfs_write+0x354/0xa70 [ 2254.865756] ? fput_many+0x2f/0x1a0 [ 2254.866157] ? ksys_write+0x1a9/0x260 [ 2254.866578] ? __ia32_sys_read+0xb0/0xb0 [ 2254.867034] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2254.867617] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2254.868174] ? trace_hardirqs_on+0x5b/0x180 [ 2254.868661] do_syscall_64+0x33/0x40 [ 2254.869069] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2254.869654] RIP: 0033:0x7f92d9afeb19 [ 2254.870056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2254.872090] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2254.872899] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2254.873697] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2254.874495] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2254.875280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2254.876071] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:18:14 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000000000, 0x0, 0x0}, 0x58) 07:18:31 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000001000000, 0x0, 0x0}, 0x58) 07:18:31 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10100000000000, 0x0, 0x0}, 0x58) [ 2271.794679] FAULT_INJECTION: forcing a failure. [ 2271.794679] name failslab, interval 1, probability 0, space 0, times 0 [ 2271.797144] CPU: 1 PID: 54028 Comm: syz-executor.2 Not tainted 5.10.186 #1 07:18:31 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:18:31 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1b0bf1f000, 0x0, 0x0}, 0x58) 07:18:31 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000000)={0x400, 0xb1d5, 0x4}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) ioctl$EVIOCGMASK(r4, 0x80104592, &(0x7f0000000180)={0x17, 0x0, 0xfffffffffffffffe}) fallocate(r3, 0x3, 0x0, 0x8000) 07:18:31 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10100000000000, 0x0, 0x0}, 0x58) 07:18:31 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 96) 07:18:31 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000000000, 0x0, 0x0}, 0x58) [ 2271.798585] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2271.800500] Call Trace: [ 2271.801053] dump_stack+0x107/0x167 [ 2271.801822] should_fail.cold+0x5/0xa [ 2271.802602] ? create_object.isra.0+0x3a/0xa20 [ 2271.803538] should_failslab+0x5/0x20 [ 2271.804322] kmem_cache_alloc+0x5b/0x310 [ 2271.805161] create_object.isra.0+0x3a/0xa20 [ 2271.806076] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2271.807104] kmem_cache_alloc+0x159/0x310 [ 2271.807943] anon_vma_fork+0xf1/0x640 [ 2271.808709] ? __vm_enough_memory+0x184/0x360 [ 2271.809630] dup_mm+0x861/0x1110 [ 2271.810368] ? vm_area_dup+0x290/0x290 [ 2271.811158] ? __raw_spin_lock_init+0x36/0x110 [ 2271.812080] copy_process+0x24e2/0x6740 [ 2271.812905] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2271.813972] ? exc_page_fault+0xca/0x1a0 [ 2271.814795] ? trace_hardirqs_on+0x5b/0x180 [ 2271.815684] ? __cleanup_sighand+0xb0/0xb0 [ 2271.816555] ? _copy_from_user+0xfb/0x1b0 [ 2271.817401] kernel_clone+0xe7/0x980 [ 2271.818175] ? __lockdep_reset_lock+0x180/0x180 [ 2271.819109] ? create_io_thread+0xf0/0xf0 [ 2271.819957] ? ksys_write+0x21a/0x260 [ 2271.820727] ? lock_downgrade+0x6d0/0x6d0 [ 2271.821564] __do_sys_clone3+0x1e5/0x320 [ 2271.822414] ? __do_sys_clone+0x110/0x110 [ 2271.823278] ? rcu_read_lock_any_held+0x75/0xa0 [ 2271.824226] ? vfs_write+0x354/0xa70 [ 2271.824991] ? fput_many+0x2f/0x1a0 [ 2271.825739] ? ksys_write+0x1a9/0x260 [ 2271.826525] ? __ia32_sys_read+0xb0/0xb0 [ 2271.827346] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2271.828398] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2271.829670] ? trace_hardirqs_on+0x5b/0x180 [ 2271.830546] do_syscall_64+0x33/0x40 [ 2271.831308] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2271.832336] RIP: 0033:0x7f92d9afeb19 [ 2271.833098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2271.836789] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2271.838366] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2271.839812] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2271.841265] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2271.842733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2271.844186] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:18:31 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:18:31 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, 0x0, 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:18:31 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) write$binfmt_elf64(r0, &(0x7f0000000080)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x7, 0x80, 0xfffffffffffffff7, 0x2, 0x3, 0x8000, 0x25d, 0x40, 0x271, 0x9, 0x40, 0x38, 0x2, 0x2, 0x6, 0x4}, [{0x3, 0x6, 0x7, 0x6, 0x10000, 0x0, 0x9, 0x1ff}, {0x2, 0xffff, 0xd493, 0x6, 0x1, 0x7, 0x5fb, 0x1}], "96c618307622fb015c44ad60dc1ba9e4e350b5164cb1ba3c300c2c7ca2c4298140fae702b9c107a1ff376a088c78ba49c367f3d1a8e6dc67356c250f9944d94210d9c17d723d57bf0c0924593ced9a267d63e310221f854208cb1fc2", ['\x00']}, 0x20c) fallocate(r0, 0x0, 0x0, 0xfdec) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:18:31 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x80a66b8f2a0000, 0x0, 0x0}, 0x58) 07:18:31 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000000000, 0x0, 0x0}, 0x58) 07:18:31 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x208182252a0000, 0x0, 0x0}, 0x58) 07:18:31 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, 0x0, 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:18:31 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10100000000000, 0x0, 0x0}, 0x58) 07:18:31 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000001000000, 0x0, 0x0}, 0x58) 07:18:31 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 97) [ 2272.274038] FAULT_INJECTION: forcing a failure. [ 2272.274038] name failslab, interval 1, probability 0, space 0, times 0 [ 2272.276426] CPU: 1 PID: 54394 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2272.277893] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2272.279614] Call Trace: [ 2272.280173] dump_stack+0x107/0x167 [ 2272.280942] should_fail.cold+0x5/0xa [ 2272.281747] ? anon_vma_fork+0x1ff/0x640 [ 2272.282595] should_failslab+0x5/0x20 [ 2272.283389] kmem_cache_alloc+0x5b/0x310 [ 2272.284244] anon_vma_fork+0x1ff/0x640 [ 2272.285040] dup_mm+0x861/0x1110 [ 2272.285762] ? vm_area_dup+0x290/0x290 [ 2272.286558] ? __raw_spin_lock_init+0x36/0x110 [ 2272.287490] copy_process+0x24e2/0x6740 [ 2272.288298] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2272.289359] ? exc_page_fault+0xca/0x1a0 [ 2272.290189] ? trace_hardirqs_on+0x5b/0x180 [ 2272.291081] ? __cleanup_sighand+0xb0/0xb0 [ 2272.291960] ? _copy_from_user+0xfb/0x1b0 [ 2272.292840] kernel_clone+0xe7/0x980 [ 2272.293614] ? __lockdep_reset_lock+0x180/0x180 [ 2272.294598] ? create_io_thread+0xf0/0xf0 [ 2272.295474] ? ksys_write+0x21a/0x260 [ 2272.296259] ? lock_downgrade+0x6d0/0x6d0 [ 2272.297121] __do_sys_clone3+0x1e5/0x320 [ 2272.297969] ? __do_sys_clone+0x110/0x110 [ 2272.298849] ? rcu_read_lock_any_held+0x75/0xa0 [ 2272.299815] ? vfs_write+0x354/0xa70 [ 2272.300588] ? fput_many+0x2f/0x1a0 [ 2272.301327] ? ksys_write+0x1a9/0x260 [ 2272.302105] ? __ia32_sys_read+0xb0/0xb0 [ 2272.302936] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2272.303998] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2272.305035] ? trace_hardirqs_on+0x5b/0x180 [ 2272.305933] do_syscall_64+0x33/0x40 [ 2272.306690] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2272.307727] RIP: 0033:0x7f92d9afeb19 [ 2272.308492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2272.312200] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2272.313738] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2272.315172] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2272.316614] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2272.318061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2272.319528] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:18:31 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000000)={'gretap0\x00', &(0x7f0000000100)=@ethtool_gfeatures={0x3a, 0x5, [{}, {}, {}, {}, {}]}}) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) r3 = socket$unix(0x1, 0x5, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) bind$unix(r4, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r4, 0xfffffffe) ppoll(&(0x7f0000000240)=[{r4, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) bind$unix(r4, &(0x7f0000000080)=@abs={0x0, 0x0, 0x4e21}, 0x6e) listen(r3, 0x0) ppoll(&(0x7f0000000240)=[{r3, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611) 07:18:31 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, 0x0, 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:18:31 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x9089283a550000, 0x0, 0x0}, 0x58) 07:18:31 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x50d3283a550000, 0x0, 0x0}, 0x58) 07:18:45 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:18:45 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0310c1b000000, 0x0, 0x0}, 0x58) 07:18:45 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0010c1b000000, 0x0, 0x0}, 0x58) 07:18:45 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x29bcc84d7000, 0x0, 0x0}, 0x58) 07:18:45 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x7025233a550000, 0x0, 0x0}, 0x58) 07:18:45 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 98) 07:18:45 executing program 5: write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(0xffffffffffffffff, 0x3, 0x0, 0x8000) fallocate(0xffffffffffffffff, 0x0, 0x0, 0xfdef) openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x40, 0x140) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0), 0x80200, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18}, './file0\x00'}) r2 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x520200, 0x108, 0x11}, 0x18) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000100)={'team0\x00', 0x0}) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000300)={'#! ', './file0', [{}, {0x20, 'syztnl1\x00'}, {0x20, 'macvlan1\x00'}, {0x20, '$'}], 0xa, "60b24a44d8e2afece62340d103d9fc6e38d3d2ed10a00ce10242619982411a21b58184f5384eb8a306c388be02e574d1bbcb3ecc8171a90734d0fe9ffc009a3a645ec19f05b1dfd2d3890088f1e9e1c4ec11319247dc36d8036385580eaa179d1c75a8212a7ec09f2ce3c0f0bbc1202ef7e14b266faa4286046cff4a477743bc04993f87f03e02407c67c5896b2389080e55c4cf384d05728e5fb7e7623379818d609febf45006910ec008d8520acfe7ab35ec84a1ac28635b3a6a5246629e25323644c31ac76366aa8f0c2b05404685d453a2ca29def18de46dc53f92fcf75a0ac49f346fb2942a6ea8933d52d76d6b7687ddb30ca1f93b"}, 0x119) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wg0\x00', 0x0}) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000640)={'team0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000700)={'syztnl0\x00', &(0x7f0000000680)={'sit0\x00', 0x0, 0x2f, 0x1, 0x4, 0xe6, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, @private1, 0x8000, 0x10, 0x80000001, 0x9}}) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(0xffffffffffffffff, 0x89f7, &(0x7f0000000840)={'syztnl1\x00', &(0x7f00000007c0)={'ip6_vti0\x00', 0x0, 0x4, 0x7, 0x3f, 0x79, 0x4, @dev={0xfe, 0x80, '\x00', 0x2e}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x7, 0x8, 0x3, 0x50}}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r2, &(0x7f0000000a80)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000a40)={&(0x7f0000000880)={0x1bc, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x1bc}, 0x1, 0x0, 0x0, 0x8004}, 0x0) fallocate(r0, 0x3, 0x0, 0x8000) 07:18:45 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10100000000000, 0x0, 0x0}, 0x58) [ 2286.257362] FAULT_INJECTION: forcing a failure. [ 2286.257362] name failslab, interval 1, probability 0, space 0, times 0 [ 2286.258831] CPU: 0 PID: 55103 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2286.259695] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2286.260707] Call Trace: [ 2286.261044] dump_stack+0x107/0x167 [ 2286.261502] should_fail.cold+0x5/0xa [ 2286.262003] ? create_object.isra.0+0x3a/0xa20 [ 2286.262574] should_failslab+0x5/0x20 [ 2286.263045] kmem_cache_alloc+0x5b/0x310 [ 2286.263534] create_object.isra.0+0x3a/0xa20 [ 2286.264071] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2286.264689] kmem_cache_alloc+0x159/0x310 [ 2286.265206] anon_vma_fork+0x1ff/0x640 [ 2286.265683] dup_mm+0x861/0x1110 [ 2286.266115] ? vm_area_dup+0x290/0x290 [ 2286.266599] ? __raw_spin_lock_init+0x36/0x110 [ 2286.267169] copy_process+0x24e2/0x6740 [ 2286.267680] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2286.268329] ? exc_page_fault+0xca/0x1a0 [ 2286.268834] ? trace_hardirqs_on+0x5b/0x180 [ 2286.269409] ? __cleanup_sighand+0xb0/0xb0 [ 2286.269966] ? _copy_from_user+0xfb/0x1b0 [ 2286.270498] kernel_clone+0xe7/0x980 [ 2286.270966] ? __lockdep_reset_lock+0x180/0x180 [ 2286.271555] ? create_io_thread+0xf0/0xf0 [ 2286.272101] ? ksys_write+0x21a/0x260 [ 2286.272578] ? lock_downgrade+0x6d0/0x6d0 [ 2286.273112] __do_sys_clone3+0x1e5/0x320 [ 2286.273627] ? __do_sys_clone+0x110/0x110 [ 2286.274210] ? rcu_read_lock_any_held+0x75/0xa0 [ 2286.274794] ? vfs_write+0x354/0xa70 [ 2286.275260] ? fput_many+0x2f/0x1a0 [ 2286.275720] ? ksys_write+0x1a9/0x260 [ 2286.276199] ? __ia32_sys_read+0xb0/0xb0 [ 2286.276737] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2286.277405] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2286.278083] ? trace_hardirqs_on+0x5b/0x180 [ 2286.278639] do_syscall_64+0x33/0x40 [ 2286.279123] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2286.279874] RIP: 0033:0x7f92d9afeb19 [ 2286.280432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2286.282723] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2286.283679] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2286.284577] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2286.285462] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2286.286348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2286.287224] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:19:00 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x553a27892000, 0x0, 0x0}, 0x58) 07:19:00 executing program 5: sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="0600000000000000df250500000008000300", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x20890) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r2 = epoll_create(0xfffffff7) ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) 07:19:00 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f00000000, 0x0, 0x0}, 0x58) 07:19:00 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f00000000, 0x0, 0x0}, 0x58) 07:19:00 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:19:00 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xb0ff86462a0000, 0x0, 0x0}, 0x58) 07:19:00 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 99) 07:19:00 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf031101b000000, 0x0, 0x0}, 0x58) [ 2301.251801] FAULT_INJECTION: forcing a failure. [ 2301.251801] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2301.254543] CPU: 1 PID: 55535 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2301.256068] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2301.257914] Call Trace: [ 2301.258518] dump_stack+0x107/0x167 [ 2301.259323] should_fail.cold+0x5/0xa [ 2301.260175] __alloc_pages_nodemask+0x182/0x600 [ 2301.261225] ? __lockdep_reset_lock+0x180/0x180 [ 2301.262237] ? __lockdep_reset_lock+0x180/0x180 [ 2301.263257] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2301.264613] alloc_pages_current+0x187/0x280 [ 2301.265582] pte_alloc_one+0x16/0x1a0 [ 2301.266393] __pte_alloc+0x1d/0x330 [ 2301.267194] copy_page_range+0x1b77/0x3820 [ 2301.268146] ? up_write+0x191/0x550 [ 2301.268952] ? vm_iomap_memory+0x190/0x190 [ 2301.269885] ? downgrade_write+0x3a0/0x3a0 [ 2301.270825] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2301.272028] ? __vma_link_rb+0x540/0x700 [ 2301.272924] dup_mm+0x8b9/0x1110 [ 2301.273684] ? vm_area_dup+0x290/0x290 [ 2301.274551] ? __raw_spin_lock_init+0x36/0x110 [ 2301.275552] copy_process+0x24e2/0x6740 [ 2301.276406] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2301.277723] ? exc_page_fault+0xca/0x1a0 [ 2301.278598] ? trace_hardirqs_on+0x5b/0x180 [ 2301.279545] ? __cleanup_sighand+0xb0/0xb0 [ 2301.280476] ? _copy_from_user+0xfb/0x1b0 [ 2301.281378] kernel_clone+0xe7/0x980 [ 2301.282202] ? __lockdep_reset_lock+0x180/0x180 [ 2301.283221] ? create_io_thread+0xf0/0xf0 [ 2301.284144] ? ksys_write+0x21a/0x260 [ 2301.284952] ? lock_downgrade+0x6d0/0x6d0 [ 2301.285859] __do_sys_clone3+0x1e5/0x320 [ 2301.286729] ? __do_sys_clone+0x110/0x110 [ 2301.287630] ? rcu_read_lock_any_held+0x75/0xa0 [ 2301.288613] ? vfs_write+0x354/0xa70 [ 2301.289399] ? fput_many+0x2f/0x1a0 [ 2301.290184] ? ksys_write+0x1a9/0x260 [ 2301.290984] ? __ia32_sys_read+0xb0/0xb0 [ 2301.291841] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2301.292947] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2301.294048] ? trace_hardirqs_on+0x5b/0x180 [ 2301.294973] do_syscall_64+0x33/0x40 [ 2301.295767] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2301.296849] RIP: 0033:0x7f92d9afeb19 [ 2301.297642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2301.301513] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2301.303136] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2301.304631] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2301.306132] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2301.307625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2301.309117] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:19:00 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:19:00 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000000000000, 0x0, 0x0}, 0x58) 07:19:00 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0xfffffffffffffffe, 0x4) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000000200)=[{&(0x7f0000000140)}, {&(0x7f0000000180)=""/10, 0xa}, {&(0x7f00000001c0)=""/5, 0x5}], 0x3, &(0x7f0000000300)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xc8}, 0x40001063) setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000280)=0xffffffffffffffff, 0x4) 07:19:00 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2001000000000, 0x0, 0x0}, 0x58) 07:19:00 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:19:00 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xd050283a550000, 0x0, 0x0}, 0x58) 07:19:00 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) write$binfmt_elf64(r1, &(0x7f0000000300)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x9, 0x14, 0x0, 0x9b29, 0x2, 0x6, 0x29c7, 0x135, 0x40, 0x5b, 0x7ff, 0x5, 0x38, 0x2, 0x100, 0x2, 0x2}, [{0x3, 0x3ff, 0x1, 0x16ea, 0x0, 0x20, 0x1, 0x5}], "dcb073af3a00cf5430ea4913c6416ba3fe644e66f368101efaf8cb249676ce50c1d9330d5fa67f5df8bc6d10565c4eb3f2725fc620e03d41ae67820a774b743eefc5e47248647f7e2bd8a8208a829d710630e9c4754807ddb5467bb3979ac967f2f6ab8d4dba330dfed47ebc240a1b4009d2cc53a215cd109268991540cd9190c468e2f3d8b5d28a267a3d02adb1d9fbc9b2c4ff3cbb", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x90e) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:19:00 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 100) 07:19:00 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000000000000, 0x0, 0x0}, 0x58) 07:19:00 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f00000000, 0x0, 0x0}, 0x58) 07:19:00 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:19:00 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x800000000000000, 0x0, 0x0}, 0x58) [ 2301.621269] FAULT_INJECTION: forcing a failure. [ 2301.621269] name failslab, interval 1, probability 0, space 0, times 0 [ 2301.623821] CPU: 1 PID: 56096 Comm: syz-executor.2 Not tainted 5.10.186 #1 [ 2301.625295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2301.627090] Call Trace: [ 2301.627661] dump_stack+0x107/0x167 [ 2301.628446] should_fail.cold+0x5/0xa [ 2301.629265] ? anon_vma_fork+0x1ff/0x640 [ 2301.630165] should_failslab+0x5/0x20 [ 2301.630994] kmem_cache_alloc+0x5b/0x310 [ 2301.631893] anon_vma_fork+0x1ff/0x640 [ 2301.632744] dup_mm+0x861/0x1110 [ 2301.633489] ? vm_area_dup+0x290/0x290 [ 2301.634367] ? __raw_spin_lock_init+0x36/0x110 [ 2301.635373] copy_process+0x24e2/0x6740 [ 2301.636241] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2301.637370] ? exc_page_fault+0xca/0x1a0 [ 2301.638265] ? trace_hardirqs_on+0x5b/0x180 [ 2301.639204] ? __cleanup_sighand+0xb0/0xb0 [ 2301.640113] ? _copy_from_user+0xfb/0x1b0 [ 2301.640995] kernel_clone+0xe7/0x980 [ 2301.641780] ? __lockdep_reset_lock+0x180/0x180 [ 2301.642786] ? create_io_thread+0xf0/0xf0 [ 2301.643674] ? ksys_write+0x21a/0x260 [ 2301.644473] ? lock_downgrade+0x6d0/0x6d0 [ 2301.645354] __do_sys_clone3+0x1e5/0x320 [ 2301.646220] ? __do_sys_clone+0x110/0x110 [ 2301.647124] ? rcu_read_lock_any_held+0x75/0xa0 [ 2301.648097] ? vfs_write+0x354/0xa70 [ 2301.648886] ? fput_many+0x2f/0x1a0 [ 2301.649655] ? ksys_write+0x1a9/0x260 [ 2301.650492] ? __ia32_sys_read+0xb0/0xb0 [ 2301.651372] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2301.652493] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2301.653589] ? trace_hardirqs_on+0x5b/0x180 [ 2301.654531] do_syscall_64+0x33/0x40 [ 2301.655336] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2301.656435] RIP: 0033:0x7f92d9afeb19 [ 2301.657232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2301.661179] RSP: 002b:00007f92d7074188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2301.662829] RAX: ffffffffffffffda RBX: 00007f92d9c11f60 RCX: 00007f92d9afeb19 [ 2301.664371] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2301.665897] RBP: 00007f92d70741d0 R08: 0000000000000000 R09: 0000000000000000 [ 2301.667438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 2301.668974] R13: 00007ffcb290f6bf R14: 00007f92d7074300 R15: 0000000000022000 07:19:00 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2020000000000, 0x0, 0x0}, 0x58) 07:19:01 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:19:01 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fcntl$dupfd(r0, 0x0, r0) fallocate(0xffffffffffffffff, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:19:16 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, 0x0}, 0x58) 07:19:16 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000000000000, 0x0, 0x0}, 0x58) 07:19:16 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:19:16 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000000000, 0x0, 0x0}, 0x58) 07:19:16 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x800000000000000, 0x0, 0x0}, 0x58) 07:19:16 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fcntl$dupfd(r0, 0x0, r0) fallocate(0xffffffffffffffff, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:19:16 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0610c1b000000, 0x0, 0x0}, 0x58) 07:19:16 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fcntl$dupfd(r0, 0x0, r0) fallocate(0xffffffffffffffff, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:19:16 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:19:16 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, 0x0}, 0x58) 07:19:16 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000000000000, 0x0, 0x0}, 0x58) 07:19:16 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x800000000000000, 0x0, 0x0}, 0x58) [ 2317.602411] cgroup: fork rejected by pids controller in /syz2 07:19:31 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00000000000000, 0x0, 0x0}, 0x58) 07:19:31 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x0, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:19:31 executing program 5: r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="000100"/22], 0x1c}, 0x1, 0x0, 0x0, 0x200400d1}, 0x20000011) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="04002bbd7000fedbdf25020000000c000400c74e0000000000000c00080001000000000000000c0003001f000000000000000c0004000200000000000000"], 0x44}, 0x1, 0x0, 0x0, 0x40}, 0x80) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[], 0xfdef) creat(&(0x7f00000001c0)='./file0\x00', 0x14) fallocate(r1, 0x3, 0x0, 0x8000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000003c0), 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000280), r2) sendmsg$TIPC_CMD_SET_LINK_TOL(r3, 0x0, 0x80) fallocate(r3, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000000240)={0x8, &(0x7f0000000200)=[{0x3, 0x8, 0x9, 0x5}, {0x6, 0xff, 0x3, 0x81}, {0x0, 0x7, 0x0, 0x4}, {0x40, 0x2, 0x0, 0x800}, {0x7, 0x8, 0x9, 0x401}, {0x7580, 0x7, 0xd8, 0xffff0d25}, {0x9, 0x3f, 0x0, 0x2c3}, {0x2, 0x7, 0x3f}]}) fallocate(r1, 0x0, 0x0, 0xfdef) r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r4, 0x3, 0x0, 0x8000) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) fallocate(r5, 0x24, 0x80000000, 0x3) 07:19:31 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x11, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:19:31 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000001000000, 0x0, 0x0}, 0x58) 07:19:31 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f00000000, 0x0, 0x0}, 0x58) 07:19:31 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, 0x0}, 0x58) 07:19:31 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000000000000, 0x0, 0x0}, 0x58) 07:19:32 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x0, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:19:32 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000000000000, 0x0, 0x0}, 0x58) 07:19:32 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) ioctl$HIDIOCGUSAGES(r0, 0xd01c4813, &(0x7f0000000300)={{0x2, 0xffffffff, 0x9, 0x48b2, 0x6, 0x3}, 0x90, [0xfffffffa, 0x3f, 0x1, 0x2, 0xffffffff, 0x3, 0xfffffff7, 0x8, 0x4, 0x2, 0x7, 0xef7c, 0x9c, 0x5, 0xffff, 0x6, 0x1, 0x1ff, 0x80000001, 0xffffffff, 0x6c, 0x8, 0xffffff25, 0x9, 0x3, 0x8, 0x0, 0xfff, 0x3, 0x200, 0x5, 0x9, 0x9, 0x100, 0x400, 0x4, 0x7f, 0x401, 0x7, 0x101, 0x2, 0x7, 0x9, 0x6, 0x8, 0x7, 0x7000, 0x10000, 0x6, 0x400, 0x5250, 0x5, 0xffe8, 0x6, 0x4, 0x8, 0x8ed, 0x2d, 0xb0b, 0x80000001, 0x9, 0x9, 0x9, 0x3, 0x81, 0x7, 0x6, 0x0, 0x1, 0xf39, 0x9, 0x3f, 0x7, 0x31b0, 0x1000, 0x10, 0x6, 0x4, 0x8, 0x91, 0x9, 0x400, 0xfffffffc, 0x2, 0x8, 0x4, 0x5, 0xfe, 0xf29f, 0x6, 0x4, 0x8, 0x2, 0x7, 0x6, 0x5, 0x1000, 0xffffffff, 0x5, 0x40, 0x3, 0x7, 0x7, 0x5e0, 0x7, 0x80, 0x80000001, 0x5771, 0xfd61, 0x4, 0x9, 0x4, 0x8, 0x4, 0x7f, 0x10001, 0x8, 0x1, 0x6, 0x2, 0x10000, 0x7, 0x0, 0x6, 0x10001, 0x12b36975, 0x8, 0x1, 0x0, 0x29a1b898, 0xff, 0x124000, 0x8000000, 0x7, 0x1, 0x200, 0xffffc982, 0x400, 0x800, 0x800, 0x824, 0x40, 0x5, 0x1000, 0x1, 0x6, 0x4, 0x100, 0x1, 0x8, 0xfffffff8, 0x3f, 0x2, 0x8, 0x92, 0x6, 0x100, 0x7, 0x3, 0x40, 0x3ff, 0x6, 0xe1c, 0x800, 0x800, 0xddc0, 0x1ff, 0x2, 0x3, 0xff, 0x7fff, 0x1, 0x57c6, 0x8, 0x8, 0x100, 0x8, 0x1, 0x5, 0x39e, 0x82, 0x5, 0x2, 0x800, 0x5, 0x3, 0x2, 0xffffffff, 0x5, 0x9, 0x1000, 0x0, 0x0, 0x1, 0xc1e, 0x1ff, 0xff, 0x3, 0xffff, 0x0, 0xffffffc1, 0x101, 0x38, 0xfffffff9, 0xffff8001, 0x400, 0x9, 0x1, 0x7, 0x2, 0x9, 0x3, 0x3, 0x1, 0x6, 0x3ff, 0x315a, 0x1, 0x8, 0x8000, 0x8, 0x608, 0x212c, 0x2, 0x0, 0x8000, 0xabd, 0x7ff, 0x99, 0x6, 0x7, 0x0, 0x1000, 0x59e6, 0x9, 0x5, 0xfffffff8, 0x0, 0x40, 0xfffffff7, 0x1, 0x8, 0x5, 0x2, 0xfffff611, 0x100, 0x8d66, 0x7fffffff, 0xffff, 0x2, 0x1, 0x0, 0xa9fa, 0x3, 0x408, 0x9, 0x5, 0x2376, 0xfffffff9, 0x0, 0x4, 0x80000001, 0x5, 0x3, 0x1ff, 0x60, 0x400, 0x2, 0x10000, 0xb77, 0xcc2, 0x0, 0x800, 0x7fff, 0x6, 0x8, 0x1000, 0xffffffff, 0x0, 0x4, 0x20000000, 0x1ba, 0x0, 0x400, 0x10001, 0x9, 0x3, 0x47d, 0x26, 0x81, 0x2, 0xfffffffe, 0x5, 0x1, 0x7, 0x2, 0x3, 0x0, 0x8, 0x8, 0x8, 0x2, 0x7fffffff, 0xfffffffc, 0x3, 0x9, 0x0, 0x0, 0x7, 0x7, 0x800, 0xfff, 0x6, 0x10000, 0x4, 0x8, 0xfffffffd, 0x80000000, 0x0, 0x0, 0x7e9, 0x8000, 0x7, 0xffffff5c, 0x20, 0x5, 0x2e8d, 0x401, 0x0, 0x0, 0x1, 0xe2c, 0x555fa73c, 0x4, 0x0, 0x0, 0x7, 0x6, 0x1, 0xa46, 0x3, 0x7, 0x400, 0x2, 0x80, 0x9, 0xed6b, 0xfff, 0x9, 0x3, 0x1, 0x1ff, 0x5, 0x8000, 0x3, 0x2, 0x6, 0x53ea, 0x5, 0x3, 0xffffffff, 0xfffffa1b, 0x4, 0x0, 0x20, 0xffffffff, 0xa4df, 0x100, 0x6, 0x78d, 0x80, 0x2c, 0x0, 0x38, 0xfffffff8, 0x10000, 0x3, 0x9, 0xee9, 0x3, 0x8, 0x9, 0x200, 0x10000, 0xffff, 0x9, 0x10000, 0x1f, 0x1, 0x101, 0x6, 0x9, 0x6, 0x5, 0x400, 0x6, 0x4, 0x3f, 0x80, 0x4, 0x0, 0x3, 0x4e6b, 0x7ff, 0x10001, 0x9, 0xfffffffb, 0x1, 0x80000000, 0xfbc, 0xfffffc00, 0x3, 0x0, 0x0, 0x4, 0x6, 0x3, 0x0, 0x4, 0x400, 0x7, 0x6, 0x0, 0xfff, 0xf50, 0x8, 0x9, 0x6, 0x2, 0x85e9, 0x296, 0x8001, 0x10001, 0xe1e, 0x1, 0x9, 0x7fffffff, 0x5, 0x2, 0x3, 0x4, 0x6, 0x0, 0xd98e, 0x7ff, 0x4, 0x6, 0xbfa, 0x3, 0xfff, 0x800, 0x4, 0x4, 0x7, 0xffffffc1, 0x1, 0x3, 0x2, 0x101, 0xfffffff7, 0x80000000, 0x8, 0x7fff, 0x71, 0x0, 0x9, 0x6, 0x0, 0x9, 0x86f9, 0x1, 0xffffffff, 0x4, 0x5, 0x0, 0xfffffffc, 0x80, 0x3, 0x1, 0x9, 0x20, 0x7fffffff, 0x0, 0x3, 0x4, 0x82, 0x80000001, 0x100000, 0x7fffffff, 0x7ff, 0x7fffffff, 0x1, 0x2, 0xf67, 0x2, 0x7, 0xcea4, 0x4, 0x9, 0x3f, 0x200, 0x0, 0x42, 0x1, 0x9, 0x9, 0x0, 0x8, 0x10001, 0xb8b, 0x1, 0x7fffffff, 0x4, 0x1, 0x1, 0x5, 0x2f8, 0x8000, 0x151, 0xd1, 0x6, 0x7f, 0xffffffff, 0x2, 0x0, 0x101, 0x400, 0x6, 0x200, 0x10000, 0x8000, 0xffffffe1, 0x36, 0x2, 0x7, 0xfff, 0x80000000, 0x3, 0x5b6d, 0x100, 0x0, 0x10000, 0x0, 0x4, 0x8, 0x1, 0x0, 0x1f, 0x4595, 0x7, 0x1, 0x800, 0x3, 0x100, 0x0, 0x600d, 0x8, 0x0, 0x1, 0x1, 0x8001, 0x1, 0x4, 0x21, 0x7fff, 0xffffffff, 0x3, 0x3, 0x9, 0x7, 0x0, 0x8, 0x7ff, 0x59, 0xae13, 0x800, 0x3, 0xd2, 0x1800000, 0x1, 0x101, 0x0, 0x200, 0x0, 0xfff, 0x1ff, 0x3, 0x5, 0x6, 0x2, 0x1, 0x3, 0x6, 0x7f0, 0x3800, 0x4, 0x1000, 0x3, 0xda, 0x0, 0x1c3, 0x602, 0xffffff6f, 0x5, 0x1, 0x10000, 0x100000, 0x7, 0x81, 0x6, 0x155, 0x7fff, 0x7fff, 0xffffff00, 0xffffffe1, 0x9, 0x1ff, 0xfffff801, 0x6, 0x4, 0x1, 0x0, 0x6, 0x101, 0x7fffffff, 0x8, 0x3, 0x1, 0x3, 0x0, 0x0, 0x8, 0x7fff, 0x80000000, 0x3, 0x5, 0x100, 0xc9, 0xae, 0x5, 0xfffffff7, 0xffffff26, 0x101, 0x10000, 0x4, 0xffff8020, 0x4000000, 0x9, 0x1, 0x3, 0x2ffc311b, 0x800, 0x1, 0x4, 0x3f, 0x1, 0x3f, 0x40, 0x6, 0x6, 0x0, 0x4, 0x3f, 0x6467, 0x428, 0x8, 0x6, 0x0, 0xddad, 0x3, 0x3, 0xc5ff, 0x0, 0x7c0a, 0x0, 0x6, 0x68930226, 0xfff, 0xff, 0x6, 0x200, 0x3f, 0x4, 0x2, 0x7fff, 0x3f, 0x0, 0x1, 0x80000000, 0x9, 0x1, 0x100, 0xfff, 0x1, 0x0, 0x3, 0x200, 0x3f, 0x8, 0x0, 0x1000, 0x9, 0x8, 0x4, 0xffff, 0xff, 0x1ff, 0x0, 0xd7, 0x4, 0x3, 0xd3b, 0x401, 0x8, 0x9, 0x40a, 0x1, 0x85, 0x8, 0x7fff, 0x7, 0x8, 0x3, 0xa1, 0x4, 0x80000001, 0x6, 0x80000000, 0x0, 0x100, 0xd8, 0x5, 0x5, 0x1, 0x8, 0x7a5, 0xa04, 0x8, 0x4, 0x40, 0xffff, 0x4, 0x9, 0x8, 0x80, 0x6fa9, 0x705c, 0xd15, 0x5, 0xfffff001, 0x1000, 0x20, 0x1, 0x721, 0x3, 0xffff8001, 0x0, 0x5, 0x3, 0x1ff, 0x7, 0x0, 0x3dd, 0x10000, 0x8, 0x1000, 0x7, 0x8f, 0x0, 0x13, 0xbeb8, 0x8, 0x0, 0x4, 0x7, 0x7fff, 0x7, 0x7, 0xfff, 0x2, 0x20, 0x9, 0x6, 0x5, 0x4, 0x9, 0x101, 0xfff, 0x9, 0xfff, 0x46, 0x80000000, 0x4, 0x2, 0x80, 0x4, 0x2, 0x6, 0x8, 0xe1cb, 0x4, 0x800, 0x217, 0xca, 0x8, 0xa0, 0x20, 0x5, 0x1000, 0x8000, 0x6, 0x8, 0x40, 0x81800000, 0x401, 0xf9, 0xffffffff, 0xfffff800, 0x87f, 0x4, 0x2, 0x802, 0x7fff, 0x8, 0x1000000, 0xffff, 0x7ff, 0x2, 0x508, 0xfffffffe, 0x0, 0x3, 0x0, 0x40, 0x7, 0xa4, 0x101, 0x0, 0x4, 0x80, 0x5, 0xcc0, 0x1ff, 0x3, 0x81, 0x8, 0x3, 0x100020, 0x1, 0x0, 0x6, 0x20, 0x8, 0x400, 0x20, 0x0, 0xca, 0x101, 0x1, 0x10001, 0x0, 0x200, 0x37, 0x1f, 0x3ff, 0x3ff, 0x9c8, 0x367, 0x80000000, 0x7f43, 0x80000000, 0x1, 0x7, 0x689, 0x9, 0x2, 0x3, 0x101, 0x3, 0x2, 0x7, 0x7, 0x80000001, 0x7, 0x7, 0x800, 0x1, 0x1, 0xffffee79, 0x73c8, 0x9591, 0x5, 0xfffffffc, 0x2, 0xfffffc00, 0x9, 0x90, 0x5, 0x3, 0x7, 0x3, 0x0, 0x0, 0x9, 0x5, 0x5, 0xffffffff, 0x8, 0x0, 0x8, 0x9, 0x8, 0x80, 0x2, 0x9, 0x8000, 0x0, 0x9d, 0x9, 0x6a7b, 0x80000001, 0xcbe3, 0x2, 0x6, 0x7ff, 0x2, 0xffffffff, 0x9, 0xf3, 0x699, 0x2, 0xfffffbff, 0x401, 0x0, 0x10001, 0x7, 0x4, 0x9, 0x101, 0x0, 0xbd, 0x373, 0x0, 0x1c2, 0xff, 0x4, 0x63, 0x200, 0x80000000, 0x5, 0xfff, 0x3, 0x70000000, 0x0, 0x9, 0x12075cd9, 0xffffffff, 0x3, 0x9, 0x6, 0x7, 0x9, 0x9, 0x0, 0xacf0, 0xfdd9, 0x8, 0x2, 0x54, 0x3ff, 0x1000, 0x101, 0x3f, 0x7fff, 0x7, 0x0, 0x7fffffff, 0x0, 0x20, 0x94a, 0x1, 0x3, 0xfff, 0x8eb, 0x4, 0x8f9f, 0x81, 0xfa, 0xffff3373, 0x1, 0x7, 0xd7, 0x4, 0x81, 0xfffffffc, 0xffffffff, 0x3, 0x5279, 0x2, 0x8, 0x101, 0x9, 0x4, 0x4, 0x2, 0x8, 0x8001, 0x6, 0x2, 0x2, 0x6, 0x3, 0x2, 0xffff, 0x3f, 0x42, 0x6, 0x1, 0x0, 0x9, 0x1, 0x7, 0x5, 0x200]}) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x0, 0x0, 0x40000008000) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x400480) ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f0000000080)={0x80, 0x1, 0x1, 0x9, 0x7, [{0xc47, 0x101, 0x1ff, '\x00', 0x80}, {0x100000001, 0x5, 0x1}, {0xb, 0x6, 0x8, '\x00', 0x5}, {0x3ff, 0x1ff, 0x10000, '\x00', 0x3100}, {0xffffffffffffffb5, 0x2, 0x3d0, '\x00', 0x404}, {0x1f, 0xc27, 0x2, '\x00', 0x2883}, {0x1, 0x80, 0x2, '\x00', 0x1}]}) 07:19:32 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10100000000000, 0x0, 0x0}, 0x58) 07:19:32 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:19:32 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x0, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:19:32 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000000000000, 0x0, 0x0}, 0x58) 07:19:32 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00000000000000, 0x0, 0x0}, 0x58) 07:19:32 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, 0x0}, 0x58) 07:19:32 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000b40)=ANY=[@ANYBLOB="0427964499f94edb5c54a6ac22176395ec2d5a34453bc10a86d35b444281d7e802206e71a9ca6e5ca0cedf8e3444d05ff780c56599396a71ad8a96a56190cbf1d4e654b08fde5f1875958b7740c16dcfcb8d046687712cae577bb7efc31e43358fc93fe038d4d1f747cd7ff117ca7d1005eb313f2f2306eaa342515192db733267ca6f91a104a368b05feacc4fddb47a5a8d06ec294ea1be5f90c591f36c2a1c16fc3993be798368e6eeb31176a7f5c7e67ba7e51448a7b2b5cef86452f229f4038073f0643c6b2139d10f22f27763e0f98810071e3fa61b92563a08cacd", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) mq_timedsend(r1, &(0x7f0000000180)="819878a9e0f8d0209d1320939dfbe8eb3ae39c703d8b11fee5279791332e00acdc3741f731fe047d585b80f1192d34e3c110efbc9e8b3a25b23b448e580f0194aac0c3daf7ea5428009303aa5f35d0b54298e9322b2dd925c7dd91ea78a18d55c6df75482b08cf04f03fe93814ab21eb3fb68aac6bf597b5239ae385e13ea747f08c8be5e251d796d73c7748c998c51199b6d0078ad87bad7f0c42973f585056be70daf6d4fd9b3af0e7abf1a8ed68190282fa2685e4b2590c8c", 0xba, 0x9, &(0x7f0000000240)) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r3, 0x8010661b, &(0x7f00000000c0)) r4 = fsopen(&(0x7f0000000000)='fusectl\x00', 0x1) fcntl$setownex(r4, 0xf, &(0x7f0000000080)={0x1}) ioctl$BTRFS_IOC_BALANCE_V2(r4, 0xc4009420, &(0x7f0000000300)={0x1, 0x0, {0x1000, @struct={0x928, 0x425dec0}, 0x0, 0x7017, 0x200000000000000, 0x8, 0x3, 0x9, 0x88, @struct={0x80000000, 0xee}, 0x8, 0x3, [0xbc, 0x0, 0xfffffffffffffff8, 0x3, 0x0, 0x3f]}, {0x1, @struct={0x2c5e, 0xffffff80}, 0x0, 0x20, 0xfffffffffffffffe, 0x6, 0x6, 0x7, 0x10, @struct={0x4}, 0x9, 0x1f, [0x7, 0xcf, 0x7, 0x7f, 0x3bf, 0x1]}, {0x6, @usage=0x8, 0x0, 0x3f, 0x6, 0x7, 0x10001, 0x1, 0x81, @usage=0x8000000, 0xe1, 0x7, [0x5, 0x3ff, 0x2eee4292, 0x93, 0x0, 0x9]}, {0xbdf, 0x1, 0x8}}) ioctl$BTRFS_IOC_GET_DEV_STATS(r2, 0xc4089434, &(0x7f0000000700)={r5, 0x7, 0x1, [0x0, 0x3, 0x5, 0x8], [0x4, 0xb4, 0x2, 0x9, 0x401, 0xd548, 0x0, 0xcca, 0x1000, 0x8000, 0x6, 0x7ec7, 0x0, 0x5, 0x5, 0x7f, 0x47, 0x8, 0x2, 0x3, 0xffffffffffffffff, 0x2c, 0x4, 0xf7, 0xfffffffffffffffd, 0x44b80, 0x4, 0x380000000000, 0x20, 0xff, 0xc1a, 0x8, 0x1, 0x9, 0x4, 0x8, 0xe4, 0x8, 0x8, 0xbb, 0x7ff, 0x1, 0x8, 0x10000, 0x7ea1, 0x7, 0x9a68, 0xffffffff00000000, 0x1, 0x4000000000000000, 0x8000, 0x3, 0x6, 0x0, 0x4, 0x1000, 0xf06, 0x8, 0x1be, 0x80000001, 0x10001, 0x0, 0x4, 0x1, 0x7f, 0x4, 0x1a7, 0xfffffffffffffff7, 0xef31, 0x80000001, 0x5, 0xe54, 0x4, 0x7fffffff, 0x51b4, 0x5, 0x80, 0x0, 0x100000000, 0x7, 0x6, 0x9, 0x7bc, 0x8, 0x1f, 0x1, 0x3, 0xfffffffffffffffb, 0x8380, 0x2, 0x3, 0xffffffffffff7274, 0x831c, 0x32ce, 0xee, 0x10001, 0x3, 0x4a, 0xfffffffffffffff7, 0x80000000, 0x101, 0x1ff, 0xcd, 0x2, 0xfffffffeffffffff, 0x3, 0x5, 0x101, 0x8000, 0x8, 0x2, 0x7, 0x7, 0x2, 0x9, 0x8c, 0xfffffffffffff0a9, 0x270000000, 0x4, 0x3, 0x6]}) r6 = socket$unix(0x1, 0x2, 0x0) ioctl$BTRFS_IOC_START_SYNC(r6, 0x80089418, &(0x7f0000000280)) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000100)={'veth0_to_hsr\x00'}) 07:19:32 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x800000000000000, 0x0, 0x0}, 0x58) 07:19:32 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:19:32 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:19:32 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00000000000000, 0x0, 0x0}, 0x58) 07:19:48 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:19:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, 0x0}, 0x58) 07:19:48 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffff00000000, 0x0, 0x0}, 0x58) 07:19:48 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:19:48 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x91) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) pipe(&(0x7f0000000000)) 07:19:48 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, 0x0}, 0x58) 07:19:48 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, 0x0}, 0x58) 07:19:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2089273a550000, 0x0, 0x0}, 0x58) 07:19:48 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$BTRFS_IOC_SET_FEATURES(r0, 0x40309439, &(0x7f0000000000)={0x0, 0x0, 0x2}) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdeb) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:19:48 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:05 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000000000000, 0x0, 0x0}, 0x58) 07:20:05 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffff00000000, 0x0, 0x0}, 0x58) 07:20:05 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x0) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x704dc8bc290000, 0x0, 0x0}, 0x58) 07:20:05 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffff00000000, 0x0, 0x0}, 0x58) 07:20:05 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x58) 07:20:05 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, 0x0) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0) read(r0, &(0x7f0000000080)=""/161, 0xa1) fsetxattr$security_capability(r0, &(0x7f0000000000), &(0x7f0000000140)=@v1={0x1000000, [{0x8, 0x40}]}, 0xc, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:05 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:20:05 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x0) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:05 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={r0, 0x671, 0x800, 0x40}) open_tree(r1, &(0x7f0000000080)='./file0\x00', 0x83001) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x408000) fallocate(r0, 0x0, 0x0, 0xfdef) llistxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=""/6, 0x6) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:05 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20010, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:20:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0f10b1b000000, 0x0, 0x0}, 0x58) 07:20:05 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x58) 07:20:05 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x58) 07:20:05 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x58) 07:20:05 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00000000000000, 0x0, 0x0}, 0x58) 07:20:05 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x0) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:05 executing program 5: perf_event_open(&(0x7f0000000400)={0x1, 0x80, 0x1, 0x1, 0x0, 0xaf, 0x0, 0x1ff, 0x80, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext={0x1, 0xffffffff}, 0x10400, 0x8, 0x0, 0x6, 0x4, 0x1, 0x0, 0x0, 0x89, 0x0, 0x9f23}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x2) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x11) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) listen(0xffffffffffffffff, 0x0) ppoll(&(0x7f0000000240)=[{0xffffffffffffffff, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) dup2(0xffffffffffffffff, r1) r2 = openat$cgroup_subtree(r0, &(0x7f0000000000), 0x2, 0x0) ioctl$INCFS_IOC_PERMIT_FILL(r2, 0x40046721, &(0x7f0000000080)={r0}) r3 = socket$unix(0x1, 0x5, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r3, 0x0) ppoll(&(0x7f0000000240)=[{r3, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f00000003c0)=ANY=[@ANYBLOB="0100000b0100000018000040", @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file1\x00']) clone3(&(0x7f0000000300)={0xc2200, &(0x7f00000000c0)=0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140), {0x3a}, &(0x7f0000000180)=""/58, 0x3a, &(0x7f00000001c0)=""/191, &(0x7f0000000280)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2, {r0}}, 0x58) fremovexattr(r4, &(0x7f0000000380)=@known='com.apple.system.Security\x00') r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r5, 0x3, 0x0, 0x8000) 07:20:05 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(0xffffffffffffffff, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:06 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:20:06 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100}, 0x58) 07:20:21 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:20:21 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f00000000, 0x0, 0x0}, 0x58) 07:20:21 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x58) 07:20:21 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x58) 07:20:21 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(0xffffffffffffffff, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:21 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, 0x0}, 0x58) 07:20:21 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x58) 07:20:21 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) r2 = openat$cgroup_ro(r0, &(0x7f0000000100)='cpuacct.usage_user\x00', 0x0, 0x0) ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f0000000140)={0x9, 0x0, 0x2, 0xf2ff, 0x2, [{0x0, 0x2, 0x4, '\x00', 0x2404}, {0xaff, 0x20, 0x9, '\x00', 0x88}]}) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) fallocate(r1, 0x3, 0x0, 0x81008000) fallocate(r0, 0x0, 0x0, 0xfdef) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r3, 0x3, 0x0, 0x8000) r4 = syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x500) openat(r4, &(0x7f0000000080)='./file0\x00', 0x20040, 0x181) 07:20:21 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x101000, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) r3 = accept4$bt_l2cap(r1, &(0x7f00000000c0)={0x1f, 0x0, @none}, &(0x7f0000000100)=0xe, 0x80000) fallocate(r3, 0x24, 0x0, 0x80000000) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r1, 0xf501, 0x0) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r2, 0x80089419, &(0x7f0000000080)) fallocate(r1, 0x3, 0x0, 0x8000) 07:20:21 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(0xffffffffffffffff, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:21 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x101000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:20:38 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100}, 0x58) 07:20:38 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100}, 0x58) 07:20:38 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0ff1f, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:20:38 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffff00000000, 0x0, 0x0}, 0x58) 07:20:38 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0xc0a85320, &(0x7f0000000080)) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) fallocate(r0, 0x48, 0x100, 0x80) 07:20:38 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000000000000, 0x0, 0x0}, 0x58) 07:20:38 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00}, 0x58) 07:20:38 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:38 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:38 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x58) 07:20:38 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:38 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:20:38 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x58) 07:20:38 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x800000000000000, 0x0, 0x0}, 0x58) 07:20:38 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x58) 07:20:38 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x58) 07:20:38 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:39 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20010}, 0x58) 07:20:39 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:39 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00}, 0x58) 07:20:39 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x58) 07:20:39 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00}, 0x58) 07:20:39 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:54 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:20:54 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x58) 07:20:54 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, 0x0}, 0x58) 07:20:54 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:20:54 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20200}, 0x58) 07:20:54 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100}, 0x58) 07:20:54 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000000aa40)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001300)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000100)={0x0, 0x1000}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000052900)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}], 0x81, "d5e2b485aca084"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000052a40)={0x1932, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x0, "4abc261bc0e3cc"}) ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000049f80)={{0x0, 0x5, 0x9, 0x77, 0xffff, 0x9, 0x129, 0x200, 0xa17, 0xfffffffe, 0x1, 0x2, 0xff, 0x80000000, 0x10001}}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000007640)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x4, "9755154351ac9a"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000000aa40)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001300)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x9, [{}, {}, {0x0, r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {r12}, {}, {}, {}, {}, {r13}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r14}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f000004af80)={{0x0, 0x0, 0xf4e, 0x3, 0x101, 0x2, 0x10001, 0x2, 0x2, 0x1, 0x1ff, 0x8, 0x7ff, 0x401, 0x1}}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000004bf80)={0xfff, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {0x0, r14}, {r15}], 0x0, "5579aeceda361c"}) fallocate(r0, 0x0, 0x0, 0xfdef) r16 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r16, 0x3, 0x0, 0x8000) 07:20:54 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x58) 07:21:07 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20010}, 0x58) 07:21:07 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:21:07 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:21:07 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x58) 07:21:07 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) lseek(0xffffffffffffffff, 0x3ff, 0x2) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000000)={0x0, 0x3}, 0x8) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(r0, &(0x7f00000002c0)='./file0\x00', 0x1450c0, 0x80) fallocate(r1, 0x3, 0x0, 0x8000) 07:21:07 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x58) 07:21:07 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000000000000, 0x0, 0x0}, 0x58) 07:21:07 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20010}, 0x58) 07:21:07 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:21:07 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0xa, 0xffffffffffffffff, 0x6) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000000)={r0, 0x7fffffff, 0xfffffffffffffffc, 0x3}) fallocate(r1, 0x3, 0x0, 0x8000) 07:21:07 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00}, 0x58) 07:21:07 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x11000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:21:07 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20200}, 0x58) 07:21:07 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00000000000000, 0x0, 0x0}, 0x58) 07:21:08 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20200}, 0x58) 07:21:08 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x101000}, 0x58) 07:21:08 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(0xffffffffffffffff, 0x3, 0x0, 0x8000) 07:21:08 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1ffff000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:21:08 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x305400, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000100000018000000", @ANYBLOB="b76716ba32184dc839eb0d5bc7f001475ea15ab22fbb833b641c954ae20b4fea8e51a46157a84941893f903da90c7c34a939e80f82ad35d7336baab4643fe47ae1e288eae3969fa0c87b718e688240366333c544e8606d804d5a53bff3b5d45bae4b19c314fe6cbcae6eb3d76d60dd0ad894882ebcfa7af8d33263ab2671f2c030fa4b66d961dec91c49d8", @ANYBLOB="000001c2fb61ac8393098e4e3a9a7b477911d6adc7f5a82b423e3e432adfd67d038851cca1218b43a720c9b011ab30b5361ad9ba6dd70c5183c10ad828b3ed6e5656deb12030da0f3ebe49cb95da82914237e7c410256d4d07c9d31f2f482df79a25169919d242cc2e857ac563491759e9b825b0d033b14e933db99abd4aa8a76906c2c973"]) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$CDROMGETSPINDOWN(r3, 0x531d, &(0x7f0000000080)) fallocate(r2, 0x3, 0x0, 0x8000) 07:21:08 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, 0x0}, 0x58) 07:21:08 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000000)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r3, 0x3, 0x0, 0x8000) 07:21:08 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(0xffffffffffffffff, 0x3, 0x0, 0x8000) 07:21:08 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f}, 0x58) 07:21:08 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x58) 07:21:08 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x3a) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) stat(&(0x7f0000000340)='.\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r1, 0x0) mount$9p_rdma(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x3820, &(0x7f0000000300)={'trans=rdma,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@sq={'sq', 0x3d, 0x1}}, {@sq={'sq', 0x3d, 0xfffffffffffffff8}}, {@rq={'rq', 0x3d, 0x101}}, {@timeout={'timeout', 0x3d, 0xa4}}], [{@dont_measure}, {@euid_lt={'euid<', r1}}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@dont_measure}, {@smackfsfloor={'smackfsfloor', 0x3d, '/)'}}, {@fowner_gt}, {@fsuuid={'fsuuid', 0x3d, {[0x34, 0x35, 0x30, 0x36, 0x36, 0x38, 0x66, 0x35], 0x2d, [0x65, 0x34, 0x30, 0x36], 0x2d, [0x39, 0x39, 0x65, 0x39], 0x2d, [0x37, 0x65, 0x37, 0x62], 0x2d, [0x31, 0x61, 0x31, 0x32, 0x0, 0x64, 0x33, 0x62]}}}, {@fscontext={'fscontext', 0x3d, 'user_u'}}]}}) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(r0, &(0x7f00000002c0)='./file0\x00', 0x80000, 0xb) fallocate(r2, 0x3, 0x0, 0x8000) setsockopt$inet6_IPV6_ADDRFORM(r2, 0x29, 0x1, &(0x7f0000000080), 0x4) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000000, 0x17803cc76631e734, r2, 0xef807000) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) r3 = socket$unix(0x1, 0x5, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) r4 = mmap$IORING_OFF_SQES(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x12, r2, 0x10000000) syz_io_uring_submit(0x0, r4, &(0x7f0000000140)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x3003, @fd_index=0xa, 0x3, 0x10000, 0x0, 0x14, 0x0, {0x2}}, 0x1e93) listen(r3, 0x0) ppoll(&(0x7f0000000100)=[{r3, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x7, 0x7}) ioctl$FAT_IOCTL_GET_VOLUME_ID(r2, 0x80047213, &(0x7f0000000000)) 07:21:23 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x58) 07:21:23 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x58) 07:21:23 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20010}, 0x58) 07:21:23 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x58) 07:21:23 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x20) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$LOOP_SET_FD(r0, 0x4c00, r1) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x12d801, 0x84) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r3, 0x3, 0x0, 0x8000) 07:21:23 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(0xffffffffffffffff, 0x3, 0x0, 0x8000) 07:21:23 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:21:23 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffff00000000, 0x0, 0x0}, 0x58) 07:21:23 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x0, 0x0, 0x8000) 07:21:23 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x20000, 0x22}, 0x18) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {r2}}, './file0\x00'}) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r3, 0x3, 0x0, 0x8000) 07:21:23 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x58) 07:21:23 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x101000}, 0x58) 07:21:39 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x58) 07:21:39 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x58) 07:21:39 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f}, 0x58) 07:21:39 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:21:39 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x101000}, 0x58) 07:21:39 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20200}, 0x58) 07:21:39 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x0, 0x0, 0x8000) 07:21:39 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x3, 0x101}}, './file0\x00'}) r3 = gettid() process_vm_readv(r3, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000100)={&(0x7f0000000080), 0xc, &(0x7f00000000c0)={&(0x7f0000000300)={0x22c, 0x15, 0x300, 0x70bd2a, 0x25dfdbfc, {0x16}, [@nested={0x118, 0x44, 0x0, 0x1, [@typed={0x8, 0x89, 0x0, 0x0, @fd=r1}, @typed={0x87, 0x6e, 0x0, 0x0, @binary="5d197635f9cd8a0aa31c6fd688a1a114ffdeb87e19f4932e8c6c39c182e6b9839ef391b9fa254a4a32b286f3f14fd2f0db8e97e9740bc69afd03aba4f40df478d3f82f26b2608dc42989bddea57c652fceb6601b710171159a8e92d46d6932dbcced5ed961b7ac25620f556f08db0b6432cd99782b5378191175a2889e91857612f944"}, @typed={0x8, 0x59, 0x0, 0x0, @pid=r3}, @generic="e8f2236077e58baba09b01777f9173cb196ffac3ead894d5b6c3548f1d9337bb5434d3d1e7f164184c93d411a586cb081759417d48453d433cb5d72a968e010ab3a8db9484c0e0e42dd817b164f2665f55d77a87f4574dd26165604fdd62c28f7b50a6af", @typed={0x7, 0x7c, 0x0, 0x0, @str='}\'\x00'}, @typed={0x8, 0x79, 0x0, 0x0, @u32=0x8}, @typed={0x8, 0x3d, 0x0, 0x0, @ipv4=@multicast1}]}, @generic="7d5d3f5eec4db664ce82f8d5bd2b81ba6933dbdcb86df8e532ffa22d07ccdca510ee6bc245b73a77f8c5821c17cc926c2318c310e849d07f56b1636b05dec1b6a849bbf5e2bf35f9b047b0", @typed={0x8, 0x8, 0x0, 0x0, @fd=r0}, @generic="e2629f40970da6ff1e7ac1e3d18454a4df0e793c2ec6ef6ea8865eb7be239c51c08d9e23a0fa0813098e4c553b0ced0adf9b74592bd8a2cfda3aa7a2f822003643d012f2b366efce215ed626ed6c79633a662877121de2d4892648593ac82e541163220d867623afbc28e28d80d127e2b8b8c1c1b6c63e385a28bfc292f15a098d7d2642b975325e598434571e77507cd257659fdb656ddc7886566f2cd722b4b8bea966f6f174d14197ec"]}, 0x22c}, 0x1, 0x0, 0x0, 0x4010}, 0x4040041) 07:21:56 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000200}, 0x58) 07:21:56 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x58) 07:21:56 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x14) ioctl$TUNSETLINK(r2, 0x400454cd, 0xafa4c07111628005) fallocate(r1, 0x3, 0x0, 0x8000) 07:21:56 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f}, 0x58) 07:21:56 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x0, 0x0, 0x8000) 07:21:56 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100}, 0x58) 07:21:56 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x58) 07:21:56 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x40000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:21:57 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x0) 07:21:57 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0x7ff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) sendmsg$NL80211_CMD_ADD_TX_TS(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x0, 0x70bd2d, 0x25dfdbff, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x24000011}, 0x4004084) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r3, 0x3, 0x0, 0x8000) 07:21:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x58) 07:21:57 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x0) 07:21:57 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x100000800, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:21:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x58) 07:21:57 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11000000}, 0x58) 07:21:57 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x58) 07:21:57 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x101000}, 0x58) 07:21:57 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x2, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x11) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) fadvise64(r1, 0x0, 0x0, 0x2) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:21:57 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x0) 07:21:57 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) dup2(r0, r0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) fallocate(r1, 0x3, 0x0, 0x8000) 07:21:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x58) 07:21:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00}, 0x58) 07:21:57 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1b0c11f000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:22:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x58) 07:22:11 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000200}, 0x58) 07:22:11 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000200}, 0x58) 07:22:11 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1ffff000}, 0x58) 07:22:11 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f}, 0x58) 07:22:11 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r3, 0x0) ppoll(&(0x7f0000000240)=[{r3, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000000)=ANY=[@ANYRES32=r3, @ANYRES16], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r4, 0x3, 0x0, 0x8000) 07:22:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:22:11 executing program 7: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000001000000, 0x0, 0x0}, 0x58) 07:22:11 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 1) 07:22:11 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) openat(r2, &(0x7f0000000000)='./file0\x00', 0x8000, 0x146) fallocate(r0, 0x0, 0x0, 0xfdef) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r3, 0x3, 0x0, 0x8000) [ 2492.412745] FAULT_INJECTION: forcing a failure. [ 2492.412745] name failslab, interval 1, probability 0, space 0, times 0 [ 2492.414079] CPU: 0 PID: 67795 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2492.414815] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2492.415698] Call Trace: [ 2492.415993] dump_stack+0x107/0x167 [ 2492.416404] should_fail.cold+0x5/0xa [ 2492.416815] ? ext4_init_io_end+0x23/0x180 [ 2492.417274] should_failslab+0x5/0x20 [ 2492.417686] kmem_cache_alloc+0x5b/0x310 [ 2492.418126] ext4_init_io_end+0x23/0x180 [ 2492.418564] ext4_writepages+0x8ec/0x3350 [ 2492.419023] ? lock_acquire+0x197/0x470 [ 2492.419455] ? lock_downgrade+0x6d0/0x6d0 [ 2492.419909] ? mark_lock+0xf5/0x2df0 [ 2492.420309] ? mark_lock+0xf5/0x2df0 [ 2492.420728] ? lock_chain_count+0x20/0x20 [ 2492.421174] ? lock_chain_count+0x20/0x20 [ 2492.421636] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2492.422157] ? mark_lock+0xf5/0x2df0 [ 2492.422565] ? lock_chain_count+0x20/0x20 [ 2492.423020] ? __lock_acquire+0x1657/0x5b00 [ 2492.423492] ? lock_chain_count+0x20/0x20 [ 2492.423944] ? __lock_acquire+0x1657/0x5b00 [ 2492.424422] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2492.424943] do_writepages+0xee/0x2a0 [ 2492.425365] ? page_writeback_cpu_online+0x20/0x20 [ 2492.425885] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2492.426459] ? __lockdep_reset_lock+0x180/0x180 [ 2492.426965] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2492.427506] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2492.428075] ? ext4_fallocate+0x18d/0x3860 [ 2492.428569] filemap_write_and_wait_range+0x65/0x100 [ 2492.429109] ext4_punch_hole+0x178/0x1070 [ 2492.429558] ? downgrade_write+0x3a0/0x3a0 [ 2492.430018] ? down_write_killable+0x180/0x180 [ 2492.430513] ext4_fallocate+0xd8e/0x3860 [ 2492.430944] ? __x64_sys_fallocate+0xcf/0x140 [ 2492.431437] ? lock_release+0x680/0x680 [ 2492.431857] ? _cond_resched+0x12/0x80 [ 2492.432287] ? ext4_ext_truncate+0x250/0x250 [ 2492.432780] ? ext4_ext_truncate+0x250/0x250 [ 2492.433258] vfs_fallocate+0x48f/0xd00 [ 2492.433679] __x64_sys_fallocate+0xcf/0x140 [ 2492.434152] do_syscall_64+0x33/0x40 [ 2492.434549] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2492.435106] RIP: 0033:0x7f24574d1b19 [ 2492.435504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2492.437473] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2492.438280] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2492.439054] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2492.439835] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2492.440619] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001 [ 2492.441380] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:22:11 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x58) 07:22:11 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11000000}, 0x58) 07:22:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20010}, 0x58) 07:22:11 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11000000}, 0x58) 07:22:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2a3d8172e000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:22:11 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x58) 07:22:27 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x553a277e4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:22:27 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 2) 07:22:27 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1ffff000}, 0x58) 07:22:27 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x58) 07:22:27 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0xfffffffffffffffd, 0xfdf2) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:22:27 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1ffff000}, 0x58) 07:22:27 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20200}, 0x58) 07:22:27 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f000000}, 0x58) [ 2508.174162] FAULT_INJECTION: forcing a failure. [ 2508.174162] name failslab, interval 1, probability 0, space 0, times 0 [ 2508.176700] CPU: 1 PID: 68644 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2508.178084] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2508.179738] Call Trace: [ 2508.180276] dump_stack+0x107/0x167 [ 2508.181023] should_fail.cold+0x5/0xa [ 2508.181792] ? create_object.isra.0+0x3a/0xa20 [ 2508.182717] should_failslab+0x5/0x20 [ 2508.183484] kmem_cache_alloc+0x5b/0x310 [ 2508.184301] ? _raw_spin_unlock_irq+0x1f/0x30 [ 2508.185223] create_object.isra.0+0x3a/0xa20 [ 2508.186107] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2508.187128] kmem_cache_alloc+0x159/0x310 [ 2508.187970] ext4_init_io_end+0x23/0x180 [ 2508.188796] ext4_writepages+0x8ec/0x3350 [ 2508.189635] ? lock_acquire+0x197/0x470 [ 2508.190450] ? lock_downgrade+0x6d0/0x6d0 [ 2508.191283] ? mark_lock+0xf5/0x2df0 [ 2508.192032] ? mark_lock+0xf5/0x2df0 [ 2508.192798] ? lock_chain_count+0x20/0x20 [ 2508.193634] ? lock_chain_count+0x20/0x20 [ 2508.194468] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2508.195450] ? mark_lock+0xf5/0x2df0 [ 2508.196206] ? lock_chain_count+0x20/0x20 [ 2508.197069] ? __lock_acquire+0x1657/0x5b00 [ 2508.197937] ? lock_chain_count+0x20/0x20 [ 2508.198790] ? __lock_acquire+0x1657/0x5b00 [ 2508.199664] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2508.200659] do_writepages+0xee/0x2a0 [ 2508.201425] ? page_writeback_cpu_online+0x20/0x20 [ 2508.202407] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2508.203459] ? __lockdep_reset_lock+0x180/0x180 [ 2508.204423] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2508.205435] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2508.206503] ? ext4_fallocate+0x18d/0x3860 [ 2508.207379] filemap_write_and_wait_range+0x65/0x100 [ 2508.208392] ext4_punch_hole+0x178/0x1070 [ 2508.209225] ? downgrade_write+0x3a0/0x3a0 [ 2508.210071] ? down_write_killable+0x180/0x180 [ 2508.211009] ext4_fallocate+0xd8e/0x3860 [ 2508.211828] ? __x64_sys_fallocate+0xcf/0x140 [ 2508.212759] ? lock_release+0x680/0x680 [ 2508.213566] ? _cond_resched+0x12/0x80 [ 2508.214365] ? ext4_ext_truncate+0x250/0x250 [ 2508.215265] ? ext4_ext_truncate+0x250/0x250 [ 2508.216159] vfs_fallocate+0x48f/0xd00 [ 2508.216979] __x64_sys_fallocate+0xcf/0x140 [ 2508.217864] do_syscall_64+0x33/0x40 [ 2508.218620] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2508.219657] RIP: 0033:0x7f24574d1b19 [ 2508.220418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2508.224150] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2508.225695] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2508.227095] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2508.228491] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2508.229902] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001 [ 2508.231343] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:22:27 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x20000, 0x4008000) 07:22:27 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 3) 07:22:27 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000200}, 0x58) 07:22:27 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2001000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:22:27 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x58) 07:22:27 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x58) 07:22:27 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x58) [ 2508.491715] FAULT_INJECTION: forcing a failure. [ 2508.491715] name failslab, interval 1, probability 0, space 0, times 0 [ 2508.494054] CPU: 1 PID: 69163 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2508.495462] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2508.497164] Call Trace: [ 2508.497711] dump_stack+0x107/0x167 [ 2508.498449] should_fail.cold+0x5/0xa [ 2508.499217] ? ext4_init_io_end+0x23/0x180 [ 2508.500070] should_failslab+0x5/0x20 [ 2508.500858] kmem_cache_alloc+0x5b/0x310 [ 2508.501675] ext4_init_io_end+0x23/0x180 [ 2508.502488] ext4_writepages+0xee9/0x3350 [ 2508.503322] ? lock_acquire+0x197/0x470 [ 2508.504131] ? lock_downgrade+0x6d0/0x6d0 [ 2508.504975] ? mark_lock+0xf5/0x2df0 [ 2508.505723] ? lock_chain_count+0x20/0x20 [ 2508.506555] ? lock_chain_count+0x20/0x20 [ 2508.507385] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2508.508362] ? mark_lock+0xf5/0x2df0 [ 2508.509139] ? lock_chain_count+0x20/0x20 [ 2508.509993] ? __lock_acquire+0x1657/0x5b00 [ 2508.510857] ? lock_chain_count+0x20/0x20 [ 2508.511708] ? __lock_acquire+0x1657/0x5b00 [ 2508.512591] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2508.513576] do_writepages+0xee/0x2a0 [ 2508.514346] ? page_writeback_cpu_online+0x20/0x20 [ 2508.515329] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2508.516379] ? __lockdep_reset_lock+0x180/0x180 [ 2508.517339] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2508.518334] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2508.519395] ? ext4_fallocate+0x18d/0x3860 [ 2508.520266] filemap_write_and_wait_range+0x65/0x100 [ 2508.521287] ext4_punch_hole+0x178/0x1070 [ 2508.522113] ? downgrade_write+0x3a0/0x3a0 [ 2508.522954] ? down_write_killable+0x180/0x180 [ 2508.523883] ext4_fallocate+0xd8e/0x3860 [ 2508.524708] ? __x64_sys_fallocate+0xcf/0x140 [ 2508.525606] ? lock_release+0x680/0x680 [ 2508.526395] ? _cond_resched+0x12/0x80 [ 2508.527179] ? ext4_ext_truncate+0x250/0x250 [ 2508.528066] ? ext4_ext_truncate+0x250/0x250 [ 2508.528958] vfs_fallocate+0x48f/0xd00 [ 2508.529751] __x64_sys_fallocate+0xcf/0x140 [ 2508.530616] do_syscall_64+0x33/0x40 [ 2508.531370] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2508.532394] RIP: 0033:0x7f24574d1b19 [ 2508.533149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2508.536839] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2508.538360] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2508.539781] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2508.541225] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2508.542657] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001 [ 2508.544084] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:22:27 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x58) 07:22:41 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f000000}, 0x58) 07:22:41 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r1, 0x50009417, &(0x7f0000000300)={{r0}, 0x0, 0x2, @unused=[0x7, 0x4, 0x1, 0x72f2], @subvolid=0x81}) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:22:41 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000800}, 0x58) 07:22:41 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f000000}, 0x58) 07:22:41 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 4) 07:22:41 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2020000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:22:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x101000}, 0x58) 07:22:41 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11000000}, 0x58) [ 2522.045901] FAULT_INJECTION: forcing a failure. [ 2522.045901] name failslab, interval 1, probability 0, space 0, times 0 [ 2522.048324] CPU: 0 PID: 69796 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2522.049758] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2522.051516] Call Trace: [ 2522.052068] dump_stack+0x107/0x167 [ 2522.052862] should_fail.cold+0x5/0xa [ 2522.053660] ? create_object.isra.0+0x3a/0xa20 [ 2522.054612] should_failslab+0x5/0x20 [ 2522.055413] kmem_cache_alloc+0x5b/0x310 [ 2522.056303] create_object.isra.0+0x3a/0xa20 [ 2522.057223] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2522.058285] kmem_cache_alloc+0x159/0x310 [ 2522.059157] ext4_init_io_end+0x23/0x180 [ 2522.060004] ext4_writepages+0xee9/0x3350 [ 2522.060886] ? lock_acquire+0x197/0x470 [ 2522.061739] ? lock_downgrade+0x6d0/0x6d0 [ 2522.062595] ? mark_lock+0xf5/0x2df0 [ 2522.063367] ? lock_chain_count+0x20/0x20 [ 2522.064210] ? lock_chain_count+0x20/0x20 [ 2522.065073] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2522.066074] ? mark_lock+0xf5/0x2df0 [ 2522.066844] ? lock_chain_count+0x20/0x20 [ 2522.067709] ? __lock_acquire+0x1657/0x5b00 [ 2522.068588] ? lock_chain_count+0x20/0x20 [ 2522.069460] ? __lock_acquire+0x1657/0x5b00 [ 2522.070350] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2522.071351] do_writepages+0xee/0x2a0 [ 2522.072138] ? page_writeback_cpu_online+0x20/0x20 [ 2522.073150] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2522.074225] ? __lockdep_reset_lock+0x180/0x180 [ 2522.075191] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2522.076208] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2522.077307] ? ext4_fallocate+0x18d/0x3860 [ 2522.078192] filemap_write_and_wait_range+0x65/0x100 [ 2522.079233] ext4_punch_hole+0x178/0x1070 [ 2522.080077] ? downgrade_write+0x3a0/0x3a0 [ 2522.080946] ? down_write_killable+0x180/0x180 [ 2522.081895] ext4_fallocate+0xd8e/0x3860 [ 2522.082721] ? __x64_sys_fallocate+0xcf/0x140 [ 2522.083646] ? lock_release+0x680/0x680 [ 2522.084452] ? _cond_resched+0x12/0x80 [ 2522.085272] ? ext4_ext_truncate+0x250/0x250 [ 2522.086178] ? ext4_ext_truncate+0x250/0x250 [ 2522.087071] vfs_fallocate+0x48f/0xd00 [ 2522.087875] __x64_sys_fallocate+0xcf/0x140 [ 2522.088771] do_syscall_64+0x33/0x40 [ 2522.089538] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2522.090581] RIP: 0033:0x7f24574d1b19 [ 2522.091338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2522.095091] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2522.096659] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2522.098134] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2522.099581] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2522.101042] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001 [ 2522.102503] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:22:41 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1ffff000}, 0x58) 07:22:41 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 5) 07:22:41 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x13, 0x9, 0x8000) r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0x0, 0x4800) fallocate(r1, 0x40, 0x8000, 0x20fdec) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:22:41 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x58) [ 2522.281930] FAULT_INJECTION: forcing a failure. [ 2522.281930] name failslab, interval 1, probability 0, space 0, times 0 [ 2522.283314] CPU: 1 PID: 70121 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2522.284022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2522.284876] Call Trace: [ 2522.285174] dump_stack+0x107/0x167 [ 2522.285555] should_fail.cold+0x5/0xa [ 2522.285962] ? jbd2__journal_start+0x190/0x7e0 [ 2522.286440] should_failslab+0x5/0x20 [ 2522.286841] kmem_cache_alloc+0x5b/0x310 [ 2522.287266] jbd2__journal_start+0x190/0x7e0 [ 2522.287727] __ext4_journal_start_sb+0x214/0x390 [ 2522.288220] ext4_writepages+0x102d/0x3350 [ 2522.288661] ? lock_acquire+0x197/0x470 [ 2522.289085] ? lock_downgrade+0x6d0/0x6d0 [ 2522.289516] ? mark_lock+0xf5/0x2df0 [ 2522.289901] ? lock_chain_count+0x20/0x20 [ 2522.290330] ? lock_chain_count+0x20/0x20 [ 2522.290758] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2522.291260] ? mark_lock+0xf5/0x2df0 [ 2522.291653] ? lock_chain_count+0x20/0x20 [ 2522.292104] ? __lock_acquire+0x1657/0x5b00 [ 2522.292563] ? lock_chain_count+0x20/0x20 [ 2522.293034] ? __lock_acquire+0x1657/0x5b00 [ 2522.293498] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2522.294021] do_writepages+0xee/0x2a0 [ 2522.294439] ? page_writeback_cpu_online+0x20/0x20 [ 2522.294967] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2522.295535] ? __lockdep_reset_lock+0x180/0x180 [ 2522.296048] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2522.296576] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2522.297150] ? ext4_fallocate+0x18d/0x3860 [ 2522.297612] filemap_write_and_wait_range+0x65/0x100 [ 2522.298169] ext4_punch_hole+0x178/0x1070 [ 2522.298605] ? downgrade_write+0x3a0/0x3a0 [ 2522.299062] ? down_write_killable+0x180/0x180 [ 2522.299557] ext4_fallocate+0xd8e/0x3860 [ 2522.299995] ? __x64_sys_fallocate+0xcf/0x140 [ 2522.300478] ? lock_release+0x680/0x680 [ 2522.300912] ? _cond_resched+0x12/0x80 [ 2522.301334] ? ext4_ext_truncate+0x250/0x250 [ 2522.301816] ? ext4_ext_truncate+0x250/0x250 [ 2522.302289] vfs_fallocate+0x48f/0xd00 [ 2522.302720] __x64_sys_fallocate+0xcf/0x140 [ 2522.303184] do_syscall_64+0x33/0x40 [ 2522.303587] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2522.304128] RIP: 0033:0x7f24574d1b19 [ 2522.304525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2522.306496] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2522.307290] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2522.308057] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2522.308833] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2522.309574] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001 [ 2522.310338] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 [ 2522.311148] EXT4-fs (sda): ext4_writepages: jbd2_start: 9223372036854775807 pages, ino 16202; err -12 07:22:41 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:22:41 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x58) 07:22:41 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1b0c31f000}, 0x58) 07:22:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f}, 0x58) 07:22:41 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 6) 07:22:41 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8000001000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2522.509843] FAULT_INJECTION: forcing a failure. [ 2522.509843] name failslab, interval 1, probability 0, space 0, times 0 [ 2522.511121] CPU: 1 PID: 70502 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2522.511810] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2522.512738] Call Trace: [ 2522.513060] dump_stack+0x107/0x167 [ 2522.513472] should_fail.cold+0x5/0xa [ 2522.513913] ? create_object.isra.0+0x3a/0xa20 [ 2522.514437] should_failslab+0x5/0x20 [ 2522.514867] kmem_cache_alloc+0x5b/0x310 [ 2522.515337] create_object.isra.0+0x3a/0xa20 [ 2522.515841] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2522.516418] kmem_cache_alloc+0x159/0x310 [ 2522.516912] jbd2__journal_start+0x190/0x7e0 [ 2522.517422] __ext4_journal_start_sb+0x214/0x390 [ 2522.517965] ext4_writepages+0x102d/0x3350 [ 2522.518394] ? lock_acquire+0x197/0x470 [ 2522.518856] ? lock_downgrade+0x6d0/0x6d0 [ 2522.519333] ? mark_lock+0xf5/0x2df0 [ 2522.519750] ? lock_chain_count+0x20/0x20 [ 2522.520225] ? lock_chain_count+0x20/0x20 [ 2522.520693] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2522.521262] ? mark_lock+0xf5/0x2df0 [ 2522.521696] ? lock_chain_count+0x20/0x20 [ 2522.522179] ? __lock_acquire+0x1657/0x5b00 [ 2522.522676] ? lock_chain_count+0x20/0x20 [ 2522.523157] ? __lock_acquire+0x1657/0x5b00 [ 2522.523659] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2522.524219] do_writepages+0xee/0x2a0 [ 2522.524657] ? page_writeback_cpu_online+0x20/0x20 [ 2522.525230] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2522.525840] ? __lockdep_reset_lock+0x180/0x180 [ 2522.526376] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2522.526948] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2522.527567] ? ext4_fallocate+0x18d/0x3860 [ 2522.528079] filemap_write_and_wait_range+0x65/0x100 [ 2522.528662] ext4_punch_hole+0x178/0x1070 [ 2522.529151] ? downgrade_write+0x3a0/0x3a0 [ 2522.529576] ? down_write_killable+0x180/0x180 [ 2522.530099] ext4_fallocate+0xd8e/0x3860 [ 2522.530566] ? __x64_sys_fallocate+0xcf/0x140 [ 2522.531083] ? lock_release+0x680/0x680 [ 2522.531532] ? _cond_resched+0x12/0x80 [ 2522.531983] ? ext4_ext_truncate+0x250/0x250 [ 2522.532498] ? ext4_ext_truncate+0x250/0x250 [ 2522.533002] vfs_fallocate+0x48f/0xd00 [ 2522.533452] __x64_sys_fallocate+0xcf/0x140 [ 2522.533948] do_syscall_64+0x33/0x40 [ 2522.534374] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2522.534967] RIP: 0033:0x7f24574d1b19 [ 2522.535393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2522.537214] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2522.538062] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2522.538872] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2522.539681] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2522.540503] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001 [ 2522.541321] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:22:56 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000000000}, 0x58) 07:22:56 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x58) 07:22:56 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x10100000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:22:56 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000800}, 0x58) 07:22:56 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 7) 07:22:56 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000800}, 0x58) 07:22:56 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x58) 07:22:56 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) r1 = socket$unix(0x1, 0x5, 0x0) listen(0xffffffffffffffff, 0x6) tee(0xffffffffffffffff, r0, 0x8, 0x3) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r2, 0xd000943e, &(0x7f0000000300)={0x0, 0x0, "6b156af6349147bef4ec153cf9cd34037259735c036fa416a2f6f7f3ee17b59d86430399a57d2fcb1a12fb0c00b1be1836047e4d73afa09c9b6c8ceff16e8e8bcf4eaddedc4f2c4d7857670f8a5d7f9137e0af0c0994fa4469076146bb0c8f79260e32044afea90c4c6936066b84287156862ae5681e4fedc532d60c59905efe9d2ad7d8041417bf1097387544655a2baec8b8dbcbcc405f0b927e08fa45d631c3ed4f796fe6575cca3f25b5e1d652c101b318c03b10f0aee84cc22424a7899c8aefc7fbc18b9bd0b099185036dcf3665320a39a4e6eae2652a2786a5a38de26ca9e0514360373c873ca9948c8b6c974b9f8ffe5606c4239f1f2a70b9914ff44", "0b1a4650b39df87ac2f61b9e501fcfff36e591c79272bfa6d6dbc6a3417c0f385df3ec1f5d61abca28adf1839314e5b63593ba5bc8df26abf212aab0ebb0107cfbe2cc4a048d5a8e93293bc42a9316423725f50119a25aea74b2351c8d4b0f17d106b85bd6d85701e14fa2d35e747eb12aa3f10310b307191bb0bd37a0fd6627f39b8d0ae1e52d41bf4fd8eefb6e9188ca10281aec319a07accffad7f4d28a6133c22d8645fc1e5c7f763f2c5c468cf522de4a6d7ecde532ab3f5b52e53474d742cd390bf63f247df4dc8f01c26a599a5bb54202bff1fc6e7e8720ad213fff2286167e2ed7a0e8ecf0137ca4356e265721624d6972411be97a98e81c98fbfe4cb822c2103ae37995cebf47a27d8586d2e960c4f8a44e078e9832de3de3b05d642b9baf8d273a5481efced5902b48ac37d33f2bca4f04ef70c1896f33cbd94766bafa43d294fcfdc611d16d94d42045b42736cb66c5247202d9732d4a3040fd0d77c86db3f505b897e341e7388fe6bf6c1a40abcffdcccf4beff9053f5aa2771856a8d2bd1e23af1319cc6ed66ea57bb49ba33c2aa64e721d322ede64be491c6f641a3c75924499aa92094e8c0fd482976ac8bc71f04d5d65188b06b8536a79913f218756b9e703ec9d2f67cca86b5e5a40601c26d1281631d6843b8d9eec42329e70cd0113562a71b3e3e24c5beaf7dbed5356de3a691ff1e635eaae6722be9fc607b9aa33b267d0cb51eba91d4b14bf87c81370f986a59eb97649e42d6d4d819474fc95a83d6658c5752545910453f8b39a49d5e0cab2bfdb28acfb5ac94dc06dd7b2f33d1a9e37387852e4edc3d92cc7273d7dc386a3086026d1b1d8755850cf6d877f03be9e34f9f5127e6aff4034f30990ff25b5ac8e72a9e428b59e1f1c5f06600831a997f8f9e07c98543f59adab10039a9d45cea225c47c5a867e21779667ee41b700dc05476ef209f7d58c54945a1b5518ec2e0d5cc826dbd81feb549d2323924a474e3eb5ba5f642dd11ba3343125980ac0011f9c5b6708ca0f9352f5ce6afe0cff6ad681af7337fc30750c42c68aba33ad5ed641adbbd61ee64b2b9d1bda9bda59c69e67266146f5f418e07e1175377719e4120f26a3d0dd9123568dc0d40ab01e03997b49780c4e8707a837d676bb87a5ace4e0e52247849026d90e31c92075c8b7a2d258cce26981216e23bb402534580319d02194ebdfec0f914f8a3778603d1b72c8a7c84f365f4741b193652bcd0b4c3766d733f62ec8636ccfa297b83a7a369b5c483a107062d6f35c8bd1af0d20195981691448729ba613a8efe297979a0ce0749359507bcb3348ae62ceb4652a02b67875b92349f5e3031c010d115bd084124f4301b5c1978b069449f3205f19933e37bafab907a4ea724b07ef44bbbad41aec0b31d5ad46c32ef632f8104d7e1c9d045f143280199fd9277f3c1cfecd57f1e08f3acaaaa17db6f3598dcae938bfdf2a6edfb4b16e86580206672e1f7b05824177f34c3c3ceb64b7a9e7a533c74fda1eb6d717f991b9a61905d88912b1165fc8c2317e317c6b142c6410048a94b99dd8bd0734042821e876dc6574d79b29cf6abbcab237f4ab975a62fb31ff06dbd5e9128cf5bc84e0dcb5ad290e69336311ac8c1cc4fa81c0160618787783ed3912c4094495dabe2243ca0e7e0ec9ac5851d1d44d020b4bc86e3ae56ca61e3ba36c06454432c6d41c02b635e1d172045ffbac8af324228929d60dad0133c6075ff7bc346cb754e0b4eb0cf55124caf7128c1fb4534ff9605295834fa28c898a5dfadf6966b854cebd5a96e473b0102983630bf6680c070d6d333343d554092ddab4ba066a12e996f51bd916ecd7113876759a89d30c86cd12ba89279e72ef209aa2dda87fbd5ccf8ee13221a8f3a59d9dd08a92edd3476e9efb6ca3bf0c377188570d839850657ca7082f0600eb5d513321c33a04fd281d089ff9ec13dc8ebcad39f50e8ca8435a4b39582e6cab4f02a0561e611edb7cc32d18b22c69b0b3151843f7cfd3a154215bcf48d039ee403a900c6b90ebae16fb2d45fe0b33b367cdc5287266bf2dee1bdd17f8725dcde33aae6c13cf957b910e15cd961b61afddbf3cc5d3df8122ec86f5f879a4653badfda3bc3ff744dc192ad41076dda45f44e35093f533fcc6ea9f73fa8566e73926956bd18d38bae28488176bbc6499d9da13e0fcd8c51ab101ea118a35415430258e3f2af8bbbc2caa759c8a64cd374bf1a576ae309542dab0703f5ec2796b5a2dc43b87ad0f7e2d0420fe84132b32f571c13aa1309ec46eede648c57ba9c0bed98e6369e7484e43f1e3339b62bdd0ea231d305d8fa2efb56cae750ba5611b3357933eefb1e95bc8e42fbf02e23fd4a0729fddbe0df578186c3669461d8bb67c62ca75e005294e041dc035873459d4c482fad768c972c5f0d637e3a42264800b4f919c30e43d18f6219ab3377af3a35dd3bf0f987ea0c551ff72eacb7bc029cae340d1e952efa47ba3ac9dfc11f11be929e70f67c5848d1f9b3c6e9e1ff4ec6e0b9c34226843360812b30daedff20c0575ca027217d16b80b6a08bcda19e360bde3a0f8d87cce93c3b2bc11e3737751b378485fc5e6473100d5f60a97fb6f101420331956383e43c3a0206c2ad6405f5e58abe1af013c8d2fcc17a946987db421ff525469898aacc7b5a1a7c0851fdc9ebb4431d70525a38d9e7ff0db14e94e2229a92cae662af75837e69ff3244d40a53f2351c9831a7b7977210f2248b33793d10706751fac9c0860a32d6eadd97edeeeb2283639e7ab481c4c8658e34443215b61c9ba3cd70ed0ddfd7dc9035400ec7fdca923e70e55c516cd30b66e79ff36073152ef99d7b42152c8a9df8e470dde0fb84c8b92690f89cfe7ce6cd4adf5c23b9f37bf8b132a41ac8826da953a8533bd1c5a78828702524efca06203dbff04024361541ac4cfc8fcc6e21e9024d13cb1a00e26d08eed5c331233ac29d732319da40c5f3a3418c3be170d687241635e5929727c95f4acedbaefd8c29959e2c8b505c4b53aaf54c5a132d37f80261b65600f2fe0cb24aacb78ce44fbd5d8123572bde3bd92c7e05ad767164dae99a85889949c25f293d60e6c3dc2b789e9f01ce8e7ae32b165eabd795f7241d5681a53b78b1a0061668b6a6cecfad7faa9b707c515409cbb2e16c97b55f2b235f1f684f4513ab3e9283dc9c83ea7d3eab6998a106ec7c7b9938ca8b116fb64b3a8711923d32222472b5e7787f73a728af61d2a756db8af2072baeb9d286b03fa10e6256fb22bdedbda108dcfe6da4d1295ef7e5d801a9e5a11f92bfd72745f9c39a93af50bcb5b506fe4c6e7998e9e113cd30549c0352d211849282602e342bde879c0a2942064980c3dcc8aa808fcb739222d219b5ff6bff685c82e95cdd7e359b14f68dc2731dbe2bacede5e1ced52f0e3ff0658d7acbf5ef86d778ab1c873379b9a7dd273da04c3d8c640d20f01bcbebdc88b92fac4644657763ed868a907d93848c8da96af7f3e95a6d522a60acf898a19b61bf4938b0e2e411c04ad8fe7d748725c06ec45b26eabb5396c21179b7424102e110f90eed08065a06821dc212b6bc8bd72285ad2251d03d9c0393427eb4c52102a5831dee323cf1aa565d84c09d4fbdc9da3f286cbbac72813815e583d324187297c58b5dabafe7b3dbfdda123826f4af6a401acbfd70ff93e28d2c98b6fa06c57eb65331481378f91790ce52f0ad2cd965bc78620a2191fe46fb7f0b3baa55fea43ab77b25dda54a1829e273c7cef397c13d28db248c4c4cef7c1b3e25db382ca2032069bbba785b07cad12343d959f047fa83bacbb2b7fab26ebafa569294e8a21be1e1d8796ed4e4a7143101d06f1fe1f80c901341256079af202eaa1ed4e8d8fc15ed40446e9a8923630dafefa18e5fcbfc835d9971f610083680a0ccb204fb47f0da2b9731c4fb9cfb133ccadb4ca370234b4defca3731fbbb6113854b05ba4e9b0bcd296634c020e9c324ef3dd3a2ab9985a5d90bc157d508203119a011d2a5f109d85362d2ad5b7404ec23692b1ed5570e3a4733d23119a943abda2ce02be5d9529589816e4a2dc8b3aa493838e7a3290918c193eba03f3f2f249704086357c4a410c3f418af859d8e6d91a677bb92f8598401dc12efea53406aaca6f441a6df476ee4647391e940b5d1d52bf4e2580a1eb52a341144e9dd9e5497755d43190c074c4d13e62fde4d419660bbd7eeeb9ca4bea123ee64b01ba753d3ea241f4cf875ed952a813df7e4bb42a0ab975cf5bb41992d2a4f695f52714c9f542f082bc0eb0934111c13973bb03a48a9da419b942e668fa551b51668e7f0c5840af8eab488c3b1dc50c2c2794fe5a012f470b14185663b7b90956c198265c050fc1ddb5c7c6ab799569956537ca756da0fd62ecbdbc42cea24e42713b746ef047a252dc36015944eb5eff32b5fff36b14e65d9082b23d22585028dac7c78cc4bdebc05915b45096be94925ffdc7fe261de478bc4805183452d2d940971b286043e3d46f0a3096cb4b710c9fc8c665f5c10345b71ddb86d784601be82f7b0d79aaaaa358a53322e234ba2133bcd4c8071db1abc7c1628de4c5ae1afe988ecec5f5f11a666c18264eb3b184624e275466bac6247281c0139e119fe58360a977bcd4e9b7c5f76fb128832193a83954aa6909c2a8be58b9ec12fc48bcd919142cf314bf5237d6ca7d56489f9ca4769b860e56503057ac7c9e81155ffe2f1236eba88ebf0869e82c9d4d505b4f879c871064eb0c7195fb915dbada95ed0d7f4485a5ad657c708f773f6f0e5c1e03b5081213ba8ea4878114fdfcc7fb0ab543fe54a3c6c9c01e5d6548907e6a5eb51d16bb69fee8a568a373551cac2bf514530f620f4348439959dd4b356f288a298f6941cb2221495552aeb3c3ee6d1ba0ca866933f88f60eae07663adbc374c9712c40e910814ed33ea214c51ac48be14360655088d433df608dd91cf6fbe07e3e571993641af20900ebc25f77da266c878f8e1b3bad52418e960165ad73033e0e07dfc26fb0a7a59a15a03023cd1bf6d8d72dc003d3b6369331d9b1a75ea2d80f27f2fea6203691c73b0dcbc3c83a14719b3da28405b2fb7a685cf46a4e4de39e34c41a51e5e1abc738aff4233e64066ac668c63656db880568ee27f8c0419a80113cf2349c72ebf56f871848a6fb29c72b15062b34929ed13bc22b2f8e4229fb3adff83fac1ede874b11d01a9d52bf6eb691bcb2bdcae6d2f5eecea7641912ceed87d130ca62501559c9bed73a199c5adee59997d74fd7f56abe39f22ed9fd1a0cde18e1a561fe3ad2d98cbfde502145eaf98bc7cd86e02f84ac7faf63e98abec243c72fd060f760b1101e4a248fe9f0f1dd1dd1a160e2ad0957771787a422"}) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x8) sendto$unix(r3, &(0x7f0000000080)="b376b18b1a45690ad2f4439f1a9373a00358f10dda8af283267a", 0x1a, 0x10, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e) r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x1f0) fallocate(r4, 0x3, 0x0, 0x8000) fallocate(0xffffffffffffffff, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x2}) sendto$inet(0xffffffffffffffff, &(0x7f0000000140)="c5f41267708e79da00d427ef0bcc6945b93ee4792640173f712cacb47806a85f2b1526e77ddc9a09d4f3cf4d466c13682a15c1650167f8bb5d63058e2e4bee51801425a3ca035df2a32d9929f492f428358160f189626587afa11ae7b37dd04a7cb49e946bff6c9f07b7bbfdedc56df16e66a19ebd96540c3d7d68f824184aebb0fe0b0949badf638812020f782a3c1571", 0x91, 0xa0c0, &(0x7f0000000200)={0x2, 0x4e23, @multicast2}, 0x10) [ 2537.374851] FAULT_INJECTION: forcing a failure. [ 2537.374851] name failslab, interval 1, probability 0, space 0, times 0 [ 2537.377335] CPU: 1 PID: 70762 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2537.378807] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2537.380573] Call Trace: [ 2537.381164] dump_stack+0x107/0x167 [ 2537.381949] should_fail.cold+0x5/0xa [ 2537.382771] ? jbd2__journal_start+0x246/0x7e0 [ 2537.383755] ? jbd2__journal_start+0x246/0x7e0 [ 2537.384746] should_failslab+0x5/0x20 [ 2537.385587] kmem_cache_alloc+0x5b/0x310 [ 2537.386478] jbd2__journal_start+0x246/0x7e0 [ 2537.387442] __ext4_journal_start_sb+0x214/0x390 [ 2537.388478] ext4_writepages+0x102d/0x3350 [ 2537.389410] ? lock_acquire+0x197/0x470 [ 2537.390293] ? lock_downgrade+0x6d0/0x6d0 [ 2537.391203] ? mark_lock+0xf5/0x2df0 [ 2537.392011] ? lock_chain_count+0x20/0x20 [ 2537.392912] ? lock_chain_count+0x20/0x20 [ 2537.393825] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2537.394876] ? mark_lock+0xf5/0x2df0 [ 2537.395690] ? lock_chain_count+0x20/0x20 [ 2537.396606] ? __lock_acquire+0x1657/0x5b00 [ 2537.397553] ? lock_chain_count+0x20/0x20 [ 2537.398468] ? __lock_acquire+0x1657/0x5b00 [ 2537.399408] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2537.400463] do_writepages+0xee/0x2a0 [ 2537.401298] ? page_writeback_cpu_online+0x20/0x20 [ 2537.402356] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2537.403487] ? __lockdep_reset_lock+0x180/0x180 [ 2537.404504] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2537.405596] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2537.406743] ? ext4_fallocate+0x18d/0x3860 [ 2537.407676] filemap_write_and_wait_range+0x65/0x100 [ 2537.408773] ext4_punch_hole+0x178/0x1070 [ 2537.409688] ? downgrade_write+0x3a0/0x3a0 [ 2537.410610] ? down_write_killable+0x180/0x180 [ 2537.411620] ext4_fallocate+0xd8e/0x3860 [ 2537.412517] ? __x64_sys_fallocate+0xcf/0x140 [ 2537.413528] ? lock_release+0x680/0x680 [ 2537.414380] ? _cond_resched+0x12/0x80 [ 2537.415228] ? ext4_ext_truncate+0x250/0x250 [ 2537.416191] ? ext4_ext_truncate+0x250/0x250 [ 2537.417148] vfs_fallocate+0x48f/0xd00 [ 2537.418015] __x64_sys_fallocate+0xcf/0x140 [ 2537.418950] do_syscall_64+0x33/0x40 [ 2537.419754] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2537.420854] RIP: 0033:0x7f24574d1b19 [ 2537.421671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2537.425664] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2537.427298] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2537.428828] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2537.430363] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2537.431884] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001 [ 2537.433435] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 [ 2537.435694] EXT4-fs (sda): ext4_writepages: jbd2_start: 9223372036854775807 pages, ino 16203; err -12 07:22:56 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x407e273a550000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:22:56 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2a2582812000}, 0x58) 07:22:56 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1b0c01f000}, 0x58) 07:22:56 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f000000}, 0x58) 07:22:56 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x400000fc, 0x9) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x111142, 0x100) openat(r0, &(0x7f0000000080)='./file0\x00', 0x400840, 0x40) openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x22240, 0x13) fallocate(r1, 0x3, 0x0, 0x8000) 07:22:57 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 8) 07:22:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1b1031f000}, 0x58) 07:22:57 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xe072813d2a0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:22:57 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) write$P9_RWALK(r1, &(0x7f0000000000)={0x16, 0x6f, 0x2, {0x1, [{0x80, 0x1, 0x8}]}}, 0x16) fallocate(r1, 0x3, 0x0, 0x8000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r2) sendmsg$TIPC_CMD_SET_LINK_TOL(r3, 0x0, 0x80) fallocate(r3, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) getsockopt$IPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x43, &(0x7f0000000080)={'TPROXY\x00'}, &(0x7f00000000c0)=0x1e) [ 2537.790368] FAULT_INJECTION: forcing a failure. [ 2537.790368] name failslab, interval 1, probability 0, space 0, times 0 [ 2537.791658] CPU: 0 PID: 71507 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2537.792383] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2537.793308] Call Trace: [ 2537.793600] dump_stack+0x107/0x167 [ 2537.793993] should_fail.cold+0x5/0xa [ 2537.794401] ? create_object.isra.0+0x3a/0xa20 [ 2537.794887] should_failslab+0x5/0x20 [ 2537.795291] kmem_cache_alloc+0x5b/0x310 [ 2537.795723] ? mark_held_locks+0x9e/0xe0 [ 2537.796155] create_object.isra.0+0x3a/0xa20 [ 2537.796621] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2537.797180] kmem_cache_alloc+0x159/0x310 [ 2537.797626] jbd2__journal_start+0x246/0x7e0 [ 2537.798100] __ext4_journal_start_sb+0x214/0x390 [ 2537.798608] ext4_writepages+0x102d/0x3350 [ 2537.799065] ? lock_acquire+0x197/0x470 [ 2537.799497] ? lock_downgrade+0x6d0/0x6d0 [ 2537.799946] ? mark_lock+0xf5/0x2df0 [ 2537.800346] ? lock_chain_count+0x20/0x20 [ 2537.800783] ? lock_chain_count+0x20/0x20 [ 2537.801232] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2537.801755] ? mark_lock+0xf5/0x2df0 [ 2537.802155] ? lock_chain_count+0x20/0x20 [ 2537.802610] ? __lock_acquire+0x1657/0x5b00 [ 2537.803065] ? lock_chain_count+0x20/0x20 [ 2537.803520] ? __lock_acquire+0x1657/0x5b00 [ 2537.803986] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2537.804502] do_writepages+0xee/0x2a0 [ 2537.804912] ? page_writeback_cpu_online+0x20/0x20 [ 2537.805440] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2537.805994] ? __lockdep_reset_lock+0x180/0x180 [ 2537.806501] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2537.807032] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2537.807613] ? ext4_fallocate+0x18d/0x3860 [ 2537.808078] filemap_write_and_wait_range+0x65/0x100 [ 2537.808632] ext4_punch_hole+0x178/0x1070 [ 2537.809098] ? downgrade_write+0x3a0/0x3a0 [ 2537.809555] ? down_write_killable+0x180/0x180 [ 2537.810061] ext4_fallocate+0xd8e/0x3860 [ 2537.810508] ? __x64_sys_fallocate+0xcf/0x140 [ 2537.811003] ? lock_release+0x680/0x680 [ 2537.811436] ? _cond_resched+0x12/0x80 [ 2537.811863] ? ext4_ext_truncate+0x250/0x250 [ 2537.812351] ? ext4_ext_truncate+0x250/0x250 [ 2537.812833] vfs_fallocate+0x48f/0xd00 [ 2537.813275] __x64_sys_fallocate+0xcf/0x140 [ 2537.813746] do_syscall_64+0x33/0x40 [ 2537.814158] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2537.814718] RIP: 0033:0x7f24574d1b19 [ 2537.815122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2537.817128] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2537.817954] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2537.818738] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2537.819523] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2537.820305] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001 [ 2537.821103] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:23:12 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8000) sendmsg$DEVLINK_CMD_RATE_DEL(r2, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x88, 0x0, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @handle=@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_PORT_INDEX={0x8}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}]}, 0x88}, 0x1, 0x0, 0x0, 0x2000c014}, 0x10) 07:23:12 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x58) 07:23:12 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000000000}, 0x58) 07:23:12 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x553a28d35000}, 0x58) 07:23:12 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 9) 07:23:12 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0110c1b000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:23:12 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000000000}, 0x58) 07:23:12 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x58) [ 2552.824043] FAULT_INJECTION: forcing a failure. [ 2552.824043] name failslab, interval 1, probability 0, space 0, times 0 [ 2552.827457] CPU: 1 PID: 71924 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2552.829039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2552.830970] Call Trace: [ 2552.831585] dump_stack+0x107/0x167 [ 2552.832427] should_fail.cold+0x5/0xa [ 2552.833332] ? ext4_alloc_io_end_vec+0x1f/0x120 [ 2552.834417] should_failslab+0x5/0x20 [ 2552.835306] kmem_cache_alloc+0x5b/0x310 [ 2552.836266] ext4_alloc_io_end_vec+0x1f/0x120 [ 2552.837363] ext4_writepages+0x17a5/0x3350 [ 2552.838360] ? lock_acquire+0x197/0x470 [ 2552.839305] ? lock_downgrade+0x6d0/0x6d0 [ 2552.840295] ? lock_chain_count+0x20/0x20 [ 2552.841300] ? lock_chain_count+0x20/0x20 [ 2552.842273] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2552.843421] ? mark_lock+0xf5/0x2df0 [ 2552.844301] ? lock_chain_count+0x20/0x20 [ 2552.845318] ? __lock_acquire+0x1657/0x5b00 [ 2552.846327] ? lock_chain_count+0x20/0x20 [ 2552.847315] ? __lock_acquire+0x1657/0x5b00 [ 2552.848331] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2552.849502] do_writepages+0xee/0x2a0 [ 2552.850401] ? page_writeback_cpu_online+0x20/0x20 [ 2552.851559] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2552.852792] ? __lockdep_reset_lock+0x180/0x180 [ 2552.853922] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2552.855085] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2552.856324] ? ext4_fallocate+0x18d/0x3860 [ 2552.857358] filemap_write_and_wait_range+0x65/0x100 [ 2552.858524] ext4_punch_hole+0x178/0x1070 [ 2552.859487] ? downgrade_write+0x3a0/0x3a0 [ 2552.860466] ? down_write_killable+0x180/0x180 [ 2552.861564] ext4_fallocate+0xd8e/0x3860 [ 2552.862513] ? __x64_sys_fallocate+0xcf/0x140 [ 2552.863544] ? lock_release+0x680/0x680 [ 2552.864461] ? _cond_resched+0x12/0x80 [ 2552.865394] ? ext4_ext_truncate+0x250/0x250 [ 2552.866426] ? ext4_ext_truncate+0x250/0x250 [ 2552.867434] vfs_fallocate+0x48f/0xd00 [ 2552.868348] __x64_sys_fallocate+0xcf/0x140 [ 2552.869368] do_syscall_64+0x33/0x40 [ 2552.870236] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2552.871422] RIP: 0033:0x7f24574d1b19 [ 2552.872292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2552.876562] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2552.878338] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2552.879970] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2552.881639] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2552.883265] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001 [ 2552.884876] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:23:12 executing program 5: write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(0xffffffffffffffff, 0x3, 0x0, 0x8000) sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="22ae73c2", @ANYRES16=0x0, @ANYBLOB="080029bd7000fddbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x8}, 0x4010) fallocate(0xffffffffffffffff, 0x0, 0x0, 0xfdef) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r0, 0x3, 0x0, 0x8000) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) fcntl$setflags(r1, 0x2, 0x1) write(r1, &(0x7f0000002b00)="fd0ccab9440964c86f5252d2e4d77954b74002ea5a24e70f137b62613e9e2ca0d830fcf73a458c932c45a1bc473580f9d3f25c5a1580d58330e4a53a82b2d29082d7bf123166bca13f82b1066d7c2120b8c6bc1b205e5c2995a68980ec74944a043de5d5de4163662c57421a4a5443c9caf05b92ded033963e174de6666a03f88729ff5c42bca0b420109413e01510d08df3eb29d21737bb90509d632f3239ce70a02478be127a1410cfd0fe376e0075d64b278aad036dbfd1032846d8e945fd", 0xc0) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000001a80)=0x0) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000001ac0)=""/4096, 0x1000, 0x122, &(0x7f0000002ac0)={0xa, 0x4e21, 0x7, @mcast1, 0x3ff}, 0x1c) creat(&(0x7f0000000040)='./file0\x00', 0x142) perf_event_open(&(0x7f0000001a00)={0x4, 0x80, 0x80, 0x5, 0x1f, 0x7, 0x0, 0x7, 0x1000, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x8000, 0x4, @perf_bp={&(0x7f00000019c0), 0x8}, 0x4000, 0x1f, 0x7d6, 0x2, 0x400, 0x82c2, 0x9, 0x0, 0xfffffffd, 0x0, 0xffffffffffffe6bc}, r2, 0x2, 0xffffffffffffffff, 0x9) r3 = accept(r1, &(0x7f0000000180)=@pppoe, &(0x7f0000000200)=0x80) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000280)={0x0}, &(0x7f0000000300)=0xc) sendmsg$nl_generic(r3, &(0x7f0000001980)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2005000}, 0xc, &(0x7f0000001940)={&(0x7f0000000340)=ANY=[@ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="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", @ANYRES32=r1, @ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="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"], 0x15dc}, 0x1, 0x0, 0x0, 0x20000000}, 0x48011) 07:23:12 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000200}, 0x58) 07:23:34 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xf0ff1f00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:23:34 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2a8f6ba68000}, 0x58) 07:23:34 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11000000}, 0x58) 07:23:34 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0xc4b7, 0x9, &(0x7f0000000740)=[{&(0x7f0000000100)="c99f72bbaaa726d46e803c6eed421f0ff332d2ca4269d7a6fd53744edd8cb621dcaa9472e82d15f8be114280c62dc65ec5fdc5cd9516bfac003e62f0b12686f7a6eb4fc5", 0x44, 0x7f}, {&(0x7f0000000180)="a681936121e692641acc92177846bc7b6ba908a653c31ff5a6fb4f392a9c88e7a38ad33298a0084e6420f25d0664d3016e2192ac89709d54cf30b597b192c15288fd0a2deba96cff250b9e2560f85d485e91f8e4041efcd565b68429526a492c1ab799ae20e118b95cd3229885144ba7bbd10b38ea9ebdf9c79ffd69a950736e536088cb0257943e691ddc5b95c192e662c44bc3ea936bf69333b859f3b68ad794dd2919172faf42bde8312bc6a6e41a343d8454580db5a72dbd42827c946a6c9c5eeac4d11fb91a53f80bf7", 0xcc, 0x7}, {&(0x7f0000000280)="6da7720c99463d10e894bc9c0eda9881db20b3f83b588067caa3e9bbd57e6dc9481f21addda892210e3edc8f90895783eee130dc59c3670270083dff539f99deed76a2bb1695fe71cd9a2a184cfe42691bd8b97fc03529ac56a7", 0x5a, 0x100000000}, {&(0x7f0000000300)="fc31e30ba9724a7bf91d06ac06678bcad403802672d0e206d58b1d79599d0bbcdd023e3d59848bcafb55cf87915427c1bfb0f5754a9809687b1ab90da3c2803818d349ac7186c7b74e1a175bf584f6fd18d109976ffba01751e9449e88137806c5540f6c4622337e0790fa14ae98147e5dc41b23c52bbab68ef0c44e5c8b0f6125bd76712330e8abf8cc5514ea6dc6e7f62723064ce30bbeb65f21ce0a83903677fa5c029550538c43353429aaae8710e83465c74dc0d1329b3bc06a211d2d26b827ade8d039ebf18342d7a307b7fa099bcdb03458d1fe6d690640cd2122619cdb838097d683ac772b4272af8c10bf41e425ed3bfbc4", 0xf6, 0x7}, {&(0x7f0000000400)="13b04aa2add62de8bd98276deb6ffd2e45b4208b13f08f0be7d43a2c1fa4fd", 0x1f, 0x7b}, {&(0x7f0000000440)="7a4f3bd27c0cb0da7a839e20f7ced055d1ca474667ffd82ee41746b665ab44af7435924f1ea58d403b6288867df33b0a77ea9bb9bc3ba9087ef49451e802be2f218d626ad9e74fcc74bce505eb5fae92a61b90c66521f3f9b2b71053c27aa04d189604e2a9a75dfc7d6c271a81919909a9453452b39e604dd50c84e1bdc6206ff5337e2c09bfa9990cdb2474e018395d2a12e672a6fa7fec9442f3067c671e2141775c0a3018e983394cdc69760fde1496dfcf0bb7805cf75fc4afb0c88bf2b6d46568da06652a92f2421bb72e7c8b8e14a89881a16ccd1c3483cbda2b63fd248f81def7e23d84", 0xe7, 0x2}, {&(0x7f0000000540)="3df78ba654fdec5838464e6661fd34a6129e4ac463cab67727ec342294aa255d67a5f0b74f8f7216eb9d511c3f", 0x2d}, {&(0x7f0000000580)="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", 0xfc, 0x14}, {&(0x7f0000000680)="fb5d920164a2f1f104e0d904889864c97ca3514145dd197615337d88deaaedb7322fb4be72abf99484828e1f045dbdbc33c9e4aabffd07f6eedd4dfae0f9372dba70765191b6147e8bfd65b77fe66d1b975f6729dc6d8de73a6eead030c429f78782053c02ee9f387a0a6c1a508a131711d9d8240d58a98457a972775e4fbf74bc79f7188cd832df0578216f7e9861b45acf12666233c3ed46e1e1daaff42c7bf1e1", 0xa2, 0x6}], 0x800020, &(0x7f0000000980)=ANY=[@ANYBLOB='nonumtail=0,dmask=00000000000000000000010,shortname=mixed,iocharset=cp865,shortname=winnt,uid=', @ANYRESHEX, @ANYBLOB=',utf8=1,euid>', @ANYRESDEC, @ANYBLOB="2c736d61636b66736861743d2628254d25232c646f6e745f686173682c646f6e745f686173682c0033cf36168a8c69892c94b64b4893eae983fecf3ed67e286d2cc8a0158186bed0e7c51d5f09434cd73c731b1102bc887a7536e333069890b1c5e0bd98df48e559d67b84aaf0555d8fcf1c64ace7"]) r2 = openat(r1, &(0x7f0000000080)='./file0\x00', 0x141400, 0x90) fallocate(r2, 0x3, 0x0, 0x8000) 07:23:34 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2001000000000}, 0x58) 07:23:34 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000800}, 0x58) 07:23:34 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 10) 07:23:34 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2a1791ab0000}, 0x58) [ 2575.115651] FAULT_INJECTION: forcing a failure. [ 2575.115651] name failslab, interval 1, probability 0, space 0, times 0 [ 2575.117044] CPU: 1 PID: 72563 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2575.117874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2575.118844] Call Trace: [ 2575.119166] dump_stack+0x107/0x167 [ 2575.119591] should_fail.cold+0x5/0xa [ 2575.120039] ? create_object.isra.0+0x3a/0xa20 [ 2575.120580] should_failslab+0x5/0x20 [ 2575.121026] kmem_cache_alloc+0x5b/0x310 [ 2575.121530] create_object.isra.0+0x3a/0xa20 [ 2575.122047] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2575.122641] kmem_cache_alloc+0x159/0x310 [ 2575.123121] ext4_alloc_io_end_vec+0x1f/0x120 [ 2575.123640] ext4_writepages+0x17a5/0x3350 [ 2575.124147] ? lock_acquire+0x197/0x470 [ 2575.124620] ? lock_downgrade+0x6d0/0x6d0 [ 2575.125117] ? lock_chain_count+0x20/0x20 [ 2575.125643] ? lock_chain_count+0x20/0x20 [ 2575.126153] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2575.126754] ? mark_lock+0xf5/0x2df0 [ 2575.127224] ? lock_chain_count+0x20/0x20 [ 2575.127742] ? __lock_acquire+0x1657/0x5b00 [ 2575.128274] ? lock_chain_count+0x20/0x20 [ 2575.128793] ? __lock_acquire+0x1657/0x5b00 [ 2575.129309] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2575.129959] do_writepages+0xee/0x2a0 [ 2575.130427] ? page_writeback_cpu_online+0x20/0x20 [ 2575.131020] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2575.131655] ? __lockdep_reset_lock+0x180/0x180 [ 2575.132227] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2575.132838] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2575.133503] ? ext4_fallocate+0x18d/0x3860 [ 2575.134036] filemap_write_and_wait_range+0x65/0x100 [ 2575.134664] ext4_punch_hole+0x178/0x1070 [ 2575.135180] ? downgrade_write+0x3a0/0x3a0 [ 2575.135714] ? down_write_killable+0x180/0x180 [ 2575.136296] ext4_fallocate+0xd8e/0x3860 [ 2575.136797] ? __x64_sys_fallocate+0xcf/0x140 [ 2575.137350] ? lock_release+0x680/0x680 [ 2575.137824] ? _cond_resched+0x12/0x80 [ 2575.138306] ? ext4_ext_truncate+0x250/0x250 [ 2575.138847] ? ext4_ext_truncate+0x250/0x250 [ 2575.139385] vfs_fallocate+0x48f/0xd00 [ 2575.139864] __x64_sys_fallocate+0xcf/0x140 [ 2575.140397] do_syscall_64+0x33/0x40 [ 2575.140855] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2575.141502] RIP: 0033:0x7f24574d1b19 [ 2575.141947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2575.144165] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2575.145093] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2575.145961] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2575.146812] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2575.147677] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000002 [ 2575.148526] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:23:34 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) write$binfmt_elf64(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="06d70e1d32fe9663509f88bee243ed44ee77cadfbbab4f26b008d6f7435f7d1f8698398e29e420b640c0fe0c1a3cf6781ed7494b360971af04797240e8816ffff4d12ec5bfdc6a463e95008948b6afbc3e81638d0a785a92496db47c2a8acfebd1a80938af32b39816d915bf3ec3885a77b6baebc2fb04177483b00f6cd1aabde37dd2eee1fac47b640edf86c131d1a007eeefdc11e80a965321147684cfcbfe2f81ec1ec8ee9d5bf472be3a55"], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:23:34 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x553a23257000}, 0x58) 07:23:34 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 11) 07:23:34 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x553a28899000}, 0x58) [ 2575.354041] FAULT_INJECTION: forcing a failure. [ 2575.354041] name failslab, interval 1, probability 0, space 0, times 0 [ 2575.355759] CPU: 1 PID: 72864 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2575.356506] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2575.357386] Call Trace: [ 2575.357698] dump_stack+0x107/0x167 [ 2575.358102] should_fail.cold+0x5/0xa [ 2575.358516] ? ext4_find_extent+0xa3d/0xd30 [ 2575.358979] should_failslab+0x5/0x20 [ 2575.359385] __kmalloc+0x72/0x390 [ 2575.359759] ext4_find_extent+0xa3d/0xd30 [ 2575.360205] ext4_ext_map_blocks+0x1c8/0x5850 [ 2575.360696] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2575.361257] ? perf_trace_lock+0xac/0x490 [ 2575.361713] ? __lockdep_reset_lock+0x180/0x180 [ 2575.362214] ? ext4_ext_release+0x10/0x10 [ 2575.362655] ? ext4_map_blocks+0x5e0/0x1970 [ 2575.363117] ? lock_release+0x680/0x680 [ 2575.363541] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 2575.364043] ? lock_downgrade+0x6d0/0x6d0 [ 2575.364493] ? down_write+0xe0/0x160 [ 2575.364891] ? down_write_killable+0x180/0x180 [ 2575.365422] ext4_map_blocks+0x652/0x1970 [ 2575.365897] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 2575.366378] ? trace_hardirqs_on+0x5b/0x180 [ 2575.366859] ? kmem_cache_alloc+0x2a6/0x310 [ 2575.367343] ext4_writepages+0x19bf/0x3350 [ 2575.367815] ? lock_acquire+0x197/0x470 [ 2575.368264] ? lock_downgrade+0x6d0/0x6d0 [ 2575.368738] ? lock_chain_count+0x20/0x20 [ 2575.369195] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2575.369734] ? mark_lock+0xf5/0x2df0 [ 2575.370146] ? lock_chain_count+0x20/0x20 [ 2575.370617] ? __lock_acquire+0x1657/0x5b00 [ 2575.371074] ? lock_chain_count+0x20/0x20 [ 2575.371545] ? __lock_acquire+0x1657/0x5b00 [ 2575.372031] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2575.372579] do_writepages+0xee/0x2a0 [ 2575.373003] ? page_writeback_cpu_online+0x20/0x20 [ 2575.373549] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2575.374132] ? __lockdep_reset_lock+0x180/0x180 [ 2575.374650] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2575.375205] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2575.375786] ? ext4_fallocate+0x18d/0x3860 [ 2575.376256] filemap_write_and_wait_range+0x65/0x100 [ 2575.376818] ext4_punch_hole+0x178/0x1070 [ 2575.377274] ? downgrade_write+0x3a0/0x3a0 [ 2575.377767] ? down_write_killable+0x180/0x180 [ 2575.378283] ext4_fallocate+0xd8e/0x3860 [ 2575.378737] ? __x64_sys_fallocate+0xcf/0x140 [ 2575.379233] ? lock_release+0x680/0x680 [ 2575.379668] ? _cond_resched+0x12/0x80 [ 2575.380106] ? ext4_ext_truncate+0x250/0x250 [ 2575.380605] ? ext4_ext_truncate+0x250/0x250 [ 2575.381093] vfs_fallocate+0x48f/0xd00 [ 2575.381524] __x64_sys_fallocate+0xcf/0x140 [ 2575.382002] do_syscall_64+0x33/0x40 [ 2575.382415] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2575.382982] RIP: 0033:0x7f24574d1b19 [ 2575.383400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2575.385446] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2575.386289] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2575.387073] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2575.387844] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2575.388614] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000002 [ 2575.389379] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:23:34 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1ffff000}, 0x58) 07:23:34 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2020000000000}, 0x58) 07:23:34 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, 0x0) ioctl$F2FS_IOC_RESIZE_FS(r1, 0x4008f510, &(0x7f0000000240)=0x4) openat(r1, &(0x7f00000000c0)='./file0\x00', 0x40000, 0x0) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x35a}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2000, @fd_index}, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r3, 0x0, &(0x7f0000000080)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0x24a, 0x1, &(0x7f0000000340)="e1ad715fb4830c54af0a6906a810a7c9c83521f0d523a2aa3bbd589d67efe19b26b0939704d6d480dfc53b30a972d1c5a15a8769dcc694e11528c6441b95538a8d4eb2cd3ed490f7b4040d34f5d2b8707c07194e248f6e0e1465ff9e1d6df49fef08785f6bfea90cd0abd860b9b31bb2cbc77764492032034e4355eda034a3ff7a5a9a0e93e1627f7530cc2126a1bf0d78581ba0ab749a35771a505a8dc88250f6b731f48b878948f9d49238feb6c5cbc5d232a9663d7cccba48d0038c641e527fa5030d4aee443b1a214f48df1dbfa3fe7825cf29685215b7e9011db2678d3b0e1eb894fd", 0x9, 0x0, 0x1}, 0x10007) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000180)={0x2000}) r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x204000, 0x0) r6 = openat(r5, &(0x7f00000002c0)='./file0\x00', 0x105140, 0x0) lseek(r0, 0x1, 0x4) fallocate(r6, 0x3, 0x0, 0x8000) 07:23:34 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1b0c61f000}, 0x58) 07:23:34 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:23:34 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 12) [ 2575.644077] FAULT_INJECTION: forcing a failure. [ 2575.644077] name failslab, interval 1, probability 0, space 0, times 0 [ 2575.646536] CPU: 0 PID: 73344 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2575.648012] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2575.649807] Call Trace: [ 2575.650382] dump_stack+0x107/0x167 [ 2575.651166] should_fail.cold+0x5/0xa [ 2575.651982] ? create_object.isra.0+0x3a/0xa20 [ 2575.652962] should_failslab+0x5/0x20 [ 2575.653812] kmem_cache_alloc+0x5b/0x310 [ 2575.654706] create_object.isra.0+0x3a/0xa20 [ 2575.655661] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2575.656765] __kmalloc+0x16e/0x390 [ 2575.657578] ext4_find_extent+0xa3d/0xd30 [ 2575.658491] ext4_ext_map_blocks+0x1c8/0x5850 [ 2575.659489] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2575.660609] ? perf_trace_lock+0xac/0x490 [ 2575.661540] ? __lockdep_reset_lock+0x180/0x180 [ 2575.662540] ? ext4_ext_release+0x10/0x10 [ 2575.663444] ? ext4_map_blocks+0x5e0/0x1970 [ 2575.664388] ? lock_release+0x680/0x680 [ 2575.665239] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 2575.666308] ? lock_downgrade+0x6d0/0x6d0 [ 2575.667229] ? down_write+0xe0/0x160 [ 2575.668040] ? down_write_killable+0x180/0x180 [ 2575.669028] ext4_map_blocks+0x652/0x1970 [ 2575.669957] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 2575.670915] ? trace_hardirqs_on+0x5b/0x180 [ 2575.671857] ? kmem_cache_alloc+0x2a6/0x310 [ 2575.672818] ext4_writepages+0x19bf/0x3350 [ 2575.673766] ? lock_acquire+0x197/0x470 [ 2575.674642] ? lock_downgrade+0x6d0/0x6d0 [ 2575.675564] ? lock_chain_count+0x20/0x20 [ 2575.676475] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2575.677567] ? mark_lock+0xf5/0x2df0 [ 2575.678388] ? lock_chain_count+0x20/0x20 [ 2575.679311] ? __lock_acquire+0x1657/0x5b00 [ 2575.680250] ? lock_chain_count+0x20/0x20 [ 2575.681175] ? __lock_acquire+0x1657/0x5b00 [ 2575.682128] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2575.683186] do_writepages+0xee/0x2a0 [ 2575.684010] ? page_writeback_cpu_online+0x20/0x20 [ 2575.685086] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2575.686231] ? __lockdep_reset_lock+0x180/0x180 [ 2575.687271] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2575.688335] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2575.689511] ? ext4_fallocate+0x18d/0x3860 [ 2575.690446] filemap_write_and_wait_range+0x65/0x100 [ 2575.691534] ext4_punch_hole+0x178/0x1070 [ 2575.692415] ? downgrade_write+0x3a0/0x3a0 [ 2575.693316] ? down_write_killable+0x180/0x180 [ 2575.694326] ext4_fallocate+0xd8e/0x3860 [ 2575.695197] ? __x64_sys_fallocate+0xcf/0x140 [ 2575.696157] ? lock_release+0x680/0x680 [ 2575.697016] ? _cond_resched+0x12/0x80 [ 2575.697895] ? ext4_ext_truncate+0x250/0x250 [ 2575.698865] ? ext4_ext_truncate+0x250/0x250 [ 2575.699821] vfs_fallocate+0x48f/0xd00 [ 2575.700677] __x64_sys_fallocate+0xcf/0x140 [ 2575.701640] do_syscall_64+0x33/0x40 [ 2575.702457] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2575.703570] RIP: 0033:0x7f24574d1b19 [ 2575.704374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2575.708366] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2575.710020] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2575.711566] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2575.713116] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2575.714678] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000002 [ 2575.716221] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:23:50 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x800000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:23:50 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2001000000000}, 0x58) 07:23:50 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 13) 07:23:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x58) 07:23:50 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000}, 0x58) 07:23:50 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000000000}, 0x58) 07:23:50 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, 0x0) ioctl$sock_inet_udp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000000)) 07:23:50 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xab91172a0000}, 0x58) [ 2590.811364] FAULT_INJECTION: forcing a failure. [ 2590.811364] name failslab, interval 1, probability 0, space 0, times 0 [ 2590.814345] CPU: 0 PID: 73515 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2590.815743] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2590.817410] Call Trace: [ 2590.817974] dump_stack+0x107/0x167 [ 2590.818721] should_fail.cold+0x5/0xa [ 2590.819500] ? __es_insert_extent+0x3a9/0x12f0 [ 2590.820428] should_failslab+0x5/0x20 [ 2590.821204] kmem_cache_alloc+0x5b/0x310 [ 2590.822049] __es_insert_extent+0x3a9/0x12f0 [ 2590.822965] ext4_es_insert_extent+0x2dc/0xb10 [ 2590.823918] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 2590.824809] ? do_raw_read_unlock+0x3b/0x70 [ 2590.825703] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 2590.826658] ext4_map_blocks+0x8e1/0x1970 [ 2590.827508] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 2590.828419] ? trace_hardirqs_on+0x5b/0x180 [ 2590.829296] ? kmem_cache_alloc+0x2a6/0x310 [ 2590.830184] ext4_writepages+0x19bf/0x3350 [ 2590.831043] ? lock_acquire+0x197/0x470 [ 2590.831858] ? lock_downgrade+0x6d0/0x6d0 [ 2590.832715] ? lock_chain_count+0x20/0x20 [ 2590.833546] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2590.834566] ? mark_lock+0xf5/0x2df0 [ 2590.835332] ? lock_chain_count+0x20/0x20 [ 2590.836193] ? __lock_acquire+0x1657/0x5b00 [ 2590.837061] ? lock_chain_count+0x20/0x20 [ 2590.837944] ? __lock_acquire+0x1657/0x5b00 [ 2590.838986] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2590.840031] do_writepages+0xee/0x2a0 [ 2590.840808] ? page_writeback_cpu_online+0x20/0x20 [ 2590.841819] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2590.842877] ? __lockdep_reset_lock+0x180/0x180 [ 2590.843837] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2590.844848] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2590.845929] ? ext4_fallocate+0x18d/0x3860 [ 2590.846813] filemap_write_and_wait_range+0x65/0x100 [ 2590.847836] ext4_punch_hole+0x178/0x1070 [ 2590.848662] ? downgrade_write+0x3a0/0x3a0 [ 2590.849509] ? down_write_killable+0x180/0x180 [ 2590.850451] ext4_fallocate+0xd8e/0x3860 [ 2590.851263] ? __x64_sys_fallocate+0xcf/0x140 [ 2590.852163] ? lock_release+0x680/0x680 [ 2590.852967] ? _cond_resched+0x12/0x80 [ 2590.853789] ? ext4_ext_truncate+0x250/0x250 [ 2590.854688] ? ext4_ext_truncate+0x250/0x250 [ 2590.855584] vfs_fallocate+0x48f/0xd00 [ 2590.856391] __x64_sys_fallocate+0xcf/0x140 [ 2590.857286] do_syscall_64+0x33/0x40 [ 2590.858046] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2590.859095] RIP: 0033:0x7f24574d1b19 [ 2590.859854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2590.863572] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2590.865118] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2590.866558] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2590.867993] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2590.869440] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000002 [ 2590.870904] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:23:50 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(r0, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x8) fallocate(r1, 0x3, 0x0, 0x8000) 07:23:50 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 14) 07:23:50 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2020000000000}, 0x58) 07:23:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f000000}, 0x58) [ 2591.195410] FAULT_INJECTION: forcing a failure. [ 2591.195410] name failslab, interval 1, probability 0, space 0, times 0 [ 2591.198042] CPU: 0 PID: 74140 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2591.199602] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2591.201472] Call Trace: [ 2591.202087] dump_stack+0x107/0x167 [ 2591.202920] should_fail.cold+0x5/0xa [ 2591.203784] ? create_object.isra.0+0x3a/0xa20 [ 2591.204834] should_failslab+0x5/0x20 [ 2591.205708] kmem_cache_alloc+0x5b/0x310 [ 2591.206633] create_object.isra.0+0x3a/0xa20 [ 2591.207625] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2591.208775] kmem_cache_alloc+0x159/0x310 [ 2591.209732] __es_insert_extent+0x3a9/0x12f0 [ 2591.210747] ext4_es_insert_extent+0x2dc/0xb10 [ 2591.211786] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 2591.212802] ? do_raw_read_unlock+0x3b/0x70 [ 2591.213786] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 2591.214865] ext4_map_blocks+0x8e1/0x1970 [ 2591.215817] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 2591.216831] ? trace_hardirqs_on+0x5b/0x180 [ 2591.217831] ? kmem_cache_alloc+0x2a6/0x310 [ 2591.218823] ext4_writepages+0x19bf/0x3350 [ 2591.219783] ? mark_lock+0xf5/0x2df0 [ 2591.220634] ? lock_chain_count+0x20/0x20 [ 2591.221607] ? lock_chain_count+0x20/0x20 [ 2591.222546] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2591.223695] ? __lock_acquire+0x1657/0x5b00 [ 2591.224669] ? lock_chain_count+0x20/0x20 [ 2591.225643] ? __lock_acquire+0x1657/0x5b00 [ 2591.226631] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2591.227733] do_writepages+0xee/0x2a0 [ 2591.228602] ? page_writeback_cpu_online+0x20/0x20 [ 2591.229743] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2591.230928] ? __lockdep_reset_lock+0x180/0x180 [ 2591.232002] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2591.233138] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2591.234349] ? ext4_fallocate+0x18d/0x3860 [ 2591.235334] filemap_write_and_wait_range+0x65/0x100 [ 2591.236483] ext4_punch_hole+0x178/0x1070 [ 2591.237417] ? downgrade_write+0x3a0/0x3a0 [ 2591.238402] ? down_write_killable+0x180/0x180 [ 2591.239449] ext4_fallocate+0xd8e/0x3860 [ 2591.240372] ? __x64_sys_fallocate+0xcf/0x140 [ 2591.241388] ? lock_release+0x680/0x680 [ 2591.242290] ? _cond_resched+0x12/0x80 [ 2591.243122] ? ext4_ext_truncate+0x250/0x250 [ 2591.244014] ? ext4_ext_truncate+0x250/0x250 [ 2591.244897] vfs_fallocate+0x48f/0xd00 [ 2591.245709] __x64_sys_fallocate+0xcf/0x140 [ 2591.246586] do_syscall_64+0x33/0x40 [ 2591.247344] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2591.248379] RIP: 0033:0x7f24574d1b19 [ 2591.249132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2591.252830] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2591.254374] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2591.255812] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2591.257254] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2591.258691] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000002 [ 2591.260130] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:23:50 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2a4686ffb000}, 0x58) 07:23:50 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2001000000000}, 0x58) 07:23:50 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000001000000}, 0x58) 07:23:50 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:24:08 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x2000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:24:08 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x58) 07:24:08 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 15) 07:24:08 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10100000000000}, 0x58) 07:24:08 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2020000000000}, 0x58) 07:24:08 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x553a2850d000}, 0x58) 07:24:08 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000}, 0x58) 07:24:08 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) r2 = accept4(r0, &(0x7f0000006740)=@alg, &(0x7f00000067c0)=0x80, 0x80000) r3 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000006800)={{0x1, 0x1, 0x18, r0, {0xee00, 0xffffffffffffffff}}, './file0\x00'}) r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000006840), 0x400, 0x0) [ 2609.597564] FAULT_INJECTION: forcing a failure. [ 2609.597564] name failslab, interval 1, probability 0, space 0, times 0 [ 2609.599966] CPU: 0 PID: 74673 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2609.601401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2609.603178] Call Trace: [ 2609.603750] dump_stack+0x107/0x167 [ 2609.604521] should_fail.cold+0x5/0xa [ 2609.605316] ? mempool_alloc+0x148/0x360 [ 2609.606173] ? mempool_free_pages+0x20/0x20 [ 2609.607088] should_failslab+0x5/0x20 [ 2609.607898] kmem_cache_alloc+0x5b/0x310 [ 2609.608763] ? mempool_free_pages+0x20/0x20 [ 2609.609656] mempool_alloc+0x148/0x360 [ 2609.610496] ? mempool_resize+0x7d0/0x7d0 [ 2609.611371] ? __test_set_page_writeback+0x160/0xbb0 [ 2609.612434] bio_alloc_bioset+0x36e/0x600 [ 2609.613285] ? bvec_alloc+0x2f0/0x2f0 [ 2609.614079] ? invalid_page_referenced_vma+0x570/0x570 [ 2609.615159] ext4_bio_write_page+0x9ba/0x1390 [ 2609.616086] mpage_submit_page+0x14b/0x260 [ 2609.616954] ext4_writepages+0x1f2e/0x3350 [ 2609.617863] ? lock_chain_count+0x20/0x20 [ 2609.619008] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2609.620432] ? lock_chain_count+0x20/0x20 [ 2609.621458] ? __lock_acquire+0x1657/0x5b00 [ 2609.622542] ? __lock_acquire+0x1657/0x5b00 [ 2609.623584] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2609.624966] do_writepages+0xee/0x2a0 [ 2609.625924] ? page_writeback_cpu_online+0x20/0x20 [ 2609.627217] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2609.628545] ? __lockdep_reset_lock+0x180/0x180 [ 2609.629790] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2609.631039] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2609.632326] ? ext4_fallocate+0x18d/0x3860 [ 2609.633399] filemap_write_and_wait_range+0x65/0x100 [ 2609.634683] ext4_punch_hole+0x178/0x1070 [ 2609.635512] ? downgrade_write+0x3a0/0x3a0 [ 2609.636358] ? down_write_killable+0x180/0x180 [ 2609.637280] ext4_fallocate+0xd8e/0x3860 [ 2609.638099] ? __x64_sys_fallocate+0xcf/0x140 [ 2609.639024] ? lock_release+0x680/0x680 [ 2609.639815] ? _cond_resched+0x12/0x80 [ 2609.640616] ? ext4_ext_truncate+0x250/0x250 [ 2609.641511] ? ext4_ext_truncate+0x250/0x250 [ 2609.642399] vfs_fallocate+0x48f/0xd00 [ 2609.643202] __x64_sys_fallocate+0xcf/0x140 [ 2609.644063] do_syscall_64+0x33/0x40 [ 2609.644808] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2609.645838] RIP: 0033:0x7f24574d1b19 [ 2609.646582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2609.650326] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2609.651855] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2609.653290] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2609.654745] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2609.656165] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000002 [ 2609.657582] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006d00)=[{{&(0x7f0000000140)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f00000003c0)=[{&(0x7f00000001c0)="8349bfc98ad2d2ea9a3be8e1032b9ad1fdaa0b1bf6f01e259fd3257e2ca521b5b1a60113b44d3cdafc2da120eec3165d6a83080027633c69866c0e5467", 0x3d}, {&(0x7f0000000200)="888538577b33342a84ed", 0xa}, {&(0x7f0000000300)="ca4f7f4770cb64dc96975b5b52c8149121cc3775ce5d358f16eba2c93a040e22bb3d3da8c9b2f4b25080c07d3a021d459ff5199050732797c84f8b1a8229c5cde992d8e2461a5cb05503d5aae3fa6c9fc7014aa6a944e2608185a980f0d66383d30454f46fd8e7fe720fbe4d0e5a2ef4dfec46fd97784dc3541cb54a81874d002559258764cd7b73a63dcade6d87639f21586cc5ab084c", 0x97}, {&(0x7f0000000280)="b434803ec0", 0x5}], 0x4, &(0x7f0000000400)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}], 0x38, 0x48890}}, {{&(0x7f0000000440)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000780)=[{&(0x7f00000004c0)}, {&(0x7f0000000500)="9a0c2a205a7988ab3bde06b6741c4205e0dd780f2ef8f4ae66ecd1de6327addd26d052e9378a9cdac2a245da2940e0c16384ad5ef1fefbc86e7ca5f921e3cec80d369dc35f979f0cf14bc8f8e2560bc56a2328062aa1f17c5eeeb16964986ff2eba2ac87d944eef6fca877047e0cf400ba6676ac3a946a575dc7c426771221f58570a7f107c923f8f12b6e5f7d738c74969ad995ea31cd8d3388da6f675d7e0a6d528d04792cdab5d7d1fbdf143e46b55736d491766fac", 0xb7}, {&(0x7f00000005c0)="b20bacc4d1a9bb7b4d5d175a9c0485a9f11654b1ef83ef7a0d41b66d27d083a8cd0c2fcc1b0e9203d0755ba252040473869ac2a49c2bc1ed9c24aa91ac482b74e812cb1fd69345e689ea7253128d8427a6325d171caeaebe627282ad220779aaf439a233ce8490532f0f2167f533872354a3ec6af36f4b00c2454802869dc35d1946c4a4a5559b0c1f1f81b00c939a927cdd9b35b6194e3e30ef2148d8f8f62d4d4de55a0cf27cac78d877fa0ab29e003a4d195da7d23de1982db25f2ea8ab5277d59b96fe012f4c6a4c80ff8df4c96da057ca0b1956cf54607c10", 0xdb}, {&(0x7f00000006c0)="d0879bb7a0a3398bbf6c30ce84edf7ba413ca18ba8a7904990286aeb50891b8ce71250eb80e113580caf4c109edbefcdcf53f4118aa958ada51304f27523d84c3cb60c97eb7d472627be2ad333485d0e4d498b9167948ced790e0c2e3c7469e1fd9fa9fdc89559dfdbd412bcb8b9e0772be655e919b21d0a8e5f45902d4ba45353d234933f0e92260a4d81c2c842b73199", 0x91}], 0x4, &(0x7f0000000b40)=[@rights={{0x20, 0x1, 0x1, [r0, r1, r1, r1]}}, @rights={{0x20, 0x1, 0x1, [r0, r1, 0xffffffffffffffff, r1]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}], 0xc0}}, {{&(0x7f0000000c00)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000001f80)=[{&(0x7f0000000c80)="2cb846cb6bf75487e0d6b574d46a2505090fea975807ea02b02877fc9370127e82a78aa44411804d36546ebb7b0d2e7ad15dbd982cce34db95808fd76f2b15a705c7906474e712db609fe05f38633210def891eeec356c4d710c1dcaac70bb6d351d4cbe3722a831c92c03b41fa224fa8df6f6ef75487d313bc4e1945919ca7ad081fd081ab3c2706c89ffe222d4b15e187c4184c626eceaa43258ac82215667eb3cc9b2f5b0159c95ef5739c1929dad08be22726adf0627b9c5d0fc67dac8712d7b1e1fe3089123", 0xc8}, {&(0x7f0000000d80)="4a0e163724283bcc2af1332a1e3ad2677f89674cdf13a2ccfc0e91ba78", 0x1d}, {&(0x7f0000000dc0)="09c0e75129bf0e5807d931dfe92db72f96c55e3c33b62328f0b73c499125868afd8a19763ee3b9f5d947dcdb5111bb97a687058fc6997fa64375b6c48c1317d30999ef89bdbf9596fff25a340528583a6f", 0x51}, {&(0x7f0000000e40)="5c9536558974af124c14a950ca7aa4e4865b838ce807954678c163c463bb02843a8752fc314538fc660ed8257e82dfbfed3ea14dc2063ae13414651a903b39349adce7edb8ae3aaa4cde2c813cef6d8b05452baaa4793826d13d7950fd60da733202fa7e64f2c7ede145f4d606d39f304f52fe01c674d032497bc56f0dc2c03b5d9d3ff9249347080d16874f4b8390262aaba4eef17c1acaf1aeb1b3febb1c88732e3bcc8e433fa0a7e01dbc20aaa6eb4f1686ceab", 0xb5}, {&(0x7f0000000f00)="e8bc4a1c17c52a4eeac6c81e2d8c761a19ef6fd1f7d833f82f082093713f0545b56f22a63b72a0651688c6e879a6d4bba74492565cab3a485cf3c60bb08ca4d6fbb72dcc89fccc0860c9e5fceb7f4ccbcd145b585833b13cca0ea5375ca68e404f5145812cd06f6c103ea24ef8", 0x6d}, {&(0x7f0000000f80)="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", 0x1000}], 0x6, 0x0, 0x0, 0x20024848}}, {{0x0, 0x0, &(0x7f0000002000), 0x0, &(0x7f0000002140)=[@rights={{0x34, 0x1, 0x1, [r1, r0, 0xffffffffffffffff, r1, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff}}}], 0x78, 0x4000890}}, {{&(0x7f00000021c0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000003540)=[{&(0x7f0000002240)="89b69c57f6c415edc34602203e923250e6b14f085599716ad647e837f393488bee924be526d6e070b58aa8448460388cd3c3c1815543492aee4425df4d37190727104af559f4b075f78255483d35c0eb3dd54c724067e6cf8ea59ac6ab842cd2b3753a7cf6dc5478", 0x68}, {&(0x7f00000022c0)="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", 0x1000}, {&(0x7f00000032c0)="cdbe75d45389b3bebf4be137c9812ae748878d426a3fec4c53a2d489daa356c1ed16e89613930d57c252ba8e101a032166813ad2793cec3226cf6073b7034dd4219da283b8a70678a540a229c3", 0x4d}, {&(0x7f0000003340)="d46346bc3526ddc0fac09bb3eb5f39a4be01dc6924e98694190d1e5a3a3aeed89d23680755dfc4ab94d6475fd1753dd7fde471", 0x33}, {&(0x7f0000003380)="91204135050b55d337782a7425684c66ff3d58dbb9332f6f05f6a42fddf938e7f771ced4a9557b373738e718436c0ded5bb1eb89b914286e7bde57fbc8f912afae148858c515b25c1d0db743066bef23bc02780fdc348d02beeec4917f93edea1a65589a2ff5b52d767013", 0x6b}, {&(0x7f0000003400)="37b12504fd42e884af1793ee8d5b56921662006722506019085b2b4c83bbc200ca51cbc3b5e29e58143f98e801e8d178f8747b1c78a7adc8dfbd470cb5cbb7ab4b7a6677f589e6c16888f8e94995ef442af85bc0303bc723d50687ea", 0x5c}, {&(0x7f0000003480)="a72374e8a3ca2a8ed1c6060ed25b4ac44f91fc7d3b9e7226b8786d88967372c5c97f1a91b51aac61233e12ca43ee68c4d37c06ed4bc918f8707e5e155755fa6088bfeab6616ec3607a92b85fc50facaa9ec4cb93460445ef09fa62386fc1e0ab31c9fa0e2df4e3c9210be61bd5a13ff039d4c06ccfdb602008df08fe7c2b6a3716448d1b320e335ed751076f4a8fdd69d0187712350f2e9376ca1aaaa2e599f9551e9610eee70a5b19582139894804ef4cbf", 0xb2}], 0x7, &(0x7f0000004880)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r0, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r1, 0xffffffffffffffff, r1, r1, r0, r0, r1, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0, 0x48804}}, {{&(0x7f0000004940)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000004cc0)=[{&(0x7f00000049c0)="382fb442befde4a3828087d05ab6e440b12c272a67dd98868475c8d10a3e2bc2130edf93d266fc9e8d51aadb989e917091b1b3f97435e718fc7c4a3c2e180948520f5f23045d6319a956f5f0b63a47d660e1b3369300d4654f1c3070debc4ae9fc259a711ba7085ec6d6e437933e29a0d8966ad15895201b6d0b88", 0x7b}, {&(0x7f0000004a40)="be5c6a46127f8eba702e42b69320fc2d64e5fc36b18a52e46bd4d51addca6a39c723711fecc6c40df1e2fd2dd7909ce546231227581eb78d1c61ccaa8effc5fac9c9cb65f551bb00a47d042d83050a722587c83387b39790e273e8d35f7bddd529f2da117efddbf0f80111e88e478862b110240d396f765475f7e81ff47a58e39950621a7c9cc619f088aa07", 0x8c}, {&(0x7f0000004b00)="e6a936b818ed6eef841dda3c0ae5681d15c7a408a26b8ff00933554cbfa18c907909df7785", 0x25}, {&(0x7f0000004b40)="c79d89e445accb93c257552f9c9facd2936e9e39827c7c1cab80d1310b424a02dd225f1df73cee88c65b5ff6f545d42f5a8a9d7479af42239c04c80b069e4750c6fc5eb8070597c2b9013f07953a11e07585d10addbb79460f5898f0", 0x5c}, {&(0x7f0000004bc0)="52fe5267f10012a4e7bd927a3e5f7d2606ecb08efecd05ab5fc2459e308e0677b382aa4ac8163684896910a49ba56d182681fe18b551757fe8d3646c9e4583395358934ebe5ebcf7c0879829971ee0ead05a18f1178ffbeb6a2798e1e37b2419b39ecc725052f22c94379e7b782d0819904f5d376cdd5895396a1a65ee72902826fb3931d61881ee70ff5f39540faee8a3b615ac1aeea98338ccdc3eefbf8edbc22ffe0c4b2aa5093466a711f2130c8eefccd6b87c3e4b7c9e25e91f36244379190b5fe9", 0xc4}], 0x5, &(0x7f0000004f00)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00, 0xffffffffffffffff}}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1, r1, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r0, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xffffffffffffffff}}}, @rights={{0x10}}, @rights={{0x20, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x140, 0x1}}, {{&(0x7f0000005040)=@file={0x0, './file1\x00'}, 0x6e, &(0x7f0000006340)=[{&(0x7f00000050c0)="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", 0x1000}, {&(0x7f00000060c0)="830f", 0x2}, {&(0x7f0000006100)="5292575d9cf167a9bfb9de11ae38d6c0c0b672bf4a2f42c24c496d1fbe7fbf26", 0x20}, {&(0x7f0000006140)="24742a0bf42383ce63065482e48afe02b0f40398fe2e509f8523dd487c02d07c", 0x20}, {&(0x7f0000006180)="b700491bc4c00e7555b2b366113a87e6af874723d479f590f8a6ec032afdddb80bf6cec1b7e5579ed34b644d0bb7ada6c2e86a52a2b27d27abeceb3a7459039c0f9a61b1aecf2387b0d5d667093fe6d7e8abc736c81173c87481b13eaee00d5f9d1acd3ee15c1d1a4218f92b46ff990b089f4869c6c828cf26ca33e5cf0d37f122c662578de4fc85314862", 0x8b}, {&(0x7f0000006240)="b51d5795e4fc7c291b4358e430fc327dc1f69822b0", 0x15}, {&(0x7f0000006280)="f16541ba05258878ceba86c5a5a51d3c89e617d55828cca89eab13d183", 0x1d}, {&(0x7f00000062c0)="5ac290dc2517dc00a9758022ae6983ff772db1282be8c77ddaaa010d7c1e07b9abb556da67fe064cf675c03f6010a7ad1c0bd3dd30482a3170dd3867db8fe02ce71df8941b4e64dcd876ba4a12077e266b8fd0c395c3f9fe4c7c12b9e66a1115f95a95331f8952836e01608fbec00d552793a053412b14", 0x77}], 0x8, &(0x7f0000006400)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r0, r0]}}, @rights={{0x2c, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50, 0x1000}}, {{&(0x7f0000006480)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f00000066c0)=[{&(0x7f0000006500)="d4f4e87c9d0a44bb282ed06e47dfea39e5972ed5f8ea7e4e", 0x18}, {&(0x7f0000006540)="7610b70987dea59e4fd41255b6515706e228f779274dadee85b4ffe52d3bf593b86cb5998718b205dc4355dcf8c6ea2fbaf356061be48254f11b43574f03e21fccaf03a5273cc078ca1f36a1ad100494c01585b61ae9865965", 0x59}, {&(0x7f00000065c0)="a505c288b6fc40fa36f39c94e9ddc69e993ab291f84da401a7eb1e549a40861790309d5795d728a67884a7c94801947bb2141526ee60f4159ae7d2257acafafa68a1c0176ed4f612d48ca8c3aa3f02562fbe10f638fa468c47f92f1a380169d71b1146f4b0bfb67965501e3168bcc529f2e8a5ff8eafaedaefc842b6cb15182e0ebd5d4fd097a73f214d091ab58804288407dbec3c625169fa4445c74f6099baa1e5e7b70ee215c93dc9c0ed1a2dd59cb71a322f0fe2daafcf1797e3eba04c039e609139f5beb239ad878c268482b7af8be82341261a2b29049586", 0xdb}], 0x3, &(0x7f0000006880)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r1, 0xffffffffffffffff, r2, r3]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r4, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}, @rights={{0x1c, 0x1, 0x1, [r0, r5, r0]}}], 0xb8, 0x2000c000}}, {{0x0, 0x0, &(0x7f0000006c80)=[{&(0x7f0000006940)="f65c081c886971d1d9c7277e6ea35a0314ecac10b1f584bd363b544c5197378baffcbb0ea6f6b49a3764717f11ff5001377bcf476da079902c688871ab41fcbf19fa10fc4c4c94ec4da3b4d1491516c94c1adc23ced9892fff38f3ec69aa0fe742fb3e895d1b7debdf7e7cf2ec309ba70344949772514b5d7fe5dcff0ac3015c45755e3242aa", 0x86}, {&(0x7f0000006a00)="9dc14b432edd8299e9873a5c94ffa2d1ed04511cbe8206a9c94c8e6c56c208e2bcc70c17c3f8b6199698605cb3c754d01790134e63670218d9a664d421abefdc572be84ffe7fbfbab4a3aad176e0283f10dec40ea1d5a394d73c92633f80f7c57ebd96cc59b569608f5ec3c893fb33dc671f0b1b09dff422e248db4e1f3cf056debbe9b3df78172b18562920fcc476bcbeae22889b127e073df18b", 0x9b}, {&(0x7f0000006ac0)="17f607fc58631afd677deded8a7efd6b2a6357880a6c51a1c70b97b1193b707cf62e80fa383c8d5225961bf171ab09a06263507b63c4cf57cfdb6092a72716e88a07f49f40daf3763bcc1941821985ec9e6c24e81d5679dfe5004f73431646342bad9e131a856595ef464058e045e31b2a5d0e6d1e88be1e03e51630cc7ce9c0af096cb15c807a01a4ab", 0x8a}, {&(0x7f0000006b80)="076473a638add67aa1fb9dea48ec3581ba8f56af7e908e47198f38f1140a8721d68a94ea6c0ba732f539b7735bd78caa1d61631c8b1bd4fb583202b7aa0548de997d5f76ec3a36eb2066f3c6b9ff93a5b504f572c744025a21e60a94c4d613fe06f4e5475db7714af39952ef61", 0x6d}, {&(0x7f0000006c00)="de7c2e1b615c759b55db594d8baa494a1657d1bf99abf53cb264f78a1f182bb65450c5b1cafcadc42b734a13325fe8584fee20e35251a08cafad1448829e387adb1ddb79298acfea071fd36cbc8870449dabd41fc65c40f0d7117e26388728e778ce202402dea4f91ca67b1660d096", 0x6f}], 0x5}}], 0x9, 0xc800) r6 = socket$unix(0x1, 0x5, 0x0) bind$unix(r6, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r6, 0x0) ppoll(&(0x7f0000000240)=[{r6, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT(r6, 0x4004f506, &(0x7f0000000100)=0x1) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYRES16, @ANYRES64, @ANYRES64=r0, @ANYRESDEC], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r7, 0x3, 0x0, 0x8000) 07:24:08 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000000), &(0x7f0000000080)=0x2) fallocate(r0, 0x0, 0x0, 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 07:24:09 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 16) 07:24:09 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2001000000000}, 0x58) 07:24:09 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000800}, 0x58) 07:24:09 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x3f00000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2609.932920] FAULT_INJECTION: forcing a failure. [ 2609.932920] name failslab, interval 1, probability 0, space 0, times 0 [ 2609.935380] CPU: 0 PID: 75066 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2609.936780] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2609.938459] Call Trace: [ 2609.939016] dump_stack+0x107/0x167 [ 2609.939771] should_fail.cold+0x5/0xa [ 2609.940548] ? create_object.isra.0+0x3a/0xa20 [ 2609.941479] should_failslab+0x5/0x20 [ 2609.942278] kmem_cache_alloc+0x5b/0x310 [ 2609.943110] create_object.isra.0+0x3a/0xa20 [ 2609.944021] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2609.945038] kmem_cache_alloc+0x159/0x310 [ 2609.945880] ? mempool_free_pages+0x20/0x20 [ 2609.946742] mempool_alloc+0x148/0x360 [ 2609.947533] ? mempool_resize+0x7d0/0x7d0 [ 2609.948379] ? __test_set_page_writeback+0x160/0xbb0 [ 2609.949398] bio_alloc_bioset+0x36e/0x600 [ 2609.950236] ? bvec_alloc+0x2f0/0x2f0 [ 2609.951001] ? invalid_page_referenced_vma+0x570/0x570 [ 2609.952070] ext4_bio_write_page+0x9ba/0x1390 [ 2609.952981] mpage_submit_page+0x14b/0x260 [ 2609.953848] ext4_writepages+0x1f2e/0x3350 [ 2609.954747] ? lock_chain_count+0x20/0x20 [ 2609.955570] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2609.956602] ? __lock_acquire+0x1657/0x5b00 [ 2609.957484] ? __lock_acquire+0x1657/0x5b00 [ 2609.958357] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2609.959325] do_writepages+0xee/0x2a0 [ 2609.960089] ? page_writeback_cpu_online+0x20/0x20 [ 2609.961061] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2609.962108] ? __lockdep_reset_lock+0x180/0x180 [ 2609.963059] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2609.964059] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2609.965128] ? ext4_fallocate+0x18d/0x3860 [ 2609.966024] filemap_write_and_wait_range+0x65/0x100 [ 2609.967035] ext4_punch_hole+0x178/0x1070 [ 2609.967864] ? downgrade_write+0x3a0/0x3a0 [ 2609.968710] ? down_write_killable+0x180/0x180 [ 2609.969659] ext4_fallocate+0xd8e/0x3860 [ 2609.970474] ? __x64_sys_fallocate+0xcf/0x140 [ 2609.971387] ? lock_release+0x680/0x680 [ 2609.972177] ? _cond_resched+0x12/0x80 [ 2609.972957] ? ext4_ext_truncate+0x250/0x250 [ 2609.973868] ? ext4_ext_truncate+0x250/0x250 [ 2609.974748] vfs_fallocate+0x48f/0xd00 [ 2609.975543] __x64_sys_fallocate+0xcf/0x140 [ 2609.976430] do_syscall_64+0x33/0x40 [ 2609.977189] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2609.978215] RIP: 0033:0x7f24574d1b19 [ 2609.978960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2609.982707] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2609.984224] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2609.985652] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2609.987084] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2609.988528] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000002 [ 2609.989979] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:24:09 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r0, 0x3, 0x0, 0x8000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) openat(r2, &(0x7f0000000000)='./file0\x00', 0x8000, 0x146) fallocate(r0, 0x0, 0x0, 0xfdef) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r3, 0x3, 0x0, 0x8000) 07:24:09 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x208182252a0000}, 0x58) 07:24:09 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000}, 0x58) 07:24:09 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000001000000}, 0x58) 07:24:09 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1) [ 2610.242207] FAULT_INJECTION: forcing a failure. [ 2610.242207] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2610.244808] CPU: 1 PID: 75406 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2610.246056] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2610.247548] Call Trace: [ 2610.248008] dump_stack+0x107/0x167 [ 2610.248671] should_fail.cold+0x5/0xa [ 2610.249326] _copy_from_user+0x2e/0x1b0 [ 2610.250038] copy_clone_args_from_user+0x147/0x790 [ 2610.250873] ? __lockdep_reset_lock+0x180/0x180 [ 2610.251671] ? sighand_ctor+0x40/0x40 [ 2610.252339] ? find_held_lock+0x2c/0x110 [ 2610.253068] ? ksys_write+0x21a/0x260 [ 2610.253725] ? lock_downgrade+0x6d0/0x6d0 [ 2610.254446] __do_sys_clone3+0x9d/0x320 [ 2610.255143] ? __do_sys_clone+0x110/0x110 [ 2610.255894] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2610.256741] ? wait_for_completion_io+0x270/0x270 [ 2610.257593] ? rcu_read_lock_any_held+0x75/0xa0 [ 2610.258412] ? vfs_write+0x354/0xa70 [ 2610.259062] ? fput_many+0x2f/0x1a0 [ 2610.259704] ? ksys_write+0x1a9/0x260 [ 2610.260370] ? __ia32_sys_read+0xb0/0xb0 [ 2610.261082] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2610.262030] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2610.262939] ? trace_hardirqs_on+0x5b/0x180 [ 2610.263695] do_syscall_64+0x33/0x40 [ 2610.264360] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2610.265255] RIP: 0033:0x7f99575d9b19 [ 2610.265901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2610.269154] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2610.270471] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2610.271723] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2610.272976] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2610.274232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2610.275440] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:24:25 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 17) 07:24:25 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10100000000000}, 0x58) 07:24:25 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 2) 07:24:25 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000001000000}, 0x58) 07:24:25 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2020000000000}, 0x58) 07:24:25 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x50d3283a550000}, 0x58) 07:24:25 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:24:25 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1b0bf1f000}, 0x58) [ 2625.893384] FAULT_INJECTION: forcing a failure. [ 2625.893384] name failslab, interval 1, probability 0, space 0, times 0 [ 2625.895400] CPU: 0 PID: 75630 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2625.896621] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2625.898079] Call Trace: [ 2625.898550] dump_stack+0x107/0x167 [ 2625.899197] should_fail.cold+0x5/0xa [ 2625.899866] ? mempool_alloc+0x148/0x360 [ 2625.900573] ? mempool_free_pages+0x20/0x20 [ 2625.901327] should_failslab+0x5/0x20 [ 2625.901992] kmem_cache_alloc+0x5b/0x310 [ 2625.902723] ? mempool_free_pages+0x20/0x20 [ 2625.903481] mempool_alloc+0x148/0x360 [ 2625.904171] ? mempool_resize+0x7d0/0x7d0 [ 2625.904899] ? mempool_resize+0x7d0/0x7d0 [ 2625.905638] bvec_alloc+0xd8/0x2f0 [ 2625.906269] bio_alloc_bioset+0x40a/0x600 [ 2625.906301] FAULT_INJECTION: forcing a failure. [ 2625.906301] name failslab, interval 1, probability 0, space 0, times 0 [ 2625.906992] ? bvec_alloc+0x2f0/0x2f0 [ 2625.910241] ext4_bio_write_page+0x9ba/0x1390 [ 2625.911038] mpage_submit_page+0x14b/0x260 [ 2625.911782] ext4_writepages+0x1f2e/0x3350 [ 2625.912561] ? lock_chain_count+0x20/0x20 [ 2625.913286] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2625.914189] ? __lock_acquire+0x1657/0x5b00 [ 2625.914960] ? __lock_acquire+0x1657/0x5b00 [ 2625.915720] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2625.916575] do_writepages+0xee/0x2a0 [ 2625.917247] ? page_writeback_cpu_online+0x20/0x20 [ 2625.918112] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2625.919018] ? __lockdep_reset_lock+0x180/0x180 [ 2625.919832] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2625.920694] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2625.921612] ? ext4_fallocate+0x18d/0x3860 [ 2625.922381] filemap_write_and_wait_range+0x65/0x100 [ 2625.923259] ext4_punch_hole+0x178/0x1070 [ 2625.923974] ? downgrade_write+0x3a0/0x3a0 [ 2625.924704] ? down_write_killable+0x180/0x180 [ 2625.925511] ext4_fallocate+0xd8e/0x3860 [ 2625.926220] ? __x64_sys_fallocate+0xcf/0x140 [ 2625.926998] ? lock_release+0x680/0x680 [ 2625.927683] ? _cond_resched+0x12/0x80 [ 2625.928362] ? ext4_ext_truncate+0x250/0x250 [ 2625.929131] ? ext4_ext_truncate+0x250/0x250 [ 2625.929890] vfs_fallocate+0x48f/0xd00 [ 2625.930579] __x64_sys_fallocate+0xcf/0x140 [ 2625.931330] do_syscall_64+0x33/0x40 [ 2625.931977] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2625.932867] RIP: 0033:0x7f24574d1b19 [ 2625.933514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2625.936701] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2625.938015] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2625.939254] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2625.940485] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2625.941718] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000002 [ 2625.942953] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 [ 2625.944218] CPU: 1 PID: 75641 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2625.945787] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2625.947673] Call Trace: [ 2625.948274] dump_stack+0x107/0x167 [ 2625.949101] should_fail.cold+0x5/0xa [ 2625.949963] ? copy_process+0x446c/0x6740 [ 2625.950906] should_failslab+0x5/0x20 [ 2625.951764] kmem_cache_alloc_node+0x55/0x330 [ 2625.952779] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2625.953965] copy_process+0x446c/0x6740 [ 2625.954883] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2625.956060] ? exc_page_fault+0xca/0x1a0 [ 2625.956974] ? trace_hardirqs_on+0x5b/0x180 [ 2625.957948] ? exc_page_fault+0xca/0x1a0 [ 2625.958883] ? __cleanup_sighand+0xb0/0xb0 [ 2625.959845] ? _copy_from_user+0xfb/0x1b0 [ 2625.960788] kernel_clone+0xe7/0x980 [ 2625.961626] ? __lockdep_reset_lock+0x180/0x180 [ 2625.962680] ? create_io_thread+0xf0/0xf0 [ 2625.963627] ? ksys_write+0x21a/0x260 [ 2625.964482] ? lock_downgrade+0x6d0/0x6d0 [ 2625.965418] __do_sys_clone3+0x1e5/0x320 [ 2625.966346] ? __do_sys_clone+0x110/0x110 [ 2625.967299] ? rcu_read_lock_any_held+0x75/0xa0 [ 2625.968327] ? vfs_write+0x354/0xa70 [ 2625.969161] ? fput_many+0x2f/0x1a0 [ 2625.969972] ? ksys_write+0x1a9/0x260 [ 2625.970826] ? __ia32_sys_read+0xb0/0xb0 [ 2625.971734] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2625.972900] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2625.974062] ? trace_hardirqs_on+0x5b/0x180 [ 2625.975264] do_syscall_64+0x33/0x40 [ 2625.976155] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2625.977366] RIP: 0033:0x7f99575d9b19 [ 2625.978281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2625.982641] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2625.984442] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2625.986138] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2625.987828] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2625.989520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2625.991219] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:24:25 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 18) 07:24:25 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0310c1b000000}, 0x58) 07:24:25 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x80a66b8f2a0000}, 0x58) [ 2626.233230] FAULT_INJECTION: forcing a failure. [ 2626.233230] name failslab, interval 1, probability 0, space 0, times 0 [ 2626.234972] CPU: 0 PID: 76151 Comm: syz-executor.7 Not tainted 5.10.186 #1 [ 2626.236041] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2626.237329] Call Trace: [ 2626.237745] dump_stack+0x107/0x167 [ 2626.238321] should_fail.cold+0x5/0xa [ 2626.238916] ? create_object.isra.0+0x3a/0xa20 [ 2626.239591] should_failslab+0x5/0x20 [ 2626.240321] kmem_cache_alloc+0x5b/0x310 [ 2626.241088] create_object.isra.0+0x3a/0xa20 [ 2626.241933] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2626.242914] kmem_cache_alloc+0x159/0x310 [ 2626.243701] ? mempool_free_pages+0x20/0x20 [ 2626.244513] mempool_alloc+0x148/0x360 [ 2626.245253] ? mempool_resize+0x7d0/0x7d0 [ 2626.246042] ? mempool_resize+0x7d0/0x7d0 [ 2626.246840] bvec_alloc+0xd8/0x2f0 [ 2626.247512] bio_alloc_bioset+0x40a/0x600 [ 2626.248293] ? bvec_alloc+0x2f0/0x2f0 [ 2626.248955] ext4_bio_write_page+0x9ba/0x1390 [ 2626.249668] mpage_submit_page+0x14b/0x260 [ 2626.250332] ext4_writepages+0x1f2e/0x3350 [ 2626.251022] ? lock_chain_count+0x20/0x20 [ 2626.251668] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2626.252451] ? __lock_acquire+0x1657/0x5b00 [ 2626.253133] ? __lock_acquire+0x1657/0x5b00 [ 2626.253804] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2626.254566] do_writepages+0xee/0x2a0 [ 2626.255162] ? page_writeback_cpu_online+0x20/0x20 [ 2626.255922] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2626.256727] ? __lockdep_reset_lock+0x180/0x180 [ 2626.257452] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2626.258232] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2626.259049] ? ext4_fallocate+0x18d/0x3860 [ 2626.259715] filemap_write_and_wait_range+0x65/0x100 [ 2626.260498] ext4_punch_hole+0x178/0x1070 [ 2626.261143] ? downgrade_write+0x3a0/0x3a0 [ 2626.261799] ? down_write_killable+0x180/0x180 [ 2626.262525] ext4_fallocate+0xd8e/0x3860 [ 2626.263147] ? __x64_sys_fallocate+0xcf/0x140 [ 2626.263844] ? lock_release+0x680/0x680 [ 2626.264456] ? _cond_resched+0x12/0x80 [ 2626.265060] ? ext4_ext_truncate+0x250/0x250 [ 2626.265751] ? ext4_ext_truncate+0x250/0x250 [ 2626.266433] vfs_fallocate+0x48f/0xd00 [ 2626.267038] __x64_sys_fallocate+0xcf/0x140 [ 2626.267697] do_syscall_64+0x33/0x40 [ 2626.268266] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2626.269044] RIP: 0033:0x7f24574d1b19 [ 2626.269615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2626.272422] RSP: 002b:00007f2454a47188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 2626.273579] RAX: ffffffffffffffda RBX: 00007f24575e4f60 RCX: 00007f24574d1b19 [ 2626.274672] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 2626.275755] RBP: 00007f2454a471d0 R08: 0000000000000000 R09: 0000000000000000 [ 2626.276845] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000002 [ 2626.277928] R13: 00007ffe36cf5eff R14: 00007f2454a47300 R15: 0000000000022000 07:24:40 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f00000000}, 0x58) 07:24:40 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) (fail_nth: 19) 07:24:40 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000000000}, 0x58) 07:24:40 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0xffffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:24:40 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10100000000000}, 0x58) 07:24:40 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000}, 0x58) 07:24:40 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 3) 07:24:40 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x9089283a550000}, 0x58) [ 2641.556054] FAULT_INJECTION: forcing a failure. [ 2641.556054] name failslab, interval 1, probability 0, space 0, times 0 [ 2641.558772] CPU: 1 PID: 76271 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2641.560185] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2641.561881] Call Trace: [ 2641.562438] dump_stack+0x107/0x167 [ 2641.563182] should_fail.cold+0x5/0xa [ 2641.563960] ? create_object.isra.0+0x3a/0xa20 [ 2641.564891] should_failslab+0x5/0x20 [ 2641.565665] kmem_cache_alloc+0x5b/0x310 [ 2641.566515] create_object.isra.0+0x3a/0xa20 [ 2641.567412] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2641.568445] kmem_cache_alloc_node+0x169/0x330 [ 2641.569371] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2641.570447] copy_process+0x446c/0x6740 [ 2641.571254] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2641.572316] ? exc_page_fault+0xca/0x1a0 [ 2641.573154] ? trace_hardirqs_on+0x5b/0x180 [ 2641.574031] ? exc_page_fault+0xca/0x1a0 [ 2641.574899] ? __cleanup_sighand+0xb0/0xb0 [ 2641.575777] ? _copy_from_user+0xfb/0x1b0 [ 2641.576628] kernel_clone+0xe7/0x980 [ 2641.577387] ? __lockdep_reset_lock+0x180/0x180 [ 2641.578352] ? create_io_thread+0xf0/0xf0 [ 2641.579221] ? ksys_write+0x21a/0x260 [ 2641.579991] ? lock_downgrade+0x6d0/0x6d0 [ 2641.580837] __do_sys_clone3+0x1e5/0x320 [ 2641.581666] ? __do_sys_clone+0x110/0x110 [ 2641.582556] ? rcu_read_lock_any_held+0x75/0xa0 [ 2641.583492] ? vfs_write+0x354/0xa70 [ 2641.584249] ? fput_many+0x2f/0x1a0 [ 2641.584990] ? ksys_write+0x1a9/0x260 [ 2641.585771] ? __ia32_sys_read+0xb0/0xb0 [ 2641.586621] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2641.587686] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2641.588731] ? trace_hardirqs_on+0x5b/0x180 [ 2641.589610] do_syscall_64+0x33/0x40 [ 2641.590377] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2641.591419] RIP: 0033:0x7f99575d9b19 [ 2641.592176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2641.595903] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2641.597446] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2641.598903] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2641.600349] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2641.601796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2641.603249] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:24:41 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 07:24:41 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x7025233a550000}, 0x58) 07:24:41 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0010c1b000000}, 0x58) 07:24:41 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000001000000}, 0x58) 07:24:41 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}, 0x58) 07:24:41 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:24:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x29bcc84d7000}, 0x58) 07:24:41 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x2, 0x0, 0x8000) 07:24:41 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf031101b000000}, 0x58) 07:24:41 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 4) 07:24:41 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10100000000000}, 0x58) 07:24:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x553a27892000}, 0x58) 07:24:41 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f00000000}, 0x58) 07:24:41 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2642.400252] FAULT_INJECTION: forcing a failure. [ 2642.400252] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2642.403007] CPU: 1 PID: 77714 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2642.404426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2642.406107] Call Trace: [ 2642.406668] dump_stack+0x107/0x167 [ 2642.407416] should_fail.cold+0x5/0xa [ 2642.408209] __alloc_pages_nodemask+0x182/0x600 [ 2642.409161] ? lock_downgrade+0x6d0/0x6d0 [ 2642.410008] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2642.411261] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 2642.412320] ? kmem_cache_alloc_node+0x2bc/0x330 [ 2642.413285] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2642.414362] copy_process+0x60a/0x6740 [ 2642.415155] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2642.416217] ? exc_page_fault+0xca/0x1a0 [ 2642.417049] ? trace_hardirqs_on+0x5b/0x180 [ 2642.417923] ? exc_page_fault+0xca/0x1a0 [ 2642.418777] ? __cleanup_sighand+0xb0/0xb0 [ 2642.419653] ? _copy_from_user+0xfb/0x1b0 [ 2642.420504] kernel_clone+0xe7/0x980 [ 2642.421259] ? __lockdep_reset_lock+0x180/0x180 [ 2642.422207] ? create_io_thread+0xf0/0xf0 [ 2642.423068] ? ksys_write+0x21a/0x260 [ 2642.423845] ? lock_downgrade+0x6d0/0x6d0 [ 2642.424694] __do_sys_clone3+0x1e5/0x320 [ 2642.425514] ? __do_sys_clone+0x110/0x110 [ 2642.426389] ? rcu_read_lock_any_held+0x75/0xa0 [ 2642.427330] ? vfs_write+0x354/0xa70 [ 2642.428091] ? fput_many+0x2f/0x1a0 [ 2642.428828] ? ksys_write+0x1a9/0x260 [ 2642.429601] ? __ia32_sys_read+0xb0/0xb0 [ 2642.430437] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2642.431496] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2642.432548] ? trace_hardirqs_on+0x5b/0x180 [ 2642.433425] do_syscall_64+0x33/0x40 [ 2642.434182] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2642.435233] RIP: 0033:0x7f99575d9b19 [ 2642.435986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2642.439708] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2642.441250] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2642.442704] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2642.444143] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2642.445581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2642.447042] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:24:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2001000000000}, 0x58) 07:24:57 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, 0x58) 07:24:57 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}, 0x58) 07:24:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f00000000}, 0x58) 07:24:57 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x4, 0x0, 0x8000) 07:24:57 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 5) 07:24:57 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xb0ff86462a0000}, 0x58) 07:24:57 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2658.109382] FAULT_INJECTION: forcing a failure. [ 2658.109382] name failslab, interval 1, probability 0, space 0, times 0 [ 2658.112794] CPU: 1 PID: 78244 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2658.114169] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2658.115813] Call Trace: [ 2658.116343] dump_stack+0x107/0x167 [ 2658.117070] should_fail.cold+0x5/0xa [ 2658.117825] ? prepare_creds+0x25/0x5f0 [ 2658.118640] should_failslab+0x5/0x20 [ 2658.119391] kmem_cache_alloc+0x5b/0x310 [ 2658.120202] ? lock_downgrade+0x6d0/0x6d0 [ 2658.121020] prepare_creds+0x25/0x5f0 [ 2658.121774] copy_creds+0x72/0x580 [ 2658.122487] copy_process+0xfce/0x6740 [ 2658.123274] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2658.124308] ? exc_page_fault+0xca/0x1a0 [ 2658.125105] ? trace_hardirqs_on+0x5b/0x180 [ 2658.125973] ? exc_page_fault+0xca/0x1a0 [ 2658.126805] ? __cleanup_sighand+0xb0/0xb0 [ 2658.127650] ? _copy_from_user+0xfb/0x1b0 [ 2658.128478] kernel_clone+0xe7/0x980 [ 2658.129213] ? __lockdep_reset_lock+0x180/0x180 [ 2658.130134] ? create_io_thread+0xf0/0xf0 [ 2658.130980] ? ksys_write+0x21a/0x260 [ 2658.131737] ? lock_downgrade+0x6d0/0x6d0 [ 2658.132580] __do_sys_clone3+0x1e5/0x320 [ 2658.133389] ? __do_sys_clone+0x110/0x110 [ 2658.134225] ? rcu_read_lock_any_held+0x75/0xa0 [ 2658.135173] ? vfs_write+0x354/0xa70 [ 2658.135926] ? fput_many+0x2f/0x1a0 [ 2658.136656] ? ksys_write+0x1a9/0x260 [ 2658.137423] ? __ia32_sys_read+0xb0/0xb0 [ 2658.138244] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2658.139302] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2658.140330] ? trace_hardirqs_on+0x5b/0x180 [ 2658.141197] do_syscall_64+0x33/0x40 [ 2658.141944] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2658.142967] RIP: 0033:0x7f99575d9b19 [ 2658.143715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2658.147430] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2658.148953] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2658.150383] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2658.151821] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2658.153254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2658.154740] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:24:57 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x6, 0x0, 0x8000) 07:24:57 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, 0x58) 07:24:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}, 0x58) 07:24:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2020000000000}, 0x58) 07:24:57 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:24:57 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100000000000000}, 0x58) 07:24:57 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 6) [ 2658.471100] FAULT_INJECTION: forcing a failure. [ 2658.471100] name failslab, interval 1, probability 0, space 0, times 0 [ 2658.473080] CPU: 0 PID: 78906 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2658.474018] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2658.475153] Call Trace: [ 2658.475522] dump_stack+0x107/0x167 [ 2658.476028] should_fail.cold+0x5/0xa [ 2658.476557] ? create_object.isra.0+0x3a/0xa20 [ 2658.477184] should_failslab+0x5/0x20 [ 2658.477704] kmem_cache_alloc+0x5b/0x310 [ 2658.478261] create_object.isra.0+0x3a/0xa20 [ 2658.478862] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2658.479563] kmem_cache_alloc+0x159/0x310 [ 2658.480132] prepare_creds+0x25/0x5f0 [ 2658.480656] copy_creds+0x72/0x580 [ 2658.481152] copy_process+0xfce/0x6740 [ 2658.481699] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2658.482452] ? exc_page_fault+0xca/0x1a0 [ 2658.483007] ? trace_hardirqs_on+0x5b/0x180 [ 2658.483591] ? exc_page_fault+0xca/0x1a0 [ 2658.484150] ? __cleanup_sighand+0xb0/0xb0 [ 2658.484720] ? _copy_from_user+0xfb/0x1b0 [ 2658.485291] kernel_clone+0xe7/0x980 [ 2658.485797] ? __lockdep_reset_lock+0x180/0x180 [ 2658.486437] ? create_io_thread+0xf0/0xf0 [ 2658.487012] ? ksys_write+0x21a/0x260 [ 2658.487526] ? lock_downgrade+0x6d0/0x6d0 [ 2658.488087] __do_sys_clone3+0x1e5/0x320 [ 2658.488656] ? __do_sys_clone+0x110/0x110 [ 2658.489230] ? rcu_read_lock_any_held+0x75/0xa0 [ 2658.489852] ? vfs_write+0x354/0xa70 [ 2658.490358] ? fput_many+0x2f/0x1a0 [ 2658.490864] ? ksys_write+0x1a9/0x260 [ 2658.491374] ? __ia32_sys_read+0xb0/0xb0 [ 2658.491929] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2658.492629] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2658.493327] ? trace_hardirqs_on+0x5b/0x180 [ 2658.493903] do_syscall_64+0x33/0x40 [ 2658.494410] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2658.495114] RIP: 0033:0x7f99575d9b19 [ 2658.495618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2658.498090] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2658.499130] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2658.500087] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2658.501044] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2658.502006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2658.502987] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:25:12 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x58) 07:25:12 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, 0x58) 07:25:12 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:25:12 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100000000000000}, 0x58) 07:25:12 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xd050283a550000}, 0x58) 07:25:12 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x8, 0x0, 0x8000) 07:25:12 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000}, 0x58) 07:25:12 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 7) [ 2673.534122] FAULT_INJECTION: forcing a failure. [ 2673.534122] name failslab, interval 1, probability 0, space 0, times 0 [ 2673.536773] CPU: 0 PID: 79494 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2673.538167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2673.539867] Call Trace: [ 2673.540412] dump_stack+0x107/0x167 [ 2673.541157] should_fail.cold+0x5/0xa [ 2673.541938] ? security_prepare_creds+0x112/0x190 [ 2673.542927] should_failslab+0x5/0x20 [ 2673.543696] __kmalloc+0x72/0x390 [ 2673.544410] security_prepare_creds+0x112/0x190 [ 2673.545359] prepare_creds+0x458/0x5f0 [ 2673.546150] copy_creds+0x72/0x580 [ 2673.546887] copy_process+0xfce/0x6740 [ 2673.547690] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2673.548761] ? exc_page_fault+0xca/0x1a0 [ 2673.549592] ? trace_hardirqs_on+0x5b/0x180 [ 2673.550474] ? exc_page_fault+0xca/0x1a0 [ 2673.551332] ? __cleanup_sighand+0xb0/0xb0 [ 2673.552203] ? _copy_from_user+0xfb/0x1b0 [ 2673.553063] kernel_clone+0xe7/0x980 [ 2673.553822] ? __lockdep_reset_lock+0x180/0x180 [ 2673.554781] ? create_io_thread+0xf0/0xf0 [ 2673.555640] ? ksys_write+0x21a/0x260 [ 2673.556430] ? lock_downgrade+0x6d0/0x6d0 [ 2673.557282] __do_sys_clone3+0x1e5/0x320 [ 2673.558113] ? __do_sys_clone+0x110/0x110 [ 2673.559006] ? rcu_read_lock_any_held+0x75/0xa0 [ 2673.559954] ? vfs_write+0x354/0xa70 [ 2673.560710] ? fput_many+0x2f/0x1a0 [ 2673.561448] ? ksys_write+0x1a9/0x260 [ 2673.562228] ? __ia32_sys_read+0xb0/0xb0 [ 2673.563075] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2673.564147] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2673.565199] ? trace_hardirqs_on+0x5b/0x180 [ 2673.566083] do_syscall_64+0x33/0x40 [ 2673.566859] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2673.567906] RIP: 0033:0x7f99575d9b19 [ 2673.568662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2673.572405] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2673.573956] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2673.575415] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2673.576861] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2673.578319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2673.579767] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:25:28 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 8) 07:25:28 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0610c1b000000}, 0x58) 07:25:28 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100000000000000}, 0x58) 07:25:28 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:25:28 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0xf, 0x0, 0x8000) 07:25:28 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x58) 07:25:28 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}, 0x58) 07:25:28 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000001000000}, 0x58) [ 2689.599241] FAULT_INJECTION: forcing a failure. [ 2689.599241] name failslab, interval 1, probability 0, space 0, times 0 [ 2689.601489] CPU: 0 PID: 80109 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2689.602606] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2689.603945] Call Trace: [ 2689.604382] dump_stack+0x107/0x167 [ 2689.604971] should_fail.cold+0x5/0xa [ 2689.605581] ? create_object.isra.0+0x3a/0xa20 [ 2689.606320] should_failslab+0x5/0x20 [ 2689.606944] kmem_cache_alloc+0x5b/0x310 [ 2689.607602] create_object.isra.0+0x3a/0xa20 [ 2689.608313] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2689.609138] __kmalloc+0x16e/0x390 [ 2689.609717] security_prepare_creds+0x112/0x190 [ 2689.610479] prepare_creds+0x458/0x5f0 [ 2689.611136] copy_creds+0x72/0x580 [ 2689.611719] copy_process+0xfce/0x6740 [ 2689.612361] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2689.613213] ? exc_page_fault+0xca/0x1a0 [ 2689.613875] ? trace_hardirqs_on+0x5b/0x180 [ 2689.614577] ? exc_page_fault+0xca/0x1a0 [ 2689.615257] ? __cleanup_sighand+0xb0/0xb0 [ 2689.615953] ? _copy_from_user+0xfb/0x1b0 [ 2689.616630] kernel_clone+0xe7/0x980 [ 2689.617237] ? __lockdep_reset_lock+0x180/0x180 [ 2689.617991] ? create_io_thread+0xf0/0xf0 [ 2689.618675] ? ksys_write+0x21a/0x260 [ 2689.619305] ? lock_downgrade+0x6d0/0x6d0 [ 2689.619975] __do_sys_clone3+0x1e5/0x320 [ 2689.620634] ? __do_sys_clone+0x110/0x110 [ 2689.621320] ? rcu_read_lock_any_held+0x75/0xa0 [ 2689.622063] ? vfs_write+0x354/0xa70 [ 2689.622664] ? fput_many+0x2f/0x1a0 [ 2689.623266] ? ksys_write+0x1a9/0x260 [ 2689.623878] ? __ia32_sys_read+0xb0/0xb0 [ 2689.624541] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2689.625384] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2689.626210] ? trace_hardirqs_on+0x5b/0x180 [ 2689.626918] do_syscall_64+0x33/0x40 [ 2689.627519] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2689.628341] RIP: 0033:0x7f99575d9b19 [ 2689.628942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2689.631904] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2689.633124] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2689.634269] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2689.635421] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2689.636552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2689.637685] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:25:29 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x10, 0x0, 0x8000) 07:25:29 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10100000000000}, 0x58) 07:25:29 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}, 0x58) 07:25:29 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:25:29 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f00000000}, 0x58) 07:25:29 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000}, 0x58) 07:25:29 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x58) 07:25:29 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 9) 07:25:29 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2089273a550000}, 0x58) 07:25:29 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0xffffffffffffffff, 0x0, 0x8000) [ 2690.072321] FAULT_INJECTION: forcing a failure. [ 2690.072321] name failslab, interval 1, probability 0, space 0, times 0 [ 2690.073902] CPU: 0 PID: 81052 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2690.074674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2690.075618] Call Trace: [ 2690.075921] dump_stack+0x107/0x167 [ 2690.076347] should_fail.cold+0x5/0xa [ 2690.076777] ? __delayacct_tsk_init+0x1b/0x80 [ 2690.077295] should_failslab+0x5/0x20 [ 2690.077720] kmem_cache_alloc+0x5b/0x310 [ 2690.078184] ? prepare_creds+0x46c/0x5f0 [ 2690.078649] __delayacct_tsk_init+0x1b/0x80 [ 2690.079146] copy_process+0x4500/0x6740 [ 2690.079601] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2690.080192] ? exc_page_fault+0xca/0x1a0 [ 2690.080657] ? trace_hardirqs_on+0x5b/0x180 [ 2690.081152] ? exc_page_fault+0xca/0x1a0 [ 2690.081619] ? __cleanup_sighand+0xb0/0xb0 [ 2690.082101] ? _copy_from_user+0xfb/0x1b0 [ 2690.082592] kernel_clone+0xe7/0x980 [ 2690.083055] ? __lockdep_reset_lock+0x180/0x180 [ 2690.083601] ? create_io_thread+0xf0/0xf0 [ 2690.084094] ? ksys_write+0x21a/0x260 [ 2690.084539] ? lock_downgrade+0x6d0/0x6d0 [ 2690.085022] __do_sys_clone3+0x1e5/0x320 [ 2690.085492] ? __do_sys_clone+0x110/0x110 [ 2690.085987] ? rcu_read_lock_any_held+0x75/0xa0 [ 2690.086542] ? vfs_write+0x354/0xa70 [ 2690.086988] ? fput_many+0x2f/0x1a0 [ 2690.087416] ? ksys_write+0x1a9/0x260 [ 2690.087858] ? __ia32_sys_read+0xb0/0xb0 [ 2690.088337] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2690.088946] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2690.089548] ? trace_hardirqs_on+0x5b/0x180 [ 2690.090057] do_syscall_64+0x33/0x40 [ 2690.090494] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2690.091096] RIP: 0033:0x7f99575d9b19 [ 2690.091537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2690.093685] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2690.094561] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2690.095406] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2690.096229] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2690.097064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2690.097899] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:25:29 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x2, 0x8000) 07:25:29 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20010}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:25:29 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x704dc8bc290000}, 0x58) 07:25:29 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000}, 0x58) 07:25:29 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}, 0x58) 07:25:45 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 10) 07:25:45 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x57) 07:25:45 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:25:45 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}, 0x58) 07:25:45 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x3, 0x8000) 07:25:45 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}, 0x58) 07:25:45 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}, 0x58) 07:25:45 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0f10b1b000000}, 0x58) [ 2706.158469] FAULT_INJECTION: forcing a failure. [ 2706.158469] name failslab, interval 1, probability 0, space 0, times 0 [ 2706.161192] CPU: 1 PID: 82185 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2706.162599] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2706.164288] Call Trace: [ 2706.164835] dump_stack+0x107/0x167 [ 2706.165589] should_fail.cold+0x5/0xa [ 2706.166362] ? create_object.isra.0+0x3a/0xa20 [ 2706.167304] should_failslab+0x5/0x20 [ 2706.168074] kmem_cache_alloc+0x5b/0x310 [ 2706.168896] create_object.isra.0+0x3a/0xa20 [ 2706.169781] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2706.170809] kmem_cache_alloc+0x159/0x310 [ 2706.171672] ? prepare_creds+0x46c/0x5f0 [ 2706.172496] __delayacct_tsk_init+0x1b/0x80 [ 2706.173365] copy_process+0x4500/0x6740 [ 2706.174171] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2706.175236] ? exc_page_fault+0xca/0x1a0 [ 2706.176052] ? trace_hardirqs_on+0x5b/0x180 [ 2706.176917] ? exc_page_fault+0xca/0x1a0 [ 2706.177745] ? __cleanup_sighand+0xb0/0xb0 [ 2706.178607] ? _copy_from_user+0xfb/0x1b0 [ 2706.179463] kernel_clone+0xe7/0x980 [ 2706.180217] ? __lockdep_reset_lock+0x180/0x180 [ 2706.181151] ? create_io_thread+0xf0/0xf0 [ 2706.182002] ? ksys_write+0x21a/0x260 [ 2706.182770] ? lock_downgrade+0x6d0/0x6d0 [ 2706.183636] __do_sys_clone3+0x1e5/0x320 [ 2706.184456] ? __do_sys_clone+0x110/0x110 [ 2706.185320] ? rcu_read_lock_any_held+0x75/0xa0 [ 2706.186248] ? vfs_write+0x354/0xa70 [ 2706.187008] ? fput_many+0x2f/0x1a0 [ 2706.187748] ? ksys_write+0x1a9/0x260 [ 2706.188513] ? __ia32_sys_read+0xb0/0xb0 [ 2706.189333] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2706.190386] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2706.191439] ? trace_hardirqs_on+0x5b/0x180 [ 2706.192307] do_syscall_64+0x33/0x40 [ 2706.193063] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2706.194094] RIP: 0033:0x7f99575d9b19 [ 2706.194843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2706.198528] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2706.200062] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2706.201498] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2706.202928] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2706.204373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2706.205802] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:25:45 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x4, 0x8000) 07:25:45 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x20001258) 07:25:45 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:25:45 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, 0x58) 07:25:45 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x57) 07:25:45 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000}, 0x58) 07:25:45 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f00000000}, 0x58) 07:25:45 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 11) [ 2706.847953] FAULT_INJECTION: forcing a failure. [ 2706.847953] name failslab, interval 1, probability 0, space 0, times 0 [ 2706.850834] CPU: 1 PID: 83363 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2706.851991] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2706.853356] Call Trace: [ 2706.853801] dump_stack+0x107/0x167 [ 2706.854409] should_fail.cold+0x5/0xa [ 2706.855052] ? inherit_task_group.isra.0+0x1c6/0x530 [ 2706.855907] should_failslab+0x5/0x20 [ 2706.856538] kmem_cache_alloc_trace+0x55/0x320 [ 2706.857301] inherit_task_group.isra.0+0x1c6/0x530 [ 2706.858124] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 2706.858968] ? trace_hardirqs_on+0x5b/0x180 [ 2706.859737] perf_event_init_task+0x375/0x800 [ 2706.860518] ? perf_event_attrs+0x40/0x40 [ 2706.861209] ? __hrtimer_init+0x12c/0x270 [ 2706.861942] ? memset+0x20/0x50 [ 2706.862502] copy_process+0x180b/0x6740 [ 2706.863209] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2706.864084] ? exc_page_fault+0xca/0x1a0 [ 2706.864784] ? trace_hardirqs_on+0x5b/0x180 [ 2706.865516] ? __cleanup_sighand+0xb0/0xb0 [ 2706.866257] ? _copy_from_user+0xfb/0x1b0 [ 2706.866952] kernel_clone+0xe7/0x980 [ 2706.867603] ? __lockdep_reset_lock+0x180/0x180 [ 2706.868398] ? create_io_thread+0xf0/0xf0 [ 2706.869124] ? ksys_write+0x21a/0x260 [ 2706.869780] ? lock_downgrade+0x6d0/0x6d0 [ 2706.870486] __do_sys_clone3+0x1e5/0x320 [ 2706.871201] ? __do_sys_clone+0x110/0x110 [ 2706.871931] ? rcu_read_lock_any_held+0x75/0xa0 [ 2706.872700] ? vfs_write+0x354/0xa70 [ 2706.873346] ? fput_many+0x2f/0x1a0 [ 2706.873948] ? ksys_write+0x1a9/0x260 [ 2706.874607] ? __ia32_sys_read+0xb0/0xb0 [ 2706.875302] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2706.876200] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2706.877042] ? trace_hardirqs_on+0x5b/0x180 [ 2706.877792] do_syscall_64+0x33/0x40 [ 2706.878410] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2706.879307] RIP: 0033:0x7f99575d9b19 [ 2706.879950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2706.883121] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2706.884424] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2706.885663] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2706.886884] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2706.888106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2706.889327] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:26:03 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 12) 07:26:03 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x5, 0x8000) 07:26:03 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100000000000000}, 0x58) 07:26:03 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x101000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:03 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000000)={0x1000, 0xb597, 0x3c, "7ab3791e854d13eddf8c8c6d689fcc85ad7f9a92574afe9eff9e672d0ee25d8050dd62c69e7de8275bad05d9540adeb6f58f4ef8a29db5ff1c51ada96e8ca9736c2a7857c4faf07e82d4a6b1d913e401dc08c9f61c3986385040b01edeacc95c2bc9ec0e9334fcf3ba011c448ff5c02911914913637a324736a56f422590112c840e09a63f3cdc7b6d0f5de16d6d8445037bd4de9da0c3a242a93ce321549e68a922d7654afeade48f7978cac598f54616f05d23315851c0dc88f533e70d892e0db348eec299a65d6afae7848827ecc80bc986b0b9b3fcfb2afa33b2299e99c07e9fcd24b053ba9ff0b4b619fb1530d712ad3a85dc2ee86236daceb788e7450d14c5f1a748b0809f1ea6407a0cfb09c8072364d2b48afa340b153ec10f3297eab0bf32bc63e00886694876d8eae03f3c90af66526efd0a02c2d33a607e252918ef0db2348f5aaf2ab5243ccc55ce73de70630a4dd41e906634e69109285232a21e720d64f9571cb0d41ec09912168590f3cd29dfc27a5e9db4cac19724057d81ec9aeec35a4e85f71e09936d6749ebdb7678dad3ac93c921ba6c733a883c669a65ff9b412b3a0c7232b009f84318a4580e5e9c5e0067d743641a61f113935fd17dbad378c5e8769ea708a4b1997435f46640d8865e77ba0cb8d20d406f42cc6d6393efeb7c954d2f7778c102721b9bbd12fe4db4f4acc31703a9da68467df8072b129a4da6cd560853c87271fdfddc7ccb9bd34c658d0de95fc5fb16919b7ef21b6f4ff86086ebe508398c49085d9ba9e61ddd4cadadf647717a518d16a23c582e3bb527f496cb9e0342ba8c27f04023aea5850d284f1dd3ccc6055f9b5444ee91ea82909be80c6ff3c154f9a9f4d7df21b90465aef7f61b4e3b4cce7c6f97d66e5593c75caaa2ba4ab9a416a203bb73103b939161104da248ccb202f911bd5806eed09ece9d114cf5601e4c4d6d3e43a22ef6b87ab2725cb3e3cfe8a40c75cf22fa6d2f92fc5a9245815ef0e7d3bd7162c7ce36f2f830ac44164aca41aaa0b90270e717c23af2281b15b37baef488cfe837718c8c40378fd9b35ce257118345e0e96498b3a29053917c739f013bc40ff88836cba5f88e329048fb5a7f862bea2f148996e50cea77e44649843d7d6489bca12009ab5c8116df3bebb6e8a11e1948b4428da0684ce7fc27934da347794e0668c09155ddf80179d2f942746cfd55e89f4dcdbda9ee3c790d40115ba41d4b12f6bd361a961c18843182642b40df889f54756745b77d5f64c41436afbbab2785d5a801c567ad648e851a223bcb1bab80c37023eb103a03c7859908d16def2dbb103ca5bd5e0446338769469e80105cb5b092ef0f9662467b737de1fe2a9d699c4bd92faaf1990f5d061883f66555a90c508b288578ef4fb6d784b2142d851732dd4393aa8c5cac958e503cb7158eedcf83789dc698b26a40e3aca0fbfb6a91a47d4864ff8be5f56df26d8733610c42c9cb01fbb41c97353b34fa95ceb47a922b089be70da018a249f287b9c609ebc81cac8d9c9ef88cf98fa13e5ed1845f30189568373a637f5090d690dacb9b4fa561a0b6675face54cc9eb43f73f50e9c9f0bcecb35aca934d017423d2add99738bb62ee1dbc057b2551117b8ac1c7e9c5a57ca023153cffefd9b6522ad8eb14d9623bfc9c979106b1a6481142137ceeca5005d0987309e306c9cce5345d155c81183da1d88dc9cdf7078780133b765f3116ba1541e706b2b082c742f95196000cbe301336da4cabe4c9011cba86b2d866e5a0e1ec38d21b381b69da7dc4d1858b05027b1231bcd8510cb3db9ea9f658311bc53bf35039f5664e0fcb50ad71ca8d8b11acda605a1d2a76cce3545bf0d36e099702f4f3e4c9db4c86ff3b406f6e7d0212205d2200c833b8fc6d35ae4ed9d3ff8e3819ddd68865adeb84956f55ca3f1a7c2e1cdacbb711cd047591158fab472e976c5c60eddf7595c546c27d6a3b18de7953d1bf454277944bf8614f116354dadb6b9a7a3e1c5b613cc7632cdfe0327ae80a408b6224fb166d03f57252391a4223cc517990927f83a08a86ae11d1d7699dd38e4161465d140ade40d97a616e77d574bb6eaae152288aebac541bfefe868b225bf86465167596fdf1b5fdbd86e16631d99e88b03969e3245886a25d592a55c3ccfd72d6e2bdb571abebb4ff419c41a7397035030bd876fa791eb9530ee1aeb54b89b27f70d9cbf1ca7b4bda67d9654156ccf96a7a318f4fdab9b19adfbf95c0876ce3347fb3d0391369c586a05a46a6cbea7eac5ec20839254b3d3ca957782cffb28f40c848598b8090dae66ebc62e02da7bfc125043b8ca9f222d175132f932078f7231aaa8f5b1477f8fc662079606072d7e78b6a1b05bf6b3ad9800067780a930637abfd9f9a99e88b10f9c8e22045a40bb3b4d1a647ce91c1f79bbaf98a2cfe5fdc5c6bc797c9d797dac19455502d59d5af47d237dc8b1a71b31dd166f330c1eacf3263a315ad743de1a47a26af3798f8543fccc7c1d6dcc9d720c1dd03c96aa43a57817b2537d4756cae5efbed36d6e0799fafa2e9cfc14735177f3d1935023e2c0b93598935f07deb69c9f7ef9c523c6302371bc542607c579997ec9b1ca377de337b4d4ad68c92177f7fa081f85a881b50e88d4dfde5ee518ca3d658d788c2d0b8119da6e21ca46e586f936b7c39a7f68fd714aa39f15b687280693d4188c4ea37f1e790e799c691db0c1523870541d36fa0a9cb9b84e575fe7940d783613b0ba088d851b30e450ed90f398155e01b6ce59681350aeeb3cb2b75f6fefa105c1c80b947385d5e3c0825322755ea19ddd47122b189153312b0b93be72710739b4d4493cb992b9d7dc68df83c006d6fdd46306e2a07418d55705b8c85673b9abcf36aacd0bd332816e419438e2f7d59fd24bdf70c01d448a64cd54b32892f981c3e8daa8de2c24923b6adedf3f888dfe39054957f06de50ee7c72f5eb53e801b753d999350d7b3f1e023800c9c53aa553b14717a0a5d078e9eb41d4436d7f6b316ad9055a3939b2e42feecd4b0fc80d8bcda92f0b17c49c6fb2500624dff52fb918cf5bc9df2584ccc241d7c2c0093bf23e1bc741c14a9833a55070cd9d906a39c18740d9bd34610a86cf451f0bc1010d99cea8c2fe9df04aee65523b3933e521e4b53e2201c6e5d521888d5624a5b9d28121bb45f02b8030b11b55c547cee23df77f007dc6010d3079d1339b4899e85a27b760998a046676fec6f571469474a78843d009c4f0cc9d4e383eacca0b464d71c511f49f4ef420b19e12cdba2ddc355990848fd5d86c2367e02b9c5fe204486410c58618fc33fc408713e024ba72af15f3f8aa2c7a1b3193f799a423ebe055f620a05a0be944173ec316049230dfdfab33c33cd77a45e4984a3dc27a435fe4d1197bee29fb81e7fcaf2be780110639976102b941074288d87b48f5c1313292bb50eb200b40a1db655a2d73df63811926ba6911174edcb0b325f0f2c5f8188589a9148ed7a223b2962aa59df79384d1c6aa6b4fa51a415fa25df9bdb872dbdbb0bccae95bf3214d48a2f1cb97ad6aa40973084c2d8af1110bbe31784c4d0fb6ad9829cc184ae7822ff2120b1ea9d4f3fbb08fb24c994975500d0076c727afe08c1fc40513b3a398c9c32e3ca7da6863ce2a0c4a51fd8afd46e4c568b8d40ab1a77c410ea409eb1cdca3c852acd27e518cf7db5eb2b67af98a39c4144e9397b9df841e00ecbad08c8d1f7c00dfbda7d4c0a3f05d8e3400283082514581ec2d039da33fc411202092bae47cc6f112609d717ba65eb1731e3795e9a3247060f4978e2de0099792f6beface679bdec2e8856b5485f99c4b5fa4146623f3ad85b733613d5a0fe19038c7f287685e713029825f8e044ec7898753a06475b466041f527af5b58214418af4afa981d8b3e72bf4ab0b85a90ee0bfe48e2065b2d5d29fa8c0d1b5ca96c6be96617c8bce08b787d03ded71e6007a556d5274121ecd20b66dc1a4728e4f3de337dba24939aaac499395cb41c6ccf888c520571952e261adea848a70fd75d22d3c199ba90d369b110231a8f9080fb23964ed103f10eb952da609ec916563182c79c07fab0ba8c23a20fcb08de2f0b9581ec4cbcc460c260b1899d2978fac8354b2c7434f0c735e2286942232159d7d438873e580dca9f65bc4ae3701bf5be5705fbfa9cac7dee30f0a8a87d80d84b3c489b593728b87be18dfa50caf90e2e1629d672a6ab6238d646266247a31892774d0122f49e2a2d115fa9cda7d2e4948718302cc4cf6c56d3db6b37daff78a57ca6270f79e4309e67ae744962c91e9b0bb253fbb93441556ecc66229e2cd18727671bc526f51c6203d117a527b4889242cec98f71209b251f17d182df317a8909c8694d46001ac8688f9505fb49db9ee45d1681222b0ff4d05b75d8dd69e8867e339fa4b13f65b4651bf9a5a741252f7346856ff1b5dbac0882956999fddfead8e7d86c1f6723258a2c73fc1b6a196945121e1f2087321748ad943a51ce98d36809a968dac08e07e10c903d631d71e889a202b3b382dae2847e7bc8995b375d5dffb9883be185b769cef8fa887c4c7543f51a9319452482f93d982966a3dc4e30a9320b970eba350910205a6e98b51aab92fb48ef63bf5026f867543382ea26780066ca5f0bd56ba04cce3938646898015c531d7937d05f26be53bc98fc9dd4954d08b62af41c9cc8a4d03bc38c45d503a69f924b1e082f0a39ca07fa043d21177cd510dac780ed1a36c73cdb0085932844b2f16ac14e8d77a3305d509c37d78d2d3f1cdc4f8839ff5c58813586c6446fe45b686191bade2168fad0c41758ca86486dd691de87e702d4acdc927ee1ae2e4691fd0faa01e7bec38928187829a1f597178fb45ead4ce5e0f64b4a392bbba739a35409be2a3f2804172fcde408957ec87306a4c24c2dcce51d44deff8cca24f9f7a438f66da9596989f1d8b787d1f72031c7578a07954482cab192516c01995d2d76fc5e34ac6d7252438bb870995322d14346a9f3150c61dbd7702931312c73faf376dcfa066c58f53bba10afa4d09cb59a3621b3c1ed111f2eb5a72aa3fe7bcfbf619d3ce2e2ef0727deec2ecd2204c98420753b297ea3f761dadea8c439479999e0472e64c8857e922c53b5f2495f443ce59b6fa62bebeca3266f374399e118f8512d94f6f6558ef6ae070dfdbb7ba9825d7e03ceaf391e12955cb99b995fd7eef72cf3970ee4578c0e1cf7eb669793d7fd2a726a7753c98461f4070dff0c1839bac4537da85bc9d3a522bf99ef46de54936f628f4b11b9be70f3137bec043874bc806e44b0525ea732aeea55a1fd66071b6c2bf7d5cd55a56be210cce4054f624e99915032e8cd2c802b24d41b32b5f8378a6615a8fdafb5510d90fa3b65e684c6219c7793882a6532a7869f20d5fc36d4fc8453c555537db80685f399eb2fdedf6ab4acff754a75d281f56b4d307766be2bd235f3034975b08406ca601d4db8e7dfc55221d6082af4c4f520c49011f8a5b5b2deb186cea70694ebb75e9c6ccd74b5fa86548fa885afb433cc8092a743fc6dba6d9bd6914272f3dc11944b1de490659d1e0869310826c27dc1186e60b2a6881a1dddc611328c93b0203029990ea93ba7ea1da7b11a2099db943b3e18e489330e52da00dcff5a7b672f7e4aaf3ff65e4d83f835f27dc5c9cd99c459daca53446771296d3ef116245d18ac33fa65b11d53eabb6ef56e1d859406540b9503c0fbe6774139240755abe6dc0dce96cfb"}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:03 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x20001258) 07:26:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}, 0x58) 07:26:03 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}, 0x58) [ 2724.178393] FAULT_INJECTION: forcing a failure. [ 2724.178393] name failslab, interval 1, probability 0, space 0, times 0 [ 2724.181856] CPU: 0 PID: 83434 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2724.183426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2724.185266] Call Trace: [ 2724.185881] dump_stack+0x107/0x167 [ 2724.186703] should_fail.cold+0x5/0xa [ 2724.187549] ? create_object.isra.0+0x3a/0xa20 [ 2724.188581] should_failslab+0x5/0x20 [ 2724.189455] kmem_cache_alloc+0x5b/0x310 [ 2724.190395] create_object.isra.0+0x3a/0xa20 [ 2724.191417] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2724.192561] kmem_cache_alloc_trace+0x151/0x320 [ 2724.193620] inherit_task_group.isra.0+0x1c6/0x530 [ 2724.194740] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 2724.195893] ? trace_hardirqs_on+0x5b/0x180 [ 2724.196863] perf_event_init_task+0x375/0x800 [ 2724.197888] ? perf_event_attrs+0x40/0x40 [ 2724.198821] ? __hrtimer_init+0x12c/0x270 [ 2724.199760] ? memset+0x20/0x50 [ 2724.200505] copy_process+0x180b/0x6740 [ 2724.201397] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2724.202578] ? exc_page_fault+0xca/0x1a0 [ 2724.203520] ? trace_hardirqs_on+0x5b/0x180 [ 2724.204500] ? __cleanup_sighand+0xb0/0xb0 [ 2724.205453] ? _copy_from_user+0xfb/0x1b0 [ 2724.206391] kernel_clone+0xe7/0x980 [ 2724.207220] ? __lockdep_reset_lock+0x180/0x180 [ 2724.208288] ? create_io_thread+0xf0/0xf0 [ 2724.209241] ? ksys_write+0x21a/0x260 [ 2724.210097] ? lock_downgrade+0x6d0/0x6d0 [ 2724.211056] __do_sys_clone3+0x1e5/0x320 [ 2724.211977] ? __do_sys_clone+0x110/0x110 [ 2724.212937] ? rcu_read_lock_any_held+0x75/0xa0 [ 2724.213977] ? vfs_write+0x354/0xa70 [ 2724.214833] ? fput_many+0x2f/0x1a0 [ 2724.215678] ? ksys_write+0x1a9/0x260 [ 2724.216542] ? __ia32_sys_read+0xb0/0xb0 [ 2724.217469] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2724.218667] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2724.219834] ? trace_hardirqs_on+0x5b/0x180 [ 2724.220821] do_syscall_64+0x33/0x40 [ 2724.221675] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2724.222836] RIP: 0033:0x7f99575d9b19 [ 2724.223706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2724.227883] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2724.229613] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2724.231257] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2724.232878] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2724.234514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2724.236154] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:26:03 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000080)={0xb7, 0x8001, 0xffff, "511a5d4173145a9acbc607ad48e43dd834b25e0f8a7de06a8150109dc3d68cf09a54e7d009a78f670a95e3a0ff38f68570cc0df7b6863a4d20b1f46eb029787b5ef5d2c20e39ef13e0b91f8c427dad3d47d5ac598037f7074af31778b160aeb3032e4ad7e8493733558bac05b84f0479f07b7016445a2829fc5a023e2f75c28ea52962d7ae8e4065aad826a79e9a5baad46d3c429c3a672842c6c2f1b0b64534b39734c5f2a62388e7422009cfe4122e21768cae28a023"}) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x5, 0xfff, 0x9, 0x0, 0xfff, 0xffffffffffffffff}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:03 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x58) 07:26:03 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x6, 0x8000) 07:26:03 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0xf0ff1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:03 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x4000000003, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, 0x58) 07:26:03 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x57) 07:26:18 executing program 4: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r0 = creat(&(0x7f0000000000)='./file0\x00', 0x40) ioctl$SG_GET_NUM_WAITING(r0, 0x227d, &(0x7f0000000040)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:18 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) getsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000140), &(0x7f0000000180)=0x4) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) r3 = openat$cgroup_int(r1, &(0x7f0000000100)='memory.oom.group\x00', 0x2, 0x0) fcntl$setflags(r3, 0x2, 0x1) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x35, 0xff, 0x6, 0x7, 0x0, 0x31b, 0x4001, 0xb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1ff, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0x484, 0x10001, 0x9, 0x9, 0x81, 0x50cd, 0x400, 0x0, 0x20, 0x0, 0x6}, 0x0, 0x8, r1, 0xb) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:18 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100000000000000}, 0x58) 07:26:18 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 13) 07:26:18 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x7, 0x8000) 07:26:18 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}, 0x58) 07:26:18 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:18 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x20001258) [ 2738.899069] FAULT_INJECTION: forcing a failure. [ 2738.899069] name failslab, interval 1, probability 0, space 0, times 0 [ 2738.901755] CPU: 1 PID: 84797 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2738.903147] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2738.904825] Call Trace: [ 2738.905363] dump_stack+0x107/0x167 [ 2738.906102] should_fail.cold+0x5/0xa [ 2738.906875] ? perf_event_alloc.part.0+0x5b/0x2b70 [ 2738.907870] should_failslab+0x5/0x20 [ 2738.908638] kmem_cache_alloc_trace+0x55/0x320 [ 2738.909568] perf_event_alloc.part.0+0x5b/0x2b70 [ 2738.910525] ? lockdep_init_map_type+0x2c7/0x780 [ 2738.911502] inherit_event.constprop.0+0x168/0x8d0 [ 2738.912497] inherit_task_group.isra.0+0xb6/0x530 [ 2738.913474] perf_event_init_task+0x375/0x800 [ 2738.914384] ? perf_event_attrs+0x40/0x40 [ 2738.915217] ? __hrtimer_init+0x12c/0x270 [ 2738.916062] ? memset+0x20/0x50 [ 2738.916733] copy_process+0x180b/0x6740 [ 2738.917534] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2738.918584] ? exc_page_fault+0xca/0x1a0 [ 2738.919398] ? trace_hardirqs_on+0x5b/0x180 [ 2738.920297] ? __cleanup_sighand+0xb0/0xb0 [ 2738.921158] ? _copy_from_user+0xfb/0x1b0 [ 2738.921998] kernel_clone+0xe7/0x980 [ 2738.922747] ? __lockdep_reset_lock+0x180/0x180 [ 2738.923704] ? create_io_thread+0xf0/0xf0 [ 2738.924551] ? ksys_write+0x21a/0x260 [ 2738.925311] ? lock_downgrade+0x6d0/0x6d0 [ 2738.926144] __do_sys_clone3+0x1e5/0x320 [ 2738.926955] ? __do_sys_clone+0x110/0x110 [ 2738.927812] ? rcu_read_lock_any_held+0x75/0xa0 [ 2738.928738] ? vfs_write+0x354/0xa70 [ 2738.929488] ? fput_many+0x2f/0x1a0 [ 2738.930218] ? ksys_write+0x1a9/0x260 [ 2738.930980] ? __ia32_sys_read+0xb0/0xb0 [ 2738.931817] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2738.932868] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2738.933898] ? trace_hardirqs_on+0x5b/0x180 [ 2738.934766] do_syscall_64+0x33/0x40 [ 2738.935524] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2738.936548] RIP: 0033:0x7f99575d9b19 [ 2738.937296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2738.940963] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2738.942499] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2738.943956] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2738.945388] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2738.946814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2738.948246] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:26:18 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x8, 0x8000) 07:26:18 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 14) 07:26:18 executing program 1: r0 = clone3(&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) getpriority(0x0, r0) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:18 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x22100, 0x0, 0x0, 0x0, {0x4}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:18 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000}, 0x58) 07:26:18 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2739.210207] FAULT_INJECTION: forcing a failure. [ 2739.210207] name failslab, interval 1, probability 0, space 0, times 0 [ 2739.213333] CPU: 1 PID: 85506 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2739.214736] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2739.216413] Call Trace: [ 2739.216950] dump_stack+0x107/0x167 [ 2739.217696] should_fail.cold+0x5/0xa [ 2739.218470] ? create_object.isra.0+0x3a/0xa20 [ 2739.219396] should_failslab+0x5/0x20 [ 2739.220175] kmem_cache_alloc+0x5b/0x310 [ 2739.221013] create_object.isra.0+0x3a/0xa20 [ 2739.221906] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2739.222935] kmem_cache_alloc_trace+0x151/0x320 [ 2739.223910] perf_event_alloc.part.0+0x5b/0x2b70 [ 2739.224871] ? lockdep_init_map_type+0x2c7/0x780 [ 2739.225830] inherit_event.constprop.0+0x168/0x8d0 [ 2739.226825] inherit_task_group.isra.0+0xb6/0x530 [ 2739.227813] perf_event_init_task+0x375/0x800 [ 2739.228720] ? perf_event_attrs+0x40/0x40 [ 2739.229550] ? __hrtimer_init+0x12c/0x270 [ 2739.230386] ? memset+0x20/0x50 [ 2739.231059] copy_process+0x180b/0x6740 [ 2739.231884] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2739.232934] ? exc_page_fault+0xca/0x1a0 [ 2739.233748] ? trace_hardirqs_on+0x5b/0x180 [ 2739.234633] ? __cleanup_sighand+0xb0/0xb0 [ 2739.235515] ? _copy_from_user+0xfb/0x1b0 [ 2739.236354] kernel_clone+0xe7/0x980 [ 2739.237103] ? __lockdep_reset_lock+0x180/0x180 [ 2739.238042] ? create_io_thread+0xf0/0xf0 [ 2739.238891] ? ksys_write+0x21a/0x260 [ 2739.239660] ? lock_downgrade+0x6d0/0x6d0 [ 2739.240489] __do_sys_clone3+0x1e5/0x320 [ 2739.241294] ? __do_sys_clone+0x110/0x110 [ 2739.242143] ? rcu_read_lock_any_held+0x75/0xa0 [ 2739.243068] ? vfs_write+0x354/0xa70 [ 2739.243826] ? fput_many+0x2f/0x1a0 [ 2739.244554] ? ksys_write+0x1a9/0x260 [ 2739.245313] ? __ia32_sys_read+0xb0/0xb0 [ 2739.246129] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2739.247180] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2739.248217] ? trace_hardirqs_on+0x5b/0x180 [ 2739.249080] do_syscall_64+0x33/0x40 [ 2739.249823] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2739.250847] RIP: 0033:0x7f99575d9b19 [ 2739.251600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2739.255258] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2739.256779] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2739.258194] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2739.259630] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2739.261045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2739.262461] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:26:18 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x58) 07:26:18 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0xe, 0x2010, r0, 0x9715c000) ioctl$SG_IO(r0, 0x2285, &(0x7f0000001640)={0x53, 0xfffffffffffffff2, 0x22, 0x7f, @scatter={0x7, 0x0, &(0x7f00000014c0)=[{&(0x7f0000000000)=""/150, 0x96}, {&(0x7f00000000c0)=""/109, 0x6d}, {&(0x7f0000000140)=""/147, 0x93}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001300)=""/143, 0x8f}, {&(0x7f00000013c0)=""/232, 0xe8}, {&(0x7f0000001280)=""/38, 0x26}]}, &(0x7f0000001540)="9aa5a4d8c74fc4137bc08ac72245ff8cf7cb32197505344f262c07b3d6258e86da9e", &(0x7f0000001580)=""/82, 0x3, 0x25, 0xffffffffffffffff, &(0x7f0000001600)}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:18 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x9, 0x8000) 07:26:18 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105942, 0x18f) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x80002, 0x4) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:18 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}, 0x58) 07:26:18 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x10000200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:18 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x5, 0x11, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:18 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x45, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8000) openat$cgroup(r1, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000000000)) 07:26:18 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}, 0x58) 07:26:19 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xa, 0x8000) 07:26:33 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000}, 0x58) 07:26:33 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x20000a000, 0x0, 0x0, 0x0, {0x20}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = socket$unix(0x1, 0x2, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_QGROUP_LIMIT(r1, 0x8030942b, &(0x7f0000000000)={0x7, {0x10, 0xad8, 0x5, 0x2}}) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040)={0x0, 0x3938700}, 0x0, 0x0) connect$unix(r2, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0xe0901, 0x0) ioctl$SG_GET_LOW_DMA(r3, 0x227a, &(0x7f00000001c0)) r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) io_uring_enter(0xffffffffffffffff, 0x1b02, 0x8, 0x0, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x8, 0x13, r4, 0x0) 07:26:33 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x12, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:33 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:33 executing program 3: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:33 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 15) 07:26:33 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xd, 0x8000) 07:26:33 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x57) [ 2754.413216] FAULT_INJECTION: forcing a failure. [ 2754.413216] name failslab, interval 1, probability 0, space 0, times 0 [ 2754.415866] CPU: 0 PID: 87061 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2754.417273] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2754.418949] Call Trace: [ 2754.419494] dump_stack+0x107/0x167 [ 2754.420252] should_fail.cold+0x5/0xa [ 2754.421036] ? selinux_perf_event_alloc+0x43/0x190 [ 2754.422040] should_failslab+0x5/0x20 [ 2754.422822] kmem_cache_alloc_trace+0x55/0x320 [ 2754.423772] selinux_perf_event_alloc+0x43/0x190 [ 2754.424739] security_perf_event_alloc+0x46/0xa0 [ 2754.425716] perf_event_alloc.part.0+0x18b3/0x2b70 [ 2754.426725] inherit_event.constprop.0+0x168/0x8d0 [ 2754.427751] inherit_task_group.isra.0+0xb6/0x530 [ 2754.428733] perf_event_init_task+0x375/0x800 [ 2754.429647] ? perf_event_attrs+0x40/0x40 [ 2754.430503] ? __hrtimer_init+0x12c/0x270 [ 2754.431354] ? memset+0x20/0x50 [ 2754.432048] copy_process+0x180b/0x6740 [ 2754.432858] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2754.433920] ? exc_page_fault+0xca/0x1a0 [ 2754.434745] ? trace_hardirqs_on+0x5b/0x180 [ 2754.435661] ? __cleanup_sighand+0xb0/0xb0 [ 2754.436530] ? _copy_from_user+0xfb/0x1b0 [ 2754.437377] kernel_clone+0xe7/0x980 [ 2754.438132] ? __lockdep_reset_lock+0x180/0x180 [ 2754.439074] ? create_io_thread+0xf0/0xf0 [ 2754.439939] ? ksys_write+0x21a/0x260 [ 2754.440710] ? lock_downgrade+0x6d0/0x6d0 [ 2754.441531] __do_sys_clone3+0x1e5/0x320 [ 2754.442322] ? __do_sys_clone+0x110/0x110 [ 2754.443156] ? rcu_read_lock_any_held+0x75/0xa0 [ 2754.444074] ? vfs_write+0x354/0xa70 [ 2754.444812] ? fput_many+0x2f/0x1a0 [ 2754.445526] ? ksys_write+0x1a9/0x260 [ 2754.446270] ? __ia32_sys_read+0xb0/0xb0 [ 2754.447074] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2754.448164] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2754.449179] ? trace_hardirqs_on+0x5b/0x180 [ 2754.450071] do_syscall_64+0x33/0x40 [ 2754.450804] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2754.451857] RIP: 0033:0x7f99575d9b19 [ 2754.452619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2754.456386] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2754.457955] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2754.459418] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2754.460899] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2754.462364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2754.463833] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:26:33 executing program 3: prctl$PR_GET_TIMERSLACK(0x1e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x10000) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x4c, 0x0, 0x300, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x8000}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x8}, @NL80211_ATTR_SSID={0x10, 0x34, @random="68ccaf7d4f09f3b22e1752c7"}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000000}, 0x85) 07:26:33 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = clone3(&(0x7f0000001200)={0x40000000, 0x0, 0x0, 0x0, {0xc}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) r3 = getpgid(r1) r4 = signalfd(r2, &(0x7f00000003c0)={[0x37c]}, 0x8) clone3(&(0x7f0000000400)={0x880, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180), {0x2e}, &(0x7f00000001c0)=""/121, 0x79, &(0x7f0000000280)=""/249, &(0x7f0000000380)=[r3], 0x1, {r4}}, 0x58) r5 = openat(0xffffffffffffff9c, &(0x7f0000000500)='./file0\x00', 0x600202, 0x2) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000540)='/sys/module/srcutree', 0x5a000, 0x0) r7 = getuid() mount$9p_fd(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x10000, &(0x7f0000000580)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@access_uid={'access', 0x3d, r7}}, {@noextend}], [{@obj_role={'obj_role', 0x3d, '/dev/sg#\x00'}}]}}) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r8 = socket$unix(0x1, 0x5, 0x0) bind$unix(r8, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r8, 0x0) ppoll(&(0x7f0000000240)=[{r8, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000000)=[r2, r0, r0, r8, r0, 0xffffffffffffffff, 0xffffffffffffffff], 0x7) mount$9p_fd(0x0, &(0x7f0000000600)='./file0\x00', &(0x7f0000000640), 0xc000, &(0x7f0000000700)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {}, 0x2c, {[{@access_uid}], [{@subj_user={'subj_user', 0x3d, 'rfdno'}}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x35, 0x0, 0x66, 0x0, 0x35, 0x39, 0x61, 0x33], 0x2d, [0x31, 0xae23fe3176cd6a4b, 0x61, 0x32], 0x2d, [0x33, 0x65, 0x33, 0x31], 0x2d, [0x65, 0x33, 0x36, 0x38], 0x2d, [0x39, 0x39, 0x30, 0x37, 0x36, 0x30, 0x34, 0x63]}}}, {@euid_gt}]}}) 07:26:33 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x20001258) 07:26:34 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xe, 0x8000) 07:26:34 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 16) 07:26:34 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x4, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)={0xcf, 0x80000000, 0xffffffc1, "06b70caf99b3d801ea4b4232912583727488414690d80073053182067d2a0559b759e04edaf321b905bcc4d5dab964bc5afd85b1dc63af7418dd43723daab59123fe630f48928bbe64394a7c0f51e0927d303c8c434245dd373e0ef7c18d5409f757daf64f45bc42d88b599df77544e757cdbb197b1ef6a19fffe5a7c8c4419b0f2b724220f99ae780b9277e2d88b91dbcf2c54dc0be115840af4791856860e93a708d31b39ebc18c17e8a294a1e054c6d9062c5c01a91abf54c76ca50cf85cf791f4b37c364c219c4351dbfc85185"}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2754.840116] FAULT_INJECTION: forcing a failure. [ 2754.840116] name failslab, interval 1, probability 0, space 0, times 0 [ 2754.842810] CPU: 0 PID: 87796 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2754.844150] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2754.845718] Call Trace: [ 2754.846226] dump_stack+0x107/0x167 [ 2754.846937] should_fail.cold+0x5/0xa [ 2754.847697] ? create_object.isra.0+0x3a/0xa20 [ 2754.848564] should_failslab+0x5/0x20 [ 2754.849284] kmem_cache_alloc+0x5b/0x310 [ 2754.850036] create_object.isra.0+0x3a/0xa20 [ 2754.850842] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2754.851816] kmem_cache_alloc_trace+0x151/0x320 [ 2754.852694] selinux_perf_event_alloc+0x43/0x190 [ 2754.853568] security_perf_event_alloc+0x46/0xa0 [ 2754.854440] perf_event_alloc.part.0+0x18b3/0x2b70 [ 2754.855378] inherit_event.constprop.0+0x168/0x8d0 [ 2754.856308] inherit_task_group.isra.0+0xb6/0x530 [ 2754.857205] perf_event_init_task+0x375/0x800 [ 2754.858020] ? perf_event_attrs+0x40/0x40 [ 2754.858758] ? __hrtimer_init+0x12c/0x270 [ 2754.859511] ? memset+0x20/0x50 [ 2754.860118] copy_process+0x180b/0x6740 [ 2754.860827] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2754.861768] ? exc_page_fault+0xca/0x1a0 [ 2754.862495] ? trace_hardirqs_on+0x5b/0x180 [ 2754.863272] ? __cleanup_sighand+0xb0/0xb0 [ 2754.864062] ? _copy_from_user+0xfb/0x1b0 [ 2754.864808] kernel_clone+0xe7/0x980 [ 2754.865473] ? __lockdep_reset_lock+0x180/0x180 [ 2754.866301] ? create_io_thread+0xf0/0xf0 [ 2754.867055] ? ksys_write+0x21a/0x260 [ 2754.867746] ? lock_downgrade+0x6d0/0x6d0 [ 2754.868494] __do_sys_clone3+0x1e5/0x320 [ 2754.869226] ? __do_sys_clone+0x110/0x110 [ 2754.869973] ? rcu_read_lock_any_held+0x75/0xa0 [ 2754.870787] ? vfs_write+0x354/0xa70 [ 2754.871459] ? fput_many+0x2f/0x1a0 [ 2754.872123] ? ksys_write+0x1a9/0x260 [ 2754.872805] ? __ia32_sys_read+0xb0/0xb0 [ 2754.873524] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2754.874453] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2754.875351] ? trace_hardirqs_on+0x5b/0x180 [ 2754.876115] do_syscall_64+0x33/0x40 [ 2754.876756] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2754.877633] RIP: 0033:0x7f99575d9b19 [ 2754.878282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2754.881424] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2754.882726] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2754.883957] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2754.885191] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2754.886412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2754.887722] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:26:51 executing program 6: r0 = syz_open_dev$sg(&(0x7f0000000380), 0x5, 0xa000) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000440)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66699ad7f7e145f7ca900111f0192778a0bb08b257aa391bb872d558a16420ca90ce05e16cb59f8c4cab36f6b9eea09cf3a0db3534985c2fc2e58475ebdc102aea8034df1c3a9970b10a2ccd7d8a5f91c81103073897fa386d72b476442fb1a97a9a4a37f3023c3ea037c4143729a7f3f3ea0331144316497bf2bfb8ea814d7890d5f9595f18043fa655d56bde52"]) ioctl$SG_IO(r1, 0x2285, &(0x7f00000002c0)={0x53, 0xfffffffffffffffd, 0x80, 0xf8, @buffer={0x0, 0xeb, &(0x7f0000000040)=""/235}, &(0x7f0000000140)="0b868603ebd265b39d7e70a90d71bb847f7d1905fc1591c3083a54116b14ae2828936ff7ef4b45ba7c9406fb70f670010570fba45e3e0b378e7c66494bc06cbe26fc11f4516cbd0f8347812c246b136cdbe3e2765a836c8d23f7e917975c6dcecedd67e1e9bcaec3ffe7c43dfd47758ef7bd04c783a2675a998e7d490c61c003", &(0x7f00000001c0)=""/147, 0x100, 0x2, 0xffffffffffffffff, &(0x7f0000000280)}) clone3(&(0x7f0000001200)={0xc0100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2000, @fd_index}, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r4 = fcntl$dupfd(r1, 0x0, r0) syz_io_uring_submit(0x0, r3, &(0x7f0000000340)=@IORING_OP_CONNECT={0x10, 0x3, 0x0, r4, 0x80, &(0x7f00000003c0)=@qipcrtr={0x2a, 0x3}}, 0x7) 07:26:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}, 0x58) 07:26:51 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 17) 07:26:51 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = syz_open_dev$ttys(0xc, 0x2, 0x0) sendfile(r0, r1, 0x0, 0x1000000000000000) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2288, &(0x7f0000000000)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:51 executing program 3: syz_open_dev$sg(&(0x7f00000012c0), 0x1000000000000004, 0x4100) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) io_setup(0x776, &(0x7f0000000080)=0x0) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000280)=@file={0x1, './file0\x00'}, 0x6e) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x14000, 0x0) io_submit(r1, 0x1, &(0x7f0000000240)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x8, 0xff, r2, &(0x7f0000000140)="a8e02ffefb4899d6cd32b32ae8f39f9f5df77adcef5836aa56e5e4356afd160d0f7ace14e960ad87be750fd5bef23c818b9127b4a8a08dad0a7471777461cf6d20443598a130451d0cf8595bc87bc416abb99893ca8d962ed01aaa4fc275ae01cffb18cdb5fecc468830263baaa0c0f2413152e9b5d04f6ba4f33b71cb87c7f216d340716b8cdbec32e3689dab0310787bd51a98dbe814e6bb07b53f6ce4b86cc5c99a739e534b0403861345388c9cf79af7d120acfc1016da82", 0xba, 0x40, 0x0, 0x1, r3}]) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)={0x53, 0x9, 0x4, "b80e87266a3a8f5e49d2c4b6bada30e58ae25f1491b5b91c611be491f6e79e0a291491f275f9cceb43d541622e106bbf4b39cd10b8a31feb6e37959a6979241bcf5b7b3457347c8c51ff450d5f557e3e39c658"}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:51 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xf, 0x8000) 07:26:51 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x800, 0xa1) clone3(&(0x7f0000001200)={0x8244000, 0x0, 0x0, 0x0, {0x22}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:26:51 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2771.870989] FAULT_INJECTION: forcing a failure. [ 2771.870989] name failslab, interval 1, probability 0, space 0, times 0 [ 2771.873829] CPU: 1 PID: 88099 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2771.875217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2771.877958] Call Trace: [ 2771.878735] dump_stack+0x107/0x167 [ 2771.879794] should_fail.cold+0x5/0xa [ 2771.880915] ? dup_fd+0x89/0xcf0 [ 2771.881789] should_failslab+0x5/0x20 [ 2771.882626] kmem_cache_alloc+0x5b/0x310 [ 2771.883450] dup_fd+0x89/0xcf0 [ 2771.884119] ? audit_filter_inodes+0x40/0x40 [ 2771.884998] ? security_task_alloc+0xe6/0x260 [ 2771.885896] copy_process+0x195b/0x6740 [ 2771.886794] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2771.887849] ? exc_page_fault+0xca/0x1a0 [ 2771.888700] ? trace_hardirqs_on+0x5b/0x180 [ 2771.889676] ? __cleanup_sighand+0xb0/0xb0 [ 2771.890629] ? _copy_from_user+0xfb/0x1b0 [ 2771.891561] kernel_clone+0xe7/0x980 [ 2771.892400] ? __lockdep_reset_lock+0x180/0x180 [ 2771.893437] ? create_io_thread+0xf0/0xf0 [ 2771.894375] ? ksys_write+0x21a/0x260 [ 2771.895226] ? lock_downgrade+0x6d0/0x6d0 [ 2771.896176] __do_sys_clone3+0x1e5/0x320 [ 2771.897079] ? __do_sys_clone+0x110/0x110 [ 2771.898021] ? rcu_read_lock_any_held+0x75/0xa0 [ 2771.899055] ? vfs_write+0x354/0xa70 [ 2771.899891] ? fput_many+0x2f/0x1a0 [ 2771.900704] ? ksys_write+0x1a9/0x260 [ 2771.901550] ? __ia32_sys_read+0xb0/0xb0 [ 2771.902459] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2771.903626] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2771.904784] ? trace_hardirqs_on+0x5b/0x180 [ 2771.905745] do_syscall_64+0x33/0x40 [ 2771.906573] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2771.907708] RIP: 0033:0x7f99575d9b19 [ 2771.908554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2771.912623] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2771.914311] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2771.915899] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2771.917475] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2771.919050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2771.920644] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:26:51 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 18) [ 2772.208955] FAULT_INJECTION: forcing a failure. [ 2772.208955] name failslab, interval 1, probability 0, space 0, times 0 [ 2772.211518] CPU: 1 PID: 88660 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2772.212921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2772.214570] Call Trace: [ 2772.215107] dump_stack+0x107/0x167 [ 2772.215854] should_fail.cold+0x5/0xa [ 2772.216623] ? selinux_perf_event_alloc+0x43/0x190 [ 2772.217602] should_failslab+0x5/0x20 [ 2772.218366] kmem_cache_alloc_trace+0x55/0x320 [ 2772.219304] selinux_perf_event_alloc+0x43/0x190 [ 2772.220251] security_perf_event_alloc+0x46/0xa0 [ 2772.221224] perf_event_alloc.part.0+0x18b3/0x2b70 [ 2772.222207] inherit_event.constprop.0+0x168/0x8d0 [ 2772.223214] inherit_task_group.isra.0+0xb6/0x530 [ 2772.224198] perf_event_init_task+0x375/0x800 [ 2772.225120] ? perf_event_attrs+0x40/0x40 [ 2772.225945] ? __hrtimer_init+0x12c/0x270 [ 2772.226795] ? memset+0x20/0x50 [ 2772.227465] copy_process+0x180b/0x6740 [ 2772.228319] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2772.229503] ? exc_page_fault+0xca/0x1a0 [ 2772.230470] ? trace_hardirqs_on+0x5b/0x180 [ 2772.231548] ? __cleanup_sighand+0xb0/0xb0 [ 2772.232582] ? _copy_from_user+0xfb/0x1b0 [ 2772.233565] kernel_clone+0xe7/0x980 [ 2772.234441] ? __lockdep_reset_lock+0x180/0x180 [ 2772.235540] ? create_io_thread+0xf0/0xf0 [ 2772.236549] ? ksys_write+0x21a/0x260 [ 2772.237448] ? lock_downgrade+0x6d0/0x6d0 [ 2772.238423] __do_sys_clone3+0x1e5/0x320 [ 2772.239373] ? __do_sys_clone+0x110/0x110 [ 2772.240393] ? rcu_read_lock_any_held+0x75/0xa0 [ 2772.241482] ? vfs_write+0x354/0xa70 [ 2772.242363] ? fput_many+0x2f/0x1a0 [ 2772.243216] ? ksys_write+0x1a9/0x260 [ 2772.244121] ? __ia32_sys_read+0xb0/0xb0 [ 2772.245078] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2772.246305] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2772.247506] ? trace_hardirqs_on+0x5b/0x180 [ 2772.248536] do_syscall_64+0x33/0x40 [ 2772.249410] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2772.250610] RIP: 0033:0x7f99575d9b19 [ 2772.251484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2772.255780] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2772.257581] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2772.259241] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2772.260924] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2772.262592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2772.264282] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:27:08 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) 07:27:08 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 19) 07:27:08 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x7305400858d0b68, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:08 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x10, 0x8000) 07:27:08 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000001140), 0x101000, 0x0) ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000001180)=0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f0000001080)={0x53, 0xfffffffffffffffb, 0x1000, 0xff, @buffer={0x0, 0x2a, &(0x7f0000000000)=""/42}, &(0x7f0000000040)="454f2c687ff94cc96c85512325317246c7879c2e32e9abc14b79d7ecbaa91154dafdf21e09a736d553979a6cf932d9b9605295ec77a1d1418a82e55c21d0c504e81fb390628ebadb571a183b4199307b62339dd192d14cf4b3ace6c77a5c79102fa1e3ceb4fae832938b59dab72d4c8a238bd40592d2fe14970aac3ebc8b97c5877594c0dcb54af01ba8294544dbd713c4149c2a92164e369dd4487db1366be96656a64278cc6d2cf23aaa164c57f118722d6f5e2aa25a91bfacaa3250c2c490e5993c63221944c3e438abebf2e193186b6b55f290fb947ff4de02611393becde64da360aafbfe84f8da6f3b75f2afdb3c7d9c73e6d99f3e12b56eab40cdbc080815eca30474bf831fdaa2293e9c3d169772bf77312bd7bdd9a9b9a8d099ab8ca5fc1574f31be3a551c7ffd3a8b65a09dc831e571b58f96781aa68891a637fa89b3d8546231ad0e8cd32c592c2ee7d0d38a432cc79d58bfe7dc2f146077882c9ad192663d04e1b9e817e46f7a8e8a19fe1e9daafd07c582a96ad26774f30ffcfc6962732c120ca9b751c0a551c80ba1adef23c2e0472dd8d4a5343a118819c71d25763005ae20b47b28fb6c4106d52e730fdff2e448abd86546ada661efeaf9b528de5e1338343bfb18a3c7937322f793071e5e79a18d33264802c4bc727162b749b2e3a7705e7708f1fc88296f3b0f86656feae8d777888e389a2803f7c2a47d574eb0f285c1dcff0bc2f08f677c1be4547b5246718abe82b13ce8c2c6fb0812ce1eeb237e916590a51398ea12af8c491e5a36a4a5ffa36924c63bb18f8d6ebaa20096f50cecbe6096a930509480e908747798219e16cbe9b3294efb1ccb6c25c650cb2c6c69ff784cfe5177779bf49514948594c7c0f6717586a01a0b93c7c9cd408e4570752acc1301920a928e960215b829ed39261551d5a792b26e185a23a91829ebcbe4d34a8628e853b49fdffa46f29f6d1a6d6bff4995730208a7e828814ccb4282cbc5112ad4592936b89d327269277b43298dbc95ec8f905cff7b6efc431c19de409eedb8dc570279e3ada4011c6c051c63b8444d79c79b902dc164f0d99777afaa36ac38e9feed830959c7444d316b183eedd7c9bef80cbba08a65881aad73dacdc8f21d7ffc06dc0881cec81d47eadcb690a370cb24d2260f7df1135464d6549e3f2100188d8aec8d312694794f049f00dde9c7715d3d3c65117a573ea7df7d8658b993d5cd38ceee24e351cdd3ddd9e8378a03e77b6b02306654666be3c752f22612e172b13b8fbc219ffbb2c233c506ed35629ba348328d1859ea7a1a6b9a47a2f88e2ed3b1aa3efbd466d5dfc7448bdcbf79aa895fdbd12aa18cbd2f944ed45573d3b90ff19c1295f6b63c49c30805652fe392494c2933a4f694e5854987fcd0df8d4b3e579bfead5a92bf236337a7153421e2edef1c40f0d32a41220a25c0dee14fb9bade60be90d144e3bdd013881f8d59ef4beed87cce72a59260699f542a068b91426b3fa3338183d6945f011df400f4e23c6e784ecfdb81abc4b83953bf829ff8f4940d3585e3610e3d3c4ded2c67cb281c754d80fa9875456bc4d67c0fd9bcb800b4b9485975e5a975296a2c1909f67c989433d6f0f2f23ce1427f3f78dc9dacc19e0a9e8984aead1089b6f65b4ae91d3440b8ee66d39092b7df20837783de92fc47d92b858cc172abb87256216611dd29e08d0664c23531f24c3133f429addb2200fbd0764f360241f7554545db0a83c30b9553dc63474481ca4822c18831859cdbdacf45caaebed2ce6f9d4ea687200dac7fe6224672bcaaff581af1ab6d0a36a28eec3b47c5b9ae4c7781b02876c2bbc37648d7221e1026309bd8994a51b308829765af30dbdd1da3932d10cfe30b21af5aab122fd4aff0629f9ffbacdd5be4a65225e2c0e7eda0d11bf1980d0c679484b1ceaa86bcf885ece684995541ca15af8ea7583ee5a6b07403c443c998a4c4bc5533add180932d5fe7231e2679e273749cb595c9103a17cdf90fe2f9a7c27ef79d888face913737517e6276b53769810ddfa150b4cdf9746dffe7d3ef52bc028acea95eccb7952193edb1fb53bef05e8dea1e9b680090fcc2468bdf801193624316224ecab19c9a4f98b68375dcbbf52b7b6f3d816097856c125682423e4dddf68f3292034c92a6d061285dcd55ad1a7db6bca991c5283ef7b34ca6b45e66a1273b99db7f4f55dfd10dd0593e176b447e60c4f9d5e67e33e4601088cdcaaff31c64c5c4426611695a063fc9e1b2162cd9df805a4ef08033819b4d42d8fcb4b00f752f91d0209f7c6a1fae2d7b6c736054342afef6a6ac899650601f3349da8ee2c4d19fdd146104fd83dcadf5aeb1ff46f98c531b824e22e6ddb241318b650fbb35c912764e4f25111b89282e29c567c3d236be0ab164fc152345de2837febe5a1c8829a50b8a47db2efd839f6f5e0897106508b8630a2cc3557e50631d47349cfdfa4ebe3715b8f0bad455b94d2a730b2baf6d389bba3809b54c64154821c68412e8a846acdd8a8da48a936c7102ca6fafe8feaa2d071acc32778a7aa0f3b5eae303dffcb0e9eb5236f5e684667f765f2e9f8c3ca46ecb34266a80017b48249abb26f96d1e0222b6117993a127986d9f10c070b03092f7632ef1a83be18cdd2b3c04e786189f76b430b503127c66dc9fd229acec6b0466f58622359aa728abc5e2a74ce0f80ab64620e4063a63d104053db8de5dafef9a37ce90dbdea8c8a7aaf71c899d1b89781ce6978016f0d6ca311a62d790505b61e52b9c5aeea8721184ad7aa18e930f33645fb89afaca91f7a8cfa076831013cb83206a970decbb235bd2ed7e12ea39089ef538e6ee8a5591fff6598c5160b4f548eee96fd2e13ca44b94257dfe6fd20bb66b2b019b7eca2ea525629d7640214b8975787ae628748d98190db4b6404f9b077d2ecb486bff81a0097f6be08dacac32de1675f817c9c38d817d693ed93ebe63eaaae05dbc7073a009f9a85905a36f340c94bbd1ee048ffcd2a3c4bd42d763598b8cbffde9fb0a94e7e595acae57972900d76962791e8e1738aea9fb424ad673c5df604d05eca60b8adb7d325e2cef1756a9b2d1ea56ed68ca01fb456e1849a17797718ef4d4a2872a516a791e4e0a136928707dcba0e54061ab33f830cdc681935918c66108c646aeac70483b1ca684c57eece3d55973bc7a6f7d8be515104e5fce6045beeb011de7250901610d1fe651366971539a11c7c808cfdaa086c610d21618989848ff768253302f636ce82ffc4a54399a3d244b2e4e07a80188fd7987f818ea44300b9dfe21c618c06c12f085cd91e9909f9b7e9b573ea3f5459c660733d0c2228bd5ee3cefb505f8114873af4ebf297e83f48689b23f54378f3113bfa0002dd4b8733ee5d04df1c45ca396d116075ff19ee6ee97c7e145969aa9ce1fe75bd0e1ef7dbdb7c5ea4e6a0d7efdde46e1db952a87623283499b3480e20090ea4ad96957f6fe293bb12bd7667c78931fd3521bd1ffde8b12d7831994033bc86d3bede4a740b76a0d989efd96c34ca3c8f3bfef0dcea8edfa8c6953f163c768ccb84fb5da5eb07558cd2c7b7f4cdedf3bac080e6695f83971c2248ad92a067ed24d59471ecc2b29a0992036026bf1ad2c04c00ba9ccacf023e1c33f97d147e796451ecb91e6f4eba5d217bbcd0b1de41e0604a5688cde8b7c34b151c90b08296bbc1c3f219f91d727a99e57ea8d8b507605b1ffc6d76914baed25d804c8b49eb1ea3ef3ac291ae8262980758319a68c3a8728a262508c4c99878e41606321c49c5e725e733fef6d03a86ff242cc87e594df739aa47cff3a2104c38d287069a7bea39e4c09cb915bdadc4e3ea4b5ee944cbc38ddf854c8a1edf8f3033abf0705521dbc4d2566e7c420bf86dab1be041232cfb40b72bf79651408dae9d40a892c0416f9ac961958846a2cea954209ba701b9da2a6a34329b2709d3b45c521c37650c9a0dcb0edc04aa3eae17395ed942fef4f18fa2c5e2dd75c98c9eefc83fe4ac5f366c9d2ef7b58606c1ce0e51b96c5d3791b773e4e60646931b72ccc1c6bec4463c4efa7857403957d95bf71b05c3e92dc0fb650e96899a6024a241dfb60a1680f9efaff3c59bc45e95191c133c4fff2eb857b17f85869efcf2b0872fca09fa424cc59ae004eae12b248fa5351e8ee5686ef12f9f1da47aba69db48fa9d4bbb55702fe6f93b9eeef26fdd5d69b20b867e72222418f54439b2f14de70b8758f947a90f051373999efdfbd4fa7d1901d0cb20f5b3413fdafa6655520837fddeb6e03b1a4882f763f506273e768d1e9d00ee0ab2433f84bdbcd06616b77429aa4bbf406fa9ca16c64639c75a1c13eb4e24aa3e472dc8e78d32226047676d0b5016adc33c03ae3c83a6ffb955fb14926c73e85e273977add75e5cabf0e43ad83627e232ff5d5efc3b93195ac3779aafba6984d722b85a0bfe5c6b9086fe9772e2e8ceb232d827c120832c6394c900fa88ca5291a47c6ab2d7d9e0928e862081b5a4411b617620ce3fd3c078bf81490e1bfa5a8ca34e68c8ccbe2c40311055b7a54aa73c511b28ac802f04afe88421afa4ac16756c8d6d8a874dc15ff019e8b3ad2a2a5dbcf4c5b777b6d1ca597f81644af16bd1cf341dd84d3207d201eb3c8952d7c7f10829b23810157155898ed0b6472cae29d5620876a974314f09b58d279a774ac2cb5efc45426b81c45062166d7e660f4d2ff4f6543595d56a0b061c94306ff07f00ad8c4529892a901b5347be3e8d11fe7a67fb449dc4349e5696a3a762bde3731798cefff48a2d05f0218fd1e9e0021c9d238ffa134576cdb72583c214b6f3829221846eb63d0a72c9d5c7da71e7da5e64f8cb0536fa1fbb536cf8e5a6d800cf2ec3741048eeabbe90e03f9ceefd46088f565c2704c2ef33457147f7c26236a9871ba5a8f2149788374c1619a0d30ba2916fa1a246f053a6f1c84a2bb635a5f6155052f95ed5d2da6c035638a2dbd2821f3c7a4c5674b9825189499b6e9d3e217caf3908b97856877736f9cb7ecb36b920a73766b2da8f5c9e741c1c61ac9cde00ceada765abe41e9c737798ae08f96cf6d444408f056ccfab5be96f66b60f1e5233789fe32381aa64781f1e750b80e62241dd674f8fee8c98534116651eb83c370d6f6f3993fb6314e3b530b840b8a5c6572d8cacc4e043bd745b2a2d993061b6674a46305d0cd0e9db00c1f6bee54aa06b190190d89d41da36d127e12fab165213354eac26b375b667ff65698f3627f8a6715b7ea58a9c92cbc875c4c1203565ee5287ca2e2db2bad020f26157395951e117a3f56da51e86cecf09027f854e8ac920d2256363e86ff2b2c2f618c74a7270133ad34f6861609c950becf3e733f83ffaaa1016fd69039a975585b919d17fd567f5c6e5b897a7dcfeaf0625f797d44953c795b77a67e0b023c0c87812095b6e5924e526fbe428852714b2d856b651bc9bcc0760cfb63f3cc03450c297de52600bb5d1faf58385a0f171f64cfc991fe489fd7cb0d5780b7909984313388d9e4f7408d37ad30528a20b4fb7f31373f4c2ac6ff82e9930a5c3e1c9903cd65066bccb7fec05c707d6f67f4131f72df5e83cb0429acb68b89521e50fa5031e258e5d57d312e0c51a1c5a1f62134d024dc0c79665d5abab8ace12ada265c6ddcd68f5d865cd30fbe4e83ea235b964d9db7ad64fcdd0ffe07ef45e9940e0eccdfa4745ce57cc452eb74568e859aaf6d7f61de6906c197efdf951a02973f922fc768a44670f7d0f5a3", &(0x7f0000001300)=""/4096, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000001040)}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000001100), 0x0, 0x0) fcntl$dupfd(r0, 0x0, r2) syz_open_dev$vcsn(&(0x7f00000011c0), 0x5, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x8000) r4 = socket$unix(0x1, 0x5, 0x0) bind$unix(r4, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r4, 0x0) ppoll(&(0x7f0000000240)=[{r4, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) recvfrom$unix(r4, &(0x7f0000002300)=""/188, 0xbc, 0x44, &(0x7f00000023c0)=@file={0x1, './file1\x00'}, 0x6e) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x38, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_TX_RATES={0x1c, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14}]}]}]}, 0x38}}, 0x0) sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000002500)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000024c0)={&(0x7f0000002440)={0x50, 0x0, 0x800, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x58}, @val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'sit0\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x20040800) clone3(&(0x7f0000001200)={0x20000, 0x0, 0x0, 0x0, {0x32}, 0x0, 0x35, 0x0, 0x0, 0x0, {r3}}, 0xfffffdb7) 07:27:08 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:08 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x57) 07:27:08 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(r1, r0, &(0x7f0000000040)=0x273e, 0x1) ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000080)=0xf6) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x5, 0x8010, r0, 0x4c89e000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2789.033995] FAULT_INJECTION: forcing a failure. [ 2789.033995] name failslab, interval 1, probability 0, space 0, times 0 [ 2789.036798] CPU: 1 PID: 88727 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2789.038241] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2789.039967] Call Trace: [ 2789.040539] dump_stack+0x107/0x167 [ 2789.041338] should_fail.cold+0x5/0xa [ 2789.042147] ? alloc_fdtable+0x84/0x280 [ 2789.042996] should_failslab+0x5/0x20 [ 2789.043807] kmem_cache_alloc_trace+0x55/0x320 [ 2789.044785] ? rwlock_bug.part.0+0x90/0x90 [ 2789.045691] alloc_fdtable+0x84/0x280 [ 2789.046493] dup_fd+0x74d/0xcf0 [ 2789.047204] ? security_task_alloc+0xe6/0x260 [ 2789.048168] copy_process+0x195b/0x6740 [ 2789.049015] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2789.050114] ? exc_page_fault+0xca/0x1a0 [ 2789.050973] ? trace_hardirqs_on+0x5b/0x180 [ 2789.051904] ? __cleanup_sighand+0xb0/0xb0 [ 2789.052829] ? _copy_from_user+0xfb/0x1b0 [ 2789.053889] kernel_clone+0xe7/0x980 [ 2789.054680] ? __lockdep_reset_lock+0x180/0x180 [ 2789.055844] ? create_io_thread+0xf0/0xf0 [ 2789.056738] ? ksys_write+0x21a/0x260 [ 2789.057692] ? lock_downgrade+0x6d0/0x6d0 [ 2789.058570] __do_sys_clone3+0x1e5/0x320 [ 2789.059586] ? __do_sys_clone+0x110/0x110 [ 2789.060490] ? rcu_read_lock_any_held+0x75/0xa0 [ 2789.061647] ? vfs_write+0x354/0xa70 [ 2789.062443] ? fput_many+0x2f/0x1a0 [ 2789.063353] ? ksys_write+0x1a9/0x260 [ 2789.064167] ? __ia32_sys_read+0xb0/0xb0 [ 2789.065182] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2789.066278] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2789.067560] ? trace_hardirqs_on+0x5b/0x180 [ 2789.068480] do_syscall_64+0x33/0x40 [ 2789.069412] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2789.070478] RIP: 0033:0x7f99575d9b19 [ 2789.071403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2789.075944] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2789.077525] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2789.079005] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2789.080490] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2789.081964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2789.083436] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:27:08 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x8, 0x10001) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x2, 0x30, 0xffffffffffffffff, 0x0) dup2(r0, r0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:08 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:08 executing program 6: personality(0x400000) pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3, 0xffffffffffffffff) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)={0x85, 0x8, 0x7, "02d66fc264b134845682b730e1808419e41f35fdd44e44595fe287df5e117f4f5830cd434c2d993825e0a78a62e3fdfa0e06b989ad0866fb6962b7003d42d5ea9ea927b17d0bc1a17bea596570c2db9b18fc8dfc2eb3702a7cb8d04d6c8e2efeb162e2bc2cddbae7b4943ccd2636b4835e89c2a402f1d5eb4d61dae50b4d52e96f29e479b6"}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:08 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58) ftruncate(r0, 0x28000) 07:27:08 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f0000000340)={{'\x00', 0x3}, {0x7e}, 0x0, 0x0, 0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)="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", 0x1b4, 0x0, &(0x7f0000000240)={0x2, 0xcd, {0x0, 0xc, 0x57, "e545fcf5b3e0ad315140d4b6d416915ca0e9c9739b3bc3c8f6f56cf26403014c1179ac2e4f9e87953ae9679eb7df50e5befb2c64da9bb462f5c87b42be025a18ecd9169c5c413b0ab0eb2a7da8d34434804743f1dc4fc9", 0x69, "be4e10df5be6a9e580c05c0e4338acc098f2bf2023a2c9a1fb3f484d996a194f25913d3a832df8f91f9ecfffa62da24a24f1c0e6ad8639aaa3aea29b5b732f7e1c1c1d1d5aa7a8521bd3c25aa907e196b901def9376362dd7bd88a0558fa5dc8ada81e40fddb5e3c9d"}, 0x12, "3437616a6f65b5b518b2fd04a3fc9cea7114"}, 0xeb}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:08 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x18, 0x8000) 07:27:08 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:08 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x20001258) 07:27:08 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000000c0), 0x3, 0x12100) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x80}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) r2 = syz_open_dev$mouse(&(0x7f0000000000), 0xde45, 0x40a00) ioctl$SG_GET_PACK_ID(r2, 0x227c, &(0x7f0000000080)) 07:27:23 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0xffffffffcd78a119, 0x8000) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8000) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000000)={0x0}) r3 = accept$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, &(0x7f00000000c0)=0x1c) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000100)={r2, 0x2, r3, 0x1}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:23 executing program 0: readlink(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=""/34, 0x22) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000180)=0x10000000) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000280)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000000640)=[{&(0x7f0000000300)="0bda406cc292d814b3e7c3ba1ab8ff8517739d32851d6beec2758ea2409dec2466a6159acd05f1774ed8ea1c1a240b1ea68e571b23bc0d879bc1567c253d964e48e28684c9509486be3d76259bd64a8cbe9eb489d0697f7c9420f052b751adec9f1b1700", 0x64}, {&(0x7f0000000380)="3ee944fbe82df28c8e8e98c048b87dc04679e2bf1b8bc0d7445ae184472fef6ac1504f4b8fedf16bd046f191ff5b7bb82d3c05b471c3e7b6aea86b91d6cd355c7a18e1911ad25070c28dee813267a893240bf2c50af07567b709c5e3298eccfd4b4147496282642fa9", 0x69}, {&(0x7f0000000400)="e89f0d28edef12eb53f41add9201f29e46a703fd68cb7429c6c661dc0b86aecff9031a2f293313bf038127ca2cbb2cea3b176ae1d91c5c842f6a34e9bbbbca9f39ec49a4ad922a1db55a8c0ef36a2f127b5ed79ac0ef0bf7300871305d707711a144672bfc5188e2e5750ec505d73696368d2d7dbd4671e5f0731f16f9a7268805c7eafe8719f57b2f648977974c9896354a30ac59a63e36190b6f89b7a103c6f6335321449ec929bc", 0xa9}, {&(0x7f00000004c0)="4b5bd11556d073248b299fe2622c682268211502", 0x14}, {&(0x7f0000000500)="81fa65c65bd8901cf040e125026b4ed6f594964f21da5dee2af82ddbe3f3fafa00d1aeaa09a9424dd9df8354c58d7a1429679613088ff1cea472ebb76760af323779835cbd7382934eff1334712a3d52c652e32d5176dbf53265cbb1cbe899af35079d154c0e1a466112", 0x6a}, {&(0x7f0000000580)="57ba3354362d540d52d6ebe9e917e3c541898692990592665d77", 0x1a}, {&(0x7f00000005c0)="82199d78523a2a68ce4abab6eb11bc43c32beb67d495542c32a4277b59feb6a62ec37225891127eb0e0be85a30af309310e86971d49bbbd0f446540a26cf8421d3e8934a979fffb16eddaf96e7640e8f0beaca1b53b51e6fcf34e177b6f893ef5db69e94fb25ca6f1d88e644e14145bad9b2ec3913ddfac04d7f1b079fc3b76a", 0x80}], 0x7, &(0x7f0000000800)=[@rights={{0x14, 0x1, 0x1, [r1]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff}}}, @rights={{0x30, 0x1, 0x1, [r0, r1, r1, r1, 0xffffffffffffffff, r2, r3, r0]}}, @rights={{0x18, 0x1, 0x1, [r1, r0]}}], 0x80, 0x91}, 0x20008041) fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000080), &(0x7f00000000c0), 0x2, 0x3) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) ioctl$SG_GET_KEEP_ORPHAN(r4, 0x2288, &(0x7f0000000040)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r5 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f00000001c0), &(0x7f0000000200)=0xc) 07:27:23 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) fcntl$dupfd(r1, 0x0, r0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000000080)={0x400, 0x0, 0x0, 0x0, {0x17}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:23 executing program 1: write$P9_RCLUNK(0xffffffffffffffff, &(0x7f0000000000)={0x7, 0x79, 0x1}, 0x7) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x4010, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write$P9_RMKNOD(0xffffffffffffffff, &(0x7f0000000040)={0x14, 0x13, 0x2, {0x40, 0x3, 0x4}}, 0x14) 07:27:23 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 20) 07:27:23 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x102, 0x8000) 07:27:23 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58) 07:27:23 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000480)={0x53, 0xfffffffffffffffc, 0xc3, 0x6, @scatter={0x3, 0x0, &(0x7f0000000280)=[{&(0x7f0000000000)=""/202, 0xca}, {&(0x7f0000000100)=""/180, 0xb4}, {&(0x7f00000001c0)=""/190, 0xbe}]}, &(0x7f00000002c0)="70ecdfe9d180a604fdad14f7de41a88305d7aeb6b6f902279de7a4dbfe1a5ce02b96e3476ffc5d8ecec00cbceea8db3935cc5f1ef16c072ea054ef0349343a91a4e5ff8166482eb342ef3fd9bd5089cfa4c536ce2d53d8ef5c6bff9efe7de0078d1afce53cf6a511c1884fe760b12b884af704c38d6e53c83cfb2530440ed8b68fe80fd01a6478c0e6aebec7980576550290d074814ea1f1e7981dfe327e33c7989f7cec425df562e64bf373dfdca412894959291ef31cf9e2a319a3424f8b553f4254", &(0x7f00000003c0)=""/111, 0x2, 0x12, 0x1, &(0x7f0000000440)}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2804.083014] FAULT_INJECTION: forcing a failure. [ 2804.083014] name failslab, interval 1, probability 0, space 0, times 0 [ 2804.085503] CPU: 1 PID: 90281 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2804.086902] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2804.088582] Call Trace: [ 2804.089120] dump_stack+0x107/0x167 [ 2804.089862] should_fail.cold+0x5/0xa [ 2804.090624] ? create_object.isra.0+0x3a/0xa20 [ 2804.091549] should_failslab+0x5/0x20 [ 2804.092333] kmem_cache_alloc+0x5b/0x310 [ 2804.093158] create_object.isra.0+0x3a/0xa20 [ 2804.094044] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2804.095070] kmem_cache_alloc_trace+0x151/0x320 [ 2804.096005] ? rwlock_bug.part.0+0x90/0x90 [ 2804.096880] alloc_fdtable+0x84/0x280 [ 2804.097641] dup_fd+0x74d/0xcf0 [ 2804.098321] ? security_task_alloc+0xe6/0x260 [ 2804.099264] copy_process+0x195b/0x6740 [ 2804.100170] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2804.101360] ? exc_page_fault+0xca/0x1a0 [ 2804.102280] ? trace_hardirqs_on+0x5b/0x180 [ 2804.103272] ? __cleanup_sighand+0xb0/0xb0 [ 2804.104263] ? _copy_from_user+0xfb/0x1b0 [ 2804.105217] kernel_clone+0xe7/0x980 [ 2804.106068] ? create_io_thread+0xf0/0xf0 [ 2804.107019] ? lock_downgrade+0x6d0/0x6d0 [ 2804.107973] __do_sys_clone3+0x1e5/0x320 [ 2804.108903] ? __do_sys_clone+0x110/0x110 [ 2804.109843] ? recalibrate_cpu_khz+0x10/0x10 [ 2804.110858] ? tick_program_event+0xa8/0x140 [ 2804.111859] ? hrtimer_interrupt+0x60f/0x9b0 [ 2804.112879] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2804.114064] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2804.115223] ? trace_hardirqs_on+0x5b/0x180 [ 2804.116196] do_syscall_64+0x33/0x40 [ 2804.117056] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2804.118204] RIP: 0033:0x7f99575d9b19 [ 2804.119040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2804.123159] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2804.124890] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2804.126489] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2804.128089] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2804.129701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2804.131303] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:27:23 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000000)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:23 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x201, 0x8000) 07:27:23 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) clone3(&(0x7f00000003c0)={0x0, &(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000240), {0x17}, &(0x7f0000000280)=""/152, 0x98, &(0x7f0000000340)=""/27, &(0x7f0000000380)=[0x0], 0x1}, 0x58) getresuid(&(0x7f0000000040)=0x0, &(0x7f0000000080), &(0x7f00000000c0)) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000001900000429bd7000fcdbfb250f00000008006a00", @ANYRES32=r1, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4081) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) fstat(r2, &(0x7f0000000440)) 07:27:23 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = syz_io_uring_setup(0x203, &(0x7f0000000080)={0x0, 0x5020, 0x10, 0x1, 0x800}, &(0x7f0000000000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000001c0)=0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r5, 0x0, 0x0, 0x3d}, 0x0) setsockopt$sock_int(r5, 0x1, 0x10, &(0x7f0000000040)=0x4, 0x4) io_uring_enter(r1, 0x2271, 0x0, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r1, 0xa, 0x0, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000080)) syz_io_uring_submit(r2, r3, &(0x7f0000000140)=@IORING_OP_CLOSE={0x13, 0x3, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x13) clone3(&(0x7f0000000000)={0x239010080, 0x0, 0x0, 0x0, {0x30}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_io_uring_setup(0x1ce4, &(0x7f0000000240)={0x0, 0xa3bb, 0x18, 0x0, 0x1aa, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f00000002c0)) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x12345}, 0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r6, 0x0, &(0x7f0000000380)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x115, 0x8}, &(0x7f0000000340)='./file0\x00', 0x18, 0x0, 0x6991f7fca9e3f8a1}, 0xb68) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2000, @fd_index}, 0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(0x0, r10, &(0x7f00000003c0)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x9) 07:27:23 executing program 6: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:39 executing program 0: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:39 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x300, 0x8000) 07:27:39 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x208001, 0x80) 07:27:39 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x1010, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:39 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c0, 0x92) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:39 executing program 6: r0 = socket(0x1f, 0x800, 0x80000001) getpeername$packet(r0, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000640)=0x14) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000ac0)=[{{&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000000480)=[{&(0x7f0000000080)=""/96, 0x60}, {&(0x7f0000000100)=""/170, 0xaa}, {&(0x7f00000001c0)=""/128, 0x80}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000000240)=""/46, 0x2e}, {&(0x7f0000000280)=""/205, 0xcd}, {&(0x7f0000000380)=""/22, 0x16}, {&(0x7f00000003c0)=""/187, 0xbb}], 0x8}}, {{&(0x7f0000000500), 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000580)=""/47, 0x2f}], 0x1, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="000000000000000000000000000000007fbc5d99b9a5b1a9e1b8510d5c0353e16aff17e3c6d05797b0f659ba", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="050016cf42c06e1d5b6032bf9b66ac00dc40a0dcf3d1313ddb0676e30891c7bd90fc642f2b01a7351c1514d5b161d9d79a0572060f502ccc88d6c40f94a95c83aa7f32890cff85693d65ef9900039cec63bce65d3c3fadf3d35845c7bc4e845aaf312e11c1fff4b0c013ce28516815ff8fe60d071931c6ba8dbd5c427c3c9a44909ac200"/145, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x78}}, {{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000680)=""/179, 0xb3}, {&(0x7f0000000740)=""/141, 0x8d}, {&(0x7f0000000800)=""/148, 0x94}, {&(0x7f00000008c0)=""/233, 0xe9}, {&(0x7f0000002300)=""/4096, 0x1000}], 0x5, &(0x7f0000000a40)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}}], 0x3, 0x3063, &(0x7f0000000b80)={0x0, 0x3938700}) sync_file_range(r2, 0x7, 0x5, 0x1) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:39 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 21) 07:27:39 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58) [ 2820.046872] FAULT_INJECTION: forcing a failure. [ 2820.046872] name failslab, interval 1, probability 0, space 0, times 0 [ 2820.049788] CPU: 1 PID: 91428 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2820.050928] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2820.052572] Call Trace: [ 2820.053025] dump_stack+0x107/0x167 [ 2820.053747] should_fail.cold+0x5/0xa [ 2820.054383] ? kvmalloc_node+0x119/0x170 [ 2820.055184] should_failslab+0x5/0x20 [ 2820.055809] __kmalloc_node+0x76/0x420 [ 2820.056494] kvmalloc_node+0x119/0x170 [ 2820.057137] alloc_fdtable+0xd3/0x280 [ 2820.057920] dup_fd+0x74d/0xcf0 [ 2820.058469] ? security_task_alloc+0xe6/0x260 [ 2820.059208] copy_process+0x195b/0x6740 [ 2820.059853] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2820.060722] ? exc_page_fault+0xca/0x1a0 [ 2820.061389] ? trace_hardirqs_on+0x5b/0x180 [ 2820.062106] ? __cleanup_sighand+0xb0/0xb0 [ 2820.062901] ? _copy_from_user+0xfb/0x1b0 [ 2820.063674] kernel_clone+0xe7/0x980 [ 2820.064361] ? __lockdep_reset_lock+0x180/0x180 [ 2820.065231] ? create_io_thread+0xf0/0xf0 [ 2820.066014] ? ksys_write+0x21a/0x260 [ 2820.066719] ? lock_downgrade+0x6d0/0x6d0 [ 2820.067490] __do_sys_clone3+0x1e5/0x320 [ 2820.068241] ? __do_sys_clone+0x110/0x110 [ 2820.069045] ? rcu_read_lock_any_held+0x75/0xa0 [ 2820.069902] ? vfs_write+0x354/0xa70 [ 2820.070594] ? fput_many+0x2f/0x1a0 [ 2820.071294] ? ksys_write+0x1a9/0x260 [ 2820.072002] ? __ia32_sys_read+0xb0/0xb0 [ 2820.072695] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2820.073557] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2820.074401] ? trace_hardirqs_on+0x5b/0x180 [ 2820.075118] do_syscall_64+0x33/0x40 [ 2820.075741] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2820.076611] RIP: 0033:0x7f99575d9b19 [ 2820.077229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2820.080368] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2820.081779] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2820.083096] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2820.084411] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2820.085740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2820.087057] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:27:39 executing program 0: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:39 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 22) 07:27:39 executing program 1: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) ppoll(&(0x7f0000000240)=[{r0, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000000000000c3ce73ecb28285083da8ae2433d10f5ffc1bc0870134fd05c33166bfbd42eaf4adf9ab334bd897bc9fb46ce444bec374f0a50752"]) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3000009, 0x110, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:39 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) pidfd_getfd(r2, r0, 0x0) [ 2820.353378] FAULT_INJECTION: forcing a failure. [ 2820.353378] name failslab, interval 1, probability 0, space 0, times 0 [ 2820.355607] CPU: 1 PID: 92044 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2820.356809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2820.358233] Call Trace: [ 2820.358693] dump_stack+0x107/0x167 [ 2820.359329] should_fail.cold+0x5/0xa [ 2820.359988] ? create_object.isra.0+0x3a/0xa20 [ 2820.360799] should_failslab+0x5/0x20 [ 2820.361453] kmem_cache_alloc+0x5b/0x310 [ 2820.362150] create_object.isra.0+0x3a/0xa20 [ 2820.362906] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2820.363783] __kmalloc_node+0x1ae/0x420 [ 2820.364481] kvmalloc_node+0x119/0x170 07:27:39 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x321, 0x8000) [ 2820.365157] alloc_fdtable+0xd3/0x280 [ 2820.366007] dup_fd+0x74d/0xcf0 [ 2820.366593] ? security_task_alloc+0xe6/0x260 [ 2820.367415] copy_process+0x195b/0x6740 [ 2820.368108] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2820.369045] ? exc_page_fault+0xca/0x1a0 [ 2820.369750] ? trace_hardirqs_on+0x5b/0x180 [ 2820.370537] ? __cleanup_sighand+0xb0/0xb0 [ 2820.371280] ? _copy_from_user+0xfb/0x1b0 [ 2820.372019] kernel_clone+0xe7/0x980 [ 2820.372682] ? __lockdep_reset_lock+0x180/0x180 [ 2820.373517] ? create_io_thread+0xf0/0xf0 [ 2820.374248] ? ksys_write+0x21a/0x260 [ 2820.374920] ? lock_downgrade+0x6d0/0x6d0 [ 2820.375643] __do_sys_clone3+0x1e5/0x320 [ 2820.376360] ? __do_sys_clone+0x110/0x110 [ 2820.377100] ? rcu_read_lock_any_held+0x75/0xa0 [ 2820.377896] ? vfs_write+0x354/0xa70 [ 2820.378546] ? fput_many+0x2f/0x1a0 [ 2820.379166] ? ksys_write+0x1a9/0x260 [ 2820.379814] ? __ia32_sys_read+0xb0/0xb0 [ 2820.380526] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2820.381417] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2820.382289] ? trace_hardirqs_on+0x5b/0x180 [ 2820.383025] do_syscall_64+0x33/0x40 [ 2820.383671] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2820.384540] RIP: 0033:0x7f99575d9b19 [ 2820.385206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2820.388353] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2820.389719] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2820.390942] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2820.392174] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2820.393384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2820.394610] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:27:39 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58) 07:27:39 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:39 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000000)={0x9d, 0x7fff, 0x401, "7dff29eed575e3359b78ca87924168ab2adf35314e783f715049b7272796a2bc0b6ec1788c540faf40a22b3e32b7fc06f7377d776af0640164372170abbc7a2495a4dd136ab0c5093004a57e19b36e64dc46d23c4426b4f1581d7a0542d3f9718edf9186cd6a6ab1c6018040e7bee06526949ac2188f141ab85b48f590b7d8b8ea99f5cc8abb6f639a3ef08d8467672a017ec618242bb9abdb51f2ac59"}) 07:27:39 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000040)={0xe5, 0x9, 0x5, "e4d66b24ab4aa4fb89aa691364eb1b20a1c042ffe82a58ce71926bca2d02ee9616b08e95f7083051f3f2fa60bd27e4b8f0d476d0a34c6f57a39534920e0952dc91a2091a3d5493251edf87dd81c4ea74b859b9241ea3d154890011dff446925a98188b56f50d93649b7eac03556a51dc96df857cd7181036962c2acbcfb0d63b1e503ba1ef742d13ce3fd024dbf125f88b4f4191df2d13d4aaacb5666cac93136133a11358f7e0d385e9d14bd549168bec0fae050d10734dc32a4722a6ad0cb03026d2b633e22d27ebe8b5d2de4c6081a963fb0a2d71613fe97dedb7de3f9736971d3693f6"}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58) 07:27:39 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = dup(r0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000001300)={0x9f9256aecd487b7f, 0x5, 0x79, 0x9, @scatter={0x1, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/203, 0xcb}]}, &(0x7f0000000140)="019d8dc2b4571f4991ee6b0f439aaf5057291d81f8dc4700ba9e1c4db01c8a65df7d985daebdb2b83678a231c84a0de61f4dd23684e7705dbe1acbd806b4408d281d38a1eb7e7eb44a5d10d5f3936340c212ff36d342de4cae93d3a21a6bbc3a89a666d067700c64f723bb842cccc48bc7793c0781a06b3f10", &(0x7f00000001c0)=""/4096, 0x7, 0x4, 0x2, &(0x7f00000011c0)}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:39 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SG_IO(r0, 0x2285, &(0x7f0000001300)={0x0, 0xfffffffffffffffe, 0x97, 0x0, @buffer={0x0, 0x81, &(0x7f0000000000)=""/129}, &(0x7f00000000c0)="fbc22dc29be80975fefb4e0d1b9fa15df449a666fa07ba392c5fe5be9b3866d397fa041cacaaf0efeb7b0ce50848de6b61e3f46cf82ecef555c9b18c4e0b62c06973f02833dfa7b785dfbff6b39ea656afe8d655532af31d4bd96aeaebf000b53d9d63d5e3a76ba905039b88cae9ab84800002d315633e3cdd2d7abb6d36145e7f09ef95f52887218b83217bb5971ea2b85a828a04a105", &(0x7f0000000180)=""/4096, 0x2, 0x10027, 0xffffffffffffffff, &(0x7f0000001180)}) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000001380)={0x3e, 0x1, 0x4, "9127233fc57e567182a2c156b103e66c7be6c1f8d1822c62b22d278f7fa95fff421bab73a697988cde9f0dec0c864d0d0bb58bc1e3c53c65cd2eff9993dd"}) 07:27:56 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000000)) pread64(r1, &(0x7f0000000040)=""/13, 0xd, 0x6) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:56 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x38, r3, 0x400, 0x70bd25, 0x25dfdbfc, {{}, {}, {0x1c, 0x18, {0x5, @bearer=@l2={'eth', 0x3a, 'veth0_to_hsr\x00'}}}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x38}}, 0x0) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) ioctl$BLKTRACESTART(r2, 0x1274, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:56 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x40044) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2, 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r4 = open(&(0x7f0000000040)='./file0\x00', 0x48e842, 0xc) writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r3) sendmsg$TIPC_CMD_SET_LINK_TOL(r4, 0x0, 0x80) fallocate(r4, 0x0, 0x100000000010001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2}) socket$unix(0x1, 0x5, 0x0) sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="68010000", @ANYRES16=r4, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="0e0001006e657465657673696d0400000f0002006e657464657673696d30000008008c0001000000080001007063690011000200303030303a30303a31300008008b000000000000", @ANYRES32=r1, @ANYBLOB="080001007063690011000200303030303a30303a31302e300000000008008c0002000000080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32, @ANYBLOB="080001007063690011000200303030303a30303a31302e30000000ff01008b00", @ANYRES32=0x0, @ANYBLOB="0e0001006e657464657673696d0000000f0002006e657464657673696d30000008008b00", @ANYRES32=0x0, @ANYRESDEC, @ANYRES32, @ANYBLOB, @ANYRESHEX=r3], 0x168}, 0x1, 0x0, 0x0, 0x40}, 0x4000000) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r4) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:56 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58) 07:27:56 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x500, 0x8000) 07:27:56 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x400000, 0x6) clone3(&(0x7f0000001200)={0x80000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x4b, 0x0, 0x0, 0x0, {r1}}, 0x58) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = openat$incfs(r1, &(0x7f0000000040)='.pending_reads\x00', 0x480040, 0x1) ioctl$F2FS_IOC_SET_PIN_FILE(r2, 0x4004f50d, &(0x7f0000000080)=0x1) 07:27:56 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000100), 0x5, 0x402200) ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000140)=ANY=[@ANYBLOB="0900000000000000030000000000000000008000000000e0020000000000000000000000000000000200000000000000020000000000000000000000000000000000000000000000000400000000000000000000000000000b0d000000000000020000000000002103000000000000000000000000000000852200"/136]) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000200)={{0x1, 0x1, 0x18, r1, {0xffffffff}}, './file0\x00'}) r3 = socket$unix(0x1, 0x5, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r3, 0x0) ppoll(&(0x7f0000000240)=[{r3, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) setsockopt$sock_int(r2, 0x1, 0x2c, &(0x7f0000000280)=0xffffff7f, 0x4) ioctl$LOOP_SET_FD(r2, 0x4c00, r3) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000008c0)={'team0\x00'}) recvmsg$unix(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000002c0)=""/57, 0x39}, {&(0x7f0000000300)=""/73, 0x49}, {&(0x7f0000000380)=""/152, 0x98}, {&(0x7f0000000440)=""/232, 0xe8}, {&(0x7f0000000540)=""/201, 0xc9}, {&(0x7f0000000640)=""/95, 0x5f}], 0x6, &(0x7f0000000740)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x100}, 0x12162) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000880)={'wlan1\x00'}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2, 0x0, 0x0}, 0x58) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) getsockopt$IP_VS_SO_GET_INFO(r5, 0x0, 0x481, &(0x7f0000000080), &(0x7f00000000c0)=0xc) ioctl$SG_GET_KEEP_ORPHAN(r5, 0x2288, &(0x7f0000000040)) 07:27:56 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 23) [ 2837.303465] FAULT_INJECTION: forcing a failure. [ 2837.303465] name failslab, interval 1, probability 0, space 0, times 0 [ 2837.306404] CPU: 1 PID: 93091 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2837.307800] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2837.309475] Call Trace: [ 2837.310024] dump_stack+0x107/0x167 [ 2837.310785] should_fail.cold+0x5/0xa [ 2837.311584] ? kvmalloc_node+0x119/0x170 [ 2837.312421] should_failslab+0x5/0x20 [ 2837.313227] __kmalloc_node+0x76/0x420 [ 2837.314037] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2837.315118] kvmalloc_node+0x119/0x170 [ 2837.315934] alloc_fdtable+0x13f/0x280 [ 2837.316748] dup_fd+0x74d/0xcf0 [ 2837.317442] ? security_task_alloc+0xe6/0x260 [ 2837.318373] copy_process+0x195b/0x6740 [ 2837.319202] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2837.320276] ? exc_page_fault+0xca/0x1a0 [ 2837.321126] ? trace_hardirqs_on+0x5b/0x180 [ 2837.322035] ? __cleanup_sighand+0xb0/0xb0 [ 2837.322919] ? _copy_from_user+0xfb/0x1b0 [ 2837.323781] kernel_clone+0xe7/0x980 [ 2837.324551] ? __lockdep_reset_lock+0x180/0x180 [ 2837.325528] ? create_io_thread+0xf0/0xf0 [ 2837.326405] ? ksys_write+0x21a/0x260 [ 2837.327182] ? lock_downgrade+0x6d0/0x6d0 [ 2837.328032] __do_sys_clone3+0x1e5/0x320 [ 2837.328872] ? __do_sys_clone+0x110/0x110 [ 2837.329738] ? rcu_read_lock_any_held+0x75/0xa0 [ 2837.330678] ? vfs_write+0x354/0xa70 [ 2837.331435] ? fput_many+0x2f/0x1a0 [ 2837.332171] ? ksys_write+0x1a9/0x260 [ 2837.332952] ? __ia32_sys_read+0xb0/0xb0 [ 2837.333783] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2837.334848] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2837.335889] ? trace_hardirqs_on+0x5b/0x180 [ 2837.336782] do_syscall_64+0x33/0x40 [ 2837.337546] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2837.338586] RIP: 0033:0x7f99575d9b19 [ 2837.339340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2837.343052] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2837.344586] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2837.346038] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2837.347476] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2837.348932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2837.350376] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:27:56 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 24) 07:27:56 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x600, 0x8000) 07:27:56 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SG_GET_VERSION_NUM(r0, 0x2282, &(0x7f0000000000)) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:56 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_open_dev$sg(&(0x7f0000000000), 0xffffffff, 0x42000) 07:27:56 executing program 6: r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x6, 0x12a00) sync_file_range(r0, 0x1625, 0x2a7380000000000, 0x2) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:56 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2, 0x2010, 0xffffffffffffffff, 0x0) r2 = mmap$IORING_OFF_SQES(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0x10000000) r3 = socket$unix(0x1, 0x5, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r3, 0x0) ppoll(&(0x7f0000000240)=[{r3, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0x4004, @fd=r3, 0x8, 0x8, 0x38, 0x8, 0x1, {0x3}}, 0x72a1b2cf) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:27:56 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58) 07:27:56 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000001300)={0x1000, 0x7ff, 0xf372, "feaba944f14abc1b7c1133525dc1ab8ab4d1fd30b3c2add9ed9d9391f0dda179e03d0be2c634c15c4436e351b6b26c9918d920218940e0a04a6a36ebc92bf1afbc0566ee36af7fa6c92422b20bb3d9398cdd2b4d49e2c66ccef4e2dd3760617ded8306ce13ae9cadb2ab4a3ce9d00d1047ab7f647948b5cdd1b4e9a33c716866018bfc5b7c89562fa3d3a43d3314a2d79b5e24a5fdc4a350dce12d6923d07eb6fe6f0e863c46789fa656369d7c201496a5656777467dea45d4fed96a19926a70656fca22f8fbe80dfe353d6998722b008d57746cafc6c98cae726e68be4b47f2cd7c6f5ae9e343bdcd17efaec42a3cf17badce0c5e6764cfde49366f6a944b3fcfe13b0cb49015b728b41a3905bbdaec2b253153c2b7cd72f9f911eea1deb3347cec5600c8c81d0f8414d554a4f5f9784a411c6652e9320b24e6f647d832902d45cdac1c3aa5e2a5fd8d48b5182e6e2ef653da4c5faff292186e5fff92916f917c2518a82905aeed44446acb2fa369ea0581944fa61e786baa5052909d250bd0515ccb63ffd0cdbbe3efe6a571e3a588b88bb137dd67229cffd456b0a89c6190180c2b761551e1e7b9006d7c5c5810918769b0e8f72b30240a75b94ba1e1068fb6c2f631bc3ac4b84920a9d5beac7c5566e22ae30aa0fbffe9df27bfe6b5f2650b705cfb5e2e80cf413451824927ebb952e21041f70f0c32c663bf435591bbe1d4a371b50ba24a5f0817788cb8aa63667331a1329029fa5f9745fdb8fd12ebef1bc3655e1983ce9363edcdade656f8a536a444be22ced84b91a7c811ceda80f853eaf41150460834ff7f801aeafa9208fd71cb46550ed3fcc7cc859e6f1b476dda9f97cb961cca6fa44cc0bdc13e1c23627956cc6bd6de9b8ad8d55aa8d01d4a2810635a83687bbda18ea1084309be24a9727e55a3df7018251adaafd16292628e1e7ae8e65c0eecc02186626481d6ee6e44597558dbbdb0dc9bdda5dcbdd5fd158d38c39794d9e2cf54b2a31baff24d3b35276f7a7207956c32c3e54726137de0623da76d60d09ed28d1d5bd4888c8dc32f155abf027e5cb06f9d7552c7dee92861684d886fafb288fc013c636a2860463b1bb832f6e81e5de181921e231bc9d53e54992d7937f994d5af962b281279468f2f1524e20f7d05d2568cf92e48c622a6ff2ea2668ca56381558c3c0accfca622f75378b515e67e36eeeaaf363962e9387d7fd66bc6fbb0e2068b5a4a0772930bf35983638ec469b53a629b7472990fb97a1f9589e663b05f2d7a50a249688b4477b644b6739fa398d5793ad33604f1558eb8fa86856ea56dcff3de409188b6686ada97d9ef265a1f2119f4d312521487ed837a06c902f446670d4946a7da7ea9dddfe10fff833221e44fc9277f44aa06992640472dea8552d835c9edafcb0992991b0f8ffccf72293ec5f73519a59aefa52baca1ea375d1eebfacd63596553d8496078b893ba274247a31e6afade223c6dd8f2f7ae313f07b73f3f9b7981ab00215e39297820d8bc95964b1d8e1ee9a38a8e44a4b251b157549fb3e4e79ba932e7f63dae99520922c4ab1ef7eca09f17d702f6c3141efdf7c2a794129dad948a6b0ea9d1ca5d41ad9a049d45392236f86a0cdd51f6f1b1376221b9941aa93e54789ded6dd4770a7871fb54d09a9c528055c8fd4ceb721e24b2c073cddb3476bd9ce3c7ce824d3b2b0c3f0e25ad6c274d3401f6624993721bdde25711f775cb6a53585959a253dbcaa110dd6690d0ebe20360475ccda112d3292759884b28b6285b3c05b15f52056002aa985b4f3de9847a80771d7cbcf1f98ca247ce2487e9f465fe076951c6d33bc4c8b8a2616ef38b9ce1f5519a620ed9e6625211b7351449ace74af98d1a6402edff66521959e4e9a88fbe0ac84aaef617691fd8ab524efffe4a91c20163c04ecca76792ce10fd12806f66ec61224e0a5f2815465832dcbbcf0af8dee172007f8ae0cab0dc73ebe8249887e1ca5f32f144c62db0bf80b2650e8feeedcffcc407c35b4f025b3c4f3d821a03791237f86005ae0520cd41be49d3ce7d133369a90d0e61f7ad30c46df33d724e8dc9322f42b66689159840781aa7b7658526b348ad7e7957caaa072f468ae8e140bc53b20844f1b227ce1b1462994816bafc7039e74d63fb908c3d7e44e156c28b1f05c0d453e1ea2ae305a6545f115a6744d6dc121280765a20380ed677df04d06c460d3b480d0e607de017d06a7df1f5d5cc84f329af8ad255613bad6fec2f77e4126d3d38b6ec161d22ec7e04b71ebbd93a74ecbb0f9e387d4541f42aaaec7bfa5e82ac49990ac1f722e84673f828f9a6886595ae7d920f257a6f4993c202a7102179b8bfc97c433287730d465ec10002a31bc8878fe4bbcea8233cf45234a13f805318a77740379d046f3733c0c99ccc1c5abd0b24a5f2c16d59964cc991923130616bb4a374945ac44fd802e64419eb0be0ca4754acc238ce39e22785095c77d7eaabcf370d7173e95ba7e37756b6b7c7cb240398c24dc4209b6a2a9694012d1b94eca8c131d6c402fa1a28a82445d85b30cc13610798960b53da565573a3fbb7f2b9f469916dd0eca3622fd138a7234710ae4b26739f3068c21b30b1dabe96e7a0ae1b8238d5fb0c8a97ea759d8fcae97270e7d0113c5407a766ff7cd59a78ca34008e03dec3c0673aa6f231143e42cd994674013c6b2febae8528684ac25cb5624bf8018f4a4439c41c31ddbb8fc1742466b7261c959d16701c9c0568894bb0993331a6678f0d1da721878615350500cf1fbf0f090f479b17f0a799ad2abf1a27b9e6206bfd259e2828a145a8730532b0eb4c7f53500746ac73718ac80f781efc249074046b43ea3348711573d8583bdfae061f3a69aec226dec2e7f169edb028d1d209b9908e836a6f39a8a9c76bd628a34e9f6e619a32f6378d7736ee77079ee7329d779fd90e26fb91bbda9a56436570324b333c74ff322d4b1111f5fad64f54a0fd4d41ba45cb5c63476cd72fd0cfed111612c41279516beead00bd948bbec552d2fbf541fa5c067859e31a7155dc4680045dfefbcf3db186f70180844f08e2538362b94c46bb1802195d208fe0a98bfb82d3e4ac80e634086055a0a22fb15c1ca33c3ab8899574d3bbc141c4bf9c5543d0dfe4d54f11d1cc74020f9487ac18b9cad0013130e28ae8cf9354b324b0d5377930907894e8bbeba4ecb8957eea6fb4c8c386d87b54f3d2338acab394e684b3742fd3136627289aa6b7b258ac5386254756d86e1ef95a9e8b83bd85476d33f578fb7bfde719b639cb3adbf8cc41dd47c334c925ea0af81ed19022fa58d2e53bdf60b06d13f14d809b17517141ef34a840bda726d0a716a5a1c7c8bcc6fa52ed634b116256aff6f2f74999f2c4bd77af43ecd6c70d93791313f2d919c557d227596a910095d4b35cecfdded1630ed1b012712eeb9f326d83be9e24c794fe5408c62292220e62eccaddd7f4082f8fc50d3358cef13618d1a9a6ef208915a0982d2edf90415ff094f1a956390bf8bf2a5821939f4b0ff60403e0b244dd2dcd211af63600ecdfb50af33392f00a156fa9d6c6c375c93cb01999a734ae2cb9e5a195d15d609c4897f1f93abcd57a4dc7172a1b043df0bb88afafafdbbcb327cc13962f569d73850ea0f44cb643d8ac005354607620192510bbfce13e400ea8b78d5c9b143c10d25e7b83e6e10940f77d6259404aa39aa15b6363f473708d51eff553e2aa6c694cae69fd970bb478e497cd5ba7f3d994cdc6e89f9cbfb56f1b670c171da48709bd4420f14a016ae1b7ac8a6f9ef844a02690666e3786542236d4411ce34fe62d1ecd7d7e94b499fb17e89f525608ddd7ee6ac53437b406c4d71da1db20f86b4742a1077eaa6483ab48dbf36a2823218a9e6669eed4c3c88fe83f402fb6208f6e89c17cfb04603694e61021a57cb08246a8f8b823505321d1b3a16b2ca9ab6ff5b070b979ef47d7dede150245d20b15ea31bd6bacbb7c819516a20ae809ffda8c028d5423b1bf6f43604085dd673088ce5510f77088a06967888238cc84f1eeb401e1fb60e89ad3bef8186c551f21ecb764c630ae0db0959d277b31d789135e09c2c9f5091aa7cc1ce0d8153caaba188a63a74df5815590fce6188d455722f1c1ae8400b3da78b882b1f8afcf4be7c97213b663f2826cfcc3b39ce869cf4e6557917411018689f896116b7c82da8b75b6d434721f455d715ff669d6039d686b3487e45dbd7ed0a6ca824fcce4c8f7bf78dbbbb51a71847d49031a024cd5ba23b65f51c255ecb3952b9eb9ef53a1e40b2ea0f6443b9a2928ca923a18e8c70fd291a895c395fa445b516078ae9e84789ca50e821a606810d1ec7e76433124624c75dac6af1503f5887a5441fb2c7ba94bea83069034d5f59c9d11815a7c14671d68835f032a0278aa7ed63258fe90f9bb2b651a7ba29496c68da49aae3db280be354f56bf6b6be32ae2643fa64cdcc70419917279a5e4d75af3e8f46e4493482d9e99049c99abc42d3dfd3a6cedbb773c17d26a80e2f21a86613a3e554ae487f89bd08f3949d38badf34015f628b472e906b2f4d70574f6164a8507bf5f2d46f4c2643e310a2af9d656f6c3c57df777fd39fb7084fa7d3340c2328e66ea8850007cbcfbad001cdb6535f58d8aa144195a4a46c5c0f9dc40d5cb00e0d6d3a387122afc1e74d9ef33243fb3328c6ff0a5e6c1fc6ec9fb490109336f0154cf96efc0de471500c5c4ecbb19c771e16b5445edebdb44b483d8cb8470b99571b24c0a18d5abff0294950c8982ad3226d62c96aec5613b82547e24495e1f415e02aaffef6c9c1f946aea6b74a4a2a7df8048c86bf0f3bb027be7ed7841846f27b04cb65407a6e6962a64541bba346ed1d5751b1682ae9174243a142bb6bf3506f1dfaa2c3ef8cdca687cc6d97f79a694756cd13f5d61013e46f96929d56f71ed803b127cacd0a8fdf2ac4013f6229a44691945d1586ab233b25fbbf5bd6e83091c9fe838abbdfb245e7235b5f2bbe15eb2d251c213331fee306c189e18d2def759f0aa71ebbe58c64683d5d6e7377d62b05e183ee75f6f3eb93760921aa889362ad75cd96ea5592c47cbf0cb8c823ce51dc656679b9afd2f71494236be34cabeb72678fb4c3c9e99a0366ef72229a9e812975839b9cbf03a9cbebdd61cbdc61aeee5ff27575b25d17d98d975a9d7cee0e27a47a5feeeb67ffc7abb57f31be6d804e3953d45b6a2d106706f67cd82809ba35997a0d70e361a6c1f01f22c3c8eeae63d928499e1b2bb779de59301e8183496eb9ad5915874705fff43537d1a28e447f52a068fb3216caa2a244b8d1515bdc947402c0e1e494ee2c90734fbea91dfd7b146e36a5c064cdf768df9f2f7db71c593dcff0b163ede1778f896ef31102c423acaed93a36c69c2bb1a0bdf2ec806abccdab123e0965d3b3d991f5ceef6dc8ff653dba325917969b30db689de6e062da1d495d4de2953a97b0cb3fd1ae9276d6dc6d2249748fd4b4daf772c4cbe6c03d180c34211fc9776e10c39f702007c8b9aa98335d740c92ad0e2fc8a4e4a350b93ccc024c524201b7ea20de5aa2b9d77d13a26ec13ef7c43e936d51f65fd522d4ad180188a6b26aad1f4e02162f333e8ad716c4bd610cbb078a9849f5f6365167ceb58e5d56406399be643b343461adf96db0671b1ecdf5bca74e8f625faa92d0f601afa4bb59c5497a265d0fd3cc50a7f9b47d3f4b474b237e4c16969bc6654f3c8c992fcd12b86f4a244b928fdcc506fc01af8d9"}) writev(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="9225bb1b2318c3f73db0d122da78e344bc9d4d5efdad70a774da797d682d07d5cc6dc914c084508396eb02f1049f32ea3c2030955596c13703649893ec5e4c4fd3", 0x41}, {&(0x7f0000000080)="4245d3709803ca97ab7d75eaaf4e3db3896d31917b21b7bdea6d8c11eec3bbf1aff46dab727adbc0474214d071a81d6f686adfb6f5dce3fa9af76a0c6420e9122785aa7ec582b5de7dffba4f80f189f138840297145a61ab2738c012", 0x5c}, {&(0x7f0000000100)="d160de5a7023fe4ac7a2c064867cddc1acb5d3fb191ba2c55d43dd7e2d64423d4696d4e57078431371a43bdce085bbb742983b7ddbbbcc26d87575e8526c098987941048d80bc9cefc9ea646603b3bc2401520e49a578505161e31bccea63320518a263b81eb9946cf30830c6a694dee4171cd526f531d4368248c4ef3343f13d06b40d971efe9ac6bcf63150465e57a1f1d90c945f347cd034baafc5393e9ebf57dbb19e7a80016dbe1f2827d1c7f3a0be20587f27eb906b585df13e0699f71601594d29d2628ee0896a753a7cc90a4e227c3e6fe43e2", 0xd7}, {&(0x7f0000000200)="2f554940cf1a3461c0f784756a49df1d499ec30d30142e983f2dc5c117c6f1f3d39cf8b41af2012858682206102d8222b33c79368afeda9f", 0x38}], 0x4) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x88010, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2837.646431] FAULT_INJECTION: forcing a failure. [ 2837.646431] name failslab, interval 1, probability 0, space 0, times 0 [ 2837.649072] CPU: 0 PID: 93704 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2837.650492] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2837.652163] Call Trace: [ 2837.652717] dump_stack+0x107/0x167 [ 2837.653461] should_fail.cold+0x5/0xa [ 2837.654234] ? create_object.isra.0+0x3a/0xa20 [ 2837.655167] should_failslab+0x5/0x20 [ 2837.655947] kmem_cache_alloc+0x5b/0x310 [ 2837.656809] create_object.isra.0+0x3a/0xa20 [ 2837.657695] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2837.658740] __kmalloc_node+0x1ae/0x420 [ 2837.659553] kvmalloc_node+0x119/0x170 [ 2837.660339] alloc_fdtable+0x13f/0x280 [ 2837.661142] dup_fd+0x74d/0xcf0 [ 2837.661827] ? security_task_alloc+0xe6/0x260 [ 2837.662743] copy_process+0x195b/0x6740 [ 2837.663561] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2837.664624] ? exc_page_fault+0xca/0x1a0 [ 2837.665460] ? trace_hardirqs_on+0x5b/0x180 [ 2837.666356] ? __cleanup_sighand+0xb0/0xb0 [ 2837.667225] ? _copy_from_user+0xfb/0x1b0 [ 2837.668074] kernel_clone+0xe7/0x980 [ 2837.668851] ? __lockdep_reset_lock+0x180/0x180 [ 2837.669798] ? create_io_thread+0xf0/0xf0 [ 2837.670658] ? ksys_write+0x21a/0x260 [ 2837.671433] ? lock_downgrade+0x6d0/0x6d0 [ 2837.672283] __do_sys_clone3+0x1e5/0x320 [ 2837.673117] ? __do_sys_clone+0x110/0x110 [ 2837.673993] ? rcu_read_lock_any_held+0x75/0xa0 [ 2837.674938] ? vfs_write+0x354/0xa70 [ 2837.675696] ? fput_many+0x2f/0x1a0 [ 2837.676439] ? ksys_write+0x1a9/0x260 [ 2837.677229] ? __ia32_sys_read+0xb0/0xb0 [ 2837.678058] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2837.679121] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2837.680176] ? trace_hardirqs_on+0x5b/0x180 [ 2837.681073] do_syscall_64+0x33/0x40 [ 2837.681832] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2837.682892] RIP: 0033:0x7f99575d9b19 [ 2837.683652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2837.687391] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2837.688934] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2837.690387] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2837.691844] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2837.693307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2837.694760] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:27:57 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$F2FS_IOC_GARBAGE_COLLECT(r0, 0x4004f506, &(0x7f0000000000)=0x1) 07:27:57 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x9b645000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:12 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 25) 07:28:12 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x700, 0x8000) 07:28:12 executing program 3: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) ppoll(&(0x7f0000000240)=[{r0, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000000)={0x20000008}) syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) syz_open_dev$evdev(&(0x7f0000000100), 0x10000, 0x400800) r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000140), 0x280000, 0x0) mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x11, r1, 0x4000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:12 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58) 07:28:12 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x1010, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000000)=0x5fe56b6e) 07:28:12 executing program 6: fcntl$getown(0xffffffffffffffff, 0x9) syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mq_open(&(0x7f0000000000)='/dev/sg#\x00', 0x40, 0x1c0, &(0x7f0000000040)={0x1ff, 0x9, 0x401, 0x24}) r0 = socket$unix(0x1, 0x5, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/vmallocinfo\x00', 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r2) sendmsg$TIPC_CMD_SET_LINK_TOL(r3, 0x0, 0x80) fallocate(r3, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) ioctl$BLKRRPART(r3, 0x125f, 0x0) mq_timedreceive(r1, &(0x7f0000000140)=""/122, 0x7a, 0x3ff, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) ppoll(&(0x7f0000000240)=[{r0, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc, 0x13, r0, 0x61876000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:12 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) setsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x67, &(0x7f0000000040)=0x2, 0x4) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) preadv2(r2, &(0x7f0000000500), 0x0, 0x9, 0x0, 0x1e) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000080)={'\x00', 0x20, 0xffff, 0x200, 0x8000, 0x7}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000100)={0x4, {{0xa, 0x4e23, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7fffffff}}}, 0x88) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r3, 0x0) stat(&(0x7f0000000340)='.\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r5 = dup3(r0, r2, 0x80000) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) r7 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'lo\x00', 0x0}) setsockopt$inet6_mreq(r6, 0x29, 0x1b, &(0x7f0000000080)={@remote, r8}, 0x14) setsockopt$inet6_mreq(r5, 0x29, 0x14, &(0x7f0000000380)={@mcast2, r8}, 0x14) setresuid(r3, r4, 0x0) mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x2082c0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@cache_loose}, {@version_L}], [{@euid_eq={'euid', 0x3d, r3}}, {@hash}, {@fsmagic={'fsmagic', 0x3d, 0x4}}, {@subj_user}, {@seclabel}, {@seclabel}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}]}}) 07:28:12 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}], 0x0, "46dacd8396fe92"}) r2 = syz_open_dev$usbmon(&(0x7f00000000c0), 0x0, 0x0) ioctl$MON_IOCX_GETX(r2, 0x9201, 0x0) r3 = syz_open_dev$usbmon(&(0x7f00000000c0), 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r3, 0xd000943d, &(0x7f0000051a40)={0x945, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x3f, "128b4ed71253d5"}) r7 = mq_open(&(0x7f0000005c00)='-@\x00', 0x42, 0x0, 0x0) mq_timedsend(r7, 0x0, 0x0, 0x0, &(0x7f0000000040)) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000007640)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x4, "9755154351ac9a"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={0x0, ""/256, 0x0}) mq_timedsend(r7, &(0x7f0000001e00)="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", 0x1000, 0x5, &(0x7f0000000000)={0x0, 0x3938700}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000000aa40)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001300)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x9, [{}, {}, {0x0, r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {r12}, {}, {}, {}, {}, {r13}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r14}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_INO_LOOKUP(r7, 0xd0009412, &(0x7f0000000100)={r12, 0x1000}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000052900)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}], 0x81, "d5e2b485aca084"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0xd000943d, &(0x7f0000052a40)={0x1932, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r15}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}, {r12}], 0x0, "4abc261bc0e3cc"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000000100)={0x0, r12, "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", "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"}) clone3(&(0x7f0000000080)={0x8b004900, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffe64) [ 2853.180061] FAULT_INJECTION: forcing a failure. [ 2853.180061] name failslab, interval 1, probability 0, space 0, times 0 [ 2853.181666] CPU: 0 PID: 94591 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2853.182442] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2853.183388] Call Trace: [ 2853.183693] dump_stack+0x107/0x167 [ 2853.184103] should_fail.cold+0x5/0xa [ 2853.184533] ? copy_fs_struct+0x45/0x340 [ 2853.185003] should_failslab+0x5/0x20 [ 2853.185438] kmem_cache_alloc+0x5b/0x310 [ 2853.185904] copy_fs_struct+0x45/0x340 [ 2853.186324] copy_process+0x461c/0x6740 [ 2853.186774] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2853.187337] ? exc_page_fault+0xca/0x1a0 [ 2853.187790] ? trace_hardirqs_on+0x5b/0x180 [ 2853.188251] ? __cleanup_sighand+0xb0/0xb0 [ 2853.188737] ? _copy_from_user+0xfb/0x1b0 [ 2853.189194] kernel_clone+0xe7/0x980 [ 2853.189606] ? __lockdep_reset_lock+0x180/0x180 [ 2853.190111] ? create_io_thread+0xf0/0xf0 [ 2853.190584] ? ksys_write+0x21a/0x260 [ 2853.191010] ? lock_downgrade+0x6d0/0x6d0 [ 2853.191487] __do_sys_clone3+0x1e5/0x320 [ 2853.191941] ? __do_sys_clone+0x110/0x110 [ 2853.192399] ? rcu_read_lock_any_held+0x75/0xa0 [ 2853.192929] ? vfs_write+0x354/0xa70 [ 2853.193340] ? fput_many+0x2f/0x1a0 [ 2853.193756] ? ksys_write+0x1a9/0x260 [ 2853.194169] ? __ia32_sys_read+0xb0/0xb0 [ 2853.194632] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2853.195220] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2853.195802] ? trace_hardirqs_on+0x5b/0x180 [ 2853.196268] do_syscall_64+0x33/0x40 [ 2853.196690] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2853.197287] RIP: 0033:0x7f99575d9b19 [ 2853.197710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2853.199785] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2853.200644] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2853.201466] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2853.202287] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2853.203097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2853.203917] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:28:30 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 26) 07:28:30 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x440000, 0x0) ioctl$SG_GET_LOW_DMA(r1, 0x227a, &(0x7f0000000040)) 07:28:30 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20010, 0x0, 0x0}, 0x58) 07:28:30 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x3, 0xa0203) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0) 07:28:30 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x802c2, 0x20) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x149) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$SG_GET_SG_TABLESIZE(r1, 0x227f, &(0x7f0000000000)) r3 = syz_open_dev$rtc(&(0x7f0000000080), 0x7ff, 0x151100) r4 = socket$unix(0x1, 0x5, 0x0) bind$unix(r4, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r4, 0x0) ppoll(&(0x7f0000000240)=[{r4, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) listen(0xffffffffffffffff, 0x0) ppoll(&(0x7f0000000240)=[{0xffffffffffffffff, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) sendfile(r3, 0xffffffffffffffff, &(0x7f0000000140)=0x101, 0xff) sendfile(r3, r4, &(0x7f0000000100)=0x8, 0xfffffffffffffc01) mmap(&(0x7f0000004000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0xe927000) clone3(&(0x7f0000001200)={0x840100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:30 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000340)={0x1f, 0x0, @fixed}, &(0x7f0000000380)=0xe, 0x40000) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000080)={0x7f, 0x0, 0x9, "7fbd692616a8469ecb50744a6c727b1ebf91a74d919b84ada63912e7016a71b9cbe31e39fa9ea125c2f247d3c1b2f1f6efd2af6735e95b2a133558a7bf9c4879f1505017fdd6a713c8180c0427596222e6401cd148cef2a79e35ff48af2bb1390a79cad78e06b917c885e44b7d0c472c4c5ddecaad93185d69ae81e2470a3e"}) fcntl$dupfd(r1, 0x406, r0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x0, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2288, &(0x7f0000000040)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:30 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="001000000800000010000000998af4e3329fa31bed85d3d31baf763c0e067daac8dce8bd73c433645a1a2a9c54dfa525bdecbbf1eade38dcc88d738cd7d8367f409e0b9183dcbf7b070ef71feec4b0b5237147cce79e349b66ca7ef04d989825e09812d96beaeb745565b0bb5342556cb634a3e283f63a311e00970cb47f7389619c2f10fcdc3cc08316e6f806a24dbf8bdce025c7c48c2d0927a81fb4872c1a3c5c33e7fa7dac7b08b7a0f238aa4cd654eb828cd75a8fdcf074e01e6db84d8b5b1e51a6fb739834f343b873f8fe5cbf59e1aaa77022ded98c27a1c443fb53a1fe8f95fd2355ab5cb2a16b9b4ff9afdc8d3fd68a5bf4f414763a0f3b9461e3b34850153861c439a0253843a6f70046253bf700e7729d0d0339166adb792998a0f59617d5b255e0f76df6337aa79bc386eddb9998d04c130dbf07ea2ecab2350691be3e83239508f565975f6611ce928cfd7eb378f4e4868223b3db3f3cae076d2ee4107a3bd04806c9aa71ffeca3f9b5b1a96921ce7bf978563ec7fc1cbabf721965c74040ad6434976f335efff4de25b2076f5f3b4d5270bda98cdd5cb507bcd5d5f437c82b6766692e46ad0894353c524832a40bb956fa955df387fbbec467eea8fa7af9d8acada79d2650df9494c60f41395625fed4d370a547d47c3d121b3fc23c2dde35d7c4e7d1eef275e88a33f2812e6e8d8df1083b0114a8bda5ef979ccdfb66caaed9336a9a1ca50c224f3bff28163f31c31af2d3ca2a27fe4156d4649d3dec61961c2ecc4f7e60d5d27dfa61f875fd2677a7821f11e2dd9ceb9c6281fd5370357cb3dc24fccbfd39fc7334a7176db63fe2d14ccbe1f7ffff8b1a5143f29d1a152d4f8b74706575c931923a0cd100fe000fa464b53fe780066a4dc2919a66dce602df539281da1cdbc2df7c5ed556b11e798a2dc20afc0b3636741fc4be99f33cfac9597eb5c97ba20c6b2b2e1da2dcd6fcc7ce31e71e9346a1ba15d565229e8ef62eab60451846ca512b7b9c928b7d703309cbad3ea9dad0531ef5633e51353361bf58e9579e4d76c9fd9ef820e803f26b62e1eb8ff0a37aa102c690266828eb3a09f9bfdcf34c530a7c43821e59d3c05a8acaa84ab9895e59adab5950ce11b2c9f80d358c3d23255b01afb50e44ae0f3f6fa9566d14c15b28747c89f6f69853d2d459248bad32d74bc72aa15887af642a912a1734375f5e1cb0bb84bd4fcf7b7982f6850f88ee0045b1554844da10b7233089a1de4bde9e61d287d024a7b253e006115ae8ba8e1bcaf03a9e2b323629f90f9f5a7db0a5ce11c8713b9c597a47276eefc421710dd9c9c2719e77368ed7c27cec0d59f40629aa7a99103e97ddac1e029078a3e70b3640566cbe3e87f019876f85ea2841350089c344e063d3cb2bd567a03ae19da9cfaf78d1fdd39e8c8385d17c027535fa037e85d274ec57b02f5ad2cc0f323df937afde550ec2ca73e242349e56b264ee0a18726aec7c9852ab6d073167ce9b981ef320bdec93a7f310879c68b37c60ba6038774072f13b23e4e703577b445f89a9e55b66feb865832644db0f5b39336ad8c6e263f79dbe525d3e5efcc433da4482ae58afe39bfc8193956b56c1af36872f561915f386313ba6d451fcd91f3e20b01c5c33804622ce2afb6326233dc6577ab72c7237f19b68b3ddd6339c257ae9a142457088a953995c19743ad1bb217099f31a06643c914cbb274df05c72cebd37bce4876b103d97ec5082b8d06023ee758402e807251b6df3f9da0206c5441df7e006211a3715f245b50229ab37ecd4e043cf3c9097c6da874cdf4f31cbf1d7066eaab3f016c82dacf62803b32ec5839af2c5b3bb3160586a10ee95e36ef82e3f36930efd77f90986b538b57011a96cec3ce984fc3ec8db54cfdf85bf51cad7835dd770605af52e8e47c8efe66be7da2bacabeb8c66e151bd2f3e9aeb4e858775540a658251707face80906477dbc389e2f59b200b28daf4a8ba3a1e2ffd25ce33106cf233735407b167ea76aede099492498e62a76de76a1fe5587b1d06f9da241e1cecabea100934407ed67d385d90652fdca2dd779cf12df10f94959aa21b64b49634a3e4c496fecb0eecfa8516c1f0a43b5ab12c39178f262dca18bef3eb866bea013395c44670298357fb66a132ec05142be73b25d19b4a4c74b1d44c59da3b56db4c6259d9c0439eca825d11b828008baf287f3744baf86a1a69b39fcc4f15e84f2422279dfd995d8bd25a4f9b8027a7472d04324deed5673960dbb781c640de6579acb4c60264ce1fbf54bce5609304b5cb80a24886113d72123651f890a02baae56dac393f2cd944d503c909fe7bff6e11aa31cedb31a70d5e316db2cbfed4545a8a6bd37e7f4571e43b933955a7279c15f5a1a277f6df9ecca778a7fa58b979e90f904ba7c0db0c1e53b476385a5d96b8911ff3ef140cb21421807875e02e1652a590c657d35d1a980e0da78d0603cea7b79f21dc1e8890e0ec902887b3ec4fbcee1ed8cdb19851967e269f6e4d8f692aea20f213d36345afaa00c557430d9eb120d0f778dee75826c8edeb9b8a919aa4613e0c5eaf5965f76e309d7670873cb301fe0c5ce675701c989af81c6d965a90db01573badb9b9d02429bd9bf2495ac87c288d9e01702ab82e29bbceba19d7e1d7452993f597eadeccc523d00bd206125e5b71bb064c705e7a7ff114ebdbdeb0eaf44d38187b103457e7cc633f6bc6edb232ad126698a827e4f02171543e9840e83fb8d176cb3a8e91a3c916ccad3d3b68ee961ef6e5365d4a4a3362a9117fd7fe1b734f816f9fe476cb09b6eea272adc08bde748f88749de7ab737e011039412d9a397091f18d17bddc30b7fa0847320bcf4089b695377eea812262162683ad94482ebe263ca55890485abd8b3a3b534af3554282b9d08e0d4a65e533e5eb164e11fee878738ce2d8e4429021cf457f68f83cc75d8c53eb0e203141b1cb3868ec197d327aa08e2f00842154067ec9f055218170cef5b520715715b2b01e3095ee5db3c7ea8631fef487f3e71585564a3bb1157d22c1da47f084fd345bbafa8559a3166a1520a623fe46bf170d2b0000d888f1e685a45d6a73f367e41a7688cb10002182799ff983df76b6725fc9a844f5ae421daf868a9f4b77045c2b8278bdedb164a75c79076caf32dad38e53f6ed84375aa018d63493bd80c985a65cc42cef8f57101b9cd6a60b9a776242657ab3ad0118b8b603d5c8aaf721e7ef861e4ce3ae3737595561def7827b7b2b800f834defffef99224af91d0680a50b11e2cc633ee2795f44ce021e75b056135a4880a71469c245930b9af0707158a3f0670d0e9ad45b5ffe6d308b26b7f52df1782687b4e72ecacc470c459fe26ee36fa9b421573554d404a55f3146be58c04edf5166d5c692bf42bd0adce0138e88a039c788480fb4d698b948789dfb6dbb986e0c7355f00cdf853d4ecef6531cad67cbdb123fb49fa04f847184319f6a3d753f04e3ad9e32f2944827ad8b35609c37ab8f9a2f3249658a6557546f57103e3194c7196f6c7af3ccc771dca047c6bf6d14e1d1c16f732b390a9c8b79e408e17d3a765f8c91bda8c3b4cba63d1bcba0eab652f355e28f83f082677c740dfe951cc1872b89cd2e2c9fa2ac192af5248c9b680daec12f715f3916b1b416cd6f578dcfa34841a361f1d3e2a5ad81f3c1664c9b762ae084fbc3d2aac96731286b50fb3272dc5f149ae0977d57c1ad98ce1ba1af1c6ea6730d5b6024e744905d6d991ec2e4a78699c81eb492a299973bf24eab652d7355ce4f163c2585ff2f70454dde1f92bfb51f5d412a73b768b9dfad28f4015a15f0986abd6db44dc2e05a599b776820fc93a07395557005d899e44f786e1b2d52a76588b934934cbfa1725af5f281e730af9c650b4fc255dc51a3b2cb28b6ee7a3fc9819ba9f0c5c88bb754f1bf6dfd6ac3b7f51788938e9ff36e0e7f7a385a76810f1b5da24784426cbf6b85593fac01356382160e8fcdee80d029710ddabf4890311997240c41def40e73788388ec34f971485793dcc4328dac73cc2baaaf32af51cefec879ee4024f44636d100388733994b0f99ab55b0991907f17f48161103967de0426664ea3d18b45e2b34fd0c5e960c2fa65931edc545588f8bdb361399ffe91cdcb6a12859ed4f4c972c0c31ed2813d211d725f660781435b4eb2e2d94007f5bae6afede20aefdaea11a891efd1f5336f469f9edb55f4dc9352b897831f884883ab4a14c86f2b49e57cf7203294a24cb663f602cd3200afb2fba0a3f306472fdb4884af3d7bf6f4b39353a446a3ca916c8e8cfcc1ba864bcbd8a802d2f6358449bfa27b02f5dab83be7f2bf814b401afa5d9e51f87cd4ba330d8d9cb437ed91c7b65e43d35910e5b15d4e41eb50b24e66ea5d8e226babde08d655abda47c9c716230584e26869de0f6920a2bd45d0a82b394201b5be0a520ed33f39e69b31d4b81f127c9be97be24b2f663afde31b31d82fe7f9fdf51a55fb628e3ce3bdff53536581d58bb349ce64f3f2377c6fbe1bcff8264331c2b539bd80d46fcc6e8ebf68cdb4e572ecbd91f6827b78d422ef106c9062cac66febaaf5dcd893f81fa7ab35bdbbe8a3b22f85c8c19d310120a07392aed5e487889415ff37542d7d1785060f0ec2e9fad186dd91ac279cf5e9da59d717bf0f4c374e8535c834b2adcd4ea16cb16bba0267533dc14de8713cda2f8adc491d2b1a47ed6199edbd1d36dad6d4632f2998691d2c34e2528098967a87a18ded13235e0e86c3712044f23d83696cee7346e64a97bac6d5e7ad02e65a9841514e0c05bbc3506082951188b3aefbaacda37e68ccac775fe6099353901fbc92bcb5fdfa8a9e818cbff623ef3e0e7d8d719d4cd739e52da28d8a26ded3f743789020a9a9af52ef0c880fe61c2c985faba36edc289375252349c10948a9611e885a1e29bd77036bd48578e38bb13c00f437d3de059c52b5cd5d44ac9e7c59e2a211c9dc983cf93a28437c23d7d000b26d3ffcc05a825b7c5d87c0fb7300ff54a723816d29f07b15e12c448f00ddfddf953f8704a1193b123997de5a2484a300bee70b4f4610f643e7907ae56c91c423b336275ee69b4590d2de910ef0b1d8268c375a31f6cb6acddf2f83f5749eddaa63e9129c509f54023956c5c48b950815d6fb7a7007a1d0e3869f7de97ff91bdfe201f3c90ffa957b8b47745493d3f4c9f5086bf576e5a166ab6c73a6478b7db084481bf9d1549a8432e90e380f40f15de377cf2b6f42e4c33679e33501259dbf599b96a58c111831ff76a9b1a362fc418ae5e67091e79dc834f689fbefe3da35d7a76c9ac5a7f2e5b704ebb3e16fcc6ed9231fccdbfbb6a8b030eb80905c7cad3608939e684c86c79f1b35b3a0468f1c82666540f21d38943ade5c2fc7e18fbfbd75d767e015ae0d0b64a7bc6422cd0e4b25a251cb1105e50715707152432c4f367ca3f4f2f83f7b0ca92eabe68d3138b5610b0be56e305a8f0932bf8b0737de369afa432bc851475e8c5620eb5e7837817aa921e888edda38028a787258e4a982876635726ff50da5d488ef265a28a6bb2c1f1fe356e8f6157905918b6da9c82d2431045f9312d549fded0b3dc2131f3d715c3f57dfdb5ef6522e007693a95e4b57bdb67607fdaa981d26e61b5cbedf10a7a89b604f6279b394873165525da70e2e634f3d3d5efcae3d8add8b0e9f6df28ca5672563287ea4ae28dbf1f0ec5adf7670f605c12959353a57ca53879ff43d56b13c4ebb3b9250ae0152e038a53ac0f0428ed36842"]) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:30 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x900, 0x8000) [ 2871.012966] FAULT_INJECTION: forcing a failure. [ 2871.012966] name failslab, interval 1, probability 0, space 0, times 0 [ 2871.015763] CPU: 0 PID: 95276 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2871.017168] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2871.018822] Call Trace: [ 2871.019363] dump_stack+0x107/0x167 [ 2871.020100] should_fail.cold+0x5/0xa [ 2871.020869] ? create_object.isra.0+0x3a/0xa20 [ 2871.021801] should_failslab+0x5/0x20 [ 2871.022572] kmem_cache_alloc+0x5b/0x310 [ 2871.023401] create_object.isra.0+0x3a/0xa20 [ 2871.024293] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2871.025344] kmem_cache_alloc+0x159/0x310 [ 2871.026197] copy_fs_struct+0x45/0x340 [ 2871.026993] copy_process+0x461c/0x6740 [ 2871.027806] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2871.028873] ? exc_page_fault+0xca/0x1a0 [ 2871.029709] ? trace_hardirqs_on+0x5b/0x180 [ 2871.030598] ? __cleanup_sighand+0xb0/0xb0 [ 2871.031473] ? _copy_from_user+0xfb/0x1b0 [ 2871.032319] kernel_clone+0xe7/0x980 [ 2871.033086] ? __lockdep_reset_lock+0x180/0x180 [ 2871.034031] ? create_io_thread+0xf0/0xf0 [ 2871.034881] ? ksys_write+0x21a/0x260 [ 2871.035652] ? lock_downgrade+0x6d0/0x6d0 [ 2871.036494] __do_sys_clone3+0x1e5/0x320 [ 2871.037326] ? __do_sys_clone+0x110/0x110 [ 2871.038192] ? rcu_read_lock_any_held+0x75/0xa0 [ 2871.039118] ? vfs_write+0x354/0xa70 [ 2871.039870] ? fput_many+0x2f/0x1a0 [ 2871.040612] ? ksys_write+0x1a9/0x260 [ 2871.041401] ? __ia32_sys_read+0xb0/0xb0 [ 2871.042225] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2871.043289] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2871.044335] ? trace_hardirqs_on+0x5b/0x180 [ 2871.045226] do_syscall_64+0x33/0x40 [ 2871.045991] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2871.047028] RIP: 0033:0x7f99575d9b19 [ 2871.047795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2871.051521] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2871.053091] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2871.054538] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2871.055987] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2871.057426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2871.058878] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:28:30 executing program 1: r0 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_TOL(r0, 0x0, 0x80) fallocate(r0, 0x0, 0x10001, 0x100) sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)={0x134, 0x0, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e24}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x10001}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @c}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e23}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_FLAGS={0x8}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0xfffffe00}, @WGDEVICE_A_PEERS={0xb8, 0x8, 0x0, 0x1, [{0x64, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "a596fd8fc19d7c3da38245ee6b313a012c31b43b6e72eda1325a8fd0088157c5"}, @WGPEER_A_PUBLIC_KEY={0x24}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x20}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0x44, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x4}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_FLAGS={0x8}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_FLAGS={0x8, 0x3, 0x2}]}, {0xc, 0x0, 0x0, 0x1, [@WGPEER_A_PROTOCOL_VERSION={0x8}]}]}]}, 0x134}}, 0x44800) ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f0000000080)) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x2}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000000)={0x0, 0x1, 0x6, @local}, 0x10) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x1, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:30 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, 0x0}, 0x58) 07:28:30 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xa00, 0x8000) 07:28:30 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@abs={0x0, 0x0, 0x4e21}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$SG_GET_LOW_DMA(r0, 0x227a, &(0x7f0000000180)) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x21000, 0x8) openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x0, 0x24) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, r1) ioctl$SG_SCSI_RESET(r0, 0x2284, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = fsopen(&(0x7f0000000100)='autofs\x00', 0x2d95c176f85f5ab0) fcntl$getown(r2, 0x9) 07:28:30 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) sendfile(r0, r0, &(0x7f0000000000)=0x3, 0x1) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000040)=0xfffff1c4) 07:28:30 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x8000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:30 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x8030400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SG_GET_COMMAND_Q(r0, 0x2270, &(0x7f0000000000)) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, 0x0) ioctl$SG_GET_TIMEOUT(r1, 0x2202, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="03000000000000002e2f66616c653000"]) 07:28:30 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000007, 0x1010, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2000, @fd_index}, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x800}, 0x8001) r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0xae3d, 0x0, 0x1000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0xa63fd6a5717620d2, 0x0, {0x0, r8}}, 0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000000)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, {0x0, r8}}, 0x0) 07:28:30 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 27) 07:28:30 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x4100000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xfffffec4}, 0x58) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x7f, 0xd18, 0x3, 0x80000001, 0x2}) r1 = gettid() process_vm_readv(r1, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) kcmp(r1, r2, 0x2, r0, r0) 07:28:30 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x5, 0x13, r0, 0x0) ioctl$SG_GET_SG_TABLESIZE(r0, 0x227f, &(0x7f0000000000)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:30 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xd00, 0x8000) 07:28:30 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58) 07:28:30 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x8900) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:31 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SCSI_IOCTL_PROBE_HOST(r0, 0x5385, &(0x7f00000001c0)=ANY=[@ANYBLOB="1afe23a1ee853d1b315ad065eba217e95461bce932f476fb17a8f900cd4e4c93f573b6fe320fa8facf080cec31162917aed64367a5601f78edf085b8fe5a8b5267b01524cb3784017f3906fbf25a05423ba2422c2d4d1f1cb450ea9df4e54a7eefa22947bd34"]) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$F2FS_IOC_FLUSH_DEVICE(r0, 0x4008f50a, &(0x7f0000000040)={0x5}) ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) r2 = syz_open_dev$vcsu(&(0x7f0000000140), 0x8001, 0x8000) openat(r2, &(0x7f0000000180)='./file0\x00', 0x0, 0x22) r3 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TIOCSBRK(r3, 0x5427) r4 = openat$cgroup_ro(r1, &(0x7f0000000000)='memory.numa_stat\x00', 0x0, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x9, 0x110, r4, 0x9d7a1000) clone3(&(0x7f0000000080)={0xc3000400, 0x0, 0x0, 0x0, {0x200038}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58) [ 2871.796373] FAULT_INJECTION: forcing a failure. [ 2871.796373] name failslab, interval 1, probability 0, space 0, times 0 [ 2871.798975] CPU: 0 PID: 96674 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2871.800292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2871.801912] Call Trace: [ 2871.802421] dump_stack+0x107/0x167 [ 2871.803106] should_fail.cold+0x5/0xa [ 2871.803824] ? create_object.isra.0+0x3a/0xa20 [ 2871.804697] should_failslab+0x5/0x20 [ 2871.805430] kmem_cache_alloc+0x5b/0x310 [ 2871.806194] create_object.isra.0+0x3a/0xa20 [ 2871.807017] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2871.807957] __kmalloc_node+0x1ae/0x420 [ 2871.808704] kvmalloc_node+0x119/0x170 [ 2871.809439] alloc_fdtable+0x13f/0x280 [ 2871.810157] dup_fd+0x74d/0xcf0 [ 2871.810780] ? security_task_alloc+0xe6/0x260 [ 2871.811609] copy_process+0x195b/0x6740 [ 2871.812343] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2871.813312] ? exc_page_fault+0xca/0x1a0 [ 2871.814065] ? trace_hardirqs_on+0x5b/0x180 [ 2871.814872] ? __cleanup_sighand+0xb0/0xb0 [ 2871.815665] ? _copy_from_user+0xfb/0x1b0 [ 2871.816435] kernel_clone+0xe7/0x980 [ 2871.817136] ? __lockdep_reset_lock+0x180/0x180 [ 2871.817993] ? create_io_thread+0xf0/0xf0 [ 2871.818774] ? ksys_write+0x21a/0x260 [ 2871.819474] ? lock_downgrade+0x6d0/0x6d0 [ 2871.820240] __do_sys_clone3+0x1e5/0x320 [ 2871.820989] ? __do_sys_clone+0x110/0x110 [ 2871.821802] ? rcu_read_lock_any_held+0x75/0xa0 [ 2871.822659] ? vfs_write+0x354/0xa70 [ 2871.823367] ? fput_many+0x2f/0x1a0 [ 2871.824046] ? ksys_write+0x1a9/0x260 [ 2871.824758] ? __ia32_sys_read+0xb0/0xb0 [ 2871.825519] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2871.826485] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2871.827431] ? trace_hardirqs_on+0x5b/0x180 [ 2871.828225] do_syscall_64+0x33/0x40 [ 2871.828905] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2871.829851] RIP: 0033:0x7f99575d9b19 [ 2871.830532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2871.833873] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2871.835258] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2871.836556] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2871.837869] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2871.839167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2871.840467] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:28:47 executing program 6: r0 = syz_open_dev$sg(&(0x7f0000000040), 0xfffffffffffffffc, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8000) ioctl$SG_GET_PACK_ID(r1, 0x227c, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x400000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r0, 0x8008f511, &(0x7f0000000080)) 07:28:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x12000) r1 = socket$inet_tcp(0x2, 0x1, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x5, 0x10, r1, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000000), &(0x7f0000000040)={0x0, 0xfb, 0x10a, 0x0, 0x1, "af6454422dba014301bef3881a7d1fce", "98f733438281bf54a507cebb0eab11eb21efce5053ab18bb927659509c87c6f2dcb1a58174d6e00459627db664b8af575d2af573b319fead997675c95e22fcb1b7e900f12863ea92f1803853530f62c0228ac360d94508ad1c0f5b9181249683b189a1fa8960934ca521f74ff833d686e633062dfdde3e609e2f7fb9b39d1846777686936ece7590ffda3888d04e77cc654da3903db0bf6d0bfe656431c9ebad4131acb6329e6488ab62302e42830531275821570626746f1224f239833d7dc32a5b6f77c594c3784d537ad2bee3258c5281db5d1d53c1f009d83ba64aab77cbaaa515de67deab71e0c1961e9fc33b494ba7e7832f"}, 0x10a, 0x0) 07:28:47 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 28) 07:28:47 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x101000, 0x0, 0x0}, 0x58) 07:28:47 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xe00, 0x8000) 07:28:47 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = gettid() process_vm_readv(r2, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) r3 = dup2(r0, 0xffffffffffffffff) ioctl$AUTOFS_IOC_READY(r3, 0x9360, 0x2) clone3(&(0x7f0000000280)={0x800300, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0xa}, &(0x7f00000000c0)=""/146, 0x92, &(0x7f0000000180)=""/188, &(0x7f0000000240)=[r1, r2], 0x2, {r3}}, 0x58) 07:28:47 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1, 0x9, &(0x7f0000001580)=[{&(0x7f0000000080)="6065b56effb80a562d50a50bfc32ca35b7ea9e166e36877bddad231d69f44c2e2986bae32e13c3256a6942a9f84e42105d8715331f005fece42674ba42c639bd40b5462ee7335f29cae237a7d06c7e3e059b871159", 0x55, 0x8}, {&(0x7f0000000100)="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", 0x1000, 0x4}, {&(0x7f0000001100)="87e0d085854587c26a5ced6c1586aa5f27042df6f1c55d70307fe7d50102d7376720b21577441e2dacd4667e8a336b04cc4743dc938f5a2d1635fe30bc2349909756ee0e3b2f1a58fce0aa7fa7f70327c7e8a5bff14e48d27243b0d997bc6c147538e20aceed5d298a5503689ec6e0c2b094aa23407df8f6", 0x78, 0x7fff}, {&(0x7f0000001180)="8a6748581e4384692cbeb6ddd7a7c4fb904c7a28ab3cdea97c199c29b0753fa49a3f6cb73762589e86fc2c1d8528454c866697daed6fc046d1dd75d967", 0x3d, 0x4}, {&(0x7f0000001300)="e1e3d7bffeeffe0debfc3ca5ecc5027718aca2ba8e505697aacc14c15a1b63e37cdd5cfde99b31f456db9ad931b09a232110b2c82a606ef6ae4a6f2d068a01e1e1537d9444d63661cf38866e0c81bf0821bc9dbf4b501fb0630faecdf42aefd52f54385f221f9213a57b3de4644ef1020cfe4ac60dad30549aeae1e7ded49be7b9717c3a14e32fadee3b6d20dd775125fa46dcffb43d96ed634526aa22ad469805606914fce63f82d620b16abb350d1b3105e7790fef4b5139ff34a49728c442b06bd47cf58b994ac1559ed1c6652bd6ecdd8517c805d583759e48a7c862be9ddeee8cde0c", 0xe5, 0x100000001}, {&(0x7f00000011c0)="1239ce2b5d3c5f997b3689a5c4acdc471bf2482a3b67fbcaa5d3da42e7fa7c33a09de09f231ff12ea8de19ec8dfcb518dc98895c", 0x34, 0x10000}, {&(0x7f0000001280)="c7162721b36e2e574164df70fa218ec0128be0f6adb5114158e2d9e4fc1a132c6ebe1e13224f2489a65e27d945", 0x2d, 0x1}, {&(0x7f0000001400)="fab044e102c71b707aac8e35f387fa599aff26f86cb9060438650cdad815b2976526f66e898a1c4f859f9d32429052b50969d53bd154d151a92866c24ef063fc97acbcb138ed20531c98c36c2bd8189e0b", 0x51, 0x5}, {&(0x7f0000001480)="425a0e88d21cd0ac523a5eb2bbe08e7a7ebd3dcb7be774bb539cde810a7a2648bc9452ecf5c0d5a05bf145d966c248accc869c65304c87530de5b161d08fe5990ec0236c255832030096f8b5b23fc83841164b555857ff8899eb3e6441fba9778e4114807161c48bbfe064094fdda80c8086dee71d48304087d467063d8c20f73c4ce8d8c70682df5816c7ccde3e90fcf52366da467823bae31d7557133558b34b2781b5d47fcc04f50627e488965c34c442cd63809cdecc69a653fe70531db21a47c04f8f0febded5775b24e207ebfb5a13ffe60b88afd5b875d9be98e9f912fecf0fcb38cc9134", 0xe8, 0x3}], 0x0, &(0x7f0000001700)=ANY=[@ANYBLOB="6e6a6f6e756d7461696c3d312c73686f72746e616d653d6d69782c757403003d302c757466383d312c757466383d302c73080000006e616d653d6d697865642c646f6e745f61708172616973652c7063723d303030303030303030303030303030303030303422646f6e745f61707072616973652c008a1971"]) fcntl$dupfd(r0, 0x406, r1) 07:28:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x5043) ioctl$BLKTRACESTART(r0, 0x1274, 0x0) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x4000010, r0, 0x0) fchdir(r0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4b, 0x0, 0x0}, 0x58) [ 2888.275380] FAULT_INJECTION: forcing a failure. [ 2888.275380] name failslab, interval 1, probability 0, space 0, times 0 [ 2888.278176] CPU: 1 PID: 97374 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2888.279592] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2888.281254] Call Trace: [ 2888.281798] dump_stack+0x107/0x167 [ 2888.282563] should_fail.cold+0x5/0xa [ 2888.283331] ? create_object.isra.0+0x3a/0xa20 [ 2888.284260] should_failslab+0x5/0x20 [ 2888.285041] kmem_cache_alloc+0x5b/0x310 [ 2888.285873] create_object.isra.0+0x3a/0xa20 [ 2888.286773] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2888.287802] kmem_cache_alloc+0x159/0x310 [ 2888.288644] copy_process+0x1ac6/0x6740 [ 2888.289464] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2888.290536] ? exc_page_fault+0xca/0x1a0 [ 2888.291358] ? trace_hardirqs_on+0x5b/0x180 [ 2888.292260] ? __cleanup_sighand+0xb0/0xb0 [ 2888.293110] ? _copy_from_user+0xfb/0x1b0 [ 2888.293966] kernel_clone+0xe7/0x980 [ 2888.294733] ? __lockdep_reset_lock+0x180/0x180 [ 2888.295669] ? create_io_thread+0xf0/0xf0 [ 2888.296519] ? ksys_write+0x21a/0x260 [ 2888.297307] ? lock_downgrade+0x6d0/0x6d0 [ 2888.298136] __do_sys_clone3+0x1e5/0x320 [ 2888.298973] ? __do_sys_clone+0x110/0x110 [ 2888.299832] ? rcu_read_lock_any_held+0x75/0xa0 [ 2888.300767] ? vfs_write+0x354/0xa70 [ 2888.301537] ? fput_many+0x2f/0x1a0 [ 2888.302290] ? ksys_write+0x1a9/0x260 [ 2888.303055] ? __ia32_sys_read+0xb0/0xb0 [ 2888.303881] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2888.304934] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2888.305974] ? trace_hardirqs_on+0x5b/0x180 [ 2888.306868] do_syscall_64+0x33/0x40 [ 2888.307624] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2888.308653] RIP: 0033:0x7f99575d9b19 [ 2888.309426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2888.313136] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2888.314704] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2888.316136] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2888.317584] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2888.319045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2888.320483] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:28:47 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = gettid() process_vm_readv(r2, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f00000010c0)=""/132, 0x84}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xb7}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2000, @fd_index}, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r3, 0x0, &(0x7f0000000c40)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000ac0), 0x1, 0x1}, 0x3) r5 = gettid() process_vm_readv(r5, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) clock_gettime(0x0, &(0x7f0000000f40)={0x0, 0x0}) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0) r8 = socket$unix(0x1, 0x5, 0x0) bind$unix(r8, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r8, 0x0) ppoll(&(0x7f0000000240)=[{r8, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000001080)={{0x1, 0x1, 0x18, r8}, '\x00'}) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000e40)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000280)=""/140, 0x8c}, {&(0x7f0000000340)=""/141, 0x8d}, {&(0x7f0000000400)=""/234, 0xea}, {&(0x7f0000000500)=""/83, 0x53}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000000580)=""/225, 0xe1}], 0x6, &(0x7f0000000700)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x40}}, {{&(0x7f0000000740)=@abs, 0x6e, &(0x7f0000000880)=[{&(0x7f00000007c0)=""/107, 0x6b}, {&(0x7f0000000840)=""/40, 0x28}], 0x2, &(0x7f00000008c0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x160}}, {{&(0x7f0000000a40)=@abs, 0x6e, &(0x7f0000000c00)=[{&(0x7f0000000ac0)}, {&(0x7f0000000b00)=""/103, 0x67}, {&(0x7f0000000b80)=""/6, 0x6}, {&(0x7f0000000bc0)=""/10, 0xa}], 0x4, &(0x7f0000000c40)}}, {{&(0x7f0000000c80)=@abs, 0x6e, &(0x7f0000000e00)=[{&(0x7f0000000d00)=""/137, 0x89}, {&(0x7f0000000dc0)=""/33, 0x21}, {&(0x7f0000002300)=""/4096, 0x1000}], 0x3}}], 0x4, 0x100, &(0x7f0000000f80)={r6, r7+60000000}) clone3(&(0x7f0000001000)={0x4400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x3}, &(0x7f00000000c0)=""/67, 0x43, &(0x7f0000000140)=""/177, &(0x7f0000000fc0)=[r1, r1, r2, r5, r9, r1], 0x6}, 0x58) 07:28:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000000)=0x8) llistxattr(&(0x7f0000000080)='./file1\x00', &(0x7f0000000140)=""/86, 0x56) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:47 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58) 07:28:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) ioctl$SCSI_IOCTL_PROBE_HOST(r1, 0x5385, &(0x7f0000000040)={0x9a, ""/154}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x12, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:47 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xf00, 0x8000) 07:28:47 executing program 1: syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x8, 0x50, r0, 0xf0f18000) r1 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x0, 0x1d8, 0xe}, 0x18) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, 0x0) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r2, 0x5386, &(0x7f0000000100)) signalfd4(r0, &(0x7f0000000140)={[0x4ef3]}, 0x8, 0xc0800) r3 = openat(r1, &(0x7f0000000080)='./file0\x00', 0x410c01, 0x100) setsockopt$packet_drop_memb(r3, 0x107, 0x2, &(0x7f00000000c0)={0x0, 0x1, 0x6, @multicast}, 0x10) 07:28:47 executing program 3: r0 = eventfd2(0x0, 0x0) flistxattr(r0, &(0x7f0000000000)=""/156, 0x9c) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x108, 0x2d, 0x1, 0x70bd2b, 0x25dfdbfe, {0x19}, [@generic="28586a356f46b29a4e959aec9a3431771146003777e8a585721a423dc6ca7ba68aa75cb30a1e60ef158a42458f657e3e6f7c7690b6c58a2ca517e7541614e0da06a4ce585e039e26bc74259536762452e7", @generic="efab6d471742c835ee9e92d2e1b56970f4e9e6e8078de0813f1fab02090060ac0f9bc567dffccd7dc4bea0b84e4333cddeb7d78e252346e7dc2902290c4f1e98d3cb6b15dbd2ef45a59e463b38567a86b6a02d5cd86f153a77a347b3c6e2acca52b823d8a39a51460bcc84efc5f187", @generic="343cd3fad4e5a698237ff1dcfd853807259fdf0e174ba6d2a6a536c65a4aa0524af33c85cc118c3223f7", @typed={0x8, 0x19, 0x0, 0x0, @fd=r0}]}, 0x108}, 0x1, 0x0, 0x0, 0x4}, 0x40) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:28:47 executing program 4: r0 = gettid() process_vm_readv(r0, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) move_pages(r0, 0x5, &(0x7f0000000000)=[&(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000001000/0x4000)=nil, &(0x7f0000000000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil], 0x0, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x6) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) r2 = clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pidfd_open(r2, 0x0) 07:29:02 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f0000000000)={0x3, 0x1, 0x6}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:02 executing program 0: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) r0 = inotify_init1(0x80000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) r3 = socket$unix(0x1, 0x5, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r3, 0x0) ppoll(&(0x7f0000000240)=[{r3, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000080)={0x0, r3, 0x2, 0xff, 0x8, 0x20}) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) inotify_add_watch(r1, &(0x7f0000000000)='./file0\x00', 0x2000080) dup2(r0, 0xffffffffffffffff) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:02 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x4010, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000000)={@mcast2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @dev={0xfe, 0x80, '\x00', 0x21}, 0x1, 0xf98c, 0xfff, 0x0, 0x3ff, 0x20000}) 07:29:02 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2288, &(0x7f0000000040)) 07:29:02 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 29) 07:29:02 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58) 07:29:02 executing program 4: sendmsg$inet(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000200)={0x2, 0x4e20, @private=0xa010101}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000240)="fba02018630f5eea747140a2bd89e541c4962a9e47d2c42ce624ebac7deed991f9c4593279986e5d8fb88ac8b4af52d077044ae386075e92a0784a913c312c485f901fa9c3fa27e6ad6407ee3e6d7883bae94db277ea8a2f162439fa1818a486fce6ecf47b906b7775debd65ebb0fa9030fa6ff1ae4d258aa1c01b5bd1ca4f428323fcc4a352cccc47ea62cec4bf935499f26dc3115c51e8b7b253f5b2d38aede82a832995d4db72c785c724481ddb7197c1ae52467902c8ebcd932ceec708302d2fba91881160e481c970d378cfdfc92f1f4f50f528272b552d191a8bbd1f3325b05363870b5e430b", 0xe9}, {&(0x7f0000000340)="362e7edd82b208f88d088f5747df9419b441dc133d6f09b665613fbf96c9583cea1e97b371f8db313f9c340a29167bc1d73d460c8c44f2d5a8841ac755f66ef216e7dbd715d2f1b973b631c017dcdc4d5aab8d3ba652a1bd4210e677dc8187679b237fa25fef75e9180d62d81a88aa9fdbd4a3809f1bb9f2a870e0f8e729edfe4f581b7e3108f8e2eb924a24dbb5a6a501e1c0affe9971e267ed01d8bba47c71bb0f63638ec474626e1156d3c72124c46ec26183722239a2fa5257d9c9402b975d22411f5e67f3bc9ae8d7e151aaf2c762099a851b0be97fe42f5627905dbe5d", 0xe0}], 0x2, &(0x7f0000000480)=[@ip_retopts={{0x6c, 0x0, 0x7, {[@timestamp={0x44, 0x28, 0x5c, 0x0, 0x0, [0x40, 0x6, 0x400, 0xad9, 0x8000, 0x3, 0x0, 0x7fffffff, 0x3]}, @timestamp={0x44, 0xc, 0x51, 0x0, 0xd, [0xffff0001, 0x8]}, @timestamp={0x44, 0x28, 0x1a, 0x0, 0x8, [0x6, 0xff, 0x4, 0x1, 0x7, 0xfff, 0xfffffff9, 0x31, 0x9]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x800}}, @ip_retopts={{0xb8, 0x0, 0x7, {[@ssrr={0x89, 0x17, 0x65, [@multicast2, @remote, @private=0xa010101, @local, @remote]}, @timestamp_prespec={0x44, 0x1c, 0xef, 0x3, 0x4, [{@multicast2, 0x7f}, {@remote, 0xfff}, {@multicast2, 0x1}]}, @cipso={0x86, 0x13, 0x0, [{0x0, 0x6, "0f6231e7"}, {0x6, 0x7, "85816efe02"}]}, @timestamp_prespec={0x44, 0x44, 0x7, 0x3, 0x3, [{@dev={0xac, 0x14, 0x14, 0x27}, 0x6}, {@remote, 0x100}, {@dev={0xac, 0x14, 0x14, 0x25}, 0x3}, {@local, 0x559c9abf}, {@dev={0xac, 0x14, 0x14, 0x3a}, 0x2}, {@empty, 0xffffff00}, {@rand_addr=0x64010102, 0x1c0000}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}]}, @timestamp={0x44, 0xc, 0x86, 0x0, 0x2, [0x7, 0x9]}, @cipso={0x86, 0x11, 0x3, [{0x7, 0xb, "7b2c5244764d994b7f"}]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x7fffffff}}], 0x158}, 0x40844) getsockname(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, &(0x7f0000000080)=0x80) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000640)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000736c65300000000000000000dd55110fbdf8547e731eb147742d8221edc51c02a46fcda2ac099f6286de34f3bd8bc5ec52c900ffe63545ad28ac1a07b5bab2d806e28e588a5406bf08d03c5c23d86ed1dc228ab7b269978745bf6d128ce16eeb36d568e53725b27d206d7e6997ec018a9cca80db46ff2d4700972a3a0267b411be370c9864f16d6485cee1759c651d749e8bfb577d62539cd0434c74e7e326c3b658825dac15831bd81f3a9c932707cb598f85246512a7177aa26fc0f34b371d093436f5a435d296c2da9489b96ed0be002ae2f3b9cc12b7225d38ca33ecd2fb4f95a288"]) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)=0x0) perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x7b, 0x5, 0x0, 0xbf, 0x0, 0x80000000, 0x200, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000100)}, 0x8890, 0x6, 0x1, 0x0, 0xfffffffffffffe00, 0xfffff77e, 0x5, 0x0, 0x10000, 0x0, 0x2}, r2, 0xf, 0xffffffffffffffff, 0xb) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:02 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x1800, 0x8000) [ 2903.539390] FAULT_INJECTION: forcing a failure. [ 2903.539390] name failslab, interval 1, probability 0, space 0, times 0 [ 2903.542003] CPU: 0 PID: 98802 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2903.543391] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2903.545049] Call Trace: [ 2903.545596] dump_stack+0x107/0x167 [ 2903.546335] should_fail.cold+0x5/0xa [ 2903.547110] ? copy_process+0x1c44/0x6740 [ 2903.547964] should_failslab+0x5/0x20 [ 2903.548738] kmem_cache_alloc+0x5b/0x310 [ 2903.549567] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2903.550626] copy_process+0x1c44/0x6740 [ 2903.551440] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2903.552497] ? exc_page_fault+0xca/0x1a0 [ 2903.553331] ? trace_hardirqs_on+0x5b/0x180 [ 2903.554238] ? __cleanup_sighand+0xb0/0xb0 [ 2903.555092] ? _copy_from_user+0xfb/0x1b0 [ 2903.555931] kernel_clone+0xe7/0x980 [ 2903.556684] ? __lockdep_reset_lock+0x180/0x180 [ 2903.557625] ? create_io_thread+0xf0/0xf0 [ 2903.558472] ? ksys_write+0x21a/0x260 [ 2903.559238] ? lock_downgrade+0x6d0/0x6d0 [ 2903.560075] __do_sys_clone3+0x1e5/0x320 [ 2903.560895] ? __do_sys_clone+0x110/0x110 [ 2903.561757] ? rcu_read_lock_any_held+0x75/0xa0 [ 2903.562686] ? vfs_write+0x354/0xa70 [ 2903.563438] ? fput_many+0x2f/0x1a0 [ 2903.564171] ? ksys_write+0x1a9/0x260 [ 2903.564935] ? __ia32_sys_read+0xb0/0xb0 [ 2903.565771] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2903.566825] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2903.567860] ? trace_hardirqs_on+0x5b/0x180 [ 2903.568728] do_syscall_64+0x33/0x40 [ 2903.569487] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2903.570517] RIP: 0033:0x7f99575d9b19 [ 2903.571267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2903.574954] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2903.576484] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2903.577931] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2903.579357] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2903.580787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2903.582224] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:29:03 executing program 6: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x10000}, 0x0, 0xd, 0x0, 0x0}, 0x58) 07:29:03 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x2000, 0x8000) 07:29:03 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000200)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00./file0\x00']) clone3(&(0x7f0000001200)={0xb840000, 0x0, 0x0, 0x0, {0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58) 07:29:03 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKTRACESTART(r1, 0x1274, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:03 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 30) 07:29:03 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0}, 0x58) [ 2903.958883] FAULT_INJECTION: forcing a failure. [ 2903.958883] name failslab, interval 1, probability 0, space 0, times 0 [ 2903.961865] CPU: 0 PID: 99420 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2903.963254] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2903.964908] Call Trace: [ 2903.965449] dump_stack+0x107/0x167 [ 2903.966204] should_fail.cold+0x5/0xa [ 2903.966965] ? create_object.isra.0+0x3a/0xa20 [ 2903.967882] should_failslab+0x5/0x20 [ 2903.968648] kmem_cache_alloc+0x5b/0x310 [ 2903.969475] create_object.isra.0+0x3a/0xa20 [ 2903.970357] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2903.971377] kmem_cache_alloc+0x159/0x310 [ 2903.972243] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2903.973290] copy_process+0x1c44/0x6740 [ 2903.974116] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2903.975164] ? exc_page_fault+0xca/0x1a0 [ 2903.975978] ? trace_hardirqs_on+0x5b/0x180 [ 2903.976866] ? __cleanup_sighand+0xb0/0xb0 [ 2903.977742] ? _copy_from_user+0xfb/0x1b0 [ 2903.978592] kernel_clone+0xe7/0x980 [ 2903.979331] ? __lockdep_reset_lock+0x180/0x180 [ 2903.980256] ? create_io_thread+0xf0/0xf0 [ 2903.981100] ? ksys_write+0x21a/0x260 [ 2903.981872] ? lock_downgrade+0x6d0/0x6d0 [ 2903.982704] __do_sys_clone3+0x1e5/0x320 [ 2903.983519] ? __do_sys_clone+0x110/0x110 [ 2903.984367] ? rcu_read_lock_any_held+0x75/0xa0 [ 2903.985289] ? vfs_write+0x354/0xa70 [ 2903.986049] ? fput_many+0x2f/0x1a0 [ 2903.986776] ? ksys_write+0x1a9/0x260 [ 2903.987556] ? __ia32_sys_read+0xb0/0xb0 [ 2903.988372] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2903.989420] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2903.990459] ? trace_hardirqs_on+0x5b/0x180 [ 2903.991319] do_syscall_64+0x33/0x40 [ 2903.992062] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2903.993079] RIP: 0033:0x7f99575d9b19 [ 2903.993835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2903.997510] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2903.999018] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2904.000434] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2904.001866] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2904.003279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2904.004702] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:29:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0xffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000080)=0x5) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = socket$unix(0x1, 0x5, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000000000000", @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file1\x00']) ioctl$BTRFS_IOC_LOGICAL_INO_V2(r2, 0xc038943b, &(0x7f00000001c0)={0x40, 0x10, '\x00', 0x1, &(0x7f0000000180)=[0x0, 0x0]}) bind$unix(r1, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0xcd) listen(r1, 0x0) ppoll(&(0x7f0000000240), 0x0, &(0x7f0000000040), 0x0, 0x0) r3 = syz_open_dev$rtc(&(0x7f0000000000), 0x3f, 0x0) tee(r1, r3, 0x6, 0x1) 07:29:17 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = syz_mount_image$vfat(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x5, 0x1, &(0x7f0000000200)=[{&(0x7f0000001300)="13e66a4f3c669df2770a9269d873d14a9a1a722387cb85e4d30a6a0836a767bb9a4795126ea0cc51c5190a8acb82736c47d3c924d92f3798499af31974b7ccdeac5609748062bd4edb5df937d1c2d1ed9f863f3a1ac19b032998a3822712089cc07e5e0ab01c86e90278d0f257767e692889f7cb98c063a6fe581a6a2c475d95e3681362e01f0a0856523d8c676a1f8015339784581f60aebd8e342d6c82b91dc44beec2998ade1c49a1730f441c455033dafe45ea828de4c5877ed6187fa6d6ddcc522719a069acaa38cce39ffc6d61326d8502a339e85754a5ad12bb7cfa3952e67bfe5018d9ae42a404b0deffb98cc90a8878577389d9117eb93cfd2c0ba45863dc254ca9dd0f94d2455ace81fc40800c282daac438f64b6f3eeeb24f592cd8cdf5d6ee300d2857a9cebd3901465603c7bb8694ccad0809d876c24215775a6319e2d095ffdfc22c0aa470255d6956e08d100f517c56a505c8693cc38127e553a13b4cab67986f5723f56cf9113c095f79ba6e9a33abeac0ae077a3ad2e54032ccf0fc5b3b09ef671f0491eddf2efe9f146f365f73f667f4c94ba7ab0c8185da441ba23e2fe856bd5f6b2fd3e72df9852c58edf5da0ed42f3aa10c01c70f44dedf74b32d8c3bcfa5e91a04782bfbf24d87f68490e659de60c5a6377ec6c447f5d66d63982f479b7d2896ccd329ec16e686ab44f0f800ac4d0a3ca66b960719e21e00c2ea3c0ad2fd24704f2168594e62012f134aaca1cb0ebb92d7267272bc729d1609d309fbcad4c275ea652fcd80c7ba267eaa57c0d9e850e6af8f3a6dc377e344a8bcc86531533eda0b1e4b8d06db15b864d91b29597be2907b6429e47c3d4add4d76ee6fcdaf983241af94cbc100c6c4c317314b6c7ac12c2c1460ccd751f48c280e67857103cb39d2fdae3f2c13fbf0ca2b93d4528a5a387948babedb54a889ef981dc1d2c4ee011d6a7df9210b1a7e3564da3311ee60e29341dc83ed78e337080a7bc4104dff2cf882803038cdd6ab0d7391333a27bf54464bd5c1de5b61e9d7a39befaf309e510ea19d47da7b8c5bc582f8dd0429b155034e8d47b061d54844cece15494dc01a81c3b1e73bf4e063eb457821d0597cfb88cfc73f371ab42948b4b3594c04db9f31d394d3a429f89fb943bb61507082d530665f68206643b976978306037ded00c4af49c736ceff5b9c1c45a277b00d7bd83729f0e66ab73b050eb72abd2bc03d5efd606a658865778711aee5bb3dee86e49009c1a38ff59cb3f42459a315487e662e5ab7cf9e0c7b21f4bc6f8f497a8d7ce87508a346f6cc86ca0a55005d2eca5ed6b1119e6865b8da6cefc2c69b2e2ac49e91624dc24666299cfd4a8a34e4ccdba47ee5e2673351d13bb56584bf547a67cb68c06304bed206487d819b5a2c5041267ad460f3ca97494a9a02e3797b46fd1a2222221e972f9af56b4f9b6495e129ea7c87ccddb9c33e1fdca24484efcd1b48d2f6c51b699491778147c6ba738073b3caba8cbe1038b92f0d92ba11aa121df897dcc97b975c38e98a57de78074fa95a52754fa61287a96f9730530dba946c5bb663a955cec245d82717a09b205d9c41917852e799ca85b2b0823979bd9763d16f1ddd029f6f4b910d79ba7db2d9ec145e8a885eb574460bb4fd42f3fcf80ea09c1d2eb3e2b537e95aedc3cd2485abc7767be3b8ff5ba6a1f364d1e2eeaa2e87bb2e4ee945b22ec9dbbd725fcd6fda586953631387097d5be869c44c6111e03c715537d7f35b6038c1276950f82678150b94d45ff588fd9a1ccf0bf593a599fbe45529097cba2f660b6dc6d27a99b07a14442d3d9dcd9374297c3efb462922066e6900af14c1cdb9e3edef44b1e8509b790ac39cc6760822abbc6f860ebacc4975a815eda8e7dc541ebcc25863b8b3ba40725755d65ddf30c78e8190ce0a9d36a103d724ef57567884e17d14283c571d42f2578ab8ba07bdfaf7701c96a92c6380c8920710e27e390bfc861418ef6af8a41447d5a258b207f35ee93d52e3404b7c7ef1cb172c0cca11b77b30f4c1a75867d2ec2e0e7fd27c8bd29ed148fdbdd5b75ce59af404695dccb18f91204ca78ff220b7b361ccc4dcaf97fa61e5b2ffe41a0de258af3afda2b48b7f0dcac7403bf341f44453144f1ca85070e3dd750fee1daedaca2b7b5308ef1d2d39c0f17c4a0c83bd8ec156261f29d209f4fc3e3741dd620673a3c76990bfb3b123c822cea0eb51d03301e6fd831f68ad44bf18b3b85cdc0e826fcdbe85a446169bd74fe0461dd59ce084f232775602353e9e60d3d6dc6290ef8571524a8062f31771f7f519be6de091e82d76321bc9666de243842913080dc11e4a318905c0b1e49d0a5df71e0c87a340ca118ccbc50d312735e802d46e8fde31da423c5ed2d6f08cfb3d93c1cc240353c19ca3fa65c536c4601c5ebb1127baf05458f9942b6ebe2ee43e4f4d0a447f657ab619df052a4d29831d17accf225622ac5ed2556914ad3ad1c65e6ea26b98cdf646b19ff67f7c05d967dc5922f4d7f98afdaa0a6c1e9569893c856a0167da26d21c476cc0001be4ef7937795a6d0341f01f02dc9b31d664d697a19440758d7d212252fa83001335a95e40f52328c38e611fbfaa88b8a66b382dbf4d303b030b6d67db55b03ca940704bc59c46de189ab4593ee51dd4afd74edae71a0aa02dbc19e67bc7be5d394194fd6383be1cf453b6e659200b0e175533defe34d7a5d437266cdd457447bf9e6953d2a034fa308b1d1f30488e1d70e9dbf028752cc3663c100b09cbe062a4fb2a32de9698f0135aa93920857879ed721b7e5f51139be075f81152f0054705685a48be18e0115561e4b3c116661a433d947cc22cf4a4c4afd4b351303fa767907a1d42dc5f6e83c5d9c057691b26733dad31cfaf45500356cc07897ca93d6793275ef3e14f9c5bde902fe9f8fc5220688c7f6b58300eced006cdce99d7fc178964bab1ae779925c87ac3d6de7a91cbda75e45281ea677bd8de7ec7101b6c951b7a264b6e28fb677f5e7557f882e9fd9abcbb58495ad5a06ec1d48210ee12d1ee0f90b849217e43f426aaa52f78e2265c0f34e9b453f21dda513906c1cd4fcd2f09eb3ada425a14a2f6ac11235b0f1e0f7fb071a73c147e22bd9576337eccbcd0bdb2cd8b051b49d78f5b8b6bbef7d49cf044f04b7629d941d0db54eaebe55c30f74592675fd4b92aa7811713a2e9e40fc55167cb9f83521f73707f872397417925975030bcd3d69ff210122307303363cd0dde0e0162c144617dbbbc2e51ebd35a0bede0d7004157aec59bb5ea686b4cd276acfd25cf01d694aa0fee234a7ba486a32c3a7a87307a2ed82338ae8437e84fc228541a10661b0e2c63cd5df696a442523d7576c16006d68989332eb1d61f57ff904cd50221399ca5e218f89eceec13f434b3b65d16908ec4b01e42c576a786b025f9bfaefb651778a529308c17cfba502a0cdd17817ff910e48f7973ba065cc8396b164665810ad101c15f04508f5b444cb78654af337bfb7a94082ea40aaba5ccd72b33d762bd0b224ac9f838699a54c7af676b7d8f272afc5ff8023b8f0ff579690d330be09784c78b5a62884e6397f19cc5cf0e6f3fa4b80da594811d694e0c7cf4220fe7aafbdcf286ab2b5e95aba477ff15bd6a7e810233361cc40651b95c007bb8753a6900b5a1fdf0d0c594918f8c0f7a30e58956c075096688102048cf20df3f37042e7f0962df1615b105929e88c29dd540db66967ff4d13443d5110183c679172c0d5f0632719544fd7e4be1e0e931e0b169859edf6b18065a6c7e4c65c1842d1c5d5d5e881b594edb62375f9c92e4777629ee571fbafb668db30dd1147359f060fdc120fffb0f8e342da83661667ec6c4f762ca84ab5c9f0d4ab38da78c26c37007fd0c69a7d91db39a64efee566f28fd0c633b9b2cef54489d83081ba28545cec82eebc9afc632447b4ad0bcc421d6018ca9a7229a797107ffd43f2db144f1cb04b5d737da61643ecf36da11983dfa9e4235679ae95b471ba286f61aa0d8568d46d36bee19934dbb4ce421bbd535e21cbc8013588ae1ff9517fc5c2e10619aa45609dee30c4bdfada770798cf3b5de291540a310921379e2bfe4a0a0eb83e236bd9723c5d1e0a48e4fc3f1d98307d0c5f2a915f19adce117742a4907afea07755c7874c12ae7bd8dfd98b8c7edf1ff5cf580960c0c52429e9d8b8b79acf90085a38cbcb516519fa8dff18347d5d45fc6e987f54fb1d22ee634bef50c6488b86269da7bc2227949b2017f674304a3b75235b81c4e2e1d81a364bf5dae9c51d53f76b28c6b2744be0f98c890e63323053fdeadbd653d69cc8f0cb4b6e70329a2e1d38e6a0727ea08cc4c4c8cc68260776dc77f49e0657e6c10e49c0e05456fa0b8a96480319322c4e16f69365e861d687eb7423364f154225db0c54d2eefe1167aa0830b6eba1330622d099822fe1ed0d9480e1683778e6849fcb3ed6dae029c8825f23229bcbe710e8e635ba0b5a8ed61b8c0ca59e195e6f648acc36d91f84139c6a84a12e16aa276a803b75881e0d091cc1cee7d28b2f7ddd6cdb9980625f62ddbffe37622220448303c134d168139dcec390cb0864a9575bae17449c0ed016d26efb966e5f6cfac32169ede3d453a21e808b9e6db29d3b6314ee428c832bf15b0934037a87df9e3dbc35cef9314c8fe2dced146668dd1721c6adc044023830301ffacb975cc9efa3743161c65c9ed99449d121563c6f85380daf318ed45d17f6ad3e8f0b982320774d38a64756e6dad1be5ffad20e76a61657884d9e4cbec30aca30ce22a23989ea880821250c6e3a32348a6a6e72c1b2f376c364966f0ead58f2046f1e5dccc377fd6c585aba9a1dfbe8c8c1c8403d91495857efc790b35343424afe3ec2e5032da6a6799a37315fdbada00d5f4e0ffb9730532c8ba1b84269aab00fbc808609e4e4f59ac4de54f0c6d7e0f768a9c04c42cd1dcfed1f9b8f6730ffedd902bd9e438acbaf75191b3f3173be05342c70d44d77b1d4ec845bb969a5cc9e4cd98b6d14eea16d21ac78eb59646a04d89eb1b966e663c09e9939a6b8be983e7970636b163a0b1b2d99fe96d8af64f5e8ba3b2d3b82c4f7aa51e2c5773bf60358fad79fad2e71ef8bca49806378622170e3a2697c7d18227b64aade45fa75026f1dff6032af65fb7fde90bcade6a09494cf7b3a5525e68863bf2a7b6318d4fcd91eff9677cc332b9aade5db154d900ac7051edb0d38edc0bf54c624b433ebd1f3e48e5497dcce4041ae18aed766888a0380f8c01f82899577ab9eeb581c548bae924432cc20c2731e68bf5cd35b12e788930515d513bbd08afea6e74fe9fa8cb34fcaa9228887192a6bf5a70b73d68df7277222290fc194bf093ca799c624dc2bde53db5478fd49e2f99d687b288d9f296c4768c9f08821df711f56ab479bdc26f8e344bd282b4538b226f86a4979a0a322c7cf092d8e9729fdb0d105c435c34545b50e4e9560b8dbfdf40145f2da53c5e6363aa48b710e62a7cba489978becb94081e015a23c1153b7f48dbb331eeb7b4c351136d06fb9fdb80ed0cca8a237e15eaf1eae9697bcd50298cec5444a3b394894379416fdb1ffe7b5dc8853ccaba2fa35861845df3517963f97d3043ecde07a9aa4bc202a5c8d006123691834ab2c4d0ad34817b3ae91e5e5c11fd276b2fe704547a99f9558e21d16084ed7ba213555668d13317c169b251ca2c018bbc2ccf0e104017a784eb9ddcf38f946621550ec2aafc8cf896bdbf05", 0x1000, 0xb8d}], 0x22, &(0x7f0000000280)=ANY=[@ANYBLOB='dir,utf8=0,\x00'/27]) pread64(r2, &(0x7f00000002c0)=""/180, 0xb4, 0x2) bind$unix(r1, &(0x7f0000000080)=@abs={0x0, 0x0, 0x4e20}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) creat(&(0x7f0000000380)='./file0\x00', 0x80) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, @in_args={0x4}}, './file0\x00'}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r3 = socket$unix(0x1, 0x5, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r3, 0x0) ppoll(&(0x7f0000000240)=[{r3, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) connect$unix(r3, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e) 07:29:17 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 31) 07:29:17 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000200, 0x0, 0x0}, 0x58) 07:29:17 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ftruncate(r0, 0x10001) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:17 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x2103, 0x8000) 07:29:17 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = openat2(r0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x488ec0, 0x14, 0x12}, 0x18) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000280)={0x0, 0xfffffffffffffffd, 0xbc, 0x5, @buffer={0x0, 0x64, &(0x7f0000000080)=""/100}, &(0x7f0000000100)="62d6c99b4d85dab6360ce231cad9cdf54960eedaf0822029f9094718dd56193376b675bb59411599e9769385688cfead41fb6d3c3af8b5041d629e239bc547fd435442bf603e5c6e5509021ce9ce8fad0c7d15ac564b2eb8ef59788455993de62db759f6fbee217824c7b5cf7fc9db67e4479034a6213ef4366c80d455b724bc0c10a52bbf6ccddfb0da2ae861c38f4312e115a5a27e15e3e44a889b3d21317eb2898eddbc9419d35bdeacdd6e1ce7906d8a016cc6c63e8ff92e7ff6", &(0x7f00000001c0)=""/125, 0x5, 0x10036, 0x0, &(0x7f0000000240)}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:17 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x40010, r0, 0x0) io_uring_enter(0xffffffffffffffff, 0x178e, 0xa7b5, 0x1, &(0x7f0000000000)={[0x81]}, 0x8) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2918.637444] FAULT_INJECTION: forcing a failure. [ 2918.637444] name failslab, interval 1, probability 0, space 0, times 0 [ 2918.640681] CPU: 0 PID: 99849 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2918.642166] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2918.643927] Call Trace: [ 2918.644502] dump_stack+0x107/0x167 [ 2918.645294] should_fail.cold+0x5/0xa [ 2918.646123] ? dup_mm+0x88/0x1110 [ 2918.646891] should_failslab+0x5/0x20 [ 2918.647708] kmem_cache_alloc+0x5b/0x310 [ 2918.648581] dup_mm+0x88/0x1110 [ 2918.649297] ? copy_process+0x2107/0x6740 [ 2918.650205] ? vm_area_dup+0x290/0x290 [ 2918.651042] ? __raw_spin_lock_init+0x36/0x110 [ 2918.652024] copy_process+0x24e2/0x6740 [ 2918.652879] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2918.654015] ? exc_page_fault+0xca/0x1a0 [ 2918.654883] ? trace_hardirqs_on+0x5b/0x180 [ 2918.655823] ? __cleanup_sighand+0xb0/0xb0 [ 2918.656740] ? _copy_from_user+0xfb/0x1b0 [ 2918.657633] kernel_clone+0xe7/0x980 [ 2918.658454] ? create_io_thread+0xf0/0xf0 [ 2918.659353] ? lock_downgrade+0x6d0/0x6d0 [ 2918.660238] ? enqueue_hrtimer+0x129/0x270 [ 2918.661153] __do_sys_clone3+0x1e5/0x320 [ 2918.662025] ? __do_sys_clone+0x110/0x110 [ 2918.662913] ? recalibrate_cpu_khz+0x10/0x10 [ 2918.663868] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2918.664986] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2918.666148] ? trace_hardirqs_on+0x5b/0x180 [ 2918.667069] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2918.668236] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2918.669336] ? syscall_enter_from_user_mode+0x27/0x50 [ 2918.670457] do_syscall_64+0x33/0x40 [ 2918.671253] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2918.672339] RIP: 0033:0x7f99575d9b19 [ 2918.673142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2918.677137] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2918.678807] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2918.680369] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2918.681895] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2918.683408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2918.684923] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:29:18 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x3f00, 0x8000) 07:29:18 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) write$binfmt_elf32(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="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"/1302], 0x516) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r2) sendmsg$TIPC_CMD_SET_LINK_TOL(r3, 0x0, 0x80) fallocate(r3, 0x23, 0x10003, 0x102) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000580)='/dev/sg#\x00', &(0x7f00000005c0)='./file0\x00', r3) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) openat(r1, &(0x7f0000000600)='./file1\x00', 0x10000, 0x1c6) 07:29:18 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x40010, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ftruncate(r0, 0xfffffffffffffff8) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000400)={0xd7, 0x81, 0xffffffff, "f14eebe529aecb80a28e54ef6d35bac887ce2a9de31f40036d1e45d864d9ba763f9419f851278e389351d834f7411ca037a2361e11a12d487700fc90d970543a5eebe494238ac458620fd2df33e066ccf1cf0557c8002c7278eb2613ccc44afb93ae166c3eb905b47e4768924fdee40fd792ca6a0108ce85aa92e9281a8d36d71e2a2d6d6beb97313c8c3381ce2bc03dde48752db79b199dc30223807e8b3eadcd49570f2d56005494da1892e1cc07e6b811be8a35238460be947197eee4acbd5e568be4f534b42b77992f540ff109303bdffd762356ed"}) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$SG_GET_SG_TABLESIZE(r1, 0x227f, &(0x7f0000000140)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) getsockopt$bt_sco_SCO_OPTIONS(r1, 0x11, 0x1, &(0x7f0000000200)=""/209, &(0x7f0000000300)=0xd1) creat(&(0x7f00000001c0)='./file1\x00', 0x40) sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="78100000000201080000000000000000010000002800038006000340000200000c0002000100000080034000040000060007400002000034000a80300002802c00218014000300fc020000020000000000225c0400000000000400fc0100000000000000000000000000004e04b007406f53bd6d0e629effd8a5314117a252b4838d21a88cc891a860ff00"/151], 0x78}, 0x1, 0x0, 0x0, 0x40010}, 0x4000010) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0x101}}, './file1\x00'}) 07:29:18 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x581401, 0x0) fcntl$dupfd(r1, 0x0, r0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) 07:29:18 executing program 6: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0xa0000, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$INCFS_IOC_PERMIT_FILL(r1, 0x40046721, &(0x7f0000000100)={r0}) ppoll(&(0x7f0000000240)=[{r0, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x5, 0x3d40dc87a0f8a3be, r0, 0x1174b000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = socket$unix(0x1, 0x5, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_POLL_REMOVE={0x7, 0x1, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}, 0x3) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) setsockopt$sock_void(r2, 0x1, 0x24, 0x0, 0x0) 07:29:18 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58) 07:29:18 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 32) 07:29:18 executing program 4: copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000000)=0x2, 0x9, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) ppoll(&(0x7f0000000240)=[{r0, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000040), &(0x7f0000000080), 0x2, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:18 executing program 1: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x73d3, 0x5d40, 0x3, &(0x7f0000000080)={[0xffffffff]}, 0x8) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = syz_open_dev$ptys(0xc, 0x3, 0x1) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000000)={0x2, 0x1f, 0x4, 0x0, 0xa96, 0x7}) [ 2919.062261] FAULT_INJECTION: forcing a failure. [ 2919.062261] name failslab, interval 1, probability 0, space 0, times 0 [ 2919.064876] CPU: 1 PID: 100982 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2919.066334] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2919.067993] Call Trace: [ 2919.068545] dump_stack+0x107/0x167 [ 2919.069299] should_fail.cold+0x5/0xa [ 2919.070102] ? create_object.isra.0+0x3a/0xa20 [ 2919.071060] should_failslab+0x5/0x20 [ 2919.071840] kmem_cache_alloc+0x5b/0x310 [ 2919.072679] create_object.isra.0+0x3a/0xa20 [ 2919.073587] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2919.074633] kmem_cache_alloc+0x159/0x310 [ 2919.075493] dup_mm+0x88/0x1110 [ 2919.076179] ? copy_process+0x2107/0x6740 [ 2919.077040] ? vm_area_dup+0x290/0x290 [ 2919.077859] ? __raw_spin_lock_init+0x36/0x110 [ 2919.078796] copy_process+0x24e2/0x6740 [ 2919.079616] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2919.080686] ? exc_page_fault+0xca/0x1a0 [ 2919.081520] ? trace_hardirqs_on+0x5b/0x180 [ 2919.082430] ? __cleanup_sighand+0xb0/0xb0 [ 2919.083309] ? _copy_from_user+0xfb/0x1b0 [ 2919.084166] kernel_clone+0xe7/0x980 [ 2919.084931] ? __lockdep_reset_lock+0x180/0x180 [ 2919.085894] ? create_io_thread+0xf0/0xf0 [ 2919.086751] ? ksys_write+0x21a/0x260 [ 2919.087523] ? lock_downgrade+0x6d0/0x6d0 [ 2919.088374] __do_sys_clone3+0x1e5/0x320 [ 2919.089206] ? __do_sys_clone+0x110/0x110 [ 2919.090095] ? rcu_read_lock_any_held+0x75/0xa0 [ 2919.091032] ? vfs_write+0x354/0xa70 [ 2919.091789] ? fput_many+0x2f/0x1a0 [ 2919.092532] ? ksys_write+0x1a9/0x260 [ 2919.093309] ? __ia32_sys_read+0xb0/0xb0 [ 2919.094154] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2919.095219] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2919.096269] ? trace_hardirqs_on+0x5b/0x180 [ 2919.097140] do_syscall_64+0x33/0x40 [ 2919.097902] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2919.098933] RIP: 0033:0x7f99575d9b19 [ 2919.099685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2919.103416] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2919.104957] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2919.106410] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2919.107847] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2919.109282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2919.110749] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:29:33 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 33) 07:29:33 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r3, 0x0) ppoll(&(0x7f0000000240)=[{r3, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r3, 0x40047211, &(0x7f0000000080)=0x22) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) r4 = dup2(r1, r1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r4) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) fallocate(0xffffffffffffffff, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x2}) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000100)={@local, @local, 0x1, 0x5, [@broadcast, @private=0xa010101, @local, @private=0xa010101, @multicast2]}, 0x24) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) write$P9_RSETATTR(r2, &(0x7f0000000000)={0x7, 0x1b, 0x1}, 0x7) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:33 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = socket$nl_audit(0x10, 0x3, 0x9) tee(r0, r1, 0x40, 0x8) 07:29:33 executing program 3: r0 = dup(0xffffffffffffffff) getdents(r0, &(0x7f0000000080)=""/26, 0x1a) rt_sigprocmask(0x0, &(0x7f00000000c0)={[0x5]}, &(0x7f0000000040), 0x6) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2934.026283] FAULT_INJECTION: forcing a failure. [ 2934.026283] name fail_page_alloc, interval 1, probability 0, space 0, times 0 07:29:33 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x4000, 0x8000) 07:29:33 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, 0x0}, 0x58) 07:29:33 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) signalfd(r1, &(0x7f0000000000)={[0x5083]}, 0x8) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2934.028107] CPU: 1 PID: 101390 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2934.029107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2934.030161] Call Trace: [ 2934.030512] dump_stack+0x107/0x167 [ 2934.030982] should_fail.cold+0x5/0xa [ 2934.031477] __alloc_pages_nodemask+0x182/0x600 [ 2934.032077] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2934.032858] alloc_pages_current+0x187/0x280 [ 2934.033422] __get_free_pages+0xc/0xa0 [ 2934.033915] pgd_alloc+0x84/0x4e0 [ 2934.034355] ? pgd_page_get_mm+0x40/0x40 [ 2934.034865] ? lockdep_init_map_type+0x2c7/0x780 [ 2934.035475] ? lockdep_init_map_type+0x2c7/0x780 [ 2934.036070] mm_init+0x670/0xab0 [ 2934.036492] dup_mm+0xd5/0x1110 [ 2934.036906] ? copy_process+0x2107/0x6740 [ 2934.037428] ? vm_area_dup+0x290/0x290 [ 2934.037932] ? __raw_spin_lock_init+0x36/0x110 [ 2934.038511] copy_process+0x24e2/0x6740 [ 2934.039013] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2934.039693] ? exc_page_fault+0xca/0x1a0 [ 2934.040215] ? trace_hardirqs_on+0x5b/0x180 [ 2934.040775] ? __cleanup_sighand+0xb0/0xb0 [ 2934.041333] ? _copy_from_user+0xfb/0x1b0 [ 2934.041872] kernel_clone+0xe7/0x980 [ 2934.042343] ? __lockdep_reset_lock+0x180/0x180 [ 2934.042934] ? create_io_thread+0xf0/0xf0 [ 2934.043474] ? ksys_write+0x21a/0x260 [ 2934.043960] ? lock_downgrade+0x6d0/0x6d0 [ 2934.044486] __do_sys_clone3+0x1e5/0x320 [ 2934.045001] ? __do_sys_clone+0x110/0x110 [ 2934.045539] ? rcu_read_lock_any_held+0x75/0xa0 [ 2934.046141] ? vfs_write+0x354/0xa70 [ 2934.046620] ? fput_many+0x2f/0x1a0 [ 2934.047089] ? ksys_write+0x1a9/0x260 [ 2934.047576] ? __ia32_sys_read+0xb0/0xb0 [ 2934.048103] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2934.048771] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2934.049427] ? trace_hardirqs_on+0x5b/0x180 [ 2934.049995] do_syscall_64+0x33/0x40 [ 2934.050467] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2934.051115] RIP: 0033:0x7f99575d9b19 [ 2934.051589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2934.053938] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2934.054909] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2934.055823] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2934.056741] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 07:29:33 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x8a) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$unix(0x1, 0x5, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r3, 0x0) ppoll(&(0x7f0000000240)=[{r3, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) bind$unix(r4, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r4, 0x0) ppoll(&(0x7f0000000240)=[{r4, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) fcntl$dupfd(r3, 0x406, r4) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r1) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x38, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0x1c, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14}]}]}]}, 0x38}}, 0x0) sendmsg$NL80211_CMD_AUTHENTICATE(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r5, 0x300, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}]]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000810}, 0x4000800) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2934.057647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2934.058708] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:29:33 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 34) 07:29:33 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, @in_args={0x5}}, './file0\x00'}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x7, 0x13, r1, 0x0) ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x80049367, &(0x7f0000000000)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:33 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x54ab, 0x8000) [ 2934.246288] FAULT_INJECTION: forcing a failure. [ 2934.246288] name failslab, interval 1, probability 0, space 0, times 0 [ 2934.247730] CPU: 1 PID: 101933 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2934.248527] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2934.249468] Call Trace: [ 2934.249780] dump_stack+0x107/0x167 [ 2934.250211] should_fail.cold+0x5/0xa [ 2934.250646] ? vm_area_dup+0x78/0x290 [ 2934.251083] should_failslab+0x5/0x20 [ 2934.251525] kmem_cache_alloc+0x5b/0x310 [ 2934.251991] vm_area_dup+0x78/0x290 [ 2934.252412] ? __lock_acquire+0xbb1/0x5b00 [ 2934.252906] ? perf_trace_lock+0xac/0x490 [ 2934.253377] ? __lockdep_reset_lock+0x180/0x180 [ 2934.253933] ? vm_area_alloc+0x110/0x110 [ 2934.254389] ? find_held_lock+0x2c/0x110 [ 2934.254852] ? get_mm_exe_file+0x139/0x310 [ 2934.255326] ? lock_downgrade+0x6d0/0x6d0 [ 2934.255795] ? down_write_nested+0xe4/0x160 [ 2934.256279] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 2934.256868] ? get_mm_exe_file+0x162/0x310 [ 2934.257358] dup_mm+0x44d/0x1110 [ 2934.257763] ? copy_process+0x2107/0x6740 [ 2934.258258] ? vm_area_dup+0x290/0x290 [ 2934.258715] ? __raw_spin_lock_init+0x36/0x110 [ 2934.259251] copy_process+0x24e2/0x6740 [ 2934.259716] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2934.260329] ? exc_page_fault+0xca/0x1a0 [ 2934.260814] ? trace_hardirqs_on+0x5b/0x180 [ 2934.261320] ? __cleanup_sighand+0xb0/0xb0 [ 2934.261812] ? _copy_from_user+0xfb/0x1b0 [ 2934.262307] kernel_clone+0xe7/0x980 [ 2934.262745] ? __lockdep_reset_lock+0x180/0x180 [ 2934.263285] ? create_io_thread+0xf0/0xf0 [ 2934.263777] ? ksys_write+0x21a/0x260 [ 2934.264221] ? lock_downgrade+0x6d0/0x6d0 [ 2934.264710] __do_sys_clone3+0x1e5/0x320 [ 2934.265180] ? __do_sys_clone+0x110/0x110 [ 2934.265678] ? rcu_read_lock_any_held+0x75/0xa0 [ 2934.266226] ? vfs_write+0x354/0xa70 [ 2934.266666] ? fput_many+0x2f/0x1a0 [ 2934.267083] ? ksys_write+0x1a9/0x260 [ 2934.267522] ? __ia32_sys_read+0xb0/0xb0 [ 2934.267991] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2934.268598] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2934.269196] ? trace_hardirqs_on+0x5b/0x180 [ 2934.269692] do_syscall_64+0x33/0x40 [ 2934.270126] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2934.270717] RIP: 0033:0x7f99575d9b19 [ 2934.271147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2934.273237] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2934.274119] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2934.274932] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2934.275750] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2934.276573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2934.277392] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:29:33 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = syz_io_uring_complete(0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58) 07:29:33 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB='\a\x00\x00\x00\x00\x00\x00\x00./file0\x00']) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0xbe335000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:33 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) dup3(r0, r0, 0x0) 07:29:33 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xa9fe, 0x8000) 07:29:33 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = fsopen(&(0x7f0000000000)='exofs\x00', 0x1) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000040)={{{@in6=@dev, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in6=@private0}}, &(0x7f0000000140)=0xe8) statx(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x100, 0x8, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', r3, r4, 0x1000) fchown(r1, r2, r4) mkdir(&(0x7f00000002c0)='./file1\x00', 0x101) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:33 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58) 07:29:33 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 35) [ 2934.461934] FAULT_INJECTION: forcing a failure. [ 2934.461934] name failslab, interval 1, probability 0, space 0, times 0 [ 2934.463669] CPU: 1 PID: 102267 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2934.464428] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2934.465340] Call Trace: [ 2934.465626] dump_stack+0x107/0x167 [ 2934.466042] should_fail.cold+0x5/0xa [ 2934.466471] ? create_object.isra.0+0x3a/0xa20 [ 2934.466975] should_failslab+0x5/0x20 [ 2934.467379] kmem_cache_alloc+0x5b/0x310 [ 2934.467819] create_object.isra.0+0x3a/0xa20 [ 2934.468289] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2934.468832] kmem_cache_alloc+0x159/0x310 [ 2934.469301] vm_area_dup+0x78/0x290 [ 2934.469707] ? __lock_acquire+0xbb1/0x5b00 [ 2934.470182] ? perf_trace_lock+0xac/0x490 [ 2934.470636] ? __lockdep_reset_lock+0x180/0x180 [ 2934.471153] ? vm_area_alloc+0x110/0x110 [ 2934.471592] ? find_held_lock+0x2c/0x110 [ 2934.472023] ? get_mm_exe_file+0x139/0x310 [ 2934.472474] ? lock_downgrade+0x6d0/0x6d0 [ 2934.472915] ? down_write_nested+0xe4/0x160 [ 2934.473370] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 2934.473921] ? get_mm_exe_file+0x162/0x310 [ 2934.474379] dup_mm+0x44d/0x1110 [ 2934.474738] ? copy_process+0x2107/0x6740 [ 2934.475182] ? vm_area_dup+0x290/0x290 [ 2934.475594] ? __raw_spin_lock_init+0x36/0x110 [ 2934.476087] copy_process+0x24e2/0x6740 [ 2934.476508] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2934.477073] ? exc_page_fault+0xca/0x1a0 [ 2934.477504] ? trace_hardirqs_on+0x5b/0x180 [ 2934.477976] ? __cleanup_sighand+0xb0/0xb0 [ 2934.478430] ? _copy_from_user+0xfb/0x1b0 [ 2934.478878] kernel_clone+0xe7/0x980 [ 2934.479280] ? __lockdep_reset_lock+0x180/0x180 [ 2934.479786] ? create_io_thread+0xf0/0xf0 [ 2934.480244] ? ksys_write+0x21a/0x260 [ 2934.480652] ? lock_downgrade+0x6d0/0x6d0 [ 2934.481101] __do_sys_clone3+0x1e5/0x320 [ 2934.481537] ? __do_sys_clone+0x110/0x110 [ 2934.482000] ? rcu_read_lock_any_held+0x75/0xa0 [ 2934.482502] ? vfs_write+0x354/0xa70 [ 2934.482907] ? fput_many+0x2f/0x1a0 [ 2934.483313] ? ksys_write+0x1a9/0x260 [ 2934.483725] ? __ia32_sys_read+0xb0/0xb0 [ 2934.484161] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2934.484714] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2934.485272] ? trace_hardirqs_on+0x5b/0x180 [ 2934.485738] do_syscall_64+0x33/0x40 [ 2934.486146] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2934.486689] RIP: 0033:0x7f99575d9b19 [ 2934.487089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2934.489021] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2934.489866] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2934.490619] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2934.491373] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2934.492127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2934.492882] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:29:47 executing program 6: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) ppoll(&(0x7f0000000240)=[{r0, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040), &(0x7f0000000080)={0x0, 0xfb, 0xd2, 0x6, 0x0, "579296f6b6811ba477fcbe0f90c52ba5", "17506ad60654a21ce2c4951cecc8742313d47defffebab9cae4f3fb0f1abffc23f9d4b617b342cac0f47fdc415073b9fc6a67b6004e8717d8e84347afac9a25a02beb1b5b5db67309d221ba0c43e6a5e5ce174bab39c2a6b3fc50b9666c4c1f525c97ca94ea8d3969a1c3af9aede22c84d5ecd1a9ac671694fa69885b413dea1dcb4b139fd98b619d20fdaa664e3e1e49567a36cc6ef90599bffc6f315abad1be4649d2f33382812a29f0b87ded07a57a17f1c7204ed37865ae370dadc"}, 0xd2, 0x0) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0) ioctl$FS_IOC_GETVERSION(0xffffffffffffffff, 0x80087601, &(0x7f0000000000)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:47 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8000) clone3(&(0x7f0000000080)={0x18402c100, 0x0, 0x0, 0x0, {0x3f}, 0x0, 0x0, 0x0, 0x0, 0x5, {r1}}, 0x58) 07:29:47 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 36) 07:29:47 executing program 0: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, 0x0) ioctl$KDFONTOP_GET(r0, 0x4b72, &(0x7f0000000340)={0x1, 0x0, 0x1d, 0x10, 0x1b4, &(0x7f00000006c0)}) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000280)={0x53, 0xffffffffffffffff, 0x7c, 0x0, @buffer={0x0, 0xd6, &(0x7f0000000000)=""/214}, &(0x7f0000000100)="19954d0b638202c0a055105a4f8c78d874a00e027f5caac375ac7e17025543862d225645f988ad3a02801f5bf814af5f10614025d38ba32e71f75b5d2fa2b52ac3e672dc5221d533fe3492a5ad891e97bdc49ee7113ecdbb88b02160fada570eb272200b7f23bbbe7d54a9a7b9a3f3e1c4981abbf9aa78fab1977947", &(0x7f0000000180)=""/138, 0x80000000, 0x6, 0xffffffffffffffff, &(0x7f0000000240)}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) fsetxattr$trusted_overlay_upper(r2, &(0x7f0000000300), &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x52, 0x2) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000000380)={{0x1, 0x1, 0x18, r0, {0x400}}, './file0\x00'}) clone3(&(0x7f0000001200)={0x110840000, 0x0, 0x0, 0x0, {0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, {r3}}, 0x58) 07:29:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:47 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:29:47 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xab54, 0x8000) 07:29:47 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58) [ 2948.709803] FAULT_INJECTION: forcing a failure. [ 2948.709803] name failslab, interval 1, probability 0, space 0, times 0 [ 2948.711567] CPU: 1 PID: 102943 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2948.712596] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2948.713807] Call Trace: [ 2948.714223] dump_stack+0x107/0x167 [ 2948.714765] should_fail.cold+0x5/0xa [ 2948.715325] ? vm_area_dup+0x78/0x290 [ 2948.715887] should_failslab+0x5/0x20 [ 2948.716444] kmem_cache_alloc+0x5b/0x310 [ 2948.717041] vm_area_dup+0x78/0x290 [ 2948.717583] ? copy_page_range+0x24fe/0x3820 [ 2948.718135] ? vm_area_alloc+0x110/0x110 [ 2948.718729] ? find_held_lock+0x2c/0x110 [ 2948.719327] ? vm_iomap_memory+0x190/0x190 [ 2948.719536] scsi_io_completion_action: 135 callbacks suppressed [ 2948.719593] sd 0:0:0:0: [sg0] tag#0 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 2948.719837] ? __vma_link_rb+0x540/0x700 [ 2948.721267] sd 0:0:0:0: [sg0] tag#0 CDB: Erase [ 2948.722267] dup_mm+0x44d/0x1110 [ 2948.722293] ? vm_area_dup+0x290/0x290 [ 2948.723205] sd 0:0:0:0: [sg0] tag#0 CDB[00]: 19 95 4d 0b 63 82 02 c0 a0 55 10 5a 4f 8c 78 d8 [ 2948.723831] ? __raw_spin_lock_init+0x36/0x110 [ 2948.723854] copy_process+0x24e2/0x6740 [ 2948.724613] sd 0:0:0:0: [sg0] tag#0 CDB[10]: 74 a0 0e 02 7f 5c aa c3 75 ac 7e 17 02 55 43 86 [ 2948.725142] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2948.727026] sd 0:0:0:0: [sg0] tag#0 CDB[20]: 2d 22 56 45 f9 88 ad 3a 02 80 1f 5b f8 14 af 5f [ 2948.727642] ? exc_page_fault+0xca/0x1a0 [ 2948.727655] ? trace_hardirqs_on+0x5b/0x180 [ 2948.727679] ? __cleanup_sighand+0xb0/0xb0 [ 2948.728564] sd 0:0:0:0: [sg0] tag#0 CDB[30]: 10 61 40 25 d3 8b a3 2e 71 f7 5b 5d 2f a2 b5 2a [ 2948.729749] ? _copy_from_user+0xfb/0x1b0 [ 2948.729768] kernel_clone+0xe7/0x980 [ 2948.730958] sd 0:0:0:0: [sg0] tag#0 CDB[40]: c3 e6 72 dc 52 21 d5 33 fe 34 92 a5 ad 89 1e 97 [ 2948.732118] ? __lockdep_reset_lock+0x180/0x180 [ 2948.732131] ? create_io_thread+0xf0/0xf0 [ 2948.732156] ? ksys_write+0x21a/0x260 [ 2948.733051] sd 0:0:0:0: [sg0] tag#0 CDB[50]: bd c4 9e e7 11 3e cd bb 88 b0 21 60 fa da 57 0e [ 2948.733627] ? lock_downgrade+0x6d0/0x6d0 [ 2948.733642] __do_sys_clone3+0x1e5/0x320 [ 2948.733659] ? __do_sys_clone+0x110/0x110 [ 2948.734609] sd 0:0:0:0: [sg0] tag#0 CDB[60]: b2 72 20 0b 7f 23 bb be 7d 54 a9 a7 b9 a3 f3 e1 [ 2948.735800] ? rcu_read_lock_any_held+0x75/0xa0 [ 2948.735816] ? vfs_write+0x354/0xa70 [ 2948.736832] sd 0:0:0:0: [sg0] tag#0 CDB[70]: c4 98 1a bb f9 aa 78 fa b1 97 79 47 [ 2948.737324] ? fput_many+0x2f/0x1a0 [ 2948.748068] ? ksys_write+0x1a9/0x260 [ 2948.748615] ? __ia32_sys_read+0xb0/0xb0 [ 2948.749201] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2948.749949] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2948.750692] ? trace_hardirqs_on+0x5b/0x180 [ 2948.751310] do_syscall_64+0x33/0x40 [ 2948.751842] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2948.752572] RIP: 0033:0x7f99575d9b19 [ 2948.753103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2948.755724] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2948.756806] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2948.757818] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2948.758846] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2948.759856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2948.760872] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:30:05 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xeffd, 0x8000) 07:30:05 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58) 07:30:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000000c0)={0xffffffffffffffff, 0x3, 0x8f92f, 0x2}) renameat(r1, &(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000080)='./file0\x00') r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8000) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000000)={0x31, 0xdd62, 0xffffff00, "428110ffc903e674e8584fdd2f535c970e5fad816dcf04d9e0365b4459ed02096da68a4d1b96b89fe0ded4f53ab62a84ba"}) lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140), &(0x7f0000000180)={0x0, 0xfb, 0x29, 0x6, 0x1f, "062c8b36e0bbbd2cabc76585af41be1d", "ad1d3c68aa6ba327b9bc88138eee5b2b139ae949"}, 0x29, 0x2) 07:30:05 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x200000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:05 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xe, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:05 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 37) 07:30:05 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) ioctl$SG_GET_SG_TABLESIZE(r2, 0x227f, &(0x7f0000000040)) r3 = getpgrp(r1) clone3(&(0x7f0000000240)={0x105000, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100), {0x14}, &(0x7f0000000140)=""/66, 0x42, &(0x7f00000001c0)=""/14, &(0x7f0000000200)=[r3], 0x1, {r2}}, 0x58) 07:30:05 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x40010, r0, 0xc0d96000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2966.501050] FAULT_INJECTION: forcing a failure. [ 2966.501050] name failslab, interval 1, probability 0, space 0, times 0 [ 2966.503946] CPU: 0 PID: 103679 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2966.505398] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2966.507097] Call Trace: [ 2966.507656] dump_stack+0x107/0x167 [ 2966.508419] should_fail.cold+0x5/0xa [ 2966.509202] ? create_object.isra.0+0x3a/0xa20 [ 2966.510161] should_failslab+0x5/0x20 [ 2966.510965] kmem_cache_alloc+0x5b/0x310 [ 2966.511811] create_object.isra.0+0x3a/0xa20 [ 2966.512718] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2966.513764] kmem_cache_alloc+0x159/0x310 [ 2966.514643] vm_area_dup+0x78/0x290 [ 2966.515412] ? copy_page_range+0x24fe/0x3820 [ 2966.516363] ? vm_area_alloc+0x110/0x110 [ 2966.517184] ? find_held_lock+0x2c/0x110 [ 2966.518036] ? vm_iomap_memory+0x190/0x190 [ 2966.518951] ? __vma_link_rb+0x540/0x700 [ 2966.519798] dup_mm+0x44d/0x1110 [ 2966.520516] ? vm_area_dup+0x290/0x290 [ 2966.521323] ? __raw_spin_lock_init+0x36/0x110 [ 2966.522298] copy_process+0x24e2/0x6740 [ 2966.523116] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2966.524197] ? exc_page_fault+0xca/0x1a0 [ 2966.525037] ? trace_hardirqs_on+0x5b/0x180 [ 2966.525946] ? __cleanup_sighand+0xb0/0xb0 [ 2966.526861] ? _copy_from_user+0xfb/0x1b0 [ 2966.527726] kernel_clone+0xe7/0x980 [ 2966.528493] ? __lockdep_reset_lock+0x180/0x180 [ 2966.529451] ? create_io_thread+0xf0/0xf0 [ 2966.530343] ? ksys_write+0x21a/0x260 [ 2966.531116] ? lock_downgrade+0x6d0/0x6d0 [ 2966.531988] __do_sys_clone3+0x1e5/0x320 [ 2966.532824] ? __do_sys_clone+0x110/0x110 [ 2966.533709] ? rcu_read_lock_any_held+0x75/0xa0 [ 2966.534676] ? vfs_write+0x354/0xa70 [ 2966.535479] ? fput_many+0x2f/0x1a0 [ 2966.536236] ? ksys_write+0x1a9/0x260 [ 2966.537016] ? __ia32_sys_read+0xb0/0xb0 [ 2966.537865] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2966.538957] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2966.540019] ? trace_hardirqs_on+0x5b/0x180 [ 2966.540916] do_syscall_64+0x33/0x40 [ 2966.541696] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2966.542766] RIP: 0033:0x7f99575d9b19 [ 2966.543540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2966.547322] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2966.548877] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2966.550377] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2966.551835] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2966.553304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2966.554779] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:30:05 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) fchown(r0, 0xee01, 0xee01) 07:30:05 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000800, 0x0, 0x0}, 0x58) 07:30:06 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8000) ioctl$SG_GET_SG_TABLESIZE(r1, 0x227f, &(0x7f0000000000)) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2800008, 0x10, r0, 0xfe000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x32}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:06 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x10002, 0x800) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:06 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xfdef, 0x8000) 07:30:06 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 38) 07:30:06 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'wg0\x00', 0x0}) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000200)={0x0, 0xfffffffffffffffc, 0x5f, 0x6, @buffer={0x0, 0x22, &(0x7f0000000000)=""/34}, &(0x7f0000000040)="d7dfc87f39c128e3603d268d4d4f38617a72663b39f321209a712111814c24eb14a73c1e09d3223214471ab91d89cf1388c1437227c932cb116bdf0011af5202575dba009f064816a9aad4f0e613f44197f6478d781b8316575aed215c89fb", &(0x7f00000000c0)=""/197, 0xfffffff8, 0x23, 0x3, &(0x7f00000001c0)}) r2 = creat(&(0x7f0000000300)='./file0\x00', 0x8) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r2, 0x89f5, &(0x7f00000003c0)={'syztnl0\x00', &(0x7f0000000340)={'syztnl0\x00', r1, 0x4, 0x40, 0x1, 0x100, 0x5885bfe3a61efb43, @private2, @mcast2, 0x8, 0x8000, 0x3, 0x7f}}) 07:30:06 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1b0c11f000, 0x0, 0x0}, 0x58) 07:30:06 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000780)={0x0, 0x0, 0xbb, 0x1, @scatter={0x7, 0x0, &(0x7f0000000500)=[{&(0x7f0000000000)=""/115, 0x73}, {&(0x7f0000000080)=""/218, 0xda}, {&(0x7f0000000180)=""/179, 0xb3}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000800)=""/34, 0x22}, {&(0x7f0000000340)=""/172, 0xac}, {&(0x7f0000000400)=""/254, 0xfe}]}, &(0x7f0000000580)="87ec021a74426ed99a55394b293f48cabbbf47362f53143ab7404c2ff041004e3feb1746dfdef4e4c7b0fd5e2d42eb8c5d7d118046d87335dc6a9b0313601b2c1ee2880929d626672e5da879970698b0f8e03a8c0e0ab4603f4d4971844056718de6a92de331cd51c98099d929c021cac960ae57410bca9662f6001ec5746e0a752b2d228c64020602da37104c32bff286c4105a3353d2b41b7d0b1bb36f33bc4160ed8b75aa0042ec0dcdc3cbdc3cb2c4a60ed73cf7d12a439403", &(0x7f0000000640)=""/227, 0x5, 0x10020, 0x3, &(0x7f0000000740)}) pwritev(r0, &(0x7f0000000300)=[{&(0x7f0000000840)="df6454801ee1dc48533e254b41577e9480f4a3df31369ec8e0af2a0d06bdcc8175b14d88ddab5c4b1c260b6813da976b45974721dcb682ba59936737d20fd6fce64d9ad0774f1a5f23256779625cd41eda51da7d7d8f87434be14a0f35e6e6414040223272286f52066025b628af6c1b7bb027824bf1b2b58e8945a086a052b956ae623c3b403ee71795e3be66028143b34ba4", 0x93}, {&(0x7f0000000900)="f12ff64b592d44fdfe9a09867865ed5a02950f436b8c9581329c8b073bca5eb6570fe27cb32de602de02b58a51de5a24b3a83f2735bb25b7bf085419ad782947a2454b07da4c607d80d7801c1381232b8bdc9ddb871a9c71e579a70cea2d3f73cbff5430ee4b4329e78c7e5ef3b83e3e068225ba6fe16caddce81654b9e3410958403b8f82df0bce219f491d46b6ba636d59ff6d219358b554a4d119eccdc454ca6845", 0xa3}, {&(0x7f00000009c0)="7df2b31e773e32066f44ea469e0fe11c2c943aed97eecf8d60766936066919da4eef3735b28efa3d09d2089dcb908ec4b633380ffcc82c254ce76bdd2ca0b65f0152eeb4e5376f6eb97a45c7ef45ca91d076e2520795997a831a1e33ccde45e11d93456cd010c9b6092e7b6464d2b6f431575e1ac72868006f173029fc3ea113062d87ca4c84e775566dc00b7022c9fd9e6a4234734371fb0c3e5680fa08a7ce944e77e1d31e7a5ccf6a536cdcaefddb6b26f1efe1f54740a3af8f8ee2a0b5be2be8a4a56c2ed1fa8773c79eb470aef967f698", 0xd3}], 0x3, 0x32, 0x8) [ 2966.901468] FAULT_INJECTION: forcing a failure. [ 2966.901468] name failslab, interval 1, probability 0, space 0, times 0 [ 2966.904723] CPU: 0 PID: 104602 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2966.906295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2966.908129] Call Trace: [ 2966.908725] dump_stack+0x107/0x167 [ 2966.909542] should_fail.cold+0x5/0xa [ 2966.910394] ? vm_area_dup+0x78/0x290 [ 2966.911242] should_failslab+0x5/0x20 [ 2966.912088] kmem_cache_alloc+0x5b/0x310 [ 2966.912999] vm_area_dup+0x78/0x290 [ 2966.913815] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2966.914866] ? lock_downgrade+0x6d0/0x6d0 [ 2966.915775] ? perf_trace_lock+0xac/0x490 [ 2966.916684] ? copy_page_range+0x24fe/0x3820 [ 2966.917649] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2966.918819] ? __lockdep_reset_lock+0x180/0x180 [ 2966.919851] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 2966.920872] ? avc_has_extended_perms+0xf40/0xf40 [ 2966.921925] ? dup_mm+0x631/0x1110 [ 2966.922725] ? vm_area_alloc+0x110/0x110 [ 2966.923610] ? find_held_lock+0x2c/0x110 [ 2966.924517] ? selinux_vm_enough_memory+0x114/0x180 [ 2966.925609] ? selinux_sb_statfs+0x250/0x250 [ 2966.926582] ? up_write+0x191/0x550 [ 2966.927387] ? percpu_counter_add_batch+0x8b/0x140 [ 2966.928470] ? __vm_enough_memory+0x184/0x360 [ 2966.929457] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 2966.930591] dup_mm+0x44d/0x1110 [ 2966.931351] ? vm_area_dup+0x290/0x290 [ 2966.932212] ? __raw_spin_lock_init+0x36/0x110 [ 2966.933228] copy_process+0x24e2/0x6740 [ 2966.934127] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2966.935323] ? exc_page_fault+0xca/0x1a0 [ 2966.936237] ? trace_hardirqs_on+0x5b/0x180 [ 2966.937231] ? __cleanup_sighand+0xb0/0xb0 [ 2966.938409] ? _copy_from_user+0xfb/0x1b0 [ 2966.939355] kernel_clone+0xe7/0x980 [ 2966.940193] ? __lockdep_reset_lock+0x180/0x180 [ 2966.941243] ? create_io_thread+0xf0/0xf0 [ 2966.942197] ? ksys_write+0x21a/0x260 [ 2966.943065] ? lock_downgrade+0x6d0/0x6d0 [ 2966.944005] __do_sys_clone3+0x1e5/0x320 [ 2966.944926] ? __do_sys_clone+0x110/0x110 [ 2966.945886] ? rcu_read_lock_any_held+0x75/0xa0 [ 2966.946954] ? vfs_write+0x354/0xa70 [ 2966.947800] ? fput_many+0x2f/0x1a0 [ 2966.948623] ? ksys_write+0x1a9/0x260 [ 2966.949483] ? __ia32_sys_read+0xb0/0xb0 [ 2966.950416] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2966.951597] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2966.952756] ? trace_hardirqs_on+0x5b/0x180 [ 2966.953732] do_syscall_64+0x33/0x40 [ 2966.954585] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2966.955731] RIP: 0033:0x7f99575d9b19 [ 2966.956560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2966.960655] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2966.962349] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2966.963927] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2966.965508] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2966.967092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2966.968674] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:30:06 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000180), r1) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x20, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000200), r7) sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r6, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f00000009c0)={0x14, r8, 0x301}, 0x14}}, 0x0) sendmsg$NLBL_UNLABEL_C_STATICADD(r4, &(0x7f00000001c0)={&(0x7f0000000000), 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x58, r8, 0x18, 0x70bd26, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private2}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @loopback}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'gretap0\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x8001}, 0x20000850) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x38, r3, 0x6ca8e08d8cd7014b, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth0_to_bridge\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}]}, 0x38}}, 0x44090) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:06 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xfea9, 0x8000) 07:30:22 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000180)={0xffffff00, 0x2, 0x0, 0x3, 0xffffffff}) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="61000000ffffffffff0f000067ece71f4a7ec1e9176485b92fbc3ad2ab4a6a91886f07ae96597d86f4e1508059edcb24552666ff3b1b3174f39b1410c04b2730edb89318b3d78b0dc801b95775838c25ea72e4ec24a347ad8437d94332e812d8e4b45bff0f6f877f0ee2461883c9ab06904d45"]) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x1010, r0, 0x0) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r2, 0x29, 0x41, &(0x7f0000000100)={'security\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78) openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:22 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x5, 0x13, r0, 0x42e08000) clone3(&(0x7f0000001200)={0x21000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:22 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 39) 07:30:22 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x5, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000000)="c9b1144084698ad6e504d2cf03dd9f62d15c20254992f2436ed33a6650f0c00418374bd42a3d0a208b54cb779afdb7a49f281a51eb6eee6e3dbebd742cb55a32cc83b829556d2c73a89ae84cf69d958183b5adc04a5109d0a93387043709c93998be344c2c594c253b359e5a577d9ca0a673c99fa16611c99d7a41593358a83e", 0x80) 07:30:22 executing program 1: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:22 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write$binfmt_elf64(r0, &(0x7f0000001300)={{0x7f, 0x45, 0x4c, 0x46, 0x9, 0x2, 0x4, 0x9, 0x0, 0x2, 0x3, 0x5, 0x139, 0x40, 0x285, 0x8, 0x3ff, 0x38, 0x2, 0x514b, 0x200, 0x3}, [{0x3, 0x6, 0x9, 0x7, 0x67b5, 0x1579a92e, 0x10001, 0x7}], "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", ['\x00', '\x00', '\x00']}, 0x1378) 07:30:22 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xff7f, 0x8000) 07:30:22 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000000000, 0x0, 0x0}, 0x58) [ 2983.617401] FAULT_INJECTION: forcing a failure. [ 2983.617401] name failslab, interval 1, probability 0, space 0, times 0 [ 2983.620087] CPU: 0 PID: 105439 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2983.621633] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2983.623492] Call Trace: [ 2983.624092] dump_stack+0x107/0x167 [ 2983.624917] should_fail.cold+0x5/0xa [ 2983.625773] ? create_object.isra.0+0x3a/0xa20 [ 2983.626812] should_failslab+0x5/0x20 [ 2983.627669] kmem_cache_alloc+0x5b/0x310 [ 2983.628604] create_object.isra.0+0x3a/0xa20 [ 2983.629587] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2983.630760] kmem_cache_alloc+0x159/0x310 [ 2983.631676] vm_area_dup+0x78/0x290 [ 2983.632483] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2983.633494] ? lock_downgrade+0x6d0/0x6d0 [ 2983.634396] ? perf_trace_lock+0xac/0x490 [ 2983.635308] ? copy_page_range+0x24fe/0x3820 [ 2983.636277] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2983.637429] ? __lockdep_reset_lock+0x180/0x180 [ 2983.638486] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 2983.639515] ? avc_has_extended_perms+0xf40/0xf40 [ 2983.640492] ? dup_mm+0x631/0x1110 [ 2983.641219] ? vm_area_alloc+0x110/0x110 [ 2983.642036] ? find_held_lock+0x2c/0x110 [ 2983.642876] ? selinux_vm_enough_memory+0x114/0x180 [ 2983.643879] ? selinux_sb_statfs+0x250/0x250 [ 2983.644759] ? up_write+0x191/0x550 [ 2983.645502] ? percpu_counter_add_batch+0x8b/0x140 [ 2983.646504] ? __vm_enough_memory+0x184/0x360 [ 2983.647409] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 2983.648451] dup_mm+0x44d/0x1110 [ 2983.649155] ? vm_area_dup+0x290/0x290 [ 2983.649945] ? __raw_spin_lock_init+0x36/0x110 [ 2983.650886] copy_process+0x24e2/0x6740 [ 2983.651693] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2983.652741] ? exc_page_fault+0xca/0x1a0 [ 2983.653553] ? trace_hardirqs_on+0x5b/0x180 [ 2983.654438] ? __cleanup_sighand+0xb0/0xb0 [ 2983.655314] ? _copy_from_user+0xfb/0x1b0 [ 2983.656158] kernel_clone+0xe7/0x980 [ 2983.656906] ? __lockdep_reset_lock+0x180/0x180 [ 2983.657870] ? create_io_thread+0xf0/0xf0 [ 2983.658857] ? ksys_write+0x21a/0x260 [ 2983.659722] ? lock_downgrade+0x6d0/0x6d0 [ 2983.660666] __do_sys_clone3+0x1e5/0x320 [ 2983.661585] ? __do_sys_clone+0x110/0x110 [ 2983.662559] ? rcu_read_lock_any_held+0x75/0xa0 [ 2983.663607] ? vfs_write+0x354/0xa70 [ 2983.664461] ? fput_many+0x2f/0x1a0 [ 2983.665299] ? ksys_write+0x1a9/0x260 [ 2983.666167] ? __ia32_sys_read+0xb0/0xb0 [ 2983.667113] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2983.668309] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2983.669483] ? trace_hardirqs_on+0x5b/0x180 [ 2983.670492] do_syscall_64+0x33/0x40 [ 2983.671261] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2983.672284] RIP: 0033:0x7f99575d9b19 [ 2983.673031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2983.677021] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2983.678813] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2983.680466] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2983.682131] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2983.683808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2983.685463] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:30:23 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000e80)={0x53, 0xfffffffffffffffb, 0x13, 0x3f, @scatter={0x7, 0x0, &(0x7f0000000d00)=[{&(0x7f00000009c0)=""/73, 0x49}, {&(0x7f0000000a40)=""/150, 0x96}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/4096, 0x1000}, {&(0x7f0000000b00)=""/226, 0xe2}, {&(0x7f0000000c00)=""/35, 0x23}, {&(0x7f0000000c40)=""/162, 0xa2}]}, &(0x7f0000000d80)="f2848ffb202c85476f408d9efff75d9e4ffebf", &(0x7f0000000dc0)=""/127, 0x624, 0x2, 0x1, &(0x7f0000000e40)}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f0000000000), 0x6e, &(0x7f0000000880)=[{&(0x7f0000000080)=""/165, 0xa5}, {&(0x7f0000000140)=""/222, 0xde}, {&(0x7f0000000240)=""/3, 0x3}, {&(0x7f0000000280)=""/220, 0xdc}, {&(0x7f0000000380)=""/167, 0xa7}, {&(0x7f0000000440)=""/180, 0xb4}, {&(0x7f0000000500)=""/238, 0xee}, {&(0x7f0000000600)=""/160, 0xa0}, {&(0x7f00000006c0)=""/176, 0xb0}, {&(0x7f0000000780)=""/253, 0xfd}], 0xa, &(0x7f0000000940)=[@cred={{0x1c}}], 0x20}, 0x20002042) r1 = gettid() process_vm_readv(r1, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) syz_open_procfs(r1, &(0x7f0000000f00)='attr/current\x00') 07:30:23 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000300)={0x0, 0xffffffffffffffff, 0x9c, 0x36, @buffer={0x0, 0xfb, &(0x7f0000000000)=""/251}, &(0x7f0000000100)="7272b35d8ef938d1b5fda07c648ad2b6b83add992838917fffb202b7deb11a269f5c0fc4378510c81ef3f482f34ea34e782d6165c1492e05f62a1003e0d7dbbe0c664b5e2b3ae024632953ac7eef1dc242b33347bdeddd900a1b12ba3e6d45a0e7cf897518dd9a1cdaa79be231abcf2c2668330369bf353203e3f77d1d6ab8128b5dcc8d1498adcad6bdf67501258d5aa5e104d1165ce112557289f3", &(0x7f00000001c0)=""/238, 0x28ab, 0x20020, 0x1, &(0x7f00000002c0)}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SCSI_IOCTL_DOORUNLOCK(r0, 0x5381) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000380)={{0x1, 0x1, 0x18, r0, {0x2, 0xffff15a0}}, './file0\x00'}) sendfile(r1, r0, &(0x7f00000003c0)=0xfffffffffffffff9, 0x0) 07:30:23 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x80000, 0x8000) 07:30:23 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2a3d8172e000, 0x0, 0x0}, 0x58) 07:30:23 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xe}}, './file0\x00'}) ioctl$F2FS_IOC_PRECACHE_EXTENTS(r1, 0xf50f, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:23 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x80, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:23 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = fsopen(&(0x7f0000000000)='erofs\x00', 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r1, 0xc0096616, &(0x7f0000000040)={0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x814000, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:23 executing program 1: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) ppoll(&(0x7f0000000240)=[{r0, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:23 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 40) 07:30:23 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xa0000, 0x8000) 07:30:23 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x553a277e4000, 0x0, 0x0}, 0x58) [ 2984.342460] FAULT_INJECTION: forcing a failure. [ 2984.342460] name failslab, interval 1, probability 0, space 0, times 0 [ 2984.345465] CPU: 1 PID: 106776 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 2984.346892] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2984.348572] Call Trace: [ 2984.349120] dump_stack+0x107/0x167 [ 2984.349868] should_fail.cold+0x5/0xa [ 2984.350670] ? anon_vma_clone+0xdc/0x590 [ 2984.351492] should_failslab+0x5/0x20 [ 2984.352270] kmem_cache_alloc+0x5b/0x310 [ 2984.353103] anon_vma_clone+0xdc/0x590 [ 2984.353910] anon_vma_fork+0x82/0x640 [ 2984.354694] ? __vm_enough_memory+0x184/0x360 [ 2984.355605] dup_mm+0x861/0x1110 [ 2984.356309] ? vm_area_dup+0x290/0x290 [ 2984.357102] ? __raw_spin_lock_init+0x36/0x110 [ 2984.358039] copy_process+0x24e2/0x6740 [ 2984.358866] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2984.359927] ? exc_page_fault+0xca/0x1a0 [ 2984.360750] ? trace_hardirqs_on+0x5b/0x180 [ 2984.361643] ? __cleanup_sighand+0xb0/0xb0 [ 2984.362518] ? _copy_from_user+0xfb/0x1b0 [ 2984.363369] kernel_clone+0xe7/0x980 [ 2984.364126] ? __lockdep_reset_lock+0x180/0x180 [ 2984.365069] ? create_io_thread+0xf0/0xf0 [ 2984.365928] ? ksys_write+0x21a/0x260 [ 2984.366708] ? lock_downgrade+0x6d0/0x6d0 [ 2984.367554] __do_sys_clone3+0x1e5/0x320 [ 2984.368376] ? __do_sys_clone+0x110/0x110 [ 2984.369239] ? rcu_read_lock_any_held+0x75/0xa0 [ 2984.370177] ? vfs_write+0x354/0xa70 [ 2984.370953] ? fput_many+0x2f/0x1a0 [ 2984.371694] ? ksys_write+0x1a9/0x260 [ 2984.372466] ? __ia32_sys_read+0xb0/0xb0 [ 2984.373291] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2984.374354] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2984.375403] ? trace_hardirqs_on+0x5b/0x180 [ 2984.376282] do_syscall_64+0x33/0x40 [ 2984.377039] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 2984.378075] RIP: 0033:0x7f99575d9b19 [ 2984.378845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2984.382551] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2984.384090] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 2984.385530] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 2984.386980] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2984.388420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2984.389861] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:30:39 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 41) 07:30:39 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2001000000000, 0x0, 0x0}, 0x58) 07:30:39 executing program 6: socket$inet(0x2, 0x2, 0x9f6) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000) getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000000), &(0x7f0000000040)=0x2) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) writev(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f00000000c0)="8054eeb06f8be3914d12a6cc7d3ad06c186d8f94c44d555ec6597a9438244ffd54b39c7df042b247c08156717d5011fe283352497a9960f80a35e47f5090a35e6a3c5904b4274d35274db43a2dc4333ee13e63c22d5510238d119c8b28a584ef4743becc73e438320f5d7cdcf37d93aa60b55849b7bde5bf70df0af9c7d694e1982db3a19762d32b1dee705f15861d186cd19c962be7236b810f5eef0dae9fffc6f30ea66f95c918738eb2301d85aa1abd27d507645eb2d8c94b989f664003750f8aae22fb287813315c82", 0xcb}], 0x1) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000200)={{0x1, 0x1, 0x18, r0, {0x3f}}, './file0\x00'}) ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r2, 0x8982, &(0x7f0000000080)) 07:30:39 executing program 0: mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x3000006, 0x80010, 0xffffffffffffffff, 0x8000000) io_uring_enter(0xffffffffffffffff, 0x29a8, 0xf19b, 0x3, &(0x7f0000000000)={[0x800]}, 0x8) r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:39 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SG_GET_SG_TABLESIZE(r0, 0x227f, &(0x7f0000000080)) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)={0x44, 0xffffffef, 0x7, "9fd14e2c4a405d8530aca7f830b1df82aa1b689d94fc46f94ea59b9e1905f75c282efacdedf46541df324853240f5dc44c3146cc840301a1313153058cb661c1a2ae571d"}) 07:30:39 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x2a}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:39 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x100000, 0x8000) 07:30:39 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r0) sendmsg$TIPC_CMD_SET_LINK_TOL(r1, 0x0, 0x80) fallocate(r1, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2}) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x8100, 0x0) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40040140}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r3, 0x300, 0x70bd26, 0x25dfdbff, {{}, {}, {0x14, 0x18, {0x800, @bearer=@udp='udp:syz0\x00'}}}, ["", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x4040000}, 0x8880) sendmsg$TIPC_CMD_SET_NETID(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4043000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r3, 0x100, 0x70bd2a, 0x25dfdbfc, {{}, {}, {0x8, 0x2, 0x7}}, ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x840) r4 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r4, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) openat(r5, &(0x7f0000000040)='\x00', 0x1, 0x4) [ 3000.610314] FAULT_INJECTION: forcing a failure. [ 3000.610314] name failslab, interval 1, probability 0, space 0, times 0 [ 3000.613905] CPU: 0 PID: 107090 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3000.615781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3000.617981] Call Trace: [ 3000.618715] dump_stack+0x107/0x167 [ 3000.619690] should_fail.cold+0x5/0xa [ 3000.620700] ? create_object.isra.0+0x3a/0xa20 [ 3000.621913] should_failslab+0x5/0x20 [ 3000.622931] kmem_cache_alloc+0x5b/0x310 [ 3000.624015] create_object.isra.0+0x3a/0xa20 [ 3000.625144] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3000.626292] kmem_cache_alloc+0x159/0x310 [ 3000.627218] anon_vma_clone+0xdc/0x590 [ 3000.628090] anon_vma_fork+0x82/0x640 [ 3000.628932] ? __vm_enough_memory+0x184/0x360 [ 3000.629921] dup_mm+0x861/0x1110 [ 3000.630705] ? vm_area_dup+0x290/0x290 [ 3000.631584] ? __raw_spin_lock_init+0x36/0x110 [ 3000.632601] copy_process+0x24e2/0x6740 [ 3000.633489] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3000.634640] ? exc_page_fault+0xca/0x1a0 [ 3000.635552] ? trace_hardirqs_on+0x5b/0x180 [ 3000.636538] ? __cleanup_sighand+0xb0/0xb0 [ 3000.637491] ? _copy_from_user+0xfb/0x1b0 [ 3000.638429] kernel_clone+0xe7/0x980 [ 3000.639251] ? __lockdep_reset_lock+0x180/0x180 [ 3000.640283] ? create_io_thread+0xf0/0xf0 [ 3000.641209] ? ksys_write+0x21a/0x260 [ 3000.642050] ? lock_downgrade+0x6d0/0x6d0 [ 3000.642979] __do_sys_clone3+0x1e5/0x320 [ 3000.643875] ? __do_sys_clone+0x110/0x110 [ 3000.644817] ? rcu_read_lock_any_held+0x75/0xa0 [ 3000.645838] ? vfs_write+0x354/0xa70 [ 3000.646681] ? fput_many+0x2f/0x1a0 [ 3000.647487] ? ksys_write+0x1a9/0x260 [ 3000.648322] ? __ia32_sys_read+0xb0/0xb0 [ 3000.649215] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3000.650360] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3000.651516] ? trace_hardirqs_on+0x5b/0x180 [ 3000.652486] do_syscall_64+0x33/0x40 [ 3000.653372] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3000.654541] RIP: 0033:0x7f99575d9b19 [ 3000.655435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3000.660087] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3000.661765] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3000.663339] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3000.664889] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3000.666441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3000.668008] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:30:40 executing program 6: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:40 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2020000000000, 0x0, 0x0}, 0x58) 07:30:40 executing program 4: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) ppoll(&(0x7f0000000240)=[{r0, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) mmap(&(0x7f0000ff9000/0x3000)=nil, 0x3000, 0x1000007, 0x10, r0, 0x731e5000) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setitimer(0x2, 0x0, 0x0) clone3(&(0x7f0000001200)={0x200, 0x0, 0x0, 0x0, {0x2}, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff27}, 0x58) [ 3000.961568] syz-executor.4 calls setitimer() with new_value NULL pointer. Misfeature support will be removed 07:30:40 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 42) 07:30:40 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x200}, 0x0, 0x17, 0x0, 0x0, 0x0, {r2}}, 0x58) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x2c4001, 0x0) fallocate(r3, 0x20, 0x7, 0xeb59) r4 = syz_open_dev$vcsu(&(0x7f0000000080), 0xfffffffffffffffe, 0x42200) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r4, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x0, 0x100, 0x70bd28, 0x25dfdbfe, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x24040000) 07:30:40 executing program 0: syz_mount_image$nfs4(&(0x7f0000002f40), &(0x7f0000002f80)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="6673633d9e"]) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3001.051221] FAULT_INJECTION: forcing a failure. [ 3001.051221] name failslab, interval 1, probability 0, space 0, times 0 [ 3001.052554] CPU: 1 PID: 107850 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3001.053295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3001.054197] Call Trace: [ 3001.054488] dump_stack+0x107/0x167 [ 3001.054888] should_fail.cold+0x5/0xa [ 3001.055300] ? anon_vma_fork+0xf1/0x640 [ 3001.055772] should_failslab+0x5/0x20 [ 3001.056338] kmem_cache_alloc+0x5b/0x310 [ 3001.056777] anon_vma_fork+0xf1/0x640 [ 3001.057185] ? __vm_enough_memory+0x184/0x360 [ 3001.057674] dup_mm+0x861/0x1110 [ 3001.058041] ? vm_area_dup+0x290/0x290 [ 3001.058465] ? __raw_spin_lock_init+0x36/0x110 [ 3001.058934] copy_process+0x24e2/0x6740 [ 3001.059363] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3001.059931] ? exc_page_fault+0xca/0x1a0 [ 3001.060376] ? trace_hardirqs_on+0x5b/0x180 [ 3001.060823] ? __cleanup_sighand+0xb0/0xb0 [ 3001.061302] ? _copy_from_user+0xfb/0x1b0 [ 3001.061766] kernel_clone+0xe7/0x980 [ 3001.062177] ? __lockdep_reset_lock+0x180/0x180 [ 3001.062700] ? create_io_thread+0xf0/0xf0 [ 3001.063169] ? ksys_write+0x21a/0x260 [ 3001.063592] ? lock_downgrade+0x6d0/0x6d0 [ 3001.064056] __do_sys_clone3+0x1e5/0x320 [ 3001.064476] ? __do_sys_clone+0x110/0x110 [ 3001.064954] ? rcu_read_lock_any_held+0x75/0xa0 [ 3001.065461] ? vfs_write+0x354/0xa70 [ 3001.065877] ? fput_many+0x2f/0x1a0 [ 3001.066277] ? ksys_write+0x1a9/0x260 [ 3001.066707] ? __ia32_sys_read+0xb0/0xb0 [ 3001.067153] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3001.067729] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3001.068306] ? trace_hardirqs_on+0x5b/0x180 [ 3001.068786] do_syscall_64+0x33/0x40 [ 3001.069195] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3001.069762] RIP: 0033:0x7f99575d9b19 [ 3001.070177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3001.072207] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3001.073052] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3001.073841] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3001.074619] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3001.075413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3001.076210] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:30:40 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x1000000, 0x8000) 07:30:40 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)=""/243, 0xf3}, {&(0x7f0000000100)=""/139, 0x8b}, {&(0x7f00000001c0)=""/118, 0x76}, {&(0x7f0000000240)=""/185, 0xb9}, {&(0x7f0000000300)=""/55, 0x37}], 0x5, &(0x7f00000003c0)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa0}, 0x10101) ioctl$SG_SCSI_RESET(r1, 0x2284, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:54 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x101000, 0x12) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)={0xe2, 0x7, 0xc69, "cf112628546af89c649282f8fca7493e6ee14d6f8102ca0b565ff7bfa5cd838f83754e2d36ab2a079cd3a9003142a0a026d2404b29ffd61a85090687d7343582bc996f0a26bcdd28d56d1286d799d9e1e649f48280f91be980647ffc54a84c23f1ff55092816f4e2c7af70a6409505cb01d5e72c90f5527011a54e07307a3f1940d1f2f39eb6e09798aae2446f0778713e485ee8d7a4abe07e84e30dcbcb21200756bca01d6b7dc24bd43bd0d82ebb5e277818b7d9a38a9c799f2e654fcd63a133c459dac1904931693d92f2b587f9f02af0def584c7bcdfa12ce58ccf3f914de5c4"}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:54 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000000000, 0x0, 0x0}, 0x58) 07:30:54 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, 0x0) ioctl$SG_GET_VERSION_NUM(r1, 0x2282, &(0x7f0000000000)) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000280)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r2, @ANYBLOB="060000c41ac839533bb71db5337200000000002e2f66696c65"]) 07:30:54 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 43) 07:30:54 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, 0x0) ioctl$SCSI_IOCTL_GET_IDLUN(r1, 0x5382, &(0x7f0000000000)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SG_GET_SG_TABLESIZE(r1, 0x227f, &(0x7f0000000040)) 07:30:54 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = socket$nl_audit(0x10, 0x3, 0x9) kcmp(r1, r1, 0x3, r0, r2) 07:30:54 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x40000000, 0x200) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000080), 0x9, 0x0) ioctl$SCSI_IOCTL_DOORUNLOCK(r1, 0x5381) r2 = signalfd4(r0, &(0x7f0000000000)={[0x4]}, 0x8, 0x80000) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2288, &(0x7f0000000040)) ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000001480)) r3 = clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r4 = fork() r5 = fork() getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000001180)={0x0}, &(0x7f00000011c0)=0xc) r7 = gettid() process_vm_readv(r7, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) r8 = fork() r9 = gettid() process_vm_readv(r9, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) r10 = gettid() process_vm_readv(r10, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) clone3(&(0x7f0000001400)={0x4000100, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x21}, &(0x7f0000000180)=""/4096, 0x1000, &(0x7f0000001300)=""/199, &(0x7f0000001280)=[r3, r4, r5, r6, r7, r8, r9, r10, r3], 0x9, {r2}}, 0x58) 07:30:54 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x2000000, 0x8000) [ 3015.396146] FAULT_INJECTION: forcing a failure. [ 3015.396146] name failslab, interval 1, probability 0, space 0, times 0 [ 3015.398895] CPU: 1 PID: 108345 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3015.400306] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3015.401971] Call Trace: [ 3015.402513] dump_stack+0x107/0x167 [ 3015.403267] should_fail.cold+0x5/0xa [ 3015.404043] ? create_object.isra.0+0x3a/0xa20 [ 3015.404975] should_failslab+0x5/0x20 [ 3015.405758] kmem_cache_alloc+0x5b/0x310 [ 3015.406598] create_object.isra.0+0x3a/0xa20 [ 3015.407502] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3015.408541] kmem_cache_alloc+0x159/0x310 [ 3015.409395] anon_vma_fork+0xf1/0x640 [ 3015.410168] ? __vm_enough_memory+0x184/0x360 [ 3015.411101] dup_mm+0x861/0x1110 [ 3015.411831] ? vm_area_dup+0x290/0x290 [ 3015.412638] ? __raw_spin_lock_init+0x36/0x110 [ 3015.413566] copy_process+0x24e2/0x6740 [ 3015.414393] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3015.415474] ? exc_page_fault+0xca/0x1a0 [ 3015.416294] ? trace_hardirqs_on+0x5b/0x180 [ 3015.417189] ? __cleanup_sighand+0xb0/0xb0 [ 3015.418060] ? _copy_from_user+0xfb/0x1b0 [ 3015.418916] kernel_clone+0xe7/0x980 [ 3015.419669] ? __lockdep_reset_lock+0x180/0x180 [ 3015.420607] ? create_io_thread+0xf0/0xf0 [ 3015.421481] ? ksys_write+0x21a/0x260 [ 3015.422256] ? lock_downgrade+0x6d0/0x6d0 [ 3015.423120] __do_sys_clone3+0x1e5/0x320 [ 3015.423941] ? __do_sys_clone+0x110/0x110 [ 3015.424828] ? rcu_read_lock_any_held+0x75/0xa0 [ 3015.425762] ? vfs_write+0x354/0xa70 [ 3015.426515] ? fput_many+0x2f/0x1a0 [ 3015.427263] ? ksys_write+0x1a9/0x260 [ 3015.428028] ? __ia32_sys_read+0xb0/0xb0 [ 3015.428855] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3015.429909] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3015.430947] ? trace_hardirqs_on+0x5b/0x180 [ 3015.431821] do_syscall_64+0x33/0x40 [ 3015.432570] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3015.433598] RIP: 0033:0x7f99575d9b19 [ 3015.434351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3015.438038] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3015.439589] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3015.441019] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3015.442448] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3015.443886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3015.445315] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:30:54 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x2010000, 0x8000) 07:30:54 executing program 0: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, 0xffffffffffffffff, 0xc2f03000) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_unix(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000580)={'trans=unix,', {[{@aname={'aname', 0x3d, 'cache=loose'}}, {@cache_mmap}, {@version_L}, {@uname={'uname', 0x3d, '9p\x00'}}, {@msize}], [{@fsname={'fsname', 0x3d, '#\\-'}}, {@pcr={'pcr', 0x3d, 0x15}}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}, {@fsmagic={'fsmagic', 0x3d, 0x20}}]}}) listen(r0, 0x0) ppoll(&(0x7f0000000240)=[{r0, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) ftruncate(r1, 0x7) openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) 07:30:55 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = dup2(0xffffffffffffffff, r0) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000080)={0x6, 0x0, 0x2, "c73b3894736c"}) ioctl$SG_GET_SG_TABLESIZE(r0, 0x227f, &(0x7f0000000000)) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) 07:30:55 executing program 3: r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000001c0)={{{@in=@local, @in=@loopback}}, {{@in=@multicast1}, 0x0, @in6=@mcast2}}, &(0x7f0000000040)=0xe8) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x40010, r1, 0x0) ioctl$SG_SCSI_RESET(r1, 0x2284, 0x0) ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000000140)=0x93) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000001000000, 0x0, 0x0}, 0x58) [ 3015.738926] 9pnet: p9_fd_create_unix (109048): problem connecting socket: ./file0/file0: -20 07:30:55 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0xe, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:30:55 executing program 1: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000380)=ANY=[@ANYBLOB="01fdffff0000000018000000", @ANYRES32=r0, @ANYRES32=0xee01, @ANYRES32=0xee00, @ANYRESDEC=0x0]) r2 = gettid() process_vm_readv(r2, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000600)={{{@in=@remote, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@private0}}, &(0x7f0000000700)=0xe8) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000540)=ANY=[@ANYBLOB="01ff0100000000000000843ca2ba0fb1ea2c9db207f71530027647bb8bb58cc08a82186c778293e0a54794fa40e28fc57750df284bc69f284085d43494a08f10dcc3cf1ce45c2c0aa5edd7c9aa99489efad04a54cc654224ea56abbf2160b2aef181b794fa4e98a84356c592e6da9cfeff128e829ed2dbecff2c5a1809acb7718ef62168", @ANYRES32=r0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB='./file0\x00']) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000000780)={0x0, 0x0}) stat(&(0x7f0000000200)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r7, 0x0) stat(&(0x7f0000000340)='.\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r7, r8, 0x0) r9 = getegid() sendmsg$unix(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000100)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000280)="1344abcad5a2f736d9e2300fae5eacbb8aa7fd52c45e54a529b907fef70fb49106971f72d165ee244802ee28e95da57a19ffa769e61c31feae0000000000000005a48f109e96ba19251db5762e3797a48da788ffcb2f90bc40e0ff97dd3751f3af6777565c66c043e465296760a78679d0126f7e20dc82cdb9688d74d2a0d619aaad66247cc351786c643cbd3f2827663779743ef584f9136e1f79b1e39f9b8a362cadff9491dcb5e37fedd0758ccb81a08ff5fc0d2bfd8eed2e1384ceaf6a51c597a158e075cb2c061ddf7e21d069a9d1503cf8b8c7", 0xd6}, {&(0x7f0000000180)="843165662844904dc2ee64282bd5d600e6516905bb896ca8d6746c8f9543cbc3baf140ec08f875c7938798600cc6ca9e4853", 0x32}, {&(0x7f0000001300)="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", 0x1000}, {&(0x7f00000001c0)="024a70c3239a5997af8729ea00e839b2ca9c18728fe148295895b021", 0x1c}], 0x4, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r1}}}, @cred={{0x1c, 0x1, 0x2, {r6, r3, r5}}}, @cred={{0xfffffffffffffc8e, 0x1, 0x2, {r6, r8, r9}}}, @cred={{0x0, 0x1, 0x2, {r2}}}, @rights={{0x0, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0]}}, @rights={{0x0, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60, 0x8801}, 0x804) ioctl$sock_SIOCGSKNS(r0, 0x894c, &(0x7f0000000000)=0x2b) ppoll(&(0x7f0000000240)=[{r0, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) fallocate(r0, 0x2f, 0x3ff, 0x3215) syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:12 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000040)={'\x00', 0x8001, 0x9, 0x9, 0x6, 0x8, r1}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000100)) 07:31:12 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r3 = syz_mount_image$nfs4(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffe, 0x1, &(0x7f0000000140)=[{&(0x7f0000000240)="dd4111b5f680d6aed1bc11a09444481d105e7e98cf0a9ad6442c027642bc9358c5356d4c811bc8a3875068bc70e17ad1f80c9eb8246a9a813660c3d2f572be1494cff672f8d570e3dd7f919a2ea189e99bcdec2bcc829c919ce9441aa5f7db97ed1182c3876ffb7551837b2198b439770cfb7210c253ddecb2744e4fef3b534f57ab5ef608323d23dae5a011f21a4b345a3311756a5498153461c8c7be69dd99771763dc7dc4d156e16fb8d4ed6a5dfd08c59a7361c597bbe5a06615d045c3cbfa2f820e9062277825858610da42", 0xce, 0x3}], 0x100021, &(0x7f0000000180)={[{'TIPC\x00'}, {'}'}], [{@euid_gt={'euid>', 0xffffffffffffffff}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'TIPC\x00'}}]}) writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) r4 = socket$unix(0x1, 0x5, 0x0) bind$unix(r4, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r4, 0x0) ppoll(&(0x7f0000000240)=[{r4, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) sendfile(r4, 0xffffffffffffffff, &(0x7f0000000340)=0x400, 0x8) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) ioctl$SG_SCSI_RESET(r1, 0x2284, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0xfffffffd}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:12 executing program 0: r0 = open_tree(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x8000) ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000040)={0x6, 0x1}) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:12 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x3000000, 0x8000) 07:31:12 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 44) 07:31:12 executing program 3: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r0 = socket$nl_audit(0x10, 0x3, 0x9) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x158ce000) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x1b) sendfile(r0, 0xffffffffffffffff, &(0x7f0000000040)=0x9, 0x81) mincore(&(0x7f0000000000/0x3000)=nil, 0x3000, &(0x7f0000000080)=""/78) sendmsg$AUDIT_USER(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x28, 0x3ed, 0x200, 0x70bd2d, 0x25dfdbfc, "54ac569619e36ea4939a40d84237b9b578fc2c66caba7a", ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x40) clone3(&(0x7f0000001200)={0x20000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:12 executing program 4: getsockopt$SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, &(0x7f0000000000), &(0x7f0000000040)=0x8) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0xfffffffeffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) shmget$private(0x0, 0x1000, 0x2, &(0x7f0000ffd000/0x1000)=nil) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:12 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10100000000000, 0x0, 0x0}, 0x58) [ 3033.289221] FAULT_INJECTION: forcing a failure. [ 3033.289221] name failslab, interval 1, probability 0, space 0, times 0 [ 3033.291828] CPU: 0 PID: 109798 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3033.293218] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3033.294860] Call Trace: [ 3033.295423] dump_stack+0x107/0x167 [ 3033.296159] should_fail.cold+0x5/0xa [ 3033.296927] ? anon_vma_fork+0x1ff/0x640 [ 3033.297742] should_failslab+0x5/0x20 [ 3033.298522] kmem_cache_alloc+0x5b/0x310 [ 3033.299545] anon_vma_fork+0x1ff/0x640 [ 3033.300342] dup_mm+0x861/0x1110 [ 3033.301183] ? vm_area_dup+0x290/0x290 [ 3033.301988] ? __raw_spin_lock_init+0x36/0x110 [ 3033.303106] copy_process+0x24e2/0x6740 [ 3033.304063] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3033.305115] ? exc_page_fault+0xca/0x1a0 [ 3033.306097] ? trace_hardirqs_on+0x5b/0x180 [ 3033.307143] ? __cleanup_sighand+0xb0/0xb0 [ 3033.308007] ? _copy_from_user+0xfb/0x1b0 [ 3033.308837] kernel_clone+0xe7/0x980 [ 3033.309578] ? __lockdep_reset_lock+0x180/0x180 [ 3033.310504] ? create_io_thread+0xf0/0xf0 [ 3033.311385] ? ksys_write+0x21a/0x260 [ 3033.312163] ? lock_downgrade+0x6d0/0x6d0 [ 3033.313012] __do_sys_clone3+0x1e5/0x320 [ 3033.313835] ? __do_sys_clone+0x110/0x110 [ 3033.314714] ? rcu_read_lock_any_held+0x75/0xa0 [ 3033.315653] ? vfs_write+0x354/0xa70 [ 3033.316406] ? fput_many+0x2f/0x1a0 [ 3033.317140] ? ksys_write+0x1a9/0x260 [ 3033.317870] ? __ia32_sys_read+0xb0/0xb0 [ 3033.318692] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3033.319759] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3033.320796] ? trace_hardirqs_on+0x5b/0x180 [ 3033.321677] do_syscall_64+0x33/0x40 [ 3033.322434] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3033.323477] RIP: 0033:0x7f99575d9b19 [ 3033.324206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3033.327777] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3033.329274] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3033.330685] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3033.332125] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3033.333565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3033.334999] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:31:12 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x211000140, 0x0, 0x0, 0x0, {0x37}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:12 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x4000000, 0x8000) 07:31:12 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = signalfd4(r0, &(0x7f0000000480)={[0xffffffffffff8000]}, 0x8, 0x80800) clone3(&(0x7f0000000400)={0x8000000, 0x0, 0x0, 0x0, {0xfffffffd}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58) ioctl$BTRFS_IOC_FS_INFO(r0, 0x8400941f, &(0x7f0000000000)) 07:31:12 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write$binfmt_script(r0, &(0x7f0000000100)={'#! ', './file0', [{0x20, '/dev/sg#\x00'}, {}], 0xa, "c494b418d4f154273bd568cd6ef1169a630286301aaab7eb1eeabea54cd878eec6a28a09f41378b33f7c62e372bbc5a8935b6b2a7b5c5eea5aa8a25dd42b5668721eda3f6bff41d75b013243bfdc000090f75d869d3af15a5c8efb49d8a06306320f4e2aa05b8fd32765c8c77d8d53e6dcca95d7d1a4c3109d6cda8b2ecbe4379936ee5304214946e1d7811b3652671fcce41d53f257c08ec049de187b77c2f7bcc2af07b9b459fbe2529a2a50e73d10bb55dc784d34f6b8438093461b55d874c9d2e00e3275374b33d48df9cf846bd78f6af9a2560b8bb9218d"}, 0xf0) 07:31:12 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x407e273a550000, 0x0, 0x0}, 0x58) 07:31:12 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000880)={0x0, 0xfffffffffffffffc, 0xa9, 0x4, @scatter={0x5, 0x0, &(0x7f0000000640)=[{&(0x7f0000000440)=""/37, 0x25}, {&(0x7f0000000480)=""/25, 0x19}, {&(0x7f00000004c0)}, {&(0x7f0000000500)=""/56, 0x38}, {&(0x7f0000000540)=""/234, 0xea}]}, &(0x7f00000006c0)="aa05e5a0d3f86a4e3e3d4b5dfabcc3734b643d0eec8b3e21bced96f251ba104c8244a97041b3a8fb276fec90dd79fc165194d009c4baba686998d355cc2bd16ee66dfb0675db3553f05bdc8dc826164d22b1a40d09101fe9bbb28baffccc66da1ebfee27926b58ba6da5e3e6583a3331393021f621f5e61264cc40acdca6465d7658339388b536e2bd57e4a37ea914df827774dbdbd6287588d4309abdeeac07091311d8c2c8c436e9", &(0x7f0000000780)=""/182, 0x100, 0x21, 0x1, &(0x7f0000000840)}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x0) r1 = clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240)={0x0}, &(0x7f0000000280)=0xc) perf_event_open(&(0x7f0000000380)={0x5, 0x80, 0x6, 0x5, 0x8b, 0x6, 0x0, 0xfff, 0x8000, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x1f, 0x4}, 0x48200, 0xa8, 0x7fff, 0x4, 0xfffffffffffffff8, 0xff0000, 0x6, 0x0, 0xffff0001, 0x0, 0x4}, r1, 0x1, 0xffffffffffffffff, 0x2) clone3(&(0x7f0000000300)={0x21800, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x32}, &(0x7f00000000c0)=""/213, 0xd5, &(0x7f00000001c0)=""/120, &(0x7f00000002c0)=[r2], 0x1}, 0x58) fcntl$setownex(r0, 0xf, &(0x7f0000000400)={0x0, r1}) 07:31:12 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SG_GET_SG_TABLESIZE(r0, 0x227f, &(0x7f0000000000)) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10, r0, 0x4f3f6000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:12 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 45) [ 3033.786307] FAULT_INJECTION: forcing a failure. [ 3033.786307] name failslab, interval 1, probability 0, space 0, times 0 [ 3033.789199] CPU: 1 PID: 110813 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3033.790625] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3033.792331] Call Trace: [ 3033.792892] dump_stack+0x107/0x167 [ 3033.793655] should_fail.cold+0x5/0xa [ 3033.794447] ? create_object.isra.0+0x3a/0xa20 [ 3033.795431] should_failslab+0x5/0x20 [ 3033.796213] kmem_cache_alloc+0x5b/0x310 [ 3033.797050] create_object.isra.0+0x3a/0xa20 [ 3033.797950] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3033.798986] kmem_cache_alloc+0x159/0x310 [ 3033.799837] anon_vma_fork+0x1ff/0x640 [ 3033.800637] dup_mm+0x861/0x1110 [ 3033.801338] ? vm_area_dup+0x290/0x290 07:31:13 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x100000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3033.802128] ? __raw_spin_lock_init+0x36/0x110 [ 3033.803618] copy_process+0x24e2/0x6740 [ 3033.804759] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3033.806051] ? exc_page_fault+0xca/0x1a0 [ 3033.807016] ? trace_hardirqs_on+0x5b/0x180 [ 3033.808078] ? __cleanup_sighand+0xb0/0xb0 [ 3033.809297] ? _copy_from_user+0xfb/0x1b0 [ 3033.810302] kernel_clone+0xe7/0x980 [ 3033.811393] ? __lockdep_reset_lock+0x180/0x180 [ 3033.812509] ? create_io_thread+0xf0/0xf0 [ 3033.813713] ? ksys_write+0x21a/0x260 [ 3033.814624] ? lock_downgrade+0x6d0/0x6d0 [ 3033.815819] __do_sys_clone3+0x1e5/0x320 [ 3033.816790] ? __do_sys_clone+0x110/0x110 [ 3033.818002] ? rcu_read_lock_any_held+0x75/0xa0 [ 3033.819206] ? vfs_write+0x354/0xa70 [ 3033.820094] ? fput_many+0x2f/0x1a0 [ 3033.821121] ? ksys_write+0x1a9/0x260 [ 3033.822027] ? __ia32_sys_read+0xb0/0xb0 [ 3033.823147] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3033.824378] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3033.825579] ? trace_hardirqs_on+0x5b/0x180 [ 3033.826593] do_syscall_64+0x33/0x40 [ 3033.827476] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3033.828671] RIP: 0033:0x7f99575d9b19 [ 3033.829542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3033.833817] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3033.835582] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3033.837228] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3033.838866] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3033.840524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3033.842164] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:31:30 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 46) 07:31:30 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x4]}, 0x8) r2 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x113000, 0x0, 0x10}, 0x18) r3 = socket$unix(0x1, 0x5, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r3, 0x0) ppoll(&(0x7f0000000240)=[{r3, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) bind$unix(r4, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r4, 0x0) ppoll(&(0x7f0000000240)=[{r4, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) poll(&(0x7f00000000c0)=[{r1, 0xe280}, {r2, 0x8120}, {r0, 0x2148}, {r3, 0x20}, {r4}], 0x5, 0xffff) openat(r2, &(0x7f0000000100)='./file0\x00', 0x81, 0x2) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:30 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) syz_open_dev$sg(&(0x7f0000000000), 0x6d, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:30 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000180)=0x0) perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x2, 0x7f, 0x1, 0xff, 0x0, 0xffff, 0xc010, 0xa, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_config_ext={0x3ff, 0xe763}, 0x1004, 0xdf5e, 0x1, 0x2, 0x9, 0x4, 0x40, 0x0, 0x5, 0x0, 0x1}, r2, 0x7, 0xffffffffffffffff, 0x1) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$AUTOFS_IOC_PROTOVER(r1, 0x80049363, &(0x7f0000000000)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:30 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x5000000, 0x8000) 07:31:30 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syncfs(r0) 07:31:30 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xe072813d2a0000, 0x0, 0x0}, 0x58) 07:31:30 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000001380), 0x80000000, 0x228001) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000002580)={0x53, 0xfffffffffffffffd, 0x4a, 0x3f, @buffer={0x0, 0xae, &(0x7f0000001440)=""/174}, &(0x7f0000001500)="5014403e3d65ff954a11980826685a045821512d3b7266032d2303d01b32da791a40d61c3908427efacd9770d746eba7c12a2fbf0db92d146b0de2601ef3f718fb90b95a3ea96932f874", &(0x7f0000001580)=""/4096, 0x9, 0x2, 0x2, &(0x7f00000012c0)}) ioctl$SG_GET_LOW_DMA(r0, 0x227a, &(0x7f0000000000)) syncfs(r1) ioctl$SG_IO(r0, 0x2285, &(0x7f0000001300)={0x0, 0xfffffffffffffffe, 0x1000, 0x8, @buffer={0x0, 0x4e, &(0x7f00000013c0)=""/78}, &(0x7f00000001c0)="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", &(0x7f00000011c0)=""/40, 0x1, 0x2, 0x2, &(0x7f0000001280)}) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) writev(r0, &(0x7f0000003700)=[{&(0x7f0000002600)="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", 0x1000}, {&(0x7f0000003600)="f38a1daa0bb0ae52233890296c25b4be00265a7aaa10c541cc273aff233f038dc7ba7be0c6ef76765358d8d3157c46d937cfd150761df24b6ffaecfc71d6f1d28c7f4bdc8c8cb4266a82df8a4f8611181d7e845c07169bc0b7d98308fccbe1ae8e787a1d22585b05cb2d1831ee3dde7af464023647ec963ef9ee6e48089238c8fae91e67d4", 0x85}, {&(0x7f00000036c0)="7fb64e8feb332001e8940e273a", 0xd}], 0x3) ioctl$sock_SIOCDELRT(r2, 0x890c, &(0x7f0000000140)={0x0, @qipcrtr={0x2a, 0x4, 0xfffffffe}, @sco, @can, 0xfffa, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000100)='bridge_slave_1\x00', 0x401, 0x3f087559, 0x5}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x105000, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3051.185960] FAULT_INJECTION: forcing a failure. [ 3051.185960] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3051.188496] CPU: 0 PID: 111345 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3051.189928] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3051.191640] Call Trace: [ 3051.192189] dump_stack+0x107/0x167 [ 3051.192942] should_fail.cold+0x5/0xa [ 3051.193732] __alloc_pages_nodemask+0x182/0x600 [ 3051.194683] ? __lockdep_reset_lock+0x180/0x180 [ 3051.195641] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3051.196867] ? copy_page_range+0x28f6/0x3820 [ 3051.197759] alloc_pages_current+0x187/0x280 [ 3051.198653] get_zeroed_page+0x14/0xb0 [ 3051.199449] __pud_alloc+0x33/0x270 [ 3051.200202] copy_page_range+0x2cb6/0x3820 [ 3051.201057] ? perf_trace_lock+0xac/0x490 [ 3051.201891] ? lock_chain_count+0x20/0x20 [ 3051.202750] ? lock_downgrade+0x6d0/0x6d0 [ 3051.203617] ? up_write+0x191/0x550 [ 3051.204352] ? vm_iomap_memory+0x190/0x190 [ 3051.205217] ? downgrade_write+0x3a0/0x3a0 [ 3051.206080] ? anon_vma_interval_tree_insert+0x277/0x450 [ 3051.207175] ? __vma_link_rb+0x540/0x700 [ 3051.208019] dup_mm+0x8b9/0x1110 [ 3051.208717] ? vm_area_dup+0x290/0x290 [ 3051.209505] ? __raw_spin_lock_init+0x36/0x110 [ 3051.210440] copy_process+0x24e2/0x6740 [ 3051.211241] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3051.212302] ? exc_page_fault+0xca/0x1a0 [ 3051.213118] ? trace_hardirqs_on+0x5b/0x180 [ 3051.214004] ? __cleanup_sighand+0xb0/0xb0 [ 3051.214867] ? _copy_from_user+0xfb/0x1b0 [ 3051.215719] kernel_clone+0xe7/0x980 [ 3051.216465] ? __lockdep_reset_lock+0x180/0x180 [ 3051.217399] ? create_io_thread+0xf0/0xf0 [ 3051.218249] ? ksys_write+0x21a/0x260 [ 3051.219013] ? lock_downgrade+0x6d0/0x6d0 [ 3051.219866] __do_sys_clone3+0x1e5/0x320 [ 3051.220681] ? __do_sys_clone+0x110/0x110 [ 3051.221539] ? rcu_read_lock_any_held+0x75/0xa0 [ 3051.222470] ? vfs_write+0x354/0xa70 [ 3051.223227] ? fput_many+0x2f/0x1a0 [ 3051.223967] ? ksys_write+0x1a9/0x260 [ 3051.224733] ? __ia32_sys_read+0xb0/0xb0 [ 3051.225554] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3051.226606] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3051.227651] ? trace_hardirqs_on+0x5b/0x180 [ 3051.228523] do_syscall_64+0x33/0x40 [ 3051.229273] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3051.230301] RIP: 0033:0x7f99575d9b19 [ 3051.231052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3051.234756] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3051.236302] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3051.237735] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3051.239166] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3051.240604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3051.242031] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:31:30 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, {0xb}, 0x0, 0x0, 0x0, 0x0}, 0x58) socketpair(0x23, 0x2, 0x80, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup2(r0, r1) 07:31:30 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x6000000, 0x8000) 07:31:30 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = socket$unix(0x1, 0x2, 0x0) ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r1, 0x8008f512, &(0x7f0000000000)) 07:31:30 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0110c1b000000, 0x0, 0x0}, 0x58) 07:31:30 executing program 3: sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x0, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10008004}, 0x4000000) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x3000) r1 = dup(r0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000240)={0x0, 0xfffffffffffffffc, 0x1bc, 0x3, @scatter={0x5, 0x0, &(0x7f0000000500)=[{&(0x7f00000000c0)=""/105, 0x69}, {&(0x7f0000000140)=""/42, 0x2a}, {&(0x7f0000000180)=""/3, 0x3}, {&(0x7f0000000480)=""/3, 0x3}, {&(0x7f00000004c0)=""/9, 0x9}]}, &(0x7f00000002c0)="1f7d9a4fd1d3938371c9c76f6a45c4d4929c07bbe71ce717bcca283a3296e36f24276db6c3b33d24e4944f724d38bad36e8e1f7e307b546280f91d2ea68f30566d293287660413d9b076b244ff1489d978076b6b4357381456f0311f0bf31fb8eb33654cb5a6fe9c5c79b366bd875922180ccc7952d1a69116268510816f2db9a3b847edf8f766a2c74317a1b9a9ea1182e073f5df2cd2deb755b8a39e13363daba2af35fca5be3d95a62d450d32dfa78bd0062678982ea43cb70224ff36ead8ba734c94eb31956910ebee605137ebe2ba4be446342e6783c7959a0a536d07b9db0514c1ab822e27814703afe8b93a84989cadbae6082c33b74ea6ba10387798fbe1b5a5fe24e9bc63a29931859b1412e0081fccdcc00fe43623795b88e22513335108c91878a44a48c7f94f82e1832efce16283bfefaece2d3a5fd6b3a534f7fb22ed1ac5b2d2646717f34c3f4b6d5f0e10569e57a9bfc6603da6bf1c398cb0fbb33713127c72833169e7300d8a42971a22d441a84ba391f261d50c3db14072edf111bcaa1cfcb25cdad38cb3a940490226fde60ed55bb01fe8ee530ee2de91af21b088ba8bca763a0ccfb1eb8a55483863339a3cc7e90dd95436fc", &(0x7f00000001c0)=""/5, 0x40, 0x4, 0x3, &(0x7f0000000200)}) 07:31:30 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = socket$unix(0x1, 0x2, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x4e3e9000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0xc00, 0x0) bind$unix(r2, &(0x7f0000000140)=@abs={0x0, 0x0, 0x4e23}, 0x6e) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xee01, 0xffffffffffffffff}}, './file0\x00'}) open_tree(r3, &(0x7f00000001c0)='./file0\x00', 0x1) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r3, 0x5386, &(0x7f0000000040)) 07:31:30 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 47) [ 3051.703016] FAULT_INJECTION: forcing a failure. [ 3051.703016] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3051.705958] CPU: 1 PID: 112419 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3051.707381] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3051.709040] Call Trace: [ 3051.709576] dump_stack+0x107/0x167 [ 3051.710313] should_fail.cold+0x5/0xa [ 3051.711091] __alloc_pages_nodemask+0x182/0x600 [ 3051.712031] ? lock_acquire+0x197/0x470 [ 3051.712833] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3051.714037] ? lock_downgrade+0x6d0/0x6d0 [ 3051.714868] ? do_raw_spin_lock+0x121/0x260 [ 3051.715748] alloc_pages_current+0x187/0x280 [ 3051.716633] __pmd_alloc+0x37/0x5e0 [ 3051.717365] copy_page_range+0x2bed/0x3820 [ 3051.718210] ? perf_trace_lock+0xac/0x490 [ 3051.719083] ? lock_chain_count+0x20/0x20 [ 3051.719975] ? up_write+0x191/0x550 [ 3051.720721] ? vm_iomap_memory+0x190/0x190 [ 3051.721566] ? downgrade_write+0x3a0/0x3a0 [ 3051.722417] ? anon_vma_interval_tree_insert+0x277/0x450 [ 3051.723510] ? __vma_link_rb+0x540/0x700 [ 3051.724328] dup_mm+0x8b9/0x1110 [ 3051.725021] ? vm_area_dup+0x290/0x290 [ 3051.725802] ? __raw_spin_lock_init+0x36/0x110 [ 3051.726720] copy_process+0x24e2/0x6740 [ 3051.727531] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3051.728576] ? exc_page_fault+0xca/0x1a0 [ 3051.729390] ? trace_hardirqs_on+0x5b/0x180 [ 3051.730295] ? __cleanup_sighand+0xb0/0xb0 [ 3051.731154] ? _copy_from_user+0xfb/0x1b0 [ 3051.731997] kernel_clone+0xe7/0x980 [ 3051.732738] ? __lockdep_reset_lock+0x180/0x180 [ 3051.733665] ? create_io_thread+0xf0/0xf0 [ 3051.734509] ? ksys_write+0x21a/0x260 [ 3051.735286] ? lock_downgrade+0x6d0/0x6d0 [ 3051.736120] __do_sys_clone3+0x1e5/0x320 [ 3051.736929] ? __do_sys_clone+0x110/0x110 [ 3051.737781] ? rcu_read_lock_any_held+0x75/0xa0 [ 3051.738798] ? vfs_write+0x354/0xa70 [ 3051.739584] ? fput_many+0x2f/0x1a0 [ 3051.740315] ? ksys_write+0x1a9/0x260 [ 3051.741076] ? __ia32_sys_read+0xb0/0xb0 [ 3051.741895] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3051.742941] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3051.743974] ? trace_hardirqs_on+0x5b/0x180 [ 3051.744840] do_syscall_64+0x33/0x40 [ 3051.745587] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3051.746607] RIP: 0033:0x7f99575d9b19 [ 3051.747371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3051.751034] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3051.752572] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3051.753995] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3051.755429] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3051.756842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3051.758254] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:31:47 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000000)="c88a3b3ce3e7e4ac46d3b64966dbf5bb9895bf045dbf9ba141c64197673101bec1f94a3e0d1a7b8a2fc51cd673b4714bb0620d28a538583c2708aaee3da2748ef0644cece4005d2756edd6ba0fb791687ec1347f9c02d0d141e441e649d851440657c5ff5b6a053ee9c6272e6e59abeecf06de7ffbd1a482b577c47a09d78815ccbfd6d98bf40227ed996c390d7480ba9fc063ac7735a09563226718b269ffef4461662b45cc56204f3e020399fcce2f68adfda2662fa8c5f2477b7fe95543dc5795be71dc3653483cbbe9f40f2c42ae5654f1cb19c7f4c933fdd238b66d7b847dc228e9d2de906b50", 0xe9}, {&(0x7f0000000100)="0842285ffdba8e50fdcbf4591284a89792bc011b8b0884f1b7f6f740fd62da6064239b8ce558a7eed03043c4039306a54f250c71a7b04fd7f878bc33bc80c9c20cc11b765f88b3221b9206ea9adf95d012193af8528f0d16043784cd7b", 0x5d}, {&(0x7f0000000180)="cca63508f8e80f4fe57691aa18e50874d9deee85868373c0189c6e2d8cd6194319737bfac05a1ac1fc2fb691e98c9dd6b129e4ad4bccd7f6a7bb574e076af31d2de5a3d5d20fa0cfa380349581d18b91ad26cd164174c99e443e72895f3853696c94f9f65dd87ad1d092", 0x6a}], 0x3) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) clone3(&(0x7f0000001200)={0x2010000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x9d, {r2}}, 0x58) 07:31:47 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x7000000, 0x8000) 07:31:47 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f00000000, 0x0, 0x0}, 0x58) 07:31:47 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:47 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) ioctl$SG_GET_LOW_DMA(r2, 0x227a, &(0x7f0000000000)) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:47 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 48) 07:31:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xa153, 0x6}}, './file0\x00'}) ioctl$SG_GET_PACK_ID(r1, 0x227c, &(0x7f0000000040)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x7, &(0x7f0000001440)=[{&(0x7f00000002c0)="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", 0x1000, 0xdb0}, {&(0x7f00000000c0)="ecdaab5f920f027bc796f90d074aaa9f5196cc634e0640a3c9b60bcceea15365b30070cac65926a1880e7d75c88949caf4692a2fab5cad48bb163296d055a0d75cca8cdaea7b7b1177c0b093928860286658591646e9f6c503d625846c9dbe1e24d7095365ed0d8ba06e66514fa47bf8aa8ba32724ccef", 0x77, 0x3}, {&(0x7f0000003600)="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", 0x1000, 0x7fff}, {&(0x7f0000000140)="926e608bbea42c0df9ebc062f1bc5c186a340e58faef393dea9d9d67c3b80ec359ff22d522b059cc7ea959c3be89674c0af12a774575adf84110c591d596675c33bb969fd77a94baa768e299ba66c776a43cd8e20f3d850b0dd298ecdfe5af9c792d5736665b7241c03242bf5741a7a6bffc6d0a21f8d2001ea278280dcc5a8c2a341804d1a0ef1bf03ee7f7709b07ed0f6aed1c30c4d8cc3b2cefe2adb3d721b10abb472aef9813142b6f0088c72e7c9e9610ce83dc4042fb2a991893244e55b8758f2ada29365ada93b5bbecb7aefced85edf5ab2e5397d60fbc7204", 0xdd, 0x3ff}, {&(0x7f00000012c0)="208935dd6b02e767e9a6ca8bb12732a18641fadd1fcb24304a79501da14cf439e0d1fff57289d880bcdb3e78afda1819567a35f2944034fde50ae560cd946a8571da826c4f3c9600e20929c4393a0552a3c3426842357bce2f4aa5de570ce232d53bb677e75c6717c2749da9c0c5da64bd6c5f54962f8fc51ebfbb3cbe0ab0983030854bf0ae7d442ffc7ef5954a4894d5b3112b15928cfa94f596c19473d8864636ac80eee85f6bd3e39c3789eb187e41b52b888a26db1274186dd3a6334d028b074fd223d3a7", 0xc7, 0x101}, {&(0x7f0000000240)="04b26b60b3b4aae2dea1a9bbabedb6c8f606cb22b2beec283242a101bd8e8c49332fea0ef7798d3fb8dc05d34369f3b8a6b62e45", 0x34, 0x1}, {&(0x7f00000013c0)="940798fbe0999568cbd5eb07265d09f8d2145990107b95067cd2ad667a6f98e42106863bd390c23c3244709be648b6fd13a69cac74c4f4d4512003a3062481981a16c2936c4f82a35049d1a451e1627c4d5e24b25109e0b50853289c00017b0b5e5851cb226b892658199b11bff554e2fd357e6906", 0x75, 0xffff}], 0x1000, &(0x7f0000001500)={[{@dots}, {@fat=@dmask={'dmask', 0x3d, 0x8001}}, {@nodots}, {@fat=@time_offset={'time_offset', 0x3d, 0xffffffffffffffc4}}, {@dots}, {@dots}, {@fat=@showexec}, {@fat=@dos1xfloppy}], [{@uid_gt={'uid>', 0xee00}}]}) ioctl$BTRFS_IOC_START_SYNC(r1, 0x80089418, &(0x7f00000015c0)=0x0) ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004600)={{r2}, r3, 0x8, @inherit={0x58, &(0x7f0000001600)={0x1, 0x2, 0x3, 0x8, {0x1, 0x80000000, 0x3f, 0x8f, 0x4}, [0x0, 0x8b8]}}, @subvolid=0x7}) ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, &(0x7f0000000000)=r3) [ 3068.488513] FAULT_INJECTION: forcing a failure. [ 3068.488513] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3068.491837] CPU: 1 PID: 112696 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3068.493273] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3068.494948] Call Trace: [ 3068.495497] dump_stack+0x107/0x167 [ 3068.496246] should_fail.cold+0x5/0xa [ 3068.497048] __alloc_pages_nodemask+0x182/0x600 [ 3068.497993] ? mark_held_locks+0x9e/0xe0 [ 3068.498823] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3068.500047] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3068.501113] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 3068.502220] alloc_pages_current+0x187/0x280 [ 3068.503123] get_zeroed_page+0x14/0xb0 [ 3068.503927] __pud_alloc+0x33/0x270 [ 3068.504675] copy_page_range+0x2cb6/0x3820 [ 3068.505532] ? _raw_spin_unlock_irq+0x1f/0x30 [ 3068.506444] ? finish_task_switch+0x126/0x5d0 [ 3068.507381] ? lock_downgrade+0x6d0/0x6d0 [ 3068.508249] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 3068.509352] ? up_write+0x191/0x550 [ 3068.510092] ? vm_iomap_memory+0x190/0x190 [ 3068.510954] ? downgrade_write+0x3a0/0x3a0 [ 3068.511843] ? anon_vma_interval_tree_insert+0x277/0x450 [ 3068.512941] ? __vma_link_rb+0x540/0x700 [ 3068.513768] dup_mm+0x8b9/0x1110 [ 3068.514467] ? vm_area_dup+0x290/0x290 [ 3068.515260] ? __raw_spin_lock_init+0x36/0x110 [ 3068.516197] copy_process+0x24e2/0x6740 [ 3068.517001] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3068.518063] ? exc_page_fault+0xca/0x1a0 [ 3068.518889] ? trace_hardirqs_on+0x5b/0x180 [ 3068.519801] ? __cleanup_sighand+0xb0/0xb0 [ 3068.520670] ? _copy_from_user+0xfb/0x1b0 [ 3068.521517] kernel_clone+0xe7/0x980 [ 3068.522269] ? __lockdep_reset_lock+0x180/0x180 [ 3068.523209] ? create_io_thread+0xf0/0xf0 [ 3068.524070] ? ksys_write+0x21a/0x260 [ 3068.524846] ? lock_downgrade+0x6d0/0x6d0 [ 3068.525689] __do_sys_clone3+0x1e5/0x320 [ 3068.526508] ? __do_sys_clone+0x110/0x110 [ 3068.527369] ? rcu_read_lock_any_held+0x75/0xa0 [ 3068.528313] ? vfs_write+0x354/0xa70 [ 3068.529073] ? fput_many+0x2f/0x1a0 [ 3068.529808] ? ksys_write+0x1a9/0x260 [ 3068.530577] ? __ia32_sys_read+0xb0/0xb0 [ 3068.531402] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3068.532483] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3068.533524] ? trace_hardirqs_on+0x5b/0x180 [ 3068.534401] do_syscall_64+0x33/0x40 [ 3068.535155] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3068.536194] RIP: 0033:0x7f99575d9b19 [ 3068.536948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3068.540660] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3068.542201] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3068.543643] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3068.545082] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3068.546514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3068.547968] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:31:47 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 49) 07:31:48 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x8000000, 0x8000) [ 3068.813144] FAULT_INJECTION: forcing a failure. [ 3068.813144] name failslab, interval 1, probability 0, space 0, times 0 [ 3068.816035] CPU: 0 PID: 113307 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3068.817581] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3068.819403] Call Trace: [ 3068.820013] dump_stack+0x107/0x167 [ 3068.820825] should_fail.cold+0x5/0xa [ 3068.821683] ? create_object.isra.0+0x3a/0xa20 [ 3068.822705] should_failslab+0x5/0x20 [ 3068.823558] kmem_cache_alloc+0x5b/0x310 [ 3068.824465] create_object.isra.0+0x3a/0xa20 [ 3068.825445] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3068.826574] kmem_cache_alloc+0x159/0x310 [ 3068.827519] __pmd_alloc+0x94/0x5e0 [ 3068.828338] copy_page_range+0x2bed/0x3820 [ 3068.829263] ? perf_trace_lock+0xac/0x490 [ 3068.830178] ? lock_chain_count+0x20/0x20 [ 3068.831157] ? up_write+0x191/0x550 [ 3068.831988] ? vm_iomap_memory+0x190/0x190 [ 3068.832909] ? downgrade_write+0x3a0/0x3a0 [ 3068.833835] ? anon_vma_interval_tree_insert+0x277/0x450 [ 3068.835025] ? __vma_link_rb+0x540/0x700 [ 3068.835939] dup_mm+0x8b9/0x1110 [ 3068.836710] ? vm_area_dup+0x290/0x290 [ 3068.837560] ? __raw_spin_lock_init+0x36/0x110 [ 3068.838564] copy_process+0x24e2/0x6740 [ 3068.839431] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3068.840580] ? exc_page_fault+0xca/0x1a0 [ 3068.841413] ? trace_hardirqs_on+0x5b/0x180 [ 3068.842327] ? __cleanup_sighand+0xb0/0xb0 [ 3068.843243] ? _copy_from_user+0xfb/0x1b0 [ 3068.844200] kernel_clone+0xe7/0x980 [ 3068.845025] ? __lockdep_reset_lock+0x180/0x180 [ 3068.846076] ? create_io_thread+0xf0/0xf0 [ 3068.847017] ? ksys_write+0x21a/0x260 [ 3068.847898] ? lock_downgrade+0x6d0/0x6d0 [ 3068.848814] __do_sys_clone3+0x1e5/0x320 [ 3068.849695] ? __do_sys_clone+0x110/0x110 [ 3068.850638] ? rcu_read_lock_any_held+0x75/0xa0 [ 3068.851656] ? vfs_write+0x354/0xa70 [ 3068.852471] ? fput_many+0x2f/0x1a0 [ 3068.853271] ? ksys_write+0x1a9/0x260 [ 3068.854110] ? __ia32_sys_read+0xb0/0xb0 [ 3068.855007] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3068.856180] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3068.857319] ? trace_hardirqs_on+0x5b/0x180 [ 3068.858269] do_syscall_64+0x33/0x40 [ 3068.859084] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3068.860227] RIP: 0033:0x7f99575d9b19 [ 3068.861059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3068.865096] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3068.866756] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3068.868485] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3068.870185] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3068.871896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3068.873589] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:31:48 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) ioctl$SG_IO(r2, 0x2285, &(0x7f0000001300)={0x0, 0x4, 0x76, 0x9d, @scatter={0x1, 0x0, &(0x7f0000001000)=[{&(0x7f0000000000)=""/4096, 0x1000}]}, &(0x7f0000001040)="d8a0284a1b25a92061640931e302ce8d0bee129e15a81c39251f95e14f4029c748c27a3faf85bf3bd69d5dc9fb9685f4e13376a6628323242068fdef87c94c0ef5a588f8b606164955f3704d25cc439df8c778366ce9d65005c2a62f1394d63a54aedad84ab4dd7fdd9bd23d172f3bae3dcde085aeb3", &(0x7f00000010c0)=""/200, 0xb, 0x21, 0x1, &(0x7f00000011c0)}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:48 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000000000000, 0x0, 0x0}, 0x58) 07:31:48 executing program 1: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = fsmount(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000640)={0x0, 0xfffffffffffffffd, 0x84, 0x9, @scatter={0x8, 0x0, &(0x7f0000000440)=[{&(0x7f0000000100)=""/149, 0x95}, {&(0x7f00000001c0)=""/112, 0x70}, {&(0x7f0000000280)=""/83, 0x53}, {&(0x7f0000000000)=""/47, 0x2f}, {&(0x7f0000000300)=""/128, 0x80}, {&(0x7f0000000380)=""/107, 0x6b}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000000400)=""/21, 0x15}]}, &(0x7f0000000b00)="bf41e9f28eb7176e717078e44249e3bf01860815c8c3f4b51d2bfde780ac4f14b04e1662b6d0d421437c92c326869e2ddb9f0433dc0327c310eb012df2bf1d94444c48fca41dc79d1444d697f1ebb86606e0d1b863694da17a699b5c42c7976cad000f5537de020174ca4dc6bfcf734b2fff79e41b3b94a4e11e425d732c95b51365cba7", &(0x7f0000000580)=""/70, 0x7f, 0x10002, 0xffffffffffffffff, &(0x7f0000000600)}) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r2) sendmsg$TIPC_CMD_SET_LINK_TOL(r3, 0x0, 0x80) fallocate(r3, 0x0, 0x10001, 0x100) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000d00)={0x0, 0xfffffffffffffffb, 0x85, 0x4, @buffer={0x0, 0x6a, &(0x7f00000004c0)=""/106}, &(0x7f0000000bc0)="c3a648884bb7e41138fe90f1ea506a29719969a798b8966b571f14a7040978a55a2d81a357f6b50359710d64d4cd37e8b02efcdaeeb1a66d7c0be5a0ab65cb3a1659a92907a3585503f084511709f3efb9fa67260c7c924ce8f4b87dae7ce4af76f79825cfb8156a63cd91198383a01a5fc23aea0359c706e67771813d879370d1cea04f03", &(0x7f0000000c80)=""/70, 0x6, 0x2, 0x3, &(0x7f0000000540)}) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000006c0), 0x420040, 0x0) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r4, 0xc400941d, &(0x7f0000000700)={0x0, 0x6, 0x7, 0x1}) listen(r0, 0x0) ppoll(&(0x7f0000000240)=[{r0, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x7e3ae000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:31:48 executing program 3: syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x9, 0x40) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000180)={0x53, 0xfffffffffffffffd, 0x4f, 0x3, @scatter={0x0, 0x0, &(0x7f0000000040)}, &(0x7f0000000080)="b7b46671d7a5f86fc33c9c8149f60fa980202e92ba52ad885bd59cd829ab5813c70ea6a16292f8d410eaf47726ff0d7e90271093d1ca3711894aaa6cf310a1151a32c6a23c2da0ffd88b15a77a1f03", &(0x7f0000000100)=""/11, 0x3, 0x4, 0x1, &(0x7f0000000140)}) 07:31:48 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000280)={0x9bee5a6de00205e5, 0xffffffffffffffff, 0x20, 0x3, @scatter={0x1, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/254, 0xfe}]}, &(0x7f0000000140)="017ba37fa6ef8fb9e1be3f478a57504abbbe70ba170c9f070d1e3c61cf8d7905", &(0x7f0000000180)=""/132, 0x4, 0x10020, 0x0, &(0x7f0000000240)}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:03 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 50) 07:32:03 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x9000000, 0x8000) 07:32:03 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) syz_open_dev$sg(&(0x7f0000000000), 0x7, 0x181000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) writev(r1, &(0x7f00000004c0)=[{&(0x7f0000000040)="9c2a936aa3a335df6658a78b9e5c9b94e0fd9c98fe4bc4751221363293e7f0146fbdb7cea1f54005002f0da07c5de5f1d25ea71ece4befc12f5fce1ee4643b1d95c469772ffdc7f27c439fad5876ac38e5f1a8c5f2bfc917754c46551e912ad875a4e739dd6264001ad50feae26ee645c5dfe4b18cf80997b0681dc44defede31df968dab0037bd3bcae16136b4dd0accd2d5641779c8101476047b592e4e66beade67d6699a3c7b627713a4f5055363de2d4d4ba3efa3b6c64ed09b841671aa03f1c90d08ba27598ec794fbe1e51620", 0xd0}, {&(0x7f0000000140)="5e046a43202c439b3ba7d180c474b11ddbf58564a33bbb8dc6e8b4800ecdec832129149eb17125bf51dfb1baeaffc32bf96ddc8f134cd5686d96955313b8e562dcd567766231a8d2f6b7fc7e72624db22adf6e44111c5768935f0d496c92f0748ed9aad8f22beade2d380b6f1483e203e7140abd7570cf75d6d42d80452305e87696fe54ef9ce1a8f93a59e9f2af0463caac0d65bd0b6d21363edaacdfc9b8010e5e861a5fbb79c3361e40dbedeb9aa062b78bfb2834c4649c1ce94d7a", 0xbd}, {&(0x7f0000000200)="e3be0c25f84fc37587391dfa20793665f1b5fe0d2013dad25af06b681731951bee58033a94e72c2918f06a6d3ce9ec4a784367e50e5113502c53661bd372ebe89c0c9921a2f6cb0181f98afad56686b1b0", 0x51}, {&(0x7f0000000280)="c4e3bd425390e1a4df9c49d85ed2854d3941f5b6185ded75b088e2817ddb04e2ff4c00a5eddc7117fe45281d8bc62bef4ab50baa7ed3662d5202fcf61b81b051efdf29b16d25940f240d3ba46dd24f548ad08511ec29b7c29d0c0e1d1c6a119c505c0b094cdf0d176d23176a5cc9941ae7205a6dd1fd6cfe1c70b76f8c1acbdebb48446c4755d5edcaef4b9c6116708378df42a0b51d2fef1b9c8086a3039f8b1b8ec81940930432ad4c93b86fada74c2a8802e248015806e23e7c5080e186fea23cee70cdfde656df1121", 0xcb}, {&(0x7f0000000380)="7f15826c5a2ff0eb1a43debb18cef950bd045469f7170b87d7af321bce9ed6714cfe95776fd79d1c404a38cddbc699a0876cde500ddf6ccfc936c803bcc8294d6a0a13252b72d537774c8fbd031f41f80f00afb0559aab1eb05054ded52e246d7fbaa84d1c9c29044d1c1bef0f352545ed847e114a068b64e986832fc05bfa85c5d17d327a64583ea65883d52a1699f236f290455d4bf9a1a9c6908a902f463009c30d751b5ce8fe99f716304f11d83959", 0xb1}, {&(0x7f0000001300)="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", 0x1000}, {&(0x7f0000000440)="1af29032f9783779209bd52f409129d32bab1dba7bead871b17d486522c07d47834295afe2db214e52a5eb1ef3cf7907cdf25ba5d1b1d82f5b1d48f6bbe2269a281a63195473c5a14c0c34c020f10098", 0x50}], 0x7) 07:32:03 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x180050680, 0x0, 0x0, 0x0, {0x3e}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:03 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4000000, 0x12, r0, 0x74023000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000000)=0x74) 07:32:03 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000380)={&(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x2d4}, 0x1, 0x0, 0x0, 0x40000}, 0x91) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8000) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x8c, 0x0, 0x800, 0x70bd25, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x9}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e22}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x7}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}]}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x9, 0x6, 'none\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x2b}}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2c}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x200}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4000044}, 0x1) fcntl$setlease(r0, 0x400, 0x1) accept$packet(0xffffffffffffffff, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000004c0)=0x14) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000580)={'syztnl0\x00', &(0x7f0000000500)={'syztnl2\x00', 0x0, 0x2f, 0x3, 0x81, 0x1, 0x80, @empty, @rand_addr=' \x01\x00', 0x1, 0x7, 0x20, 0x20}}) sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f00000006c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000680)={&(0x7f00000005c0)=ANY=[@ANYBLOB="ac000000", @ANYRES16=r2, @ANYBLOB="000229bd7000fddbdf251200000090000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="140002006970366772653000000000000000000008000100", @ANYRES32=r3, @ANYBLOB="14000200766c616e30000000000000000000000008000100", @ANYRES32=r4, @ANYBLOB="140002006873723000000000000000000000000008003907020000001400020076657468315f6d6163767461700000001400020076657468305f746f5f626174616476000600feffffff0000"], 0xac}, 0x1, 0x0, 0x0, 0x20000010}, 0x10040) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r5 = dup2(r0, r0) sendfile(r0, r5, &(0x7f0000000000)=0x5, 0x100000000) 07:32:03 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x800000000000000, 0x0, 0x0}, 0x58) 07:32:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = fcntl$getown(r0, 0x9) clone3(&(0x7f00000005c0)={0x42000800, &(0x7f0000000340), &(0x7f0000000380)=0x0, &(0x7f00000003c0), {0x5}, &(0x7f0000000400)=""/252, 0xfc, &(0x7f0000000500)=""/111, &(0x7f0000000580)=[r1, r1, r1, r1], 0x4}, 0x58) r4 = gettid() process_vm_readv(r4, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) clone3(&(0x7f0000000680)={0x20000, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200), {0x27}, &(0x7f0000001300)=""/4096, 0x1000, &(0x7f0000000280)=""/133, &(0x7f0000000640)=[r2, r3, r4, r1, 0x0], 0x5}, 0x58) r5 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x101001) ioctl$SG_GET_SG_TABLESIZE(r5, 0x227f, &(0x7f0000000140)) r6 = socket$unix(0x1, 0x5, 0x0) bind$unix(r6, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5387, &(0x7f0000000000)) listen(r6, 0x0) ppoll(&(0x7f0000000240)=[{r6, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) dup3(r6, r0, 0x80000) [ 3084.089440] FAULT_INJECTION: forcing a failure. [ 3084.089440] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3084.092545] CPU: 0 PID: 113938 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3084.093950] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3084.095615] Call Trace: [ 3084.096186] dump_stack+0x107/0x167 [ 3084.096931] should_fail.cold+0x5/0xa [ 3084.097810] __alloc_pages_nodemask+0x182/0x600 [ 3084.098882] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3084.100247] ? find_held_lock+0x2c/0x110 [ 3084.101177] ? __pmd_alloc+0x2db/0x5e0 [ 3084.102064] ? lock_downgrade+0x6d0/0x6d0 [ 3084.103008] ? do_raw_spin_lock+0x121/0x260 [ 3084.104020] alloc_pages_current+0x187/0x280 [ 3084.105030] pte_alloc_one+0x16/0x1a0 [ 3084.105894] __pte_alloc+0x1d/0x330 [ 3084.106727] copy_page_range+0x1b77/0x3820 [ 3084.107696] ? perf_trace_lock+0xac/0x490 [ 3084.108631] ? lock_chain_count+0x20/0x20 [ 3084.109631] ? up_write+0x191/0x550 [ 3084.110456] ? vm_iomap_memory+0x190/0x190 [ 3084.111414] ? downgrade_write+0x3a0/0x3a0 [ 3084.112383] ? anon_vma_interval_tree_insert+0x277/0x450 [ 3084.113615] ? __vma_link_rb+0x540/0x700 [ 3084.114550] dup_mm+0x8b9/0x1110 [ 3084.115338] ? vm_area_dup+0x290/0x290 [ 3084.116248] ? __raw_spin_lock_init+0x36/0x110 [ 3084.117293] copy_process+0x24e2/0x6740 [ 3084.118203] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3084.119395] ? exc_page_fault+0xca/0x1a0 [ 3084.120329] ? trace_hardirqs_on+0x5b/0x180 [ 3084.121327] ? __cleanup_sighand+0xb0/0xb0 [ 3084.122302] ? _copy_from_user+0xfb/0x1b0 [ 3084.123260] kernel_clone+0xe7/0x980 [ 3084.124122] ? __lockdep_reset_lock+0x180/0x180 [ 3084.125174] ? create_io_thread+0xf0/0xf0 [ 3084.126132] ? ksys_write+0x21a/0x260 [ 3084.126999] ? lock_downgrade+0x6d0/0x6d0 [ 3084.127955] __do_sys_clone3+0x1e5/0x320 [ 3084.128876] ? __do_sys_clone+0x110/0x110 [ 3084.129846] ? rcu_read_lock_any_held+0x75/0xa0 [ 3084.130897] ? vfs_write+0x354/0xa70 [ 3084.131755] ? fput_many+0x2f/0x1a0 [ 3084.132581] ? ksys_write+0x1a9/0x260 [ 3084.133443] ? __ia32_sys_read+0xb0/0xb0 [ 3084.134369] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3084.135575] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3084.136757] ? trace_hardirqs_on+0x5b/0x180 [ 3084.137742] do_syscall_64+0x33/0x40 [ 3084.138588] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3084.139754] RIP: 0033:0x7f99575d9b19 [ 3084.140600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3084.144778] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3084.146509] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3084.148127] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3084.149743] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3084.151353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3084.153008] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:32:03 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xd000000, 0x8000) 07:32:03 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) ioctl$SG_GET_PACK_ID(r1, 0x227c, &(0x7f0000000000)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:03 executing program 6: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18}, './file0\x00'}) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000080)={{0x7, 0x7f}, 'port1\x00', 0x1, 0x12, 0x7ff, 0x5, 0x100, 0x10001, 0x7f, 0x0, 0x0, 0x81}) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SG_GET_SCSI_ID(r1, 0x2276, &(0x7f0000000000)) openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0) 07:32:03 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 51) 07:32:03 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x4000000000, 0x20000) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee01}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) fallocate(r0, 0x0, 0x2, 0x8) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x80) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:03 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x21b7a000) clone3(&(0x7f0000001200)={0x2000d000, 0x0, 0x0, 0x0, {0x10}, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffff53) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, 0x0) ioctl$SCSI_IOCTL_DOORUNLOCK(r1, 0x5381) 07:32:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)={0xb1, 0x4, 0x10200, "5af4286b453c09ad6e3ac04345430002babb743c749b5e23a462d16e1dfa53416fc46c9bc746d7025e7e4d61a8a169c5b0eb868569bde99d5cbc3c6965d5b014f75e68d1d2e22c051472ccceef51a2c316bf098fb636bc695a8e39874d2d8261ade6544330e4a3479b09c2bcbf96d34a765373d755112fe035245c9ec481f13d3a10cf54fa71b0bb092045e7ac057f195acf06570245bbd53a14160c46ace9f61ded1c70ab49e90ff44c0cb580bbfb81bc"}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0xffffc000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3084.406991] FAULT_INJECTION: forcing a failure. [ 3084.406991] name failslab, interval 1, probability 0, space 0, times 0 [ 3084.408665] CPU: 0 PID: 114675 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3084.409407] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3084.410279] Call Trace: [ 3084.410570] dump_stack+0x107/0x167 [ 3084.410966] should_fail.cold+0x5/0xa [ 3084.411379] ? ptlock_alloc+0x1d/0x70 [ 3084.411803] should_failslab+0x5/0x20 [ 3084.412214] kmem_cache_alloc+0x5b/0x310 [ 3084.412650] ptlock_alloc+0x1d/0x70 [ 3084.413041] pte_alloc_one+0x68/0x1a0 [ 3084.413450] __pte_alloc+0x1d/0x330 [ 3084.413837] copy_page_range+0x1b77/0x3820 [ 3084.414291] ? perf_trace_lock+0xac/0x490 [ 3084.414731] ? lock_chain_count+0x20/0x20 [ 3084.415198] ? up_write+0x191/0x550 [ 3084.415591] ? vm_iomap_memory+0x190/0x190 [ 3084.416060] ? downgrade_write+0x3a0/0x3a0 [ 3084.416519] ? anon_vma_interval_tree_insert+0x277/0x450 [ 3084.417098] ? __vma_link_rb+0x540/0x700 [ 3084.417539] dup_mm+0x8b9/0x1110 [ 3084.417909] ? vm_area_dup+0x290/0x290 [ 3084.418328] ? __raw_spin_lock_init+0x36/0x110 [ 3084.418816] copy_process+0x24e2/0x6740 [ 3084.419243] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3084.419808] ? exc_page_fault+0xca/0x1a0 [ 3084.420245] ? trace_hardirqs_on+0x5b/0x180 [ 3084.420715] ? __cleanup_sighand+0xb0/0xb0 [ 3084.421175] ? _copy_from_user+0xfb/0x1b0 [ 3084.421619] kernel_clone+0xe7/0x980 [ 3084.422021] ? create_io_thread+0xf0/0xf0 [ 3084.422470] ? lock_downgrade+0x6d0/0x6d0 [ 3084.422923] ? enqueue_hrtimer+0x129/0x270 [ 3084.423383] __do_sys_clone3+0x1e5/0x320 [ 3084.423827] ? __do_sys_clone+0x110/0x110 [ 3084.424274] ? recalibrate_cpu_khz+0x10/0x10 [ 3084.424766] ? tick_program_event+0xa8/0x140 [ 3084.425238] ? hrtimer_interrupt+0x771/0x9b0 [ 3084.425726] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3084.426296] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3084.426862] ? trace_hardirqs_on+0x5b/0x180 [ 3084.427351] do_syscall_64+0x33/0x40 [ 3084.427767] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3084.428316] RIP: 0033:0x7f99575d9b19 [ 3084.428722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3084.430704] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3084.431509] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3084.432292] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3084.433060] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3084.433844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3084.434608] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:32:03 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xe000000, 0x8000) 07:32:03 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) open(&(0x7f0000000000)='./file0\x00', 0x2, 0xa2) 07:32:03 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, 0x0}, 0x58) 07:32:03 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0xffffe000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:03 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000300)={0x53, 0xfffffffffffffffb, 0x8, 0x8, @scatter={0x2, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/190, 0xbe}, {&(0x7f00000000c0)=""/246, 0xf6}]}, &(0x7f0000000200)="bcb80cea464e3a83", &(0x7f0000000240)=""/97, 0x7f, 0x10, 0xffffffffffffffff, &(0x7f00000002c0)}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = gettid() process_vm_readv(r2, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000540)=0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000580)={0x0}, &(0x7f00000005c0)=0xc) clone3(&(0x7f0000000640)={0x4014000, &(0x7f0000000380), &(0x7f00000003c0), &(0x7f0000000400), {0x40}, &(0x7f0000000440)=""/99, 0x63, &(0x7f00000004c0)=""/95, &(0x7f0000000600)=[r2, r3, r1, r4], 0x4}, 0x58) 07:32:20 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 52) 07:32:20 executing program 1: r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x110, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5194, &(0x7f0000000000)={0x0, 0xd674, 0x4, 0x0, 0x14a}, &(0x7f0000001000/0x1000)=nil, &(0x7f0000001000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r2, 0x2ec6, 0xfaf2, 0x0, &(0x7f0000000140)={[0x1001]}, 0x8) r3 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0xae3d, 0x0, 0x1000000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0xa63fd6a5717620d2, 0x0, {0x0, r7}}, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000100)=@IORING_OP_MADVISE={0x19, 0x3, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x0, {0x0, r7}}, 0x9) r8 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r8, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x100, 0x2c400) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) ppoll(&(0x7f0000000140)=[{0xffffffffffffffff, 0xd000}, {r1, 0x6600}, {0xffffffffffffffff, 0x88}, {r1, 0x81}, {r0, 0x85}, {r2, 0x28}, {r2, 0x822a}], 0x22b, &(0x7f0000000040), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xd, 0x10, r1, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:20 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0xf000000, 0x8000) 07:32:20 executing program 6: ioctl$SG_GET_COMMAND_Q(0xffffffffffffffff, 0x2270, &(0x7f0000000000)) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:20 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) ppoll(&(0x7f0000000240)=[{0xffffffffffffffff, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) clock_gettime(0x0, &(0x7f0000004540)={0x0, 0x0}) recvmmsg$unix(r1, &(0x7f00000043c0)=[{{&(0x7f0000000b40)=@abs, 0x6e, &(0x7f0000001000)=[{&(0x7f0000000bc0)=""/122, 0x7a}, {&(0x7f0000000c40)=""/195, 0xc3}, {&(0x7f0000000d40)=""/7, 0x7}, {&(0x7f0000000d80)=""/138, 0x8a}, {&(0x7f0000000e40)=""/76, 0x4c}, {&(0x7f0000000ec0)}, {&(0x7f0000000f00)=""/77, 0x4d}, {&(0x7f0000000f80)=""/62, 0x3e}, {&(0x7f0000000fc0)=""/11, 0xb}], 0x9, &(0x7f00000010c0)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000001100), 0x6e, &(0x7f0000001280)=[{&(0x7f0000001300)=""/213, 0xd5}, {&(0x7f0000001180)=""/51, 0x33}, {&(0x7f0000001400)=""/132, 0x84}, {&(0x7f00000011c0)=""/10, 0xa}], 0x4, &(0x7f00000014c0)}}, {{&(0x7f0000001500), 0x6e, &(0x7f0000002740)=[{&(0x7f0000001580)=""/241, 0xf1}, {0xfffffffffffffffd}, {&(0x7f0000001680)=""/26, 0x1a}, {&(0x7f00000016c0)=""/35, 0x23}, {&(0x7f0000001700)=""/4096, 0x1000}, {&(0x7f0000002700)=""/5, 0x5}], 0x6, &(0x7f00000027c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x70}}, {{&(0x7f0000002840), 0x6e, &(0x7f0000003c40)=[{&(0x7f00000028c0)=""/47, 0x2f}, {&(0x7f0000002900)=""/4096, 0x1000}, {&(0x7f0000003900)=""/13, 0xd}, {&(0x7f0000003940)=""/175, 0xaf}, {&(0x7f0000003a00)=""/254, 0xfe}, {&(0x7f0000003b00)=""/46, 0x2e}, {&(0x7f0000003b40)=""/228, 0xe4}], 0x7, &(0x7f0000003cc0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd8}}, {{&(0x7f0000003dc0), 0x6e, &(0x7f0000003f80)=[{&(0x7f0000003e40)=""/155, 0x9b}, {&(0x7f0000003f00)=""/123, 0x7b}], 0x2, &(0x7f0000003fc0)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}}, {{&(0x7f0000004040), 0x6e, &(0x7f0000004240)=[{&(0x7f00000040c0)=""/142, 0x8e}, {&(0x7f0000004180)=""/159, 0x9f}], 0x2, &(0x7f0000004280)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x118}}], 0x6, 0x40000022, &(0x7f0000004580)={r2, r3+60000000}) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r5, 0x0) stat(&(0x7f0000000340)='.\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r5, r6, 0x0) r7 = socket$unix(0x1, 0x5, 0x0) bind$unix(r7, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r7, 0x0) ppoll(&(0x7f0000000240)=[{r7, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f0000004680)={&(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000000)="9729f27f47f222547dd124b7907bc42b060fa0dde2f48c9f79bc85f8e6b64b937d33b198fd9d8aacd2995958813742008c4910024a84ac", 0x37}, {&(0x7f0000000180)}, {&(0x7f00000001c0)="b53048678f474b74a34687f8ad0e55ccc63de3d3af0235c376e7187b2081ead0778d4eb358864d4c9d2712475431f122b97ded954373262c4e900e35b22de77352d4e31fdcd4498beccc83", 0x4b}, {&(0x7f0000000280)="9007fa7353ba16833f98a7aaa7ffa03b95e6d93d430ccf6cdf10ad660efd4a89d9d6490794a4970521cb439d043dbbbab2a20c9e4c0a84b28963de6d0515f8270830e1cba469b43fbd98a788c641a7ddba01a702f8a236fcead88b44979b4ac0fac797643b30e4b493bcd542f5877d66a37fb4cceba2f9536cac449560fb2311c42a7a3a0c9e38cf06b265c8f4c972dddb9b4e1699f32cc409bbe0e7b4b6fccc42e1ac85008e0726b7e7b99c902e5f10dd17", 0xb2}, {&(0x7f0000000340)="6c69635fcad7bc923cf0f33d98e2cbd807b1dde6a6e841993c0ca27a657e68e689dbd0dbefbefc0d63a0b52202624de9c1647694674678d6e1084634ca88db", 0x3f}], 0x5, &(0x7f00000045c0)=[@rights={{0x2c, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r1, 0xffffffffffffffff, r1]}}, @cred={{0x1c, 0x1, 0x2, {r4, r5, 0xee00}}}, @rights={{0x14, 0x1, 0x1, [r7]}}, @rights={{0x14, 0x1, 0x1, [r1]}}], 0xa0, 0x20002000}, 0x4011) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) dup2(r0, r1) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:20 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000000000000, 0x0, 0x0}, 0x58) 07:32:20 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x7, &(0x7f0000001440)=[{&(0x7f00000002c0)="25ba97e483c10078838307c1b7c284e13e2ab29358efa9f0da23e5db9a31996a6d63227655522f10d2eed85d0eea018187301a7bf3acbb84db5f87d556a21f1c986231c663bbb91b580c484bdaeac2b85cd79b2400a48a422fdd17ed73f357041e1bd019fdfe168fc26919fb8aeb7cc9831ff8216c19aa98e3751bf0dd1d853241140ac3279d269799370c9cd14edca8c13e6676cfc9652aa0b11978a275fd5e3a90bce59b66a3fc39c1366462b28c3e67aa2af875ae7d56fa94bed9e660fa93845faa6b609f28350080882ecd08f12de1e119d1b0d209653adfbb5ff54159f240ac2a9ea63899a65ef7ce46cff3a2e2f5d3aa35e840eb5230811bb90237fb0f2753743324b67515c8a51903f291c88964f84e555fe7169b457b0925db0e6f0a078d4f6d84d69383563ba9e0eca7a3baf2b880e9334df1feb788d20caac9e59541564d934d9dd89b4338e72ede90d496f28cf7597a386d480a98cd3eec067779abfcc01e6f39b5886064dd3f5a6e83ab384499d9a871c6dfd0ab89c18ce373677a26580cb0241316474c58aec110c96d51f06c9d6a4b859f9918726467fe8ebf2de41281410d9b21671eedd62638cb0ee1ba4870429ff2d398d0ea2d949d6343523414eb1dcc156bfeb2cff3dcaf1e12f494988b326980fb7bd2a90484b299c1bf3b07ca0b43c2950426017c7ecfd47a8a65b4a33b5da86420f5771ff696ab8eac9fc5b7b38f9942b0dadea91143e94f8f474abf968125bce70de23bf72791a2363b1c141435010bfdeb1ee804bf8e885d9afa323d8c4c7eed564f08941d39a3b06d94a993569f48652d344c18a173234bf8fb2b9791d094b274a65b1332e7fa5189707b1a7ab1f1cb1259850171e7b6a35d8f180e182a90ac453f7870f3d9f00f5bbbee2bd78299cda80897ab8e65fa9795a24bb86ba8ee76ce22ae50e12c62cf82b7d0592367deace2644d4e29b7eb96c9081325cb4fcbff7e0c60ca7e3ce92ab2d3466f582fb43cb2cb74181167e7634a558005c865f9e119a2ad1161e25f27ff58bf2858001932886f7b53605a5aff26b2d793716d63471e9fa4f27b2d0f0a464a5009df59e2265659d9d182d51339d7973a6631e593d66fb4c50a0bd76eae3ab2aa5ebeb6253d703baf43e8557283500dcde71e9a3ceab94b13295db1ce348739a16bd732ab75bc9d1ffc36002e775aa27ce97ea8cfca81e7378414b09b77bf2c20e20da6983acb7799eddbbc4bf3a0dfd0623116f66cd5383594707bef43f3ca14efa29c80cb55262b1f14aecba98f44ef3b1cd63921a0b5b2619123a751e529f0e99107eb275dfc003e25781feec6db3108c76b717679215053c6a362e756e7784ddb54b02fddbd66cf4d2a752ec38b7cb73537ff60c57357588c79e20dbb5606a418deac4639c764bedbce3350939cc20badf89a32a5ecd679e11f883f12a7f3e42f93d58235f4c5dcbd8a0fc953b78ceffcb2f2b31083ee7735c627474dc3b5067b9de446a6639074281dcc0247c5e414deb932f8e675bf62ddaa14ae8b1a1911aab49e62ec36c9e2fed73b34e92b75fe133c53a0eddb94b5a8c5adcd3d12560b82c159aaa82af87a6d6340e2c17ec2a108ca8ea61c066ec17e7ef2860fb5f305643c13e28abd3cf422f9d88a3e2508a03b218ad71b5eba4958b85e393d38d745da653c6756edcd53d4b56e9f4c11c181b925b95fceb90f33261fcaa95f42f6acb9b83783d0fe22c23b7c47bf766ef691776b00f66f552e5aa93d39d1e9b1b75339ce04a7685d1fe5bd871077b0070f724d07547b68e81846eb3d9eb60763f6e5728ba47c96f23b0031ccb5514726cdbe34fa92538e96be4419a7b4c29d9926e41eb1eea47e859c00de1c2a729ccec87d6c747efde95374f1568844cb5a07ed3d15f8ecba6861c920bc37aa3a6062ad8a7f0dfbbc01902845100de2827e39345458f662a9fac6ad178bbbfe8465777887f11697c95f6e350351dc117b956cdd80582e07ffe1cc4a5716f1024394dd9d12a0a027cd2d9ee79aa5f12d60c3df90dfd3e79646753a5af0498730b9dcb92256eeaa2fbd4e8d71e2046f2c2dcb6df3ce27526084d767a6ebef71126a8830a527c2b0250dbb0592933d2bc03a8a8b5d982df837561c9b75430874e6c915d8edd42a73f0a55c1abeb10864d8f5a0a0f0a079392eb27769273dbe0a2c6591396cbd51e4021d9de64601a493b40c39bf73a912e42a6f11f5660b6e8ed5784e1a515c1b1e11b418d6dd2879c02ae5c9a373e05b18bbb7c44d124fc08ad8d8681c129b36af2a91a73edbaa404576bce25347dd1d548f31b0c76ce6d01fd7353a0a2931074aa9732de93de2deb3024c471a7ef425d55c3e2cefe25d211dde58407a80bb3a8a26ed74a12e27012aa08d5dadee47c63e021303f780e572e125178b38dea41b2687832109f002b5f7556dcb32c5a4174855d8e84607df454452eeab8e0efb98b6f87c8b4528256ae2f8221f7c360963d693b0caf8f9b58c16b5fe60922b99b9b7cf53b5d6e4cefb67ad2402ed1dc83966da46922a6d9267770425076122a9c63399fc6b879c4d5d89b38ba788e525768967d21cbfa8827deb532b7b2f50eb1413db99c5404f0f49a860be2a056e8b2a20c5791138bc9bb08a38daecd915c0e8b09323a0dc94fd8c5e40df3c5e028527da2bc084e23f0c77f596bee3af127cd7b0a71dc76e0b868d85e275ce60ef47e3f6ef28f8caea1cff08259f1a1098ea69a3d24592a0e139e566e8385f2eb895b427458e4f3dc1eb5fab6501f00b376d54c1fa04a42b3d91f25464a450c08d369b7ed0824ace217bbeb47cbbe543bab7baaf11b4461d4a59bb57bfe75a880f66299fb5d949d59c3f166c258cffbc8ed6a98aa3c04eb2929fa6ba7779ddf072ff8050fd448d10c72e552c208add24430c72692429d4030c720294a4d092fa304afb26b8706411738cbe70f33cbc4cafa7d59c9623d8af53e6ae3e26deb6d9c77ee34c6af7353a8358833071759617da98fe1bc62294cfeac5008880d97bdd798ff916620b8cc71a5208b8c3d219a81c536929f7c9a7cbe4e3a02b02cf7e565924610120b9132d7a791562fd308f1fbc0b66f4aa07ffd6f364dd29eeef428ef1f403245b9793a4f0a1c3be3f515572caee44deb9edcd2ae80130d668475538e855c1e3f2abcb11110db1ca899eaf79f2948044f1fe6b88b1ff2ec000c3d56437df8c17ed3da3297b6b7799b00061db4449f1508d297b78fd9e69b7fa8339ee035414ab9ea6b8cf970481ccd102b2bb958d2608d41f4e7e127d26ab99ebbca3c95b54c7410c6fdce352b65482505ea1f6c800f3a343b58c36de6fb69213b9f255137d684c611bd164dffd643c8671e2728135b29f1fce1a087fbf31547363b4df13ffd962584d0262513c05ad873b9e8640c29212cd93291577dcbc446b5afecd93ddd1fc1489504e62cff4567dffcf426d373c9be5f9623cc32175212836fdaae72c2c6ebc40bc72a3ee1504dac8574ed9a49747fb7427a17d00049e7baf57f7f1c8709f3ed00d3760f7c7944bf767b4c0056901ba1ad6979f92933f58ff9ec1d58b6f6deac855a5b007545f1ad46e4ea1825f5c7fde846261d260d2102f1970f87136dfdd673c635c49cfb8ea8f705b58160faf43d2f5608958e57021c33ff2300bf78a1fee6ffad131a2667e2f765a840a667c882ab9359eaa763bddd86d072068b5cded1952cb4d4b954292cf48c9fe9e20299a13ad710b9974dd1a77e3e1f3d133f72d2f95495eabdfbb3198a7c1527c2302365c5a7464e6e1d540826be882677b0376df07b5d4e8cff801b709a5a32f74f4d4c3dc37fda0f5d20c56c64d25b9a133d11f7dbbc0f393ebb83f1095a902f24e028b2a81722c6fef80b842e748ef06a3d3c38e7aa935c4d6b723ccab611bc0394609b4f0d78bfa9713a1508c16c2252314e79450ac0190c4ce77bca927c935776cc0bcba82daf544a1a8c56252c5ddf7f024ce26261f11b12782f907b5d72a23ad07503e9432b2160e2378c51d3b09ba7b55e4031153e2841f9bb5d47275fcf5f6a79f6f299131663be36756e69bf8a31fb1a625ad385a779db81db7f871f6df486516f1350445187b81d39ddeaa3cc7e16aabb2f2d76a768fd60c7008fca55346ab42136f0944cb78d46102161abe2f72123fac2bb8683133e17834e9760abeb80316e5248a7ae2b2f40c1d230c7bd60fa628bb3461dd7c43efc94783d859c101eb28fc7af247074e6c1f249483654a9b04ee7cbe77d9f72a1e3e82a9db02d437fcd80656657a2f30b5f15f883217d4c3975816c0cce27796e2e3bec3525e0b1d772458722223b8facb22a3d55438f2b729325fa898dfd00cf9f79f06e90cd86c17c64b272abd8c607f7aead0267668f4ba3fb0365bc7fd0e75d738cb873dc3d551ec8395a4933a83be5d8a5fe2e3e7be4c4d50777ef14c3aaa3108d846f87882a41407f70d0a6aa6b72916282f50d34785c8733a04bd30a8ecdc2bb3ed5a8099d7ca350bd8488c3acfc83d7bff87c541b5a61344116fc3fbef2ee60d7c96475a2c48de57a2f4450aa1e9999c9e43f8d80bcf6330b9cd0db2fabd0bbb433516eabd173455a83ff7f326d0bd19b7d086f0973486a75aae799ff52e71a1b8869ba7f57852629f4c1a799507c1e925de79b43eb2acee255e7ce73a5b948efd27ec989fce55b6b59fefce5d30097865862f2b9a32e44c050ddbf80b61cca6c7a23a7de2aba58b18875f884ee0408e0d8de09cfb917081eb0174af2c2adb06905fbd72a8ab173c30f2da9f5f01eefbf1aa52ab69a29985266961b240678554955950a77a06cf2b6dc293f5000c84cdb63de99c50cb3b2608be32ec9fbedeed5253fedb97c45ca6ec1bcc5320b2fa67bca8d5d57ddadc89ed5c6728f0a33ab278f47d6ce125d0a47677aba6624515820620b6f80051f516b11992fe2759e20a937e8c5deefc056876d2498e85979bb6f80a17809570090bc01fcfcd0097d9b9bf0a163232aaa48fec26264e01f7448c60e8f9aee6a2a40bcad080fbf2c9f037f4e3977dca24d63769081170f4577ea10ad33792c05b02b79332e2de97a4b3e2d126881b5396add6940c5b481830f6500b123e3f6b5e691c650fb17ec7d18a1c91e2c4dd7401e8d6fc1b322aa08cb30e1e642354cabe6be31fa889bc831dc54059fcc8c9cfc214bca8df642dd5e43dd98c871179dadaaf680a3ece8ced9f126dda8fa900639bf266e4951fb1678a8e0463ba47b81a48fab86dea29412b597d82a4807d27c20170811c28e025857b031d965fb3c9ba329c4e95c3b255d86b1e5b7b7ea25a0d084903201bbf49273d81115b66c5112662370926a67a366bb14b881178a4ef4bca7be1544c599e963e13d840844cccd845efb5ffb021157de705c122a74225f7c4f9460010db22e58b668f7bedbba34c2d55900477ba0b2d0013c1d720bdf4a9f4b0aaf68b2509af55be6bb257171f50da3d08840eac507689d2aed6a7b934b8bec109698088478689bbaffa0b96038f20f00e3478026d85351bb0350afdc222207521820e76e6ed8c952bc7882762fcb40e1ac984d7708fa28a057bc705f4247f66c7ef6ac71d6d2d2e20faba2ba492d31dde6759454cdb43901f64202cef6332852bab4789884319546f2df62ce7c95c8696ea7dda208d0acf9877e6072dcf895d0a1029b8b2615c38d499641bf326482e52c152085f08052bd46559415dd582082425f2f99be866180831e74d22c92753683ebc744942d1f18ccdbef12df1a8ea652daa56", 0x1000, 0xdb0}, {&(0x7f00000000c0)="ecdaab5f920f027bc796f90d074aaa9f5196cc634e0640a3c9b60bcceea15365b30070cac65926a1880e7d75c88949caf4692a2fab5cad48bb163296d055a0d75cca8cdaea7b7b1177c0b093928860286658591646e9f6c503d625846c9dbe1e24d7095365ed0d8ba06e66514fa47bf8aa8ba32724ccef", 0x77, 0x3}, {&(0x7f0000003600)="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", 0x1000, 0x7fff}, {&(0x7f0000000140)="926e608bbea42c0df9ebc062f1bc5c186a340e58faef393dea9d9d67c3b80ec359ff22d522b059cc7ea959c3be89674c0af12a774575adf84110c591d596675c33bb969fd77a94baa768e299ba66c776a43cd8e20f3d850b0dd298ecdfe5af9c792d5736665b7241c03242bf5741a7a6bffc6d0a21f8d2001ea278280dcc5a8c2a341804d1a0ef1bf03ee7f7709b07ed0f6aed1c30c4d8cc3b2cefe2adb3d721b10abb472aef9813142b6f0088c72e7c9e9610ce83dc4042fb2a991893244e55b8758f2ada29365ada93b5bbecb7aefced85edf5ab2e5397d60fbc7204", 0xdd, 0x3ff}, {&(0x7f00000012c0)="208935dd6b02e767e9a6ca8bb12732a18641fadd1fcb24304a79501da14cf439e0d1fff57289d880bcdb3e78afda1819567a35f2944034fde50ae560cd946a8571da826c4f3c9600e20929c4393a0552a3c3426842357bce2f4aa5de570ce232d53bb677e75c6717c2749da9c0c5da64bd6c5f54962f8fc51ebfbb3cbe0ab0983030854bf0ae7d442ffc7ef5954a4894d5b3112b15928cfa94f596c19473d8864636ac80eee85f6bd3e39c3789eb187e41b52b888a26db1274186dd3a6334d028b074fd223d3a7", 0xc7, 0x101}, {&(0x7f0000000240)="04b26b60b3b4aae2dea1a9bbabedb6c8f606cb22b2beec283242a101bd8e8c49332fea0ef7798d3fb8dc05d34369f3b8a6b62e45", 0x34, 0x1}, {&(0x7f00000013c0)="940798fbe0999568cbd5eb07265d09f8d2145990107b95067cd2ad667a6f98e42106863bd390c23c3244709be648b6fd13a69cac74c4f4d4512003a3062481981a16c2936c4f82a35049d1a451e1627c4d5e24b25109e0b50853289c00017b0b5e5851cb226b892658199b11bff554e2fd357e6906", 0x75, 0xffff}], 0x1000, &(0x7f0000001500)={[{@dots}, {@fat=@dmask={'dmask', 0x3d, 0x8001}}, {@nodots}, {@fat=@time_offset={'time_offset', 0x3d, 0xffffffffffffffc4}}, {@dots}, {@dots}, {@fat=@showexec}, {@fat=@dos1xfloppy}], [{@uid_gt={'uid>', 0xee00}}]}) ioctl$BTRFS_IOC_START_SYNC(r2, 0x80089418, &(0x7f00000015c0)=0x0) ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000004600)={{r3}, r4, 0x8, @inherit={0x58, &(0x7f0000001600)={0x1, 0x2, 0x3, 0x8, {0x1, 0x80000000, 0x3f, 0x8f, 0x4}, [0x0, 0x8b8]}}, @subvolid=0x7}) ioctl$BTRFS_IOC_WAIT_SYNC(r1, 0x40089416, &(0x7f0000000000)=r4) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) socket$unix(0x1, 0x1, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3101.105938] FAULT_INJECTION: forcing a failure. [ 3101.105938] name failslab, interval 1, probability 0, space 0, times 0 [ 3101.108554] CPU: 1 PID: 115792 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3101.110062] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3101.111879] Call Trace: [ 3101.112458] dump_stack+0x107/0x167 [ 3101.113245] should_fail.cold+0x5/0xa [ 3101.114067] ? create_object.isra.0+0x3a/0xa20 [ 3101.115051] should_failslab+0x5/0x20 [ 3101.115879] kmem_cache_alloc+0x5b/0x310 [ 3101.116758] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3101.118051] create_object.isra.0+0x3a/0xa20 [ 3101.118998] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3101.120113] kmem_cache_alloc+0x159/0x310 [ 3101.121015] ptlock_alloc+0x1d/0x70 [ 3101.121800] pte_alloc_one+0x68/0x1a0 [ 3101.122621] __pte_alloc+0x1d/0x330 [ 3101.123408] copy_page_range+0x1b77/0x3820 [ 3101.124324] ? perf_trace_lock+0xac/0x490 [ 3101.125213] ? lock_chain_count+0x20/0x20 [ 3101.126150] ? up_write+0x191/0x550 [ 3101.126928] ? vm_iomap_memory+0x190/0x190 [ 3101.127850] ? downgrade_write+0x3a0/0x3a0 [ 3101.128759] ? anon_vma_interval_tree_insert+0x277/0x450 [ 3101.129923] ? __vma_link_rb+0x540/0x700 [ 3101.130803] dup_mm+0x8b9/0x1110 [ 3101.131549] ? vm_area_dup+0x290/0x290 [ 3101.132402] ? __raw_spin_lock_init+0x36/0x110 [ 3101.133393] copy_process+0x24e2/0x6740 [ 3101.134247] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3101.135368] ? exc_page_fault+0xca/0x1a0 [ 3101.136282] ? trace_hardirqs_on+0x5b/0x180 [ 3101.137230] ? __cleanup_sighand+0xb0/0xb0 [ 3101.138153] ? _copy_from_user+0xfb/0x1b0 [ 3101.139051] kernel_clone+0xe7/0x980 [ 3101.139869] ? __lockdep_reset_lock+0x180/0x180 [ 3101.140867] ? create_io_thread+0xf0/0xf0 [ 3101.141774] ? ksys_write+0x21a/0x260 [ 3101.142625] ? lock_downgrade+0x6d0/0x6d0 [ 3101.143623] __do_sys_clone3+0x1e5/0x320 [ 3101.144504] ? __do_sys_clone+0x110/0x110 [ 3101.145415] ? rcu_read_lock_any_held+0x75/0xa0 [ 3101.146409] ? vfs_write+0x354/0xa70 [ 3101.147214] ? fput_many+0x2f/0x1a0 [ 3101.148014] ? ksys_write+0x1a9/0x260 [ 3101.148831] ? __ia32_sys_read+0xb0/0xb0 [ 3101.149709] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3101.150834] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3101.151946] ? trace_hardirqs_on+0x5b/0x180 [ 3101.152880] do_syscall_64+0x33/0x40 [ 3101.153680] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3101.154779] RIP: 0033:0x7f99575d9b19 [ 3101.155581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3101.159512] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3101.161155] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3101.162680] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3101.164213] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3101.165739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3101.167263] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:32:20 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00000000000000, 0x0, 0x0}, 0x58) 07:32:20 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$SG_SET_COMMAND_Q(r0, 0x2271, &(0x7f0000000000)=0x1) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:20 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x1000000000000000, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) finit_module(r1, &(0x7f0000000040)='*\x00', 0x2) 07:32:38 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 53) 07:32:38 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000ff5000/0x8000)=nil, 0x8000, 0xe, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:38 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x38, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TX_RATES={0x1c, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14}]}]}]}, 0x38}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f0000000f40)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000f00)={&(0x7f0000000280)={0xc74, r1, 0x2, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x0, 0x5b}}}}, [@NL80211_ATTR_TX_RATES={0x450, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x48, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2a, 0x2, [{0x5, 0x9}, {0x6, 0x3}, {0x1, 0x9}, {}, {0x1, 0xa}, {0x2, 0x1}, {0x2, 0x2}, {0x4, 0x9}, {0x2, 0xa}, {0x7, 0x7}, {0x4, 0x2}, {0x1, 0x5}, {0x5, 0x7}, {0x0, 0x3}, {0x5, 0x3}, {0x5, 0x3}, {0x1, 0xa}, {0x5, 0x1}, {0x1, 0x5}, {0x3, 0x1}, {0x2, 0xa}, {0x4, 0x1}, {0x0, 0x6}, {0x4, 0x8}, {0x2, 0x7}, {0x2, 0x6}, {0x5}, {0x1, 0xa}, {0x4, 0x6}, {0x1, 0x8}, {0x0, 0x1}, {0x6, 0x3}, {0x4, 0x3}, {0x5, 0x7}, {0x5, 0xa}, {0x3, 0x6}, {0x3, 0x4}, {0x5, 0x4}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_6GHZ={0xc0, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x40, 0x2, [{0x7, 0x5}, {0x1, 0x7}, {0x0, 0x8}, {0x4, 0x4}, {0x0, 0x2}, {0x3, 0x4}, {0x5, 0x3}, {0x0, 0x6}, {0x6, 0x8}, {0x6, 0x6}, {0x4, 0x6}, {0x5, 0x7}, {0x1, 0x1}, {0x1, 0x8}, {0x0, 0x9}, {0x5, 0xa}, {0x5, 0x3}, {0x0, 0xa}, {0x3}, {0x1, 0x7}, {0x6}, {}, {0x3, 0x8}, {0x7}, {0x5, 0x9}, {0x1, 0x3}, {0x5, 0x9}, {0x2}, {0x0, 0xa}, {0x2, 0x5}, {0x4, 0x7}, {0x4, 0x9}, {0x7, 0x2}, {0x5, 0x5}, {0x1, 0x6}, {0x2, 0x3}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x3}, {0x2, 0x2}, {0x2, 0x8}, {0x2, 0x7}, {0x1, 0x9}, {0x4, 0x3}, {0x4, 0x1}, {0x5, 0x5}, {0x7, 0x5}, {0x1, 0x7}, {}, {0x4, 0x2}, {}, {0x0, 0xa}, {0x1, 0x1}, {0x4, 0x1}, {0x3}, {0x6, 0x3}, {0x4, 0x4}, {0x2, 0x2}, {0x4, 0x5}, {0x7}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x3, 0x78, 0x0, 0x3, 0x1, 0x5]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x6c, 0x4, 0xc, 0x24, 0x2, 0x5, 0x2, 0x24, 0x6c, 0x48, 0x6, 0x18, 0x5, 0x36, 0x3, 0x30, 0x60, 0x6c, 0x4, 0x1b, 0x6, 0x2, 0x4, 0x7b, 0x18, 0x3, 0xb, 0xb, 0x6c]}, @NL80211_TXRATE_LEGACY={0xf, 0x1, [0x24, 0x36, 0x48, 0x5, 0x3, 0x3, 0x30, 0x60, 0x36, 0x30, 0x5]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x0, 0x1f, 0x100, 0x1, 0x1]}}, @NL80211_TXRATE_HT={0x6, 0x2, [{0x6, 0x9}, {0x2, 0xa}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_6GHZ={0x5c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x28, 0x2, [{0x0, 0x4}, {0x6, 0x8}, {0x3}, {0x3, 0x8}, {0x0, 0x8}, {0x7}, {0x2, 0x5}, {0x6, 0x2}, {0x3, 0x9}, {0x2, 0x4}, {0x4, 0x3}, {0x7, 0x3}, {0x0, 0x4}, {0x2, 0x7}, {0x4}, {0x4, 0x7}, {0x0, 0x9}, {0x0, 0x3}, {0x5, 0x8}, {0x3, 0x3}, {0x1, 0x6}, {0x6, 0x5}, {0x7, 0x7}, {0x4, 0x4}, {0x1, 0x4}, {0x1, 0x7}, {0x6}, {0x1, 0x2}, {0x5}, {0x1, 0x9}, {0x0, 0x6}, {0x7, 0x7}, {0x3, 0x8}, {0x7, 0xa}, {0x5, 0x6}, {0x5, 0x4}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xff, 0x480, 0x7, 0x365, 0x8, 0x4, 0x1c8, 0x5]}}, @NL80211_TXRATE_LEGACY={0x1a, 0x1, [0x1, 0xc, 0x18, 0x9, 0x6, 0x18, 0x2, 0x0, 0xc, 0x18, 0x24, 0x4a, 0x30, 0x6, 0x4, 0x1b, 0x16, 0x16, 0x16, 0x5d, 0xc, 0x60]}]}, @NL80211_BAND_2GHZ={0xd8, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x101, 0x4, 0xa617, 0xff, 0x8, 0x8001, 0x4, 0x5]}}, @NL80211_TXRATE_HT={0xa, 0x2, [{0x1, 0x1}, {0x2, 0x6}, {0x6, 0x1}, {0x3, 0x9}, {0x0, 0x9}, {0x7, 0x7}]}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0xf, 0x36, 0xb, 0x18, 0xa, 0x16, 0x5, 0x4, 0x34, 0x6, 0x0, 0x3, 0x4, 0x2, 0xc, 0x3, 0x6, 0x2, 0x12, 0x18, 0x18, 0x48, 0x24, 0x18, 0x6c]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7fff, 0x3, 0x2, 0x8, 0x3, 0x5, 0x0, 0x1f]}}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x4, 0x6}, {0x7, 0x9}, {0x6, 0x5}, {0x1}, {0x1}]}, @NL80211_TXRATE_HT={0x4d, 0x2, [{0x2, 0xa}, {0x2, 0x5}, {0x2, 0xa}, {0x4, 0x6}, {0x3, 0x8}, {0x2, 0x9}, {0x3, 0x6}, {0x6, 0x9}, {0x1}, {0x3, 0x4}, {0x2, 0x9}, {0x3, 0x9}, {0x0, 0x1}, {0x5, 0x3}, {0x0, 0x2}, {0x1, 0x9}, {0x5, 0x4}, {0x0, 0x2}, {0x5, 0x7}, {0x4, 0x5}, {0x5, 0xa}, {0x5, 0x5}, {0x7, 0x8}, {0x5, 0x4}, {0x0, 0x1}, {0x7}, {0x0, 0x8}, {0x1, 0x9}, {0x4}, {0x2, 0x3}, {0x7, 0x1}, {0x3, 0x5}, {0x1, 0xa}, {0x6, 0x4}, {0x0, 0x5}, {0x7, 0x1}, {0x6, 0x8}, {0x2}, {0x7, 0x9}, {0x1, 0x2}, {0x5, 0x4}, {0x0, 0x2}, {0x3, 0x3}, {0x1, 0x8}, {0x0, 0x5}, {0x4, 0x9}, {0x1}, {0x7, 0x8}, {0x1, 0x4}, {0x3, 0x7}, {0x0, 0x5}, {0x7, 0x3}, {0x7}, {0x2, 0x8}, {0x0, 0x8}, {0x5, 0x8}, {}, {0x4, 0x3}, {0x2, 0x2}, {0x5, 0x9}, {0x0, 0x6}, {0x2, 0x2}, {0x3, 0x3}, {0x7, 0x6}, {0x1, 0x8}, {0x1, 0x6}, {0x0, 0x3}, {0x2, 0xa}, {0x6, 0x1}, {0x1, 0x9}, {0x6, 0x4}, {0x0, 0xa}, {0x7, 0xa}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6c, 0x401, 0x2, 0x2, 0x2, 0xeba9, 0x0, 0x1]}}]}, @NL80211_BAND_6GHZ={0x70, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x18, 0x1, [0x48, 0x3, 0x18, 0x9, 0x18, 0x60, 0x2, 0x2, 0x1, 0x1, 0x1, 0x6, 0x9, 0x0, 0xb, 0x2, 0x6c, 0x60, 0xc, 0x3]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x12, 0x9, 0x1, 0x36, 0x3, 0x18, 0x1b, 0x12, 0x4, 0x2, 0xc, 0x60, 0x12, 0xc, 0xb, 0x4, 0x64, 0x12, 0x23, 0x4, 0x1b, 0x9, 0x4, 0x6, 0xb, 0x12, 0xc, 0x48, 0x1]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1f, 0x2, 0x7, 0x3, 0x1f, 0x800, 0x8, 0xb0c]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x80, 0x401, 0x8, 0x20, 0xff, 0xfff8, 0x7, 0x7f]}}]}, @NL80211_BAND_2GHZ={0xc0, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x8, 0x6, 0x7, 0x7ff, 0x6, 0xb3b, 0x50]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xe1, 0x5, 0xfff, 0xd8d, 0xc22, 0x1, 0x8000, 0x2]}}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0xb, 0x36, 0x0, 0xc, 0xc, 0x12, 0x30, 0x18, 0x48, 0xa, 0x5, 0x6, 0x48]}, @NL80211_TXRATE_HT={0x42, 0x2, [{0x1, 0x3}, {0x0, 0x9}, {0x1, 0x7}, {0x2, 0x7}, {0x7, 0x1}, {0x3, 0x9}, {0x0, 0xa}, {0x2, 0x8}, {0x3, 0x4}, {0x0, 0x1}, {0x1}, {0x7, 0x1}, {0x2, 0x3}, {0x6, 0x8}, {0x0, 0x4}, {0x3, 0xa}, {0x0, 0x1}, {0x1, 0x3}, {0x1, 0x5}, {0x2}, {0x7, 0x1}, {0x7, 0x1}, {0x2, 0x9}, {0x2, 0x6}, {0x3, 0x7}, {0x2, 0x5}, {0x3}, {0x6, 0x9}, {0x5, 0x8}, {0x0, 0x6}, {0x0, 0x5}, {0x1, 0x8}, {0x3, 0x5}, {0x0, 0x1}, {0x2, 0x9}, {0x3, 0x3}, {0x6, 0xa}, {0x2, 0x4}, {0x1, 0x3}, {0x1, 0x7}, {0x6, 0x9}, {0x1, 0x8}, {0x3, 0xa}, {0x2, 0x8}, {0x0, 0x2}, {0x7, 0xa}, {0x0, 0x5}, {0x1, 0x8}, {0x3, 0x8}, {0x1, 0x4}, {0x6, 0x8}, {0x2, 0x6}, {0x1, 0x9}, {0x3, 0x4}, {0x3}, {0x0, 0x4}, {0x1, 0x8}, {0x0, 0x2}, {0x7, 0x5}, {0x2, 0x8}, {0x3, 0xa}, {0x2, 0x5}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x1b, 0x27, 0x36, 0xc, 0x9, 0x5, 0x1, 0x3, 0x12, 0x3, 0x36, 0x24, 0xb, 0x30, 0x1b, 0x2, 0x18, 0x3, 0x6c, 0x1090c7aea0d9d4af, 0x16, 0x18, 0x48, 0x0, 0x24]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0xfff, 0x0, 0x7, 0x3, 0x8, 0x1, 0x200]}}]}, @NL80211_BAND_60GHZ={0x5c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x62, 0x7fff, 0x3ff, 0x28ee, 0x3, 0x4, 0x7541, 0x1]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xffff, 0x800, 0x8, 0xf080, 0x800, 0x8, 0x0, 0x1]}}, @NL80211_TXRATE_LEGACY={0x13, 0x1, [0x36, 0x6c, 0xc, 0x6c, 0x36, 0xb, 0x16, 0xb, 0x6, 0x1, 0x71, 0xb, 0x12, 0x2, 0x36]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x5, 0xfffe, 0x9, 0x5, 0x0, 0x6, 0x2]}}]}, @NL80211_BAND_6GHZ={0x84, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x2e59, 0xf6b, 0x1f, 0x3ac0, 0x101, 0x200, 0x40, 0x5]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x5, 0x20, 0x7, 0x200, 0x2ed5, 0x9, 0x161]}}, @NL80211_TXRATE_HT={0x40, 0x2, [{0x3, 0x3}, {0x7, 0x1}, {0x1, 0x6}, {0x6, 0x8}, {0x5, 0x2}, {0x4, 0x5}, {0x5, 0x4}, {0x4, 0x4}, {0x7}, {0x2, 0x9}, {0x1, 0x7}, {0x4, 0x7}, {0x2, 0x7}, {0x1}, {0x1, 0x1}, {0x5, 0x7}, {0x6}, {0x2, 0xa}, {0x1, 0x1}, {0x4, 0x3}, {0x1, 0x7}, {0x1, 0x9}, {0x1, 0x5}, {0x3, 0x9}, {0x0, 0x2}, {0x4, 0x7}, {0x1, 0x2}, {0x2, 0x5}, {0x7}, {0x0, 0x1}, {0x5, 0xa}, {0x5, 0x4}, {0x4, 0x6}, {0x3, 0x1}, {0x7, 0x1}, {0x0, 0xa}, {0x6, 0x7}, {0x3, 0xa}, {0x6, 0x3}, {0x1, 0x1}, {0x4, 0x8}, {0x6, 0x6}, {0x1, 0x7}, {0x1}, {0x5, 0x4}, {0x3, 0x5}, {0x5, 0x7}, {0x1, 0x4}, {0x0, 0x2}, {0x6, 0x6}, {0x4, 0xa}, {0x0, 0xa}, {0x0, 0x2}, {0x0, 0x2}, {0x1, 0x4}, {0x4, 0x8}, {0x6, 0x9}, {0x5, 0x1}, {0x5, 0x8}, {0x3, 0x4}]}, @NL80211_TXRATE_LEGACY={0x17, 0x1, [0x6c, 0x9, 0x0, 0x3, 0x24, 0x4, 0x18, 0x48, 0x18, 0x0, 0x6c, 0x24, 0x5, 0x24, 0x6, 0x1b, 0x9, 0xc, 0x2]}]}]}, @NL80211_ATTR_TX_RATES={0x64, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x60, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x33, 0x2, [{0x0, 0x1}, {0x1, 0x6}, {0x3, 0x1}, {0x0, 0x8}, {0x5, 0x9}, {0x1, 0x4}, {0x0, 0x3}, {0x1, 0x7}, {0x0, 0x5}, {0x1, 0x4}, {0x1, 0x9}, {0x0, 0x3}, {0x5, 0xa}, {0x5, 0xa}, {0x4, 0x2}, {0x0, 0x6}, {0x1, 0x9}, {0x5, 0xa}, {0x3, 0xa}, {0x5, 0x3}, {0x1}, {0x2, 0x5}, {0x3, 0x1}, {0x0, 0x2}, {0x3, 0x4}, {0x1, 0x8}, {0x6}, {0x0, 0x1}, {0x1, 0x1}, {0x2, 0x6}, {0x1, 0x5}, {0x3, 0x7}, {0x3}, {0x0, 0x5}, {0x7}, {0x6, 0x4}, {0x1, 0x2}, {0x3, 0x3}, {0x1, 0x1}, {0x4, 0x9}, {0x7, 0x1}, {0x6, 0x4}, {0x0, 0x7}, {0x4, 0x3}, {0x3, 0x7}, {0x4, 0x9}, {0x7, 0x2}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x37c6, 0x3196, 0xff, 0x3ff, 0x4, 0xffe, 0x54da, 0x8]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x6e, 0xb7d, 0x5, 0x1, 0x6, 0x9, 0x4]}}]}]}, @NL80211_ATTR_TX_RATES={0x268, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0xd4, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x16, 0x2, [{0x3, 0x5}, {0x7, 0xa}, {0x6, 0x6}, {0x3, 0x4}, {0x0, 0x2}, {0x3, 0x1}, {0x6, 0x3}, {0x5, 0x7}, {0x2, 0x3}, {0x3, 0x7}, {0x2, 0xa}, {0x2, 0x2}, {0x2, 0xa}, {0x3}, {0x4, 0x1}, {0x3, 0xa}, {0x0, 0x1}, {}]}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x16, 0xc, 0xc, 0x60, 0x12, 0x6c, 0x48, 0x30, 0x1, 0x0, 0x24, 0x30, 0x1b, 0xb, 0x5, 0x1, 0xc, 0x18, 0x9, 0x9, 0x12, 0x18, 0x6c, 0x16, 0xb, 0x16, 0x1, 0x0, 0x18]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x6, 0x1, 0x9, 0x48, 0xfffb, 0x1ff, 0xcd]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xffff, 0x5, 0x0, 0x5, 0xf984, 0x8, 0x800, 0x1000]}}, @NL80211_TXRATE_HT={0x48, 0x2, [{0x0, 0x8}, {0x5, 0x2}, {0x2, 0x9}, {0x1, 0x5}, {0x1, 0x9}, {0x3, 0x5}, {0x3}, {0x3, 0x6}, {0x7, 0x5}, {0x4, 0x1}, {0x1, 0x5}, {0x4, 0x7}, {0x2, 0x5}, {0x1, 0x8}, {0x1, 0xa}, {0x2, 0x4}, {0x5, 0x5}, {0x5}, {0x0, 0x7}, {0x3, 0x9}, {0x3}, {0x2, 0x6}, {0x0, 0x2}, {0x7, 0x6}, {0x2, 0x8}, {0x5, 0x8}, {0x2, 0x9}, {0x2, 0x9}, {0x5, 0x5}, {0x7}, {0x5, 0x4}, {}, {0x3, 0x8}, {0x7, 0x8}, {0x3, 0x2}, {0x7, 0x6}, {0x6, 0x1}, {0x7, 0x2}, {0x1, 0x6}, {0x0, 0x3}, {0x5, 0x9}, {0x4, 0x8}, {0x3}, {0x6, 0xa}, {0x0, 0x2}, {0x3, 0x1}, {0x1, 0x5}, {0x4}, {0x7, 0x4}, {0x1}, {0x1, 0x8}, {0x2, 0x5}, {0x2, 0x9}, {0x0, 0xa}, {0x0, 0x3}, {0x7, 0x6}, {0x1, 0x1}, {0x0, 0x2}, {0x4}, {0x5, 0x5}, {0x7}, {0x0, 0xa}, {0x5, 0x3}, {0x6}, {0x5, 0x3}, {0x0, 0x7}, {0x6, 0x6}, {0x4, 0x2}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x14, 0x2, [{0x5, 0x3}, {0x2, 0x5}, {0x4, 0x9}, {0x0, 0x5}, {0x3, 0x6}, {0x3, 0x1}, {0x0, 0x5}, {0x1, 0x9}, {0x5, 0x2}, {0x7, 0x3}, {0x5, 0x9}, {0x5, 0xa}, {0x5, 0xa}, {0x3, 0xa}, {0x7, 0x2}, {0x1, 0x8}]}]}, @NL80211_BAND_60GHZ={0x94, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x5, 0x2, [{0x7, 0xa}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x3, 0x7, 0x9, 0x8, 0x101, 0x9, 0x8]}}, @NL80211_TXRATE_LEGACY={0x1b, 0x1, [0x2, 0x3, 0x1b, 0x6c, 0x5, 0x6c, 0xc, 0x1b, 0x2, 0x6c, 0x60, 0x4, 0x60, 0x9, 0x48, 0x1, 0x12, 0x6f, 0x12, 0x6, 0x2, 0x6, 0x9]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x3f, 0x2, [{0x7}, {0x7}, {0x1, 0x8}, {0x4, 0x6}, {0x6, 0x6}, {0x3, 0x3}, {0x1, 0x1}, {0x4, 0x4}, {0x4, 0x8}, {0x7, 0x5}, {0x4, 0x5}, {0x1, 0x5}, {0x1, 0x8}, {0x1, 0x2}, {0x7, 0x9}, {0x1, 0x7}, {0x5, 0x5}, {0x2, 0x8}, {0x3, 0x9}, {0x4, 0x5}, {0x1, 0x4}, {0x7, 0x1}, {0x0, 0x5}, {0x7, 0x6}, {0x1}, {0x0, 0x1}, {0x3}, {0x2, 0x3}, {0x2, 0x7}, {0x3, 0x1}, {0x4, 0x4}, {0x7, 0x4}, {0x3, 0x7}, {0x0, 0x5}, {0x0, 0x6}, {0x5, 0x3}, {0x4, 0x6}, {0x1, 0x2}, {0x4, 0x6}, {0x0, 0x5}, {0x1, 0x4}, {0x0, 0x1}, {0x3, 0x3}, {0x4, 0x7}, {0x2, 0x3}, {0x0, 0x9}, {0x6, 0x7}, {0x0, 0x8}, {0x7, 0x6}, {0x3, 0x3}, {0x1, 0x9}, {0x0, 0x4}, {0x4, 0x3}, {0x5, 0xa}, {0x6, 0x4}, {0x5, 0x9}, {0x2, 0x1}, {0x0, 0x4}, {0x4, 0x9}]}]}, @NL80211_BAND_60GHZ={0xe4, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x32, 0x2, [{0x5, 0x3}, {0x5, 0x7}, {0x5, 0x6}, {0x7}, {0x3, 0x5}, {0x4, 0x8}, {0x0, 0x8}, {0x0, 0x8}, {0x5, 0x5}, {0x5}, {0x3, 0x8}, {0x0, 0x9}, {0x7, 0x1}, {0x2, 0xa}, {0x3, 0x1}, {0x1, 0xa}, {0x1, 0x8}, {0x6, 0x6}, {0x7, 0xa}, {0x7, 0x5}, {0x4, 0x2}, {0x6, 0x3}, {0x5, 0x3}, {}, {0x0, 0x9}, {0x3, 0x8}, {0x5, 0x1}, {0x5, 0x7}, {0x1, 0x9}, {0x7, 0x4}, {0x1}, {0x1, 0x5}, {0x1, 0x2}, {0x7, 0x9}, {0x0, 0x1}, {0x0, 0x9}, {0x3, 0x7}, {0x4, 0x8}, {0x0, 0x5}, {0x5, 0x4}, {0x7, 0x4}, {0x5, 0x2}, {0x6, 0x6}, {0x0, 0xa}, {0x3, 0x3}, {0x3, 0x1}]}, @NL80211_TXRATE_LEGACY={0x9, 0x1, [0xc, 0x6c, 0xc, 0x4, 0x3]}, @NL80211_TXRATE_HT={0x24, 0x2, [{0x5, 0x9}, {0x4, 0x2}, {0x1, 0x5}, {0x2}, {0x7, 0x9}, {0x0, 0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x0, 0x7}, {0x1, 0x3}, {}, {0x7, 0x6}, {0x1}, {0x0, 0x5}, {0x0, 0x9}, {0x3, 0x2}, {0x0, 0x9}, {0x7, 0x2}, {0x2}, {0x0, 0xa}, {0x0, 0x7}, {0x3, 0x5}, {0x0, 0x6}, {0x7, 0x7}, {0x3}, {}, {0x2, 0x6}, {0x5, 0x9}, {0x7}, {0x2, 0x1}, {0x7, 0x1}, {0x5, 0x5}]}, @NL80211_TXRATE_HT={0x35, 0x2, [{0x1, 0x5}, {0x6, 0x14}, {0x0, 0x2}, {0x3, 0x3}, {0x1, 0x7}, {0x4, 0x5}, {0x0, 0x2}, {0x1, 0xa}, {0x1, 0x6}, {0x2, 0xa}, {0x2, 0x2}, {0x3, 0x1}, {0x1, 0x3}, {0x4, 0x2}, {0x6, 0x5}, {0x0, 0x8}, {0x0, 0x4}, {0x7, 0x6}, {0x2, 0x7}, {0x3, 0x1}, {0x2, 0x2}, {0x0, 0x8}, {0x6}, {0x5, 0x2}, {0x7, 0x6}, {0x4, 0x7}, {0x7, 0x6}, {0x2, 0x8}, {0x4}, {0x0, 0x2}, {0x7, 0x4}, {0x2, 0x3}, {0x3, 0xa}, {0x0, 0x6}, {0x5, 0x7}, {0x0, 0x3}, {0x2, 0x1}, {0x1, 0x8}, {0x4, 0x2}, {0x1, 0x9}, {0x5}, {0x5, 0x5}, {0x3, 0x1}, {0x0, 0xa}, {0x4, 0xa}, {0x6, 0x1}, {0x3}, {0x0, 0x4}, {0x0, 0xa}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x28, 0x2, [{0x7, 0x1}, {0x2, 0x2}, {0x7, 0x8}, {0x4, 0x3}, {0x1, 0xa}, {0x4, 0x3}, {0x5, 0x9}, {0x5}, {0x2, 0xa}, {0x1}, {0x7, 0x5}, {0x6, 0x5}, {0x6, 0x4}, {0x7, 0x1}, {0x7, 0x8}, {0x0, 0x1}, {0x6, 0x5}, {0x1, 0xa}, {0x4, 0x9}, {0x7, 0x8}, {0x4}, {0x0, 0x2}, {0x1, 0x8}, {0x6, 0x9}, {0x2, 0x4}, {0x6, 0x7}, {0x2, 0xa}, {0x5, 0x3}, {0x3}, {0x4, 0x1}, {0x0, 0xa}, {0x4, 0x1}, {0x4, 0x3}, {0x7}, {0x7, 0x2}, {0x7}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x2, 0x4b5, 0x8b1, 0x0, 0x80, 0x4e72]}}]}, @NL80211_BAND_6GHZ={0x18, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x1ff, 0xfc01, 0x9, 0x4, 0xfdc, 0x27, 0xa3cd]}}]}]}, @NL80211_ATTR_TX_RATES={0x468, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x4c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x47, 0x2, [{0x2, 0x6}, {0x0, 0x4}, {0x2, 0x4}, {0x4, 0x1}, {0x0, 0x3}, {0x7, 0x9}, {0x6, 0x1}, {0x7}, {0x4}, {0x4, 0x1}, {}, {0x5, 0x7}, {0x1, 0x9}, {0x0, 0x9}, {0x7, 0x7}, {0x0, 0x6}, {0x1, 0x7}, {0x4, 0x9}, {0x0, 0x2}, {0x2, 0x1}, {0x6}, {0x7, 0x9}, {0x4, 0x3}, {0x1, 0x5}, {0x6, 0x6}, {0x3}, {0x4, 0x7}, {0x3, 0x9}, {0x7, 0x7}, {0x0, 0xa}, {0x3, 0xa}, {0x6, 0x5}, {0x1, 0x8}, {0x2, 0x8}, {0x2, 0x6}, {0x6, 0x8}, {0x3, 0x7}, {0x0, 0xa}, {0x6, 0x2}, {0x0, 0x6}, {0x3, 0x1}, {0x0, 0x7}, {0x7}, {0x1, 0x8}, {0x7, 0x5}, {0x6, 0x8}, {0x1}, {0x3, 0x9}, {0x1, 0x2}, {0x7, 0x8}, {0x1, 0x8}, {0x7, 0x3}, {0x2, 0x3}, {0x4, 0x3}, {0x7}, {0x6, 0x1}, {0x6, 0x5}, {0x0, 0x1}, {0x0, 0x8}, {0x5, 0x7}, {0x1, 0x2}, {0x2, 0x1}, {0x2, 0x2}, {0x6}, {0x3}, {0x6, 0x7}, {0x3, 0x9}]}]}, @NL80211_BAND_5GHZ={0x4c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xe8fc, 0x20, 0xf295, 0x2, 0x20, 0x1, 0x4, 0x2]}}, @NL80211_TXRATE_LEGACY={0x15, 0x1, [0x6c, 0x16, 0x8, 0x12, 0x5, 0x48, 0x24, 0x30, 0x0, 0x6, 0x24, 0xc, 0x1b, 0x12, 0x2, 0x9, 0x16]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0xa, 0x1, [0x1, 0x36, 0x9, 0x30, 0xb, 0x6d]}]}, @NL80211_BAND_60GHZ={0x98, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2e, 0x2, [{0x5, 0x9}, {0x0, 0x7}, {0x7, 0x4}, {0x1, 0x9}, {0x5, 0x9}, {0x5, 0x6}, {0x4, 0x8}, {0x6, 0x2}, {0x4, 0x6}, {0x2, 0x7}, {0x4, 0xa}, {0x5, 0x1}, {0x3, 0x2}, {0x0, 0x1}, {0x0, 0x6}, {0x4, 0x1}, {0x4, 0x2}, {0x7, 0x1}, {0x3, 0x4}, {0x7, 0x1}, {0x0, 0x7}, {0x2, 0x4}, {0x4, 0x3}, {0x6, 0x8}, {0x2, 0x3}, {0x5, 0x2}, {0x4, 0x3}, {0x3, 0x4}, {0x0, 0x2}, {0x5, 0x7}, {0x6, 0x7}, {0x7, 0x2}, {0x2, 0x2}, {0x6, 0x4}, {0x4, 0x1}, {0x0, 0x4}, {0x3, 0xa}, {0x1, 0x5}, {0x2, 0x4}, {0x0, 0x7}, {0x6, 0x9}, {0x2, 0x2}]}, @NL80211_TXRATE_HT={0x47, 0x2, [{0x4, 0x5}, {0x5, 0x4}, {0x0, 0x7}, {0x5}, {0x0, 0x4}, {0x4, 0x3}, {0x1, 0x7}, {0x5, 0x2}, {0x6, 0x3}, {0x0, 0x6}, {0x3, 0x4}, {0x4, 0x4}, {0x5, 0x1}, {0x1, 0x5}, {0x1, 0xa}, {0x0, 0x6}, {0x6, 0x5}, {0x5, 0x3}, {0x3, 0x3}, {0x6, 0x2}, {0x6, 0x8}, {0x0, 0x9}, {0x3, 0x9}, {0x5, 0x3}, {0x3, 0x9}, {0x5}, {0x3}, {0x2}, {0x2, 0x7}, {0x1}, {0x3, 0x2}, {0x5}, {0x5, 0x8}, {0x2, 0x1}, {0x5, 0x4}, {0x0, 0x9}, {0x0, 0x8}, {0x7, 0x5}, {0x6, 0x2}, {0x0, 0x9}, {0x0, 0x1e}, {0x2, 0x4}, {0x0, 0x9}, {0x6, 0x3}, {0x6, 0x4}, {0x0, 0x1}, {0x7}, {0x6, 0x8}, {0x3}, {0x5, 0x6}, {0x1, 0x2}, {0x3, 0x5}, {0x7, 0x4}, {0x2, 0x9}, {0x5, 0x2}, {0x3, 0x3}, {0x0, 0x9}, {0x6, 0x9}, {0x0, 0x6}, {0x0, 0x5}, {0x1, 0x6}, {0x0, 0x6}, {0x5, 0x4}, {0x3, 0x1}, {0x0, 0x4}, {0x6}, {0x4, 0x7}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x7, 0x3, 0x5, 0x52, 0x6e51, 0x7, 0x1]}}]}, @NL80211_BAND_5GHZ={0x98, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x3b, 0x2, [{0x2, 0x4}, {0x3, 0x7}, {0x5, 0x4}, {0x3, 0x1}, {0x2, 0x7}, {0x4, 0x3}, {0x2, 0x7}, {0x5, 0x8}, {0x4, 0x1}, {0x3, 0x4}, {0x2, 0xa}, {0x2, 0x8}, {0x6, 0xa}, {0x1, 0x4}, {0x1, 0xa}, {0x6, 0xa}, {0x6, 0x2}, {0x2, 0x8}, {0x5, 0x9}, {0x3, 0x8}, {0x5, 0xa}, {}, {0x0, 0x5}, {0x1, 0x6}, {0x4, 0x3}, {0x5}, {0x5, 0x5}, {0x0, 0x4}, {0x7, 0x1}, {0x7}, {0x4, 0xa}, {0x0, 0x5}, {0x5, 0x1}, {0x3, 0x2}, {0x3, 0xa}, {0x2}, {0x6, 0x5}, {0x1, 0x2}, {0x5, 0x4}, {0x5, 0x3}, {0x4, 0x4}, {0x0, 0x2}, {0x0, 0x3}, {0x5, 0x8}, {0x4, 0x1}, {0x5, 0x4}, {0x2, 0x2}, {0x4}, {0x6, 0x9}, {0x6, 0x6}, {0x5, 0x2}, {0x2, 0x8}, {0x3, 0x7}, {0x3, 0x3}, {0x6, 0x2}]}, @NL80211_TXRATE_HT={0x1c, 0x2, [{0x5, 0x6}, {0x5}, {0x1, 0x2}, {0x7, 0x3}, {0x7, 0x7}, {0x7, 0x1}, {0x6, 0x3}, {0x1, 0x4}, {0x4}, {0x5, 0x7}, {0x3}, {0x4, 0x3}, {0x7, 0x7}, {0x2}, {0x7, 0x8}, {0x2, 0xa}, {0x3, 0x9}, {0x0, 0x6}, {0x4, 0x3}, {0x4, 0x3}, {0x0, 0xa}, {0x0, 0x5}, {0x2, 0x7}, {0x2, 0x3}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xfff8, 0x1, 0x6, 0x3f, 0xc71d, 0x7, 0x81, 0x3ff]}}, @NL80211_TXRATE_LEGACY={0x17, 0x1, [0x9, 0x30, 0x4, 0x3, 0x6c, 0x18, 0x1b, 0x12, 0x4, 0x18, 0x1, 0x48, 0x2, 0x2, 0x48, 0x16, 0xc, 0xc, 0x6]}]}, @NL80211_BAND_6GHZ={0x80, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xffff, 0xdc, 0x2, 0xbc, 0x0, 0x8000, 0x1d85, 0x2]}}, @NL80211_TXRATE_HT={0x4c, 0x2, [{0x2, 0x6}, {0x0, 0x9}, {0x1, 0x4}, {0x0, 0x3}, {0x5, 0x6}, {0x6, 0xa}, {0x0, 0x9}, {0x1, 0xa}, {0x7, 0x5}, {0x3, 0x9}, {0x3}, {0x5, 0x8}, {0x4, 0x7}, {0x6, 0x8}, {0x0, 0x8}, {0x5, 0xa}, {0x0, 0x8}, {0x0, 0x2}, {0x1, 0xa}, {0x1, 0x6}, {0x1, 0x9}, {0x1, 0x5}, {0x3, 0x3}, {0x5, 0x6}, {0x1, 0x6}, {0x4, 0x9}, {0x1, 0x4}, {0x0, 0x5}, {0x4, 0x5}, {0x3, 0x2}, {0x3, 0x1}, {0x3, 0x3}, {0x0, 0x2}, {0x4, 0xa}, {0x6, 0x8}, {0x4}, {0x2, 0x9}, {0x4, 0x8}, {0x1, 0x1}, {0x3, 0x8}, {0x0, 0x8}, {0x7, 0x1}, {0x2}, {0x4, 0x8}, {0x1, 0x8}, {0x0, 0xa}, {0x3, 0x3}, {0x1, 0x9}, {0x4, 0x6}, {0x3, 0x7}, {0x7}, {0x4, 0x2}, {0x1, 0x2}, {0x2, 0x8}, {0x7, 0x1}, {0x5, 0x4}, {0x5, 0x3}, {0x7, 0x5}, {0x2, 0x6}, {0x1, 0x2}, {0x3, 0x2}, {0x5, 0x9}, {0x1, 0xa}, {0x1, 0x2}, {0x1, 0xa}, {0x6, 0x8}, {0x2, 0x4}, {0x1, 0x6}, {0x1, 0x6}, {0x5, 0x9}, {0x1, 0x6}, {0x4, 0x4}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7ff, 0x9, 0xfff, 0x4, 0x2, 0x9, 0x7f, 0xf801]}}]}, @NL80211_BAND_60GHZ={0xdc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x6443, 0x8000, 0x100, 0x7ff, 0x4, 0xff, 0x9, 0xb]}}, @NL80211_TXRATE_HT={0x29, 0x2, [{0x6, 0x8}, {0x1, 0x6}, {0x3, 0x6}, {0x0, 0x6}, {0x6}, {0x6, 0x5}, {0x4, 0x2}, {0x2, 0x2}, {0x7}, {0x3, 0x8}, {0x3, 0x5}, {0x6, 0x2}, {0x4, 0x1}, {0x2, 0x6}, {0x6}, {0x7, 0x7}, {0x0, 0x1}, {0x7, 0x4}, {0x7, 0x2}, {0x7, 0x4}, {0x3, 0x2}, {0x3, 0x9}, {0x7, 0x5}, {0x0, 0x7}, {0x7, 0x5}, {0x2, 0x7}, {0x2, 0xa}, {0x7}, {0x2, 0x6}, {0x1, 0x6}, {0x0, 0x7}, {0x5, 0x6}, {0x5, 0xa}, {0x7, 0x8}, {0x3, 0x9}, {0x1, 0x5}, {0x2, 0x9}]}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x12, 0x60, 0xce94ac957c60fae, 0x2, 0x24, 0x2, 0x2, 0xb, 0xc]}, @NL80211_TXRATE_LEGACY={0x8, 0x1, [0x0, 0x4c, 0x4, 0x32]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x0, 0x8, 0xff, 0x0, 0x8, 0x3ff, 0x4]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x21, 0x2, [{0x5, 0x1}, {0x1, 0x4}, {0x0, 0x8}, {0x5, 0x8}, {0x1, 0xa}, {0x1, 0x5}, {0x7, 0x2}, {0x0, 0x4}, {0x7, 0x3}, {0x1, 0x8}, {0x1, 0x9}, {0x4, 0x1}, {0x5, 0x3}, {0x1, 0x7}, {0x2, 0x7}, {0x7, 0x8}, {0x7, 0x4}, {0x5, 0xa}, {0x5}, {0x7}, {0x5, 0xa}, {0x4, 0x5}, {0x3, 0x6}, {0x0, 0x9}, {0x5, 0x5}, {0x4, 0x3}, {0x5, 0x4}, {0x1, 0x6}, {0x0, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7ff, 0xfffe, 0xbd1b, 0x6, 0xfff7, 0x2, 0x1f, 0x400]}}, @NL80211_TXRATE_LEGACY={0x23, 0x1, [0x18, 0x12, 0x16, 0x6, 0x12, 0x2, 0x60, 0x1b, 0x60, 0x6, 0x18, 0x9, 0x6, 0x6, 0x1b, 0x6, 0x48, 0xc, 0x2, 0x30, 0x6c, 0x30, 0x15, 0x16, 0x18, 0xb, 0x4, 0x2, 0x5, 0x60, 0x12]}]}, @NL80211_BAND_2GHZ={0x80, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x7, 0x4, 0x5, 0x7, 0x200, 0x5]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x9, 0x1000, 0x7, 0xffff, 0x5, 0x5, 0x7e]}}, @NL80211_TXRATE_LEGACY={0xf, 0x1, [0x30, 0xc, 0x60, 0x24, 0x30, 0x3, 0x9, 0x48, 0xb, 0x60, 0x6c]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0xc9, 0x0, 0xfffc, 0xff81, 0x8, 0x4, 0x9]}}, @NL80211_TXRATE_HT={0x8, 0x2, [{0x3, 0x3}, {0x3}, {0x3, 0x4}, {0x3, 0x9}]}, @NL80211_TXRATE_LEGACY={0x17, 0x1, [0x4, 0x3, 0x2, 0x0, 0x36, 0x12, 0x36, 0x4, 0x1b, 0x30, 0x12, 0x0, 0x24, 0x12, 0xc, 0x1, 0x6, 0x3, 0x5]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_6GHZ={0x2c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x26, 0x2, [{0x3, 0x3}, {0x1, 0x4}, {0x2}, {0x4, 0x6}, {0x5, 0x5}, {0x4, 0x4}, {0x2, 0x3}, {0x4, 0xa}, {0x5, 0x3}, {0x2, 0x7}, {0x0, 0x3}, {0x7, 0x7}, {0x0, 0x1}, {0x4, 0x7}, {0x2, 0x5}, {0x1, 0x5}, {0x3, 0x1}, {0x0, 0x9}, {0x5, 0x5}, {0x0, 0xa}, {0x6, 0x6}, {0x7, 0x6}, {0x0, 0x6}, {0x2, 0x4}, {}, {0x3, 0x8}, {0x3, 0x3}, {0x7, 0x5}, {0x3, 0x3}, {0x4, 0x6}, {0x5}, {0x1, 0x8}, {}, {0x1, 0x2}]}]}, @NL80211_BAND_5GHZ={0x28, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x24, 0x2, [{0x6}, {0x4, 0x1}, {0x1, 0x4}, {0x0, 0x4}, {0x2, 0x9}, {0x4, 0x1}, {0x2}, {0x5}, {0x2, 0xa}, {0x0, 0x9}, {0x6, 0x8}, {0x6, 0x8}, {0x1, 0x9}, {0x1, 0x1}, {0x7, 0xa}, {0x0, 0x5}, {0x3}, {0x2, 0x3}, {0x1, 0x9}, {0x4, 0x6}, {0x2, 0x8}, {0x4, 0x5}, {0x1, 0x6}, {0x0, 0x7}, {0x1, 0x6}, {0x5, 0x4}, {0x4, 0x1}, {0x4, 0x2}, {0x6, 0x6}, {0x4, 0x4}, {0x4, 0x9}, {0x3, 0xa}]}]}, @NL80211_BAND_6GHZ={0x6c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2f, 0x2, [{0x0, 0x1}, {0x1, 0x8}, {0x0, 0x8}, {0x2, 0x8}, {0x5, 0x7}, {0x1, 0x2}, {0x2, 0x2}, {0x3, 0x3}, {0x7, 0x4}, {0x4, 0x7}, {0x5, 0x2}, {0x7, 0x7}, {0x0, 0x4}, {0x6, 0x7}, {0x3, 0x6}, {0x1, 0x3}, {0x4, 0x4}, {0x7, 0x8}, {0x2, 0x1}, {0x0, 0x5}, {0x7, 0x4}, {0x7, 0x9}, {0x3, 0x7}, {0x1, 0x3}, {0x1, 0x5}, {0x4, 0x1}, {0x5, 0x6}, {0x3, 0x3}, {0x5, 0x2}, {0x6, 0x3}, {0x6, 0xa}, {0x3, 0x7}, {0x3, 0x7}, {0x6, 0x9}, {0x1, 0x1}, {0x5, 0xa}, {0x6, 0x6}, {0x2, 0x1}, {0x1, 0x2}, {0x1}, {}, {0x3, 0x5}, {0x1, 0x9}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x20, 0x200, 0x6, 0x1, 0x9, 0x1, 0x4]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x3, 0x0, 0x6, 0xfff8, 0x9, 0x0, 0x6]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}]}, @NL80211_ATTR_TX_RATES={0xc8, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0xa4, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x19f2, 0x80, 0x8001, 0xba2, 0x401, 0x2, 0x4, 0xf00]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x4e, 0x2, [{0x1, 0x9}, {0x4, 0x7}, {0x3, 0x3}, {0x1, 0x6}, {0x6, 0x8}, {0x6, 0x5}, {0x1, 0x9}, {0x1, 0x1}, {0x4, 0x5}, {0x2, 0x2}, {0x0, 0x4}, {}, {0x4, 0x3}, {0x0, 0x2}, {0x2, 0x5}, {0x6}, {0x6}, {0x7, 0x8}, {0x4, 0x7}, {0x3}, {0x5, 0x8}, {0x0, 0x5}, {0x7, 0x9}, {0x4, 0x2}, {0x5, 0xa}, {0x1, 0x6}, {0x1, 0x4}, {0x1, 0x8}, {0x7}, {}, {0x7, 0x9}, {0x6, 0xa}, {0x3, 0x6}, {0x3, 0x1}, {0x1, 0x9}, {0x6, 0xa}, {0x0, 0x5}, {0x1, 0x4}, {0x1, 0x3}, {0x0, 0x7}, {0x6, 0x9}, {0x0, 0x8}, {0x6, 0x6}, {0x2, 0x4}, {0x0, 0x2}, {0x4, 0x1}, {0x0, 0x3}, {0x1, 0x6}, {0x1}, {0x7, 0x8}, {0x2, 0x9}, {0x0, 0x4}, {0x7, 0x9}, {0x1, 0xa}, {0x3, 0x2}, {0x3, 0x7}, {0x0, 0x3}, {0x5}, {0x6, 0xa}, {0x2, 0x8}, {0x2, 0x3}, {0x7, 0x4}, {0x6, 0x7}, {0x7, 0x5}, {0x0, 0x6}, {0x3, 0x8}, {0x3, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x0, 0x2}, {0x4, 0x2}, {0x5, 0xa}, {0x7, 0x4}, {0x4, 0x4}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x3f, 0x1ff, 0x2, 0xfff, 0x5, 0xa7, 0x9ea]}}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x3, 0x1b, 0x5, 0x6, 0x60, 0x9, 0x1, 0x6c, 0x24, 0x36, 0x2, 0x18, 0x1b, 0x2, 0x6c, 0x36, 0x6c, 0x5, 0x16, 0x48, 0x30, 0x1, 0x16, 0x30, 0x1]}]}, @NL80211_BAND_60GHZ={0x20, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x19, 0x9, 0xfffa, 0x5, 0x3f, 0x138, 0x9]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}]}]}, 0xc74}, 0x1, 0x0, 0x0, 0x24000010}, 0x20000044) geteuid() mount(&(0x7f0000000000)=@sr0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='debugfs\x00', 0x2008a, &(0x7f0000000140)='\xafde\xab\b\xa2|\x15\xedx\x88mB\xecB\x9b#S\xeev/s\x05\x00\x00\x00n(\xec\xcb\x9e\xef\x97p\xca\xab\xad\xef\xf8\xa8\'\x19\xc1s\xd0Nz\x8d\xf3t\xb4\xc7\xbc\xeb\xdd\v\x1e\f\x1b\x17N\xc7\x98\x93GT\x8d\x02\x1a\xed:\xd30\x01\x98\x91\xd7\x8d\xc2o5F\xc0\x90\x8bF\x13aRF\xe0\xd58q16\xa1os\x0f\xa0\xc0a3js\xb2\x80\xe1y\x1f\xa8\b\xf0\xc8\x80d1]4\xa1h\x1c\xd6\x05m\xc2\x1a\xc2\xbc~:\x7fx\xd4:p\xed;\xeb\x86\n\x98}\xd9-\x99\xf6\xc6c\xef\'\b?\x16\xb5\x80w\x0f\xd1G\'\x7f`\x9c\x85\xafX@&\xd8s\xab\n\xf5I\\wb\x91\xcbE\x93\xeb\xf1\xd0Z\xd3n!n8D\x0f\x0e\xd1\xe4Ue\xe4\x93wgp\xcb\x7f}\x97\xa8\xe4\x9ePSE\xd0\x053\xcfl\x13\xecg\xd6\xbe\xeds@%\x04\xf0\xfa><\xa6') r5 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x480060, 0xa) mmap(&(0x7f0000002000/0x9000)=nil, 0x9000, 0x0, 0x13, r5, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:38 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x5, 0x4000010, r0, 0xc3355000) r1 = dup2(0xffffffffffffffff, r0) ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000000)=0x1000) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:38 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, 0x0}, 0x58) 07:32:38 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x10000000, 0x8000) 07:32:38 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x480402, 0x0) ioctl$SG_GET_ACCESS_COUNT(r1, 0x2289, &(0x7f0000000040)) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:38 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) syz_open_dev$sg(&(0x7f0000000000), 0x10001, 0x238040) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3119.304921] FAULT_INJECTION: forcing a failure. [ 3119.304921] name failslab, interval 1, probability 0, space 0, times 0 [ 3119.306436] CPU: 0 PID: 116831 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3119.307295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3119.308334] Call Trace: [ 3119.308681] dump_stack+0x107/0x167 [ 3119.309135] should_fail.cold+0x5/0xa [ 3119.309615] ? vm_area_dup+0x78/0x290 [ 3119.310095] should_failslab+0x5/0x20 [ 3119.310568] kmem_cache_alloc+0x5b/0x310 [ 3119.311077] ? lock_downgrade+0x6d0/0x6d0 [ 3119.311594] vm_area_dup+0x78/0x290 [ 3119.312049] ? _cond_resched+0x12/0x80 [ 3119.312527] ? copy_page_range+0x24fe/0x3820 [ 3119.313091] ? vm_area_alloc+0x110/0x110 [ 3119.313598] ? up_write+0x191/0x550 [ 3119.314040] ? vm_iomap_memory+0x190/0x190 [ 3119.314555] ? downgrade_write+0x3a0/0x3a0 [ 3119.315071] ? anon_vma_interval_tree_insert+0x277/0x450 [ 3119.315744] ? __vma_link_rb+0x540/0x700 [ 3119.316247] dup_mm+0x44d/0x1110 [ 3119.316681] ? vm_area_dup+0x290/0x290 [ 3119.317166] ? __raw_spin_lock_init+0x36/0x110 [ 3119.317728] copy_process+0x24e2/0x6740 [ 3119.318220] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3119.318888] ? exc_page_fault+0xca/0x1a0 [ 3119.319412] ? trace_hardirqs_on+0x5b/0x180 [ 3119.319982] ? __cleanup_sighand+0xb0/0xb0 [ 3119.320550] ? _copy_from_user+0xfb/0x1b0 [ 3119.321087] kernel_clone+0xe7/0x980 [ 3119.321560] ? __lockdep_reset_lock+0x180/0x180 [ 3119.322153] ? create_io_thread+0xf0/0xf0 [ 3119.322689] ? ksys_write+0x21a/0x260 [ 3119.323182] ? lock_downgrade+0x6d0/0x6d0 [ 3119.323719] __do_sys_clone3+0x1e5/0x320 [ 3119.324248] ? __do_sys_clone+0x110/0x110 [ 3119.324794] ? rcu_read_lock_any_held+0x75/0xa0 [ 3119.325385] ? vfs_write+0x354/0xa70 [ 3119.325865] ? fput_many+0x2f/0x1a0 [ 3119.326334] ? ksys_write+0x1a9/0x260 [ 3119.326817] ? __ia32_sys_read+0xb0/0xb0 [ 3119.327335] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3119.327986] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3119.328620] ? trace_hardirqs_on+0x5b/0x180 [ 3119.329166] do_syscall_64+0x33/0x40 [ 3119.329637] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3119.330287] RIP: 0033:0x7f99575d9b19 [ 3119.330758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3119.333089] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3119.334041] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3119.334938] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3119.335841] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3119.336752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3119.337643] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:32:38 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 54) 07:32:38 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffff00000000, 0x0, 0x0}, 0x58) [ 3119.497033] FAULT_INJECTION: forcing a failure. [ 3119.497033] name failslab, interval 1, probability 0, space 0, times 0 [ 3119.498752] CPU: 0 PID: 117299 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3119.499538] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3119.500463] Call Trace: [ 3119.500767] dump_stack+0x107/0x167 [ 3119.501182] should_fail.cold+0x5/0xa [ 3119.501606] ? create_object.isra.0+0x3a/0xa20 [ 3119.502113] should_failslab+0x5/0x20 [ 3119.502546] kmem_cache_alloc+0x5b/0x310 [ 3119.503001] create_object.isra.0+0x3a/0xa20 [ 3119.503499] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3119.504073] kmem_cache_alloc+0x159/0x310 [ 3119.504541] vm_area_dup+0x78/0x290 [ 3119.504956] ? _cond_resched+0x12/0x80 [ 3119.505387] ? copy_page_range+0x24fe/0x3820 [ 3119.505891] ? vm_area_alloc+0x110/0x110 [ 3119.506352] ? up_write+0x191/0x550 [ 3119.506748] ? vm_iomap_memory+0x190/0x190 [ 3119.507219] ? downgrade_write+0x3a0/0x3a0 [ 3119.507683] ? anon_vma_interval_tree_insert+0x277/0x450 [ 3119.508293] ? __vma_link_rb+0x540/0x700 [ 3119.508740] dup_mm+0x44d/0x1110 [ 3119.509135] ? vm_area_dup+0x290/0x290 [ 3119.509585] ? __raw_spin_lock_init+0x36/0x110 [ 3119.510100] copy_process+0x24e2/0x6740 [ 3119.510557] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3119.511148] ? exc_page_fault+0xca/0x1a0 [ 3119.511606] ? trace_hardirqs_on+0x5b/0x180 [ 3119.512111] ? __cleanup_sighand+0xb0/0xb0 [ 3119.512593] ? _copy_from_user+0xfb/0x1b0 [ 3119.513062] kernel_clone+0xe7/0x980 [ 3119.513482] ? __lockdep_reset_lock+0x180/0x180 [ 3119.514003] ? create_io_thread+0xf0/0xf0 [ 3119.514480] ? ksys_write+0x21a/0x260 [ 3119.514906] ? lock_downgrade+0x6d0/0x6d0 [ 3119.515385] __do_sys_clone3+0x1e5/0x320 [ 3119.515845] ? __do_sys_clone+0x110/0x110 [ 3119.516334] ? rcu_read_lock_any_held+0x75/0xa0 [ 3119.516861] ? vfs_write+0x354/0xa70 [ 3119.517284] ? fput_many+0x2f/0x1a0 [ 3119.517698] ? ksys_write+0x1a9/0x260 [ 3119.518131] ? __ia32_sys_read+0xb0/0xb0 [ 3119.518589] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3119.519171] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3119.519749] ? trace_hardirqs_on+0x5b/0x180 [ 3119.520246] do_syscall_64+0x33/0x40 [ 3119.520652] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3119.521227] RIP: 0033:0x7f99575d9b19 [ 3119.521647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3119.523930] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3119.524811] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3119.525611] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3119.526413] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3119.527207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3119.528004] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:32:38 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x18000000, 0x8000) 07:32:38 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$SG_GET_SG_TABLESIZE(r0, 0x227f, &(0x7f0000000000)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:38 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SCSI_IOCTL_PROBE_HOST(r0, 0x5385, &(0x7f0000000040)={0x1000, ""/4096}) syz_open_dev$sg(&(0x7f0000000000), 0x2, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:38 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) 07:32:38 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) fcntl$dupfd(r1, 0x0, r0) 07:32:38 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(0xffffffffffffffff, 0xc0bc5310, &(0x7f0000000000)) 07:32:39 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x20000000, 0x8000) 07:32:39 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x58) 07:32:55 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000009, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:55 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000001280)='./file0\x00', 0x20800, 0x20) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8000) ioctl$SG_IO(r1, 0x2285, &(0x7f0000001180)={0x53, 0xfffffffffffffffd, 0x1000, 0x7, @buffer={0x0, 0xc2, &(0x7f0000000040)=""/194}, &(0x7f0000000140)="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", &(0x7f0000001300)=""/244, 0x3f, 0x4, 0x0, &(0x7f0000001140)}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$SCSI_IOCTL_GET_IDLUN(r0, 0x5382, &(0x7f0000000000)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:55 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 55) 07:32:55 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r0) sendmsg$TIPC_CMD_SET_LINK_TOL(r1, 0x0, 0x80) fallocate(r1, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2}) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040), 0x4) r2 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r2, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x180, 0x0) r4 = gettid() ioctl$BINDER_FREEZE(r3, 0x400c620e, &(0x7f0000000080)={r4, 0x0, 0x401}) socketpair(0x39, 0x0, 0x2, &(0x7f00000000c0)={0xffffffffffffffff}) r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), r3) sendmsg$TIPC_NL_PUBL_GET(r5, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40048400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r6, 0x300, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) sendmsg$TIPC_NL_MON_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="933715fcb5355723d1a22e8bf9e02045b488f5cdf08640a6ec0b1c1da926d02afb35da4c6783123c", @ANYRES16=r6, @ANYBLOB="10002dbd7000fcdbdf2512000000240004801300010062726f6164636173742d6c696e6b00000900010073797a3000000000"], 0x38}, 0x1, 0x0, 0x0, 0x20004084}, 0x0) sendmsg$TIPC_NL_MON_PEER_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="8c010000", @ANYRES16=r6, @ANYBLOB="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"], 0x18c}, 0x1, 0x0, 0x0, 0x1}, 0x4044045) fcntl$setownex(r2, 0xf, &(0x7f0000000000)={0x2}) 07:32:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x58) 07:32:55 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x800, 0x111000) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) ioctl$TIOCL_SELLOADLUT(0xffffffffffffffff, 0x541c, &(0x7f0000000000)={0x5, 0x200, 0x400, 0x6, 0x2}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:55 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x21030000, 0x8000) 07:32:55 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x1}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3136.267297] FAULT_INJECTION: forcing a failure. [ 3136.267297] name failslab, interval 1, probability 0, space 0, times 0 [ 3136.269923] CPU: 1 PID: 118395 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3136.271347] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3136.273042] Call Trace: [ 3136.273594] dump_stack+0x107/0x167 [ 3136.274336] should_fail.cold+0x5/0xa [ 3136.275123] ? vm_area_dup+0x78/0x290 [ 3136.275898] should_failslab+0x5/0x20 [ 3136.276692] kmem_cache_alloc+0x5b/0x310 [ 3136.277534] vm_area_dup+0x78/0x290 [ 3136.278290] ? copy_page_range+0x24fe/0x3820 [ 3136.279235] ? vm_area_alloc+0x110/0x110 [ 3136.280063] ? vm_iomap_memory+0x190/0x190 [ 3136.280944] ? __vma_link_rb+0x540/0x700 [ 3136.281782] dup_mm+0x44d/0x1110 [ 3136.282482] ? vm_area_dup+0x290/0x290 [ 3136.283284] ? __raw_spin_lock_init+0x36/0x110 [ 3136.284212] copy_process+0x24e2/0x6740 [ 3136.285034] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3136.286110] ? exc_page_fault+0xca/0x1a0 [ 3136.286937] ? trace_hardirqs_on+0x5b/0x180 [ 3136.287826] ? __cleanup_sighand+0xb0/0xb0 [ 3136.288705] ? _copy_from_user+0xfb/0x1b0 [ 3136.289555] kernel_clone+0xe7/0x980 [ 3136.290316] ? __lockdep_reset_lock+0x180/0x180 [ 3136.291261] ? create_io_thread+0xf0/0xf0 [ 3136.292127] ? ksys_write+0x21a/0x260 [ 3136.292930] ? lock_downgrade+0x6d0/0x6d0 [ 3136.293774] __do_sys_clone3+0x1e5/0x320 [ 3136.294590] ? __do_sys_clone+0x110/0x110 [ 3136.295456] ? rcu_read_lock_any_held+0x75/0xa0 [ 3136.296390] ? vfs_write+0x354/0xa70 [ 3136.297150] ? fput_many+0x2f/0x1a0 [ 3136.297881] ? ksys_write+0x1a9/0x260 [ 3136.298658] ? __ia32_sys_read+0xb0/0xb0 [ 3136.299489] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3136.300561] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3136.301604] ? trace_hardirqs_on+0x5b/0x180 [ 3136.302483] do_syscall_64+0x33/0x40 [ 3136.303241] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3136.304293] RIP: 0033:0x7f99575d9b19 [ 3136.305044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3136.308768] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3136.310308] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3136.311753] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3136.313223] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3136.314669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3136.316100] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:32:55 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x3f000000, 0x8000) 07:32:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100}, 0x58) 07:32:55 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r3) sendmsg$TIPC_CMD_SET_LINK_TOL(r4, 0x0, 0x80) fallocate(r4, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2}) fchmodat(r4, &(0x7f0000000100)='./file0\x00', 0x180) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000000)={0x22, 0x0, 0x0, "4c8d0fcc478b8ade36ff14f5b2f02a3ff21b5f583afc4c72494a03106fe2ae226989"}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) creat(&(0x7f0000000080)='./file1\x00', 0x8) 07:32:55 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 56) 07:32:55 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f0000000000)=[{0x8, 0x0, 0xff, 0x49, @time={0x2}, {0xc0}, {0x4, 0x1}, @result={0x6, 0x6}}, {0x6, 0x5, 0x6, 0x2, @tick=0x1000, {0x4, 0x6}, {0x6, 0x1}, @result={0x800}}, {0x1, 0x3, 0x9, 0x40, @time={0x10001, 0x9}, {0x7, 0x65}, {0x1f}, @queue={0x16, {0x3e9, 0x9}}}, {0x8, 0x4, 0xe, 0x1, @time={0x4}, {0x9, 0x40}, {0x2, 0xeb}, @result={0xfffffff9, 0x7}}, {0x1, 0x1, 0x6, 0x0, @time={0x7a, 0x3}, {0x20, 0xe4}, {0x2, 0x4}, @addr={0x40, 0x7}}, {0x6, 0x8, 0x1, 0x4, @tick=0x100, {0xea, 0x5}, {0x3f, 0x8}, @time=@tick=0x8}], 0xa8) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:32:55 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2000, @fd_index}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000640)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x0, @fd_index=0x2, 0xfffffffffffffffd, &(0x7f0000000580)=[{&(0x7f0000000000)=""/182, 0xb6}, {&(0x7f00000000c0)=""/79, 0x4f}, {&(0x7f0000000140)=""/139, 0x8b}, {&(0x7f0000000200)=""/210, 0xd2}, {&(0x7f0000000300)=""/180, 0xb4}, {&(0x7f00000003c0)=""/198, 0xc6}, {&(0x7f00000004c0)=""/15, 0xf}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000000500)=""/118, 0x76}], 0x9, 0x10, 0x0, {0x0, r3}}, 0x2) [ 3136.709013] FAULT_INJECTION: forcing a failure. [ 3136.709013] name failslab, interval 1, probability 0, space 0, times 0 [ 3136.711759] CPU: 1 PID: 119096 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3136.713207] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3136.714931] Call Trace: [ 3136.715481] dump_stack+0x107/0x167 [ 3136.716253] should_fail.cold+0x5/0xa [ 3136.717040] ? create_object.isra.0+0x3a/0xa20 [ 3136.717984] should_failslab+0x5/0x20 [ 3136.718766] kmem_cache_alloc+0x5b/0x310 [ 3136.719603] create_object.isra.0+0x3a/0xa20 [ 3136.720509] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3136.721558] kmem_cache_alloc+0x159/0x310 [ 3136.722413] vm_area_dup+0x78/0x290 [ 3136.723172] ? copy_page_range+0x24fe/0x3820 [ 3136.724111] ? vm_area_alloc+0x110/0x110 [ 3136.724987] ? vm_iomap_memory+0x190/0x190 [ 3136.725868] ? __vma_link_rb+0x540/0x700 [ 3136.726704] dup_mm+0x44d/0x1110 [ 3136.727409] ? vm_area_dup+0x290/0x290 [ 3136.728210] ? __raw_spin_lock_init+0x36/0x110 [ 3136.729162] copy_process+0x24e2/0x6740 [ 3136.729977] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3136.731046] ? exc_page_fault+0xca/0x1a0 [ 3136.731876] ? trace_hardirqs_on+0x5b/0x180 [ 3136.732789] ? __cleanup_sighand+0xb0/0xb0 [ 3136.733668] ? _copy_from_user+0xfb/0x1b0 [ 3136.734570] kernel_clone+0xe7/0x980 [ 3136.735309] ? __lockdep_reset_lock+0x180/0x180 [ 3136.736231] ? create_io_thread+0xf0/0xf0 [ 3136.737107] ? ksys_write+0x21a/0x260 [ 3136.737960] ? lock_downgrade+0x6d0/0x6d0 [ 3136.738935] __do_sys_clone3+0x1e5/0x320 [ 3136.739744] ? __do_sys_clone+0x110/0x110 [ 3136.740639] ? rcu_read_lock_any_held+0x75/0xa0 [ 3136.741582] ? vfs_write+0x354/0xa70 [ 3136.742335] ? fput_many+0x2f/0x1a0 [ 3136.743077] ? ksys_write+0x1a9/0x260 [ 3136.743850] ? __ia32_sys_read+0xb0/0xb0 [ 3136.744698] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3136.745767] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3136.746861] ? trace_hardirqs_on+0x5b/0x180 [ 3136.747744] do_syscall_64+0x33/0x40 [ 3136.748515] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3136.749563] RIP: 0033:0x7f99575d9b19 [ 3136.750330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3136.754122] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3136.755672] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3136.757134] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3136.758590] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3136.760061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3136.761539] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:32:56 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/video', 0xc000, 0x100) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000080)={0x26, 0x1, 0x9, "ea0e347ae156c09e0663997e4f11428890393eabca0e9c65caf75a9b66b6392be7c2d2ffaee3"}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SG_EMULATED_HOST(r0, 0x2203, &(0x7f0000000000)) 07:33:10 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 57) 07:33:10 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8000) ioctl$SG_EMULATED_HOST(r1, 0x2203, &(0x7f0000000000)) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:33:10 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x100, 0x0) ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f00000000c0)=0x3) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x5, 0x13, r0, 0x0) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r2) sendmsg$TIPC_CMD_SET_LINK_TOL(r3, 0x0, 0x80) fallocate(r3, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) clone3(&(0x7f0000000140)={0x210015a00, 0x0, 0x0, 0x0, {0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, {r3}}, 0x58) r4 = accept$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000240)=0x14) ioctl$BTRFS_IOC_RESIZE(r0, 0x50009403, &(0x7f0000000080)={{r4}, {@val, @max}}) ioctl$SG_GET_TIMEOUT(0xffffffffffffffff, 0x2202, 0x0) r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, 0x0) ioctl$EVIOCGRAB(r5, 0x40044590, &(0x7f0000000100)=0x8) 07:33:10 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0xc1f64000) r1 = clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = gettid() process_vm_readv(r3, &(0x7f0000001a40), 0x0, &(0x7f00000005c0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xb7}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f00000004c0)=""/231, 0xe7}, {&(0x7f0000000400)=""/7, 0x4d}, {&(0x7f0000002300)=""/102400, 0x19000}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) r4 = gettid() process_vm_readv(r4, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/30, 0xfffffffffffffcbf}, {&(0x7f0000000740)=""/145, 0x7c}, {&(0x7f0000001980)=""/151, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xb7}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xb5}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f000001b300)=""/102400}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000000640)=""/51, 0x37}], 0x8, 0x0) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000300)=0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r7 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r6, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r6) sendmsg$TIPC_CMD_SET_LINK_TOL(r7, 0x0, 0x80) fallocate(r7, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r6, 0xc028660f, &(0x7f0000000040)={0x0, r7, 0x7, 0x0, 0xffffffff, 0xd3}) epoll_pwait(0xffffffffffffffff, &(0x7f0000000440)=[{}], 0x1, 0xffff, &(0x7f0000000480), 0x8) clone3(&(0x7f0000000380)={0x2060000, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0), {0xf}, &(0x7f0000000100)=""/245, 0xf5, &(0x7f0000000200)=""/213, &(0x7f0000000340)=[r5, r1, r1, r4, r1, r5, r1, 0xffffffffffffffff], 0x8, {r6}}, 0x58) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, 0x0) ioctl$SG_GET_LOW_DMA(r2, 0x227a, &(0x7f0000000000)) 07:33:10 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x40000000, 0x8000) 07:33:10 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x58) 07:33:10 executing program 4: sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, 0x0, 0x400, 0x70bd28, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_ADDR={0x18, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000040}, 0x8000) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) io_uring_enter(0xffffffffffffffff, 0xda6, 0xf046, 0x2, &(0x7f0000000040)={[0x40]}, 0x8) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_open_dev$vcsa(&(0x7f0000000000), 0x7, 0x412880) 07:33:10 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = gettid() process_vm_readv(r1, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) clone3(&(0x7f0000000200)={0x81119000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x6}, &(0x7f00000000c0)=""/3, 0x3, &(0x7f0000000100)=""/164, &(0x7f00000001c0)=[r1], 0x1}, 0x58) [ 3151.163460] FAULT_INJECTION: forcing a failure. [ 3151.163460] name failslab, interval 1, probability 0, space 0, times 0 [ 3151.165438] CPU: 1 PID: 119551 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3151.166375] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3151.167485] Call Trace: [ 3151.167848] dump_stack+0x107/0x167 [ 3151.168340] should_fail.cold+0x5/0xa [ 3151.168861] ? create_object.isra.0+0x3a/0xa20 [ 3151.169487] should_failslab+0x5/0x20 [ 3151.170002] kmem_cache_alloc+0x5b/0x310 [ 3151.170562] create_object.isra.0+0x3a/0xa20 [ 3151.171154] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3151.171851] kmem_cache_alloc+0x159/0x310 [ 3151.172435] vm_area_dup+0x78/0x290 [ 3151.172946] ? _cond_resched+0x12/0x80 [ 3151.173445] ? copy_page_range+0x24fe/0x3820 [ 3151.174083] ? vm_area_alloc+0x110/0x110 [ 3151.174643] ? up_write+0x191/0x550 [ 3151.175136] ? vm_iomap_memory+0x190/0x190 [ 3151.175712] ? downgrade_write+0x3a0/0x3a0 [ 3151.176281] ? anon_vma_interval_tree_insert+0x277/0x450 [ 3151.177033] ? __vma_link_rb+0x540/0x700 [ 3151.177596] dup_mm+0x44d/0x1110 [ 3151.178072] ? vm_area_dup+0x290/0x290 [ 3151.178620] ? __raw_spin_lock_init+0x36/0x110 [ 3151.179254] copy_process+0x24e2/0x6740 [ 3151.179776] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3151.180504] ? exc_page_fault+0xca/0x1a0 [ 3151.181058] ? trace_hardirqs_on+0x5b/0x180 [ 3151.181666] ? __cleanup_sighand+0xb0/0xb0 [ 3151.182256] ? _copy_from_user+0xfb/0x1b0 [ 3151.182823] kernel_clone+0xe7/0x980 [ 3151.183329] ? __lockdep_reset_lock+0x180/0x180 [ 3151.183963] ? create_io_thread+0xf0/0xf0 [ 3151.184554] ? ksys_write+0x21a/0x260 [ 3151.185069] ? lock_downgrade+0x6d0/0x6d0 [ 3151.185639] __do_sys_clone3+0x1e5/0x320 [ 3151.186181] ? __do_sys_clone+0x110/0x110 [ 3151.186759] ? rcu_read_lock_any_held+0x75/0xa0 [ 3151.187387] ? vfs_write+0x354/0xa70 [ 3151.187894] ? fput_many+0x2f/0x1a0 [ 3151.188381] ? ksys_write+0x1a9/0x260 [ 3151.188907] ? __ia32_sys_read+0xb0/0xb0 [ 3151.189458] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3151.190168] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3151.190870] ? trace_hardirqs_on+0x5b/0x180 [ 3151.191459] do_syscall_64+0x33/0x40 [ 3151.191964] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3151.192671] RIP: 0033:0x7f99575d9b19 [ 3151.193174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3151.195636] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3151.196676] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3151.197627] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3151.198574] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3151.199530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3151.200483] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:33:10 executing program 3: r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000040)='syz1\x00', 0x200002, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x9ed}}, './file0\x00'}) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) ppoll(&(0x7f0000000240)=[{r2, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000000c0)={0xa0000008}) r3 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SG_SET_DEBUG(r3, 0x227e, &(0x7f0000000000)) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r3, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:33:10 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x80, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:33:10 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000040)={'\x00', 0x7, 0x5, 0x3f, 0x1, 0xe04f, r1}) 07:33:10 executing program 2: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00}, 0x58) 07:33:10 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$SG_GET_ACCESS_COUNT(r1, 0x2289, &(0x7f0000000000)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:33:10 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x54ab0000, 0x8000) 07:33:10 executing program 1: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x301041, 0x0) sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x24, 0x0, 0x2, 0x70bd2c, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x1a9}]}, 0x24}, 0x1, 0x0, 0x0, 0x8010}, 0x20000800) r1 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r1, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8000) setsockopt$bt_l2cap_L2CAP_LM(r2, 0x6, 0x3, &(0x7f0000000180)=0x8, 0x4) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SG_GET_REQUEST_TABLE(r1, 0x2286, &(0x7f0000000000)) 07:33:10 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, 0x0, 0x80) fallocate(r2, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x7, 0x5, 0x0, 0xfffffffffffffffe}) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58) 07:33:10 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x841a1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000110}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 58) 07:33:10 executing program 4: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x1880000, 0x0, 0x0, 0x0, {0x33}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3151.647987] FAULT_INJECTION: forcing a failure. [ 3151.647987] name failslab, interval 1, probability 0, space 0, times 0 [ 3151.649762] CPU: 1 PID: 120800 Comm: syz-executor.5 Not tainted 5.10.186 #1 [ 3151.650530] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3151.651409] Call Trace: [ 3151.651704] dump_stack+0x107/0x167 [ 3151.652092] should_fail.cold+0x5/0xa [ 3151.652510] ? create_object.isra.0+0x3a/0xa20 [ 3151.653010] should_failslab+0x5/0x20 [ 3151.653436] kmem_cache_alloc+0x5b/0x310 [ 3151.653885] create_object.isra.0+0x3a/0xa20 [ 3151.654358] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3151.654897] kmem_cache_alloc+0x159/0x310 [ 3151.655314] vm_area_dup+0x78/0x290 [ 3151.655689] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 3151.656154] ? lock_downgrade+0x6d0/0x6d0 [ 3151.656578] ? perf_trace_lock+0xac/0x490 [ 3151.656992] ? copy_page_range+0x24fe/0x3820 [ 3151.657429] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3151.657947] ? __lockdep_reset_lock+0x180/0x180 [ 3151.658410] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 3151.658872] ? avc_has_extended_perms+0xf40/0xf40 [ 3151.659349] ? dup_mm+0x631/0x1110 [ 3151.659702] ? vm_area_alloc+0x110/0x110 [ 3151.660108] ? selinux_vm_enough_memory+0x114/0x180 [ 3151.660608] ? selinux_sb_statfs+0x250/0x250 [ 3151.661042] ? up_write+0x191/0x550 [ 3151.661413] ? percpu_counter_add_batch+0x8b/0x140 [ 3151.661902] ? __vm_enough_memory+0x184/0x360 [ 3151.662343] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 3151.662851] dup_mm+0x44d/0x1110 [ 3151.663195] ? vm_area_dup+0x290/0x290 [ 3151.663585] ? __raw_spin_lock_init+0x36/0x110 [ 3151.664037] copy_process+0x24e2/0x6740 [ 3151.664449] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3151.664989] ? exc_page_fault+0xca/0x1a0 [ 3151.665404] ? trace_hardirqs_on+0x5b/0x180 [ 3151.665860] ? __cleanup_sighand+0xb0/0xb0 [ 3151.666300] ? _copy_from_user+0xfb/0x1b0 [ 3151.666730] kernel_clone+0xe7/0x980 [ 3151.667107] ? __lockdep_reset_lock+0x180/0x180 [ 3151.667574] ? create_io_thread+0xf0/0xf0 [ 3151.668016] ? ksys_write+0x21a/0x260 [ 3151.668405] ? lock_downgrade+0x6d0/0x6d0 [ 3151.668845] __do_sys_clone3+0x1e5/0x320 [ 3151.669259] ? __do_sys_clone+0x110/0x110 [ 3151.669700] ? rcu_read_lock_any_held+0x75/0xa0 [ 3151.670172] ? vfs_write+0x354/0xa70 [ 3151.670558] ? fput_many+0x2f/0x1a0 [ 3151.670932] ? ksys_write+0x1a9/0x260 [ 3151.671319] ? __ia32_sys_read+0xb0/0xb0 [ 3151.671731] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3151.672268] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3151.672813] ? trace_hardirqs_on+0x5b/0x180 [ 3151.673260] do_syscall_64+0x33/0x40 [ 3151.673656] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 3151.674188] RIP: 0033:0x7f99575d9b19 [ 3151.674577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3151.676447] RSP: 002b:00007f9954b4f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 3151.677231] RAX: ffffffffffffffda RBX: 00007f99576ecf60 RCX: 00007f99575d9b19 [ 3151.677976] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020001200 [ 3151.678702] RBP: 00007f9954b4f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3151.679430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3151.680165] R13: 00007ffdbe43fa2f R14: 00007f9954b4f300 R15: 0000000000022000 07:33:10 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000680)={0x0, 0xfffffffffffffffc, 0x6, 0x5, @scatter={0x7, 0x0, &(0x7f0000000500)=[{&(0x7f0000000000)=""/98, 0x62}, {&(0x7f0000000080)=""/179, 0xb3}, {&(0x7f0000000140)=""/225, 0xe1}, {&(0x7f0000000240)=""/41, 0x29}, {&(0x7f0000000280)=""/169, 0xa9}, {&(0x7f0000000340)=""/222, 0xbf}, {&(0x7f0000000440)=""/192, 0xd3}]}, &(0x7f0000000580)="2c9f222e01ed", &(0x7f00000005c0)=""/117, 0x0, 0x4, 0x2, &(0x7f0000000640)}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:33:11 executing program 1: r0 = inotify_init() r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0xa648}], 0x1, &(0x7f0000000040), 0x0, 0x0) r2 = dup2(r0, 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_P2P_DEVICE(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, r3, 0x200, 0x70bd27, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x5d, 0x2c}}}}, ["", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x8001}, 0xc000) r4 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r4, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:33:11 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[], 0xfdef) r1 = fcntl$dupfd(r0, 0x0, r0) fallocate(r1, 0x3, 0x2000, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x86ffffff, 0x8000) 07:33:11 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) r1 = openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x301000, 0x52, 0x8}, 0x18) ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r1, 0x3) ioctl$SG_GET_ACCESS_COUNT(r0, 0x2289, &(0x7f0000000080)) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {0x400000}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r2) sendmsg$TIPC_CMD_SET_LINK_TOL(r3, 0x0, 0x80) fallocate(r3, 0x0, 0x10001, 0x100) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) perf_event_open$cgroup(&(0x7f0000000100)={0x3, 0x80, 0x4, 0x40, 0x1, 0x6, 0x0, 0x6, 0x1420, 0x18, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x5, 0x2, @perf_bp={&(0x7f00000000c0), 0x8}, 0xa40, 0x1, 0xe55, 0x2, 0x0, 0xfffffffe, 0x20, 0x0, 0x7, 0x0, 0x9}, r2, 0x5, 0xffffffffffffffff, 0x6) 07:33:11 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000012c0), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)={0x1000, 0x1ff, 0x3ff, "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"}) r1 = gettid() process_vm_readv(r1, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7c}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xb7}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000002300)=""/102400, 0x19000}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000001040)={'\x00', 0x1, 0xfffff94d, 0x1, 0x6d2, 0x7, r1}) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_RTHDR(r2, 0x29, 0x39, &(0x7f0000000040)={0x0, 0x4, 0x4, 0x0, 0x0, [@local, @loopback]}, 0x28) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x13, r0, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 07:33:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040), 0xfffffffffffffffe, 0xc0400) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x5, 0x13, r0, 0x0) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0xb000)=nil, 0xb000, 0x3000009, 0x8010, r1, 0x0) clone3(&(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3155.804032] systemd invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3155.806891] CPU: 1 PID: 1 Comm: systemd Not tainted 5.10.186 #1 [ 3155.808181] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3155.810035] Call Trace: [ 3155.810619] dump_stack+0x107/0x167 [ 3155.811410] dump_header+0x106/0x65e [ 3155.812218] oom_kill_process.cold+0x10/0x15 [ 3155.813179] out_of_memory+0x358/0x1440 [ 3155.814048] ? oom_killer_disable+0x280/0x280 [ 3155.815017] ? mutex_trylock+0x237/0x2b0 [ 3155.815889] ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130 [ 3155.817171] __alloc_pages_slowpath.constprop.0+0x1b25/0x2130 [ 3155.818435] ? lock_acquire+0xd7/0x470 [ 3155.819278] ? warn_alloc+0x190/0x190 [ 3155.820124] __alloc_pages_nodemask+0x51d/0x600 [ 3155.821139] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3155.822431] ? find_get_entry+0x2c8/0x740 [ 3155.823361] alloc_pages_current+0x187/0x280 [ 3155.824305] __page_cache_alloc+0x2d2/0x360 [ 3155.825263] pagecache_get_page+0x2c7/0xc80 [ 3155.826192] filemap_fault+0x177d/0x2210 [ 3155.827073] ? read_cache_page_gfp+0x30/0x30 [ 3155.828049] ? replace_page_cache_page+0x1200/0x1200 [ 3155.829141] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 3155.830272] ext4_filemap_fault+0x87/0xc0 [ 3155.831158] __do_fault+0x113/0x410 [ 3155.831947] handle_mm_fault+0x1e72/0x3520 [ 3155.832874] ? find_held_lock+0x2c/0x110 [ 3155.833744] ? __pmd_alloc+0x5e0/0x5e0 [ 3155.834589] ? vmacache_find+0x55/0x2a0 [ 3155.835451] do_user_addr_fault+0x56e/0xc60 [ 3155.836405] exc_page_fault+0xa2/0x1a0 [ 3155.837246] ? asm_exc_page_fault+0x8/0x30 [ 3155.838192] asm_exc_page_fault+0x1e/0x30 [ 3155.839072] RIP: 0033:0x7f69901f5b57 [ 3155.839907] Code: Unable to access opcode bytes at RIP 0x7f69901f5b2d. [ 3155.841312] RSP: 002b:00007fff0aa42cc8 EFLAGS: 00010206 [ 3155.842497] RAX: 00005635923bed00 RBX: 00005635923e5d40 RCX: 0000000000000010 [ 3155.844023] RDX: 0000000000000007 RSI: 00007f69905a924c RDI: 00005635923bed00 [ 3155.845623] RBP: 00007f69905a924c R08: 00005635923bed00 R09: 000056359230a9f8 [ 3155.847150] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001 [ 3155.848679] R13: 0000000000000000 R14: 00005635923e5d58 R15: 00007fff0aa4300f [ 3155.850344] Mem-Info: [ 3155.850929] active_anon:19958 inactive_anon:62792 isolated_anon:0 [ 3155.850929] active_file:9 inactive_file:32 isolated_file:0 [ 3155.850929] unevictable:0 dirty:0 writeback:0 [ 3155.850929] slab_reclaimable:9440 slab_unreclaimable:70181 [ 3155.850929] mapped:69634 shmem:380 pagetables:7420 bounce:0 [ 3155.850929] free:3317 free_pcp:63 free_cma:0 [ 3155.857672] Node 0 active_anon:79832kB inactive_anon:251168kB active_file:36kB inactive_file:128kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:0kB shmem:1520kB writeback_tmp:0kB kernel_stack:10688kB all_unreclaimable? no [ 3155.862833] Node 0 DMA free:6508kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3155.868389] lowmem_reserve[]: 0 1616 1616 1616 [ 3155.869495] Node 0 DMA32 free:6760kB min:5116kB low:6768kB high:8420kB reserved_highatomic:2048KB active_anon:79832kB inactive_anon:251168kB active_file:184kB inactive_file:60kB unevictable:0kB writepending:0kB present:2080640kB managed:1660504kB mlocked:0kB pagetables:29680kB bounce:0kB free_pcp:252kB local_pcp:252kB free_cma:0kB [ 3155.875684] lowmem_reserve[]: 0 0 0 0 [ 3155.876611] Node 0 DMA: 1*4kB (U) 1*8kB (U) 0*16kB 1*32kB (U) 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6508kB [ 3155.880256] Node 0 DMA32: 625*4kB (UME) 117*8kB (UME) 67*16kB (UMEH) 10*32kB (UMEH) 8*64kB (UMH) 1*128kB (H) 1*256kB (H) 1*512kB (H) 1*1024kB (H) 0*2048kB 0*4096kB = 7260kB [ 3155.883913] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3155.885823] 444 total pagecache pages [ 3155.886657] 0 pages in swap cache [ 3155.887423] Swap cache stats: add 0, delete 0, find 0/0 [ 3155.888595] Free swap = 0kB [ 3155.889241] Total swap = 0kB [ 3155.889914] 524158 pages RAM [ 3155.890621] 0 pages HighMem/MovableOnly [ 3155.891526] 105055 pages reserved [ 3155.892267] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz4,task=syz-executor.4,pid=9204,uid=0 [ 3155.896248] Out of memory: Killed process 9204 (syz-executor.4) total-vm:93676kB, anon-rss:476kB, file-rss:34820kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000 [ 3156.207644] systemd-udevd invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3156.210010] CPU: 1 PID: 121808 Comm: systemd-udevd Not tainted 5.10.186 #1 [ 3156.211528] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3156.213355] Call Trace: [ 3156.213941] dump_stack+0x107/0x167 [ 3156.214716] dump_header+0x106/0x65e [ 3156.215527] oom_kill_process.cold+0x10/0x15 [ 3156.216453] out_of_memory+0x1149/0x1440 [ 3156.217351] ? oom_killer_disable+0x280/0x280 [ 3156.218349] ? mutex_trylock+0x237/0x2b0 [ 3156.219224] ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130 [ 3156.220539] __alloc_pages_slowpath.constprop.0+0x1b25/0x2130 [ 3156.221793] ? lock_acquire+0xd7/0x470 [ 3156.222657] ? warn_alloc+0x190/0x190 [ 3156.223500] __alloc_pages_nodemask+0x51d/0x600 [ 3156.224536] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3156.225808] ? find_get_entry+0x2c8/0x740 [ 3156.226736] alloc_pages_current+0x187/0x280 [ 3156.227665] __page_cache_alloc+0x2d2/0x360 [ 3156.228621] pagecache_get_page+0x2c7/0xc80 [ 3156.229534] filemap_fault+0x177d/0x2210 [ 3156.230427] ? read_cache_page_gfp+0x30/0x30 [ 3156.231353] ? replace_page_cache_page+0x1200/0x1200 [ 3156.232453] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 3156.233586] ext4_filemap_fault+0x87/0xc0 [ 3156.234495] __do_fault+0x113/0x410 [ 3156.235270] handle_mm_fault+0x1e72/0x3520 [ 3156.236208] ? find_held_lock+0x2c/0x110 [ 3156.237103] ? __pmd_alloc+0x5e0/0x5e0 [ 3156.237961] ? vmacache_find+0x55/0x2a0 [ 3156.238816] do_user_addr_fault+0x56e/0xc60 [ 3156.239769] exc_page_fault+0xa2/0x1a0 [ 3156.240603] ? asm_exc_page_fault+0x8/0x30 [ 3156.241517] asm_exc_page_fault+0x1e/0x30 [ 3156.242393] RIP: 0033:0x7f07ef3de59e [ 3156.243205] Code: Unable to access opcode bytes at RIP 0x7f07ef3de574. [ 3156.244599] RSP: 002b:00007fffcfb3ec60 EFLAGS: 00010206 [ 3156.245754] RAX: 0000000000000005 RBX: 0000000000000000 RCX: 0000000000000020 [ 3156.247251] RDX: 00005649b53400e0 RSI: 00005649b53400e0 RDI: 00005649b53400e0 [ 3156.248832] RBP: 00007fffcfb3ece0 R08: 0000000000000009 R09: 0000000000000000 [ 3156.250386] R10: 00005649b531e680 R11: 00005649b52ef3c8 R12: 00005649b52f3cb9 [ 3156.251878] R13: 00005649b53400e0 R14: 0000000000000000 R15: 00005649b531e680 [ 3156.253635] Mem-Info: [ 3156.254195] active_anon:19957 inactive_anon:62759 isolated_anon:0 [ 3156.254195] active_file:14 inactive_file:46 isolated_file:4 [ 3156.254195] unevictable:0 dirty:0 writeback:0 [ 3156.254195] slab_reclaimable:9432 slab_unreclaimable:69939 [ 3156.254195] mapped:69655 shmem:380 pagetables:7388 bounce:0 [ 3156.254195] free:3297 free_pcp:275 free_cma:0 [ 3156.260921] Node 0 active_anon:79828kB inactive_anon:251036kB active_file:56kB inactive_file:172kB unevictable:0kB isolated(anon):0kB isolated(file):16kB mapped:278620kB dirty:0kB writeback:0kB shmem:1520kB writeback_tmp:0kB kernel_stack:10656kB all_unreclaimable? no [ 3156.265950] Node 0 DMA free:6508kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3156.271435] lowmem_reserve[]: 0 1616 1616 1616 [ 3156.272522] Node 0 DMA32 free:6680kB min:5116kB low:6768kB high:8420kB reserved_highatomic:2048KB active_anon:79828kB inactive_anon:251036kB active_file:488kB inactive_file:392kB unevictable:0kB writepending:0kB present:2080640kB managed:1660504kB mlocked:0kB pagetables:29552kB bounce:0kB free_pcp:1100kB local_pcp:852kB free_cma:0kB [ 3156.278557] lowmem_reserve[]: 0 0 0 0 [ 3156.279417] Node 0 DMA: 1*4kB (U) 1*8kB (U) 0*16kB 1*32kB (U) 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6508kB [ 3156.282411] Node 0 DMA32: 426*4kB (ME) 106*8kB (ME) 63*16kB (UMEH) 14*32kB (UMEH) 9*64kB (UMH) 2*128kB (UH) 1*256kB (H) 1*512kB (H) 1*1024kB (H) 0*2048kB 0*4096kB = 6632kB [ 3156.285967] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3156.288313] 465 total pagecache pages [ 3156.289274] 0 pages in swap cache [ 3156.290034] Swap cache stats: add 0, delete 0, find 0/0 [ 3156.291220] Free swap = 0kB [ 3156.291882] Total swap = 0kB [ 3156.292567] 524158 pages RAM [ 3156.293208] 0 pages HighMem/MovableOnly [ 3156.294085] 105055 pages reserved [ 3156.294846] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/systemd-udevd.service,task=systemd-udevd,pid=121808,uid=0 [ 3156.299157] Out of memory (oom_kill_allocating_task): Killed process 121808 (systemd-udevd) total-vm:35768kB, anon-rss:10220kB, file-rss:0kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0 [ 3156.372429] systemd-udevd invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3156.374530] CPU: 0 PID: 121805 Comm: systemd-udevd Not tainted 5.10.186 #1 [ 3156.375890] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3156.377569] Call Trace: [ 3156.378102] dump_stack+0x107/0x167 [ 3156.378836] dump_header+0x106/0x65e [ 3156.379580] oom_kill_process.cold+0x10/0x15 [ 3156.380440] out_of_memory+0x1149/0x1440 [ 3156.381455] ? oom_killer_disable+0x280/0x280 [ 3156.382334] ? mutex_trylock+0x237/0x2b0 [ 3156.383150] ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130 [ 3156.384311] __alloc_pages_slowpath.constprop.0+0x1b25/0x2130 [ 3156.385517] ? lock_acquire+0xd7/0x470 [ 3156.386289] ? warn_alloc+0x190/0x190 [ 3156.387081] __alloc_pages_nodemask+0x51d/0x600 [ 3156.387994] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3156.389209] ? find_get_entry+0x2c8/0x740 [ 3156.390032] alloc_pages_current+0x187/0x280 [ 3156.390915] __page_cache_alloc+0x2d2/0x360 [ 3156.391767] pagecache_get_page+0x2c7/0xc80 [ 3156.392641] filemap_fault+0x177d/0x2210 [ 3156.393447] ? read_cache_page_gfp+0x30/0x30 [ 3156.394330] ? handle_mm_fault+0x28d0/0x3520 [ 3156.395183] ? lock_downgrade+0x6d0/0x6d0 [ 3156.396017] ext4_filemap_fault+0x87/0xc0 [ 3156.396863] __do_fault+0x113/0x410 [ 3156.397598] handle_mm_fault+0x1e72/0x3520 [ 3156.398436] ? find_held_lock+0x2c/0x110 [ 3156.399251] ? __pmd_alloc+0x5e0/0x5e0 [ 3156.400029] ? vmacache_find+0x55/0x2a0 [ 3156.400861] do_user_addr_fault+0x56e/0xc60 [ 3156.401746] exc_page_fault+0xa2/0x1a0 [ 3156.402536] ? asm_exc_page_fault+0x8/0x30 [ 3156.403358] asm_exc_page_fault+0x1e/0x30 [ 3156.404194] RIP: 0033:0x7f07ef376658 [ 3156.404941] Code: Unable to access opcode bytes at RIP 0x7f07ef37662e. [ 3156.406258] RSP: 002b:00007fffcfb42850 EFLAGS: 00010246 [ 3156.407292] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000001 [ 3156.408741] RDX: 0000000000000000 RSI: 00007f07ef498c20 RDI: 0000000000000000 [ 3156.410163] RBP: 00007fffcfb42da0 R08: 0000000000000000 R09: 000000000000000b [ 3156.411586] R10: 00007fffcfb42d67 R11: 0000000000000000 R12: 00007fffcfb42dc0 [ 3156.413017] R13: 00005649b2c3aa63 R14: 00007fffcfb42f40 R15: 0000000000000075 [ 3156.414729] Mem-Info: [ 3156.415250] active_anon:19957 inactive_anon:62692 isolated_anon:0 [ 3156.415250] active_file:12 inactive_file:59 isolated_file:0 [ 3156.415250] unevictable:0 dirty:0 writeback:0 [ 3156.415250] slab_reclaimable:9432 slab_unreclaimable:69954 [ 3156.415250] mapped:69634 shmem:380 pagetables:7373 bounce:0 [ 3156.415250] free:3527 free_pcp:94 free_cma:0 [ 3156.421920] Node 0 active_anon:79828kB inactive_anon:250768kB active_file:48kB inactive_file:320kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:0kB shmem:1520kB writeback_tmp:0kB kernel_stack:10624kB all_unreclaimable? no [ 3156.426834] Node 0 DMA free:6508kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3156.432254] lowmem_reserve[]: 0 1616 1616 1616 [ 3156.433293] Node 0 DMA32 free:7600kB min:5116kB low:6768kB high:8420kB reserved_highatomic:2048KB active_anon:79828kB inactive_anon:250768kB active_file:48kB inactive_file:236kB unevictable:0kB writepending:0kB present:2080640kB managed:1660504kB mlocked:0kB pagetables:29492kB bounce:0kB free_pcp:372kB local_pcp:252kB free_cma:0kB [ 3156.439155] lowmem_reserve[]: 0 0 0 0 [ 3156.439991] Node 0 DMA: 1*4kB (U) 1*8kB (U) 0*16kB 1*32kB (U) 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6508kB [ 3156.442939] Node 0 DMA32: 575*4kB (UME) 111*8kB (ME) 66*16kB (UMEH) 14*32kB (UMEH) 9*64kB (UMH) 2*128kB (UH) 1*256kB (H) 1*512kB (H) 1*1024kB (H) 0*2048kB 0*4096kB = 7316kB [ 3156.446426] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3156.448132] 557 total pagecache pages [ 3156.449149] 0 pages in swap cache [ 3156.449872] Swap cache stats: add 0, delete 0, find 0/0 [ 3156.450957] Free swap = 0kB [ 3156.451587] Total swap = 0kB [ 3156.452190] 524158 pages RAM [ 3156.452855] 0 pages HighMem/MovableOnly [ 3156.453671] 105055 pages reserved [ 3156.454360] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/systemd-udevd.service,task=systemd-udevd,pid=121805,uid=0 [ 3156.457783] Out of memory (oom_kill_allocating_task): Killed process 121805 (systemd-udevd) total-vm:35768kB, anon-rss:10232kB, file-rss:0kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0 [ 3158.300955] systemd invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3158.302167] CPU: 0 PID: 1 Comm: systemd Not tainted 5.10.186 #1 [ 3158.302907] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3158.303928] Call Trace: [ 3158.304259] dump_stack+0x107/0x167 [ 3158.304720] dump_header+0x106/0x65e [ 3158.305188] oom_kill_process.cold+0x10/0x15 [ 3158.305735] out_of_memory+0x358/0x1440 [ 3158.306234] ? oom_killer_disable+0x280/0x280 [ 3158.306786] ? mutex_trylock+0x237/0x2b0 [ 3158.307282] ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130 [ 3158.308005] __alloc_pages_slowpath.constprop.0+0x1b25/0x2130 [ 3158.308738] ? lock_acquire+0xd7/0x470 [ 3158.309218] ? warn_alloc+0x190/0x190 [ 3158.309712] __alloc_pages_nodemask+0x51d/0x600 [ 3158.310297] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3158.311052] ? find_get_entry+0x2c8/0x740 [ 3158.311578] alloc_pages_current+0x187/0x280 [ 3158.312107] __page_cache_alloc+0x2d2/0x360 [ 3158.312666] pagecache_get_page+0x2c7/0xc80 [ 3158.313209] filemap_fault+0x177d/0x2210 [ 3158.313720] ? read_cache_page_gfp+0x30/0x30 [ 3158.314272] ? handle_mm_fault+0x28d0/0x3520 [ 3158.314816] ? lock_downgrade+0x6d0/0x6d0 [ 3158.315338] ext4_filemap_fault+0x87/0xc0 [ 3158.315851] __do_fault+0x113/0x410 [ 3158.316316] handle_mm_fault+0x1e72/0x3520 [ 3158.316856] ? find_held_lock+0x2c/0x110 [ 3158.317365] ? __pmd_alloc+0x5e0/0x5e0 [ 3158.317855] ? vmacache_find+0x55/0x2a0 [ 3158.318355] do_user_addr_fault+0x56e/0xc60 [ 3158.318895] exc_page_fault+0xa2/0x1a0 [ 3158.319382] ? asm_exc_page_fault+0x8/0x30 [ 3158.319910] asm_exc_page_fault+0x1e/0x30 [ 3158.320424] RIP: 0033:0x7f69903dfdd0 [ 3158.320893] Code: Unable to access opcode bytes at RIP 0x7f69903dfda6. [ 3158.321701] RSP: 002b:00007fff0aa42d48 EFLAGS: 00010246 [ 3158.322357] RAX: 0000000000000000 RBX: 00007fff0aa43044 RCX: 0000000000000000 [ 3158.323259] RDX: 00007fff0aa43045 RSI: 00007fff0aa43045 RDI: 00005635923e5d40 [ 3158.324131] RBP: 00007fff0aa42dd0 R08: 00007f699056fa70 R09: 0000563591acb952 [ 3158.324992] R10: 73c9d968442769d1 R11: 0000563591acb950 R12: 00007fff0aa4303b [ 3158.325842] R13: 00007fff0aa43045 R14: 00005635923e5d40 R15: 00007fff0aa4303b [ 3158.326799] Mem-Info: [ 3158.327110] active_anon:19957 inactive_anon:62569 isolated_anon:0 [ 3158.327110] active_file:6 inactive_file:31 isolated_file:0 [ 3158.327110] unevictable:0 dirty:0 writeback:3 [ 3158.327110] slab_reclaimable:9433 slab_unreclaimable:69985 [ 3158.327110] mapped:69634 shmem:380 pagetables:7357 bounce:0 [ 3158.327110] free:2882 free_pcp:0 free_cma:0 [ 3158.330900] Node 0 active_anon:79828kB inactive_anon:250276kB active_file:24kB inactive_file:124kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:12kB shmem:1520kB writeback_tmp:0kB kernel_stack:10624kB all_unreclaimable? no [ 3158.333745] Node 0 DMA free:6508kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3158.336923] lowmem_reserve[]: 0 1616 1616 1616 [ 3158.337542] Node 0 DMA32 free:5020kB min:5116kB low:6768kB high:8420kB reserved_highatomic:0KB active_anon:79828kB inactive_anon:250276kB active_file:0kB inactive_file:308kB unevictable:0kB writepending:12kB present:2080640kB managed:1660504kB mlocked:0kB pagetables:29428kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3158.341045] lowmem_reserve[]: 0 0 0 0 [ 3158.341552] Node 0 DMA: 1*4kB (U) 1*8kB (U) 0*16kB 1*32kB (U) 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6508kB [ 3158.343233] Node 0 DMA32: 709*4kB (UME) 110*8kB (UME) 60*16kB (UME) 9*32kB (UME) 3*64kB (UM) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 5284kB [ 3158.345043] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3158.346084] 421 total pagecache pages [ 3158.346566] 0 pages in swap cache [ 3158.346983] Swap cache stats: add 0, delete 0, find 0/0 [ 3158.347643] Free swap = 0kB [ 3158.348012] Total swap = 0kB [ 3158.348376] 524158 pages RAM [ 3158.348775] 0 pages HighMem/MovableOnly [ 3158.349253] 105055 pages reserved [ 3158.349686] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz0,task=syz-executor.0,pid=4099,uid=0 [ 3158.351755] Out of memory: Killed process 4099 (syz-executor.0) total-vm:93544kB, anon-rss:452kB, file-rss:34820kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000 [ 3158.367984] systemd-journal invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=-250 [ 3158.369356] CPU: 0 PID: 103 Comm: systemd-journal Not tainted 5.10.186 #1 [ 3158.370171] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3158.371154] Call Trace: [ 3158.371476] dump_stack+0x107/0x167 [ 3158.371913] dump_header+0x106/0x65e [ 3158.372361] oom_kill_process.cold+0x10/0x15 [ 3158.372900] out_of_memory+0x1149/0x1440 [ 3158.373390] ? oom_killer_disable+0x280/0x280 [ 3158.373931] ? mutex_trylock+0x237/0x2b0 [ 3158.374422] ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130 [ 3158.375145] __alloc_pages_slowpath.constprop.0+0x1b25/0x2130 [ 3158.375848] ? lock_acquire+0xd7/0x470 [ 3158.376318] ? warn_alloc+0x190/0x190 [ 3158.376798] __alloc_pages_nodemask+0x51d/0x600 [ 3158.377365] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3158.378082] ? find_get_entry+0x2c8/0x740 [ 3158.378583] alloc_pages_current+0x187/0x280 [ 3158.379107] __page_cache_alloc+0x2d2/0x360 [ 3158.379624] pagecache_get_page+0x2c7/0xc80 [ 3158.380140] filemap_fault+0x177d/0x2210 [ 3158.380645] ? read_cache_page_gfp+0x30/0x30 [ 3158.381166] ? replace_page_cache_page+0x1200/0x1200 [ 3158.381769] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 3158.382395] ext4_filemap_fault+0x87/0xc0 [ 3158.382886] __do_fault+0x113/0x410 [ 3158.383323] handle_mm_fault+0x1e72/0x3520 [ 3158.383820] ? fsnotify+0xf50/0xf50 [ 3158.384249] ? find_held_lock+0x2c/0x110 [ 3158.384743] ? __pmd_alloc+0x5e0/0x5e0 [ 3158.385206] ? vmacache_find+0x55/0x2a0 [ 3158.385688] ? vmacache_update+0xce/0x140 [ 3158.386186] do_user_addr_fault+0x56e/0xc60 [ 3158.386709] exc_page_fault+0xa2/0x1a0 [ 3158.387166] ? asm_exc_page_fault+0x8/0x30 [ 3158.387668] asm_exc_page_fault+0x1e/0x30 [ 3158.388142] RIP: 0033:0x7fd1e8a18f49 [ 3158.388588] Code: Unable to access opcode bytes at RIP 0x7fd1e8a18f1f. [ 3158.389359] RSP: 002b:00007ffe6f4c2808 EFLAGS: 00010202 [ 3158.389988] RAX: 000000000000000a RBX: 00007ffe6f4c30d0 RCX: 00007fd1e8a43480 [ 3158.390834] RDX: 000000000000000a RSI: 00007fd1e8c9aa7a RDI: 00007ffe6f4c30d0 [ 3158.391675] RBP: 00007ffe6f4c5200 R08: 00007fd1e8c9aa70 R09: 00007ffe6f5de080 [ 3158.392517] R10: 00007ffe6f5de0f0 R11: 0000000000000000 R12: 00007ffe6f4c2874 [ 3158.393366] R13: 00007ffe6f4c30d0 R14: 0000000000000100 R15: 0000000000000000 [ 3158.394248] Mem-Info: [ 3158.394567] active_anon:19957 inactive_anon:62548 isolated_anon:0 [ 3158.394567] active_file:6 inactive_file:31 isolated_file:0 [ 3158.394567] unevictable:0 dirty:0 writeback:3 [ 3158.394567] slab_reclaimable:9433 slab_unreclaimable:69985 [ 3158.394567] mapped:69634 shmem:380 pagetables:7357 bounce:0 [ 3158.394567] free:2882 free_pcp:126 free_cma:0 [ 3158.398244] Node 0 active_anon:79828kB inactive_anon:250192kB active_file:24kB inactive_file:124kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:12kB shmem:1520kB writeback_tmp:0kB kernel_stack:10624kB all_unreclaimable? no [ 3158.400884] Node 0 DMA free:6508kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3158.403882] lowmem_reserve[]: 0 1616 1616 1616 [ 3158.404422] Node 0 DMA32 free:5020kB min:5116kB low:6768kB high:8420kB reserved_highatomic:0KB active_anon:79828kB inactive_anon:250276kB active_file:0kB inactive_file:308kB unevictable:0kB writepending:12kB present:2080640kB managed:1660504kB mlocked:0kB pagetables:29428kB bounce:0kB free_pcp:504kB local_pcp:468kB free_cma:0kB [ 3158.407765] lowmem_reserve[]: 0 0 0 0 [ 3158.408222] Node 0 DMA: 1*4kB (U) 1*8kB (U) 0*16kB 1*32kB (U) 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6508kB [ 3158.409835] Node 0 DMA32: 644*4kB (UM) 114*8kB (UM) 51*16kB (UME) 9*32kB (UME) 3*64kB (UM) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4912kB [ 3158.411489] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3158.412483] 421 total pagecache pages [ 3158.412920] 0 pages in swap cache [ 3158.413316] Swap cache stats: add 0, delete 0, find 0/0 [ 3158.413944] Free swap = 0kB [ 3158.414279] Total swap = 0kB [ 3158.414641] 524158 pages RAM [ 3158.414982] 0 pages HighMem/MovableOnly [ 3158.415438] 105055 pages reserved [ 3158.415847] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/systemd-journald.service,task=systemd-journal,pid=103,uid=0 [ 3158.417809] Out of memory (oom_kill_allocating_task): Killed process 103 (systemd-journal) total-vm:31940kB, anon-rss:880kB, file-rss:0kB, shmem-rss:4kB, UID:0 pgtables:84kB oom_score_adj:-250 [ 3158.489563] systemd-udevd invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3158.491331] CPU: 1 PID: 121806 Comm: systemd-udevd Not tainted 5.10.186 #1 [ 3158.492547] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3158.493902] Call Trace: [ 3158.494372] dump_stack+0x107/0x167 [ 3158.494974] dump_header+0x106/0x65e [ 3158.495642] oom_kill_process.cold+0x10/0x15 [ 3158.496366] out_of_memory+0x1149/0x1440 [ 3158.497092] ? oom_killer_disable+0x280/0x280 [ 3158.497831] ? mutex_trylock+0x237/0x2b0 [ 3158.498556] ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130 [ 3158.499529] __alloc_pages_slowpath.constprop.0+0x1b25/0x2130 [ 3158.500586] ? lock_acquire+0xd7/0x470 [ 3158.501233] ? warn_alloc+0x190/0x190 [ 3158.501919] __alloc_pages_nodemask+0x51d/0x600 [ 3158.502688] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3158.503754] ? find_get_entry+0x2c8/0x740 [ 3158.504449] alloc_pages_current+0x187/0x280 [ 3158.505233] __page_cache_alloc+0x2d2/0x360 [ 3158.505943] pagecache_get_page+0x2c7/0xc80 [ 3158.506713] filemap_fault+0x177d/0x2210 [ 3158.507386] ? read_cache_page_gfp+0x30/0x30 [ 3158.508173] ? replace_page_cache_page+0x1200/0x1200 [ 3158.509008] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 3158.509939] ext4_filemap_fault+0x87/0xc0 [ 3158.510616] __do_fault+0x113/0x410 [ 3158.511258] handle_mm_fault+0x1e72/0x3520 [ 3158.511959] ? __pmd_alloc+0x5e0/0x5e0 [ 3158.512670] ? vmacache_find+0x55/0x2a0 [ 3158.513330] do_user_addr_fault+0x56e/0xc60 [ 3158.514097] exc_page_fault+0xa2/0x1a0 [ 3158.514737] ? asm_exc_page_fault+0x8/0x30 [ 3158.515483] asm_exc_page_fault+0x1e/0x30 [ 3158.516163] RIP: 0033:0x5649b2c19755 [ 3158.516829] Code: Unable to access opcode bytes at RIP 0x5649b2c1972b. [ 3158.517896] RSP: 002b:00007fffcfb42e40 EFLAGS: 00010207 [ 3158.518829] RAX: 0000000000000000 RBX: 0000000000000010 RCX: 00007f07ef3f93f5 [ 3158.519999] RDX: 00007fffcfb42e70 RSI: 00007fffcfb42e70 RDI: 0000000000000010 [ 3158.521248] RBP: 00005649b531ced0 R08: 0000000000000001 R09: 0000000000000000 [ 3158.522416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3158.523683] R13: 00005649b531ced0 R14: 0000000000000001 R15: 0000000000000010 [ 3158.524965] Mem-Info: [ 3158.525414] active_anon:19957 inactive_anon:62548 isolated_anon:0 [ 3158.525414] active_file:6 inactive_file:10 isolated_file:0 [ 3158.525414] unevictable:0 dirty:0 writeback:3 [ 3158.525414] slab_reclaimable:9433 slab_unreclaimable:69985 [ 3158.525414] mapped:69634 shmem:380 pagetables:7357 bounce:0 [ 3158.525414] free:2379 free_pcp:122 free_cma:0 [ 3158.530600] Node 0 active_anon:79828kB inactive_anon:250192kB active_file:24kB inactive_file:40kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:12kB shmem:1520kB writeback_tmp:0kB kernel_stack:10624kB all_unreclaimable? no [ 3158.534539] Node 0 DMA free:6484kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3158.538910] lowmem_reserve[]: 0 1616 1616 1616 [ 3158.539914] Node 0 DMA32 free:3032kB min:11260kB low:12912kB high:14564kB reserved_highatomic:0KB active_anon:79828kB inactive_anon:249268kB active_file:0kB inactive_file:308kB unevictable:0kB writepending:12kB present:2080640kB managed:1660504kB mlocked:0kB pagetables:29428kB bounce:0kB free_pcp:1168kB local_pcp:248kB free_cma:0kB [ 3158.545064] lowmem_reserve[]: 0 0 0 0 [ 3158.545828] Node 0 DMA: 1*4kB (U) 0*8kB 1*16kB (U) 0*32kB 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6484kB [ 3158.548097] Node 0 DMA32: 563*4kB (ME) 65*8kB (UME) 28*16kB (UME) 1*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 3252kB [ 3158.550378] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3158.551795] 421 total pagecache pages [ 3158.552431] 0 pages in swap cache [ 3158.553044] Swap cache stats: add 0, delete 0, find 0/0 [ 3158.553934] Free swap = 0kB [ 3158.554438] Total swap = 0kB [ 3158.554962] 524158 pages RAM [ 3158.555484] 0 pages HighMem/MovableOnly [ 3158.556132] 105055 pages reserved [ 3158.556741] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/systemd-udevd.service,task=systemd-udevd,pid=121806,uid=0 [ 3158.559525] Out of memory (oom_kill_allocating_task): Killed process 121806 (systemd-udevd) total-vm:35768kB, anon-rss:10232kB, file-rss:0kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0 [ 3158.603802] syz-fuzzer invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3158.604913] CPU: 0 PID: 258 Comm: syz-fuzzer Not tainted 5.10.186 #1 [ 3158.605587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3158.606486] Call Trace: [ 3158.606767] dump_stack+0x107/0x167 [ 3158.607170] dump_header+0x106/0x65e [ 3158.607568] oom_kill_process.cold+0x10/0x15 [ 3158.608054] out_of_memory+0x1149/0x1440 [ 3158.608487] ? oom_killer_disable+0x280/0x280 [ 3158.608966] ? mutex_trylock+0x237/0x2b0 [ 3158.609397] ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130 [ 3158.610016] __alloc_pages_slowpath.constprop.0+0x1b25/0x2130 [ 3158.610635] ? lock_acquire+0xd7/0x470 [ 3158.611050] ? warn_alloc+0x190/0x190 [ 3158.611465] __alloc_pages_nodemask+0x51d/0x600 [ 3158.611967] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3158.612605] ? find_get_entry+0x2c8/0x740 [ 3158.613054] alloc_pages_current+0x187/0x280 [ 3158.613514] __page_cache_alloc+0x2d2/0x360 [ 3158.613967] pagecache_get_page+0x2c7/0xc80 [ 3158.614422] filemap_fault+0x177d/0x2210 [ 3158.614857] ? read_cache_page_gfp+0x30/0x30 [ 3158.615322] ? replace_page_cache_page+0x1200/0x1200 [ 3158.615855] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 3158.616410] ext4_filemap_fault+0x87/0xc0 [ 3158.616849] __do_fault+0x113/0x410 [ 3158.617235] handle_mm_fault+0x1e72/0x3520 [ 3158.617689] ? find_held_lock+0x2c/0x110 [ 3158.618118] ? __pmd_alloc+0x5e0/0x5e0 [ 3158.618534] ? vmacache_find+0x55/0x2a0 [ 3158.618956] do_user_addr_fault+0x56e/0xc60 [ 3158.619413] exc_page_fault+0xa2/0x1a0 [ 3158.619817] ? asm_exc_page_fault+0x8/0x30 [ 3158.620265] asm_exc_page_fault+0x1e/0x30 [ 3158.620705] RIP: 0033:0x462416 [ 3158.621043] Code: Unable to access opcode bytes at RIP 0x4623ec. [ 3158.621675] RSP: 002b:000000c000041fd0 EFLAGS: 00010202 [ 3158.622234] RAX: 000000c000000180 RBX: 000000c000030380 RCX: 000002d4a6e82743 [ 3158.623009] RDX: 0000000000b12768 RSI: 000000c000000900 RDI: 0000000000b12768 [ 3158.623761] RBP: 000000c00e8d9890 R08: 000000c000532180 R09: 000000c000532180 [ 3158.624527] R10: 0000000000000000 R11: 0000000000000000 R12: 000000c00e8d9b00 [ 3158.625289] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 3158.626094] Mem-Info: [ 3158.626364] active_anon:19957 inactive_anon:62317 isolated_anon:0 [ 3158.626364] active_file:27 inactive_file:31 isolated_file:0 [ 3158.626364] unevictable:0 dirty:0 writeback:3 [ 3158.626364] slab_reclaimable:9410 slab_unreclaimable:69833 [ 3158.626364] mapped:69634 shmem:380 pagetables:7357 bounce:0 [ 3158.626364] free:2251 free_pcp:62 free_cma:0 [ 3158.629650] Node 0 active_anon:79828kB inactive_anon:249268kB active_file:108kB inactive_file:124kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:12kB shmem:1520kB writeback_tmp:0kB kernel_stack:10592kB all_unreclaimable? no [ 3158.632067] Node 0 DMA free:6484kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3158.634767] lowmem_reserve[]: 0 1616 1616 1616 [ 3158.635262] Node 0 DMA32 free:2520kB min:5116kB low:6768kB high:8420kB reserved_highatomic:0KB active_anon:79828kB inactive_anon:249268kB active_file:0kB inactive_file:308kB unevictable:0kB writepending:12kB present:2080640kB managed:1660504kB mlocked:0kB pagetables:29428kB bounce:0kB free_pcp:248kB local_pcp:0kB free_cma:0kB [ 3158.638209] lowmem_reserve[]: 0 0 0 0 [ 3158.638648] Node 0 DMA: 1*4kB (U) 0*8kB 1*16kB (U) 0*32kB 1*64kB (U) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6484kB [ 3158.640052] Node 0 DMA32: 543*4kB (UME) 60*8kB (UM) 2*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2684kB [ 3158.641418] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3158.642306] 421 total pagecache pages [ 3158.642733] 0 pages in swap cache [ 3158.643086] Swap cache stats: add 0, delete 0, find 0/0 [ 3158.643657] Free swap = 0kB [ 3158.643967] Total swap = 0kB [ 3158.644280] 524158 pages RAM [ 3158.644630] 0 pages HighMem/MovableOnly [ 3158.645040] 105055 pages reserved [ 3158.645406] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/ssh.service,task=syz-fuzzer,pid=258,uid=0 [ 3158.647025] Out of memory (oom_kill_allocating_task): Killed process 256 (syz-fuzzer) total-vm:1240980kB, anon-rss:270732kB, file-rss:0kB, shmem-rss:0kB, UID:0 pgtables:992kB oom_score_adj:0 [ 3158.795009] in:imklog invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3158.796446] CPU: 1 PID: 213 Comm: in:imklog Not tainted 5.10.186 #1 [ 3158.797351] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3158.798522] Call Trace: [ 3158.798903] dump_stack+0x107/0x167 [ 3158.799367] dump_header+0x106/0x65e [ 3158.799962] oom_kill_process.cold+0x10/0x15 [ 3158.800596] out_of_memory+0x1149/0x1440 [ 3158.801177] ? oom_killer_disable+0x280/0x280 [ 3158.801820] ? mutex_trylock+0x237/0x2b0 [ 3158.802389] ? __alloc_pages_slowpath.constprop.0+0xb0e/0x2130 [ 3158.803225] __alloc_pages_slowpath.constprop.0+0x1b25/0x2130 [ 3158.804064] ? lock_acquire+0xd7/0x470 [ 3158.804621] ? warn_alloc+0x190/0x190 [ 3158.805177] __alloc_pages_nodemask+0x51d/0x600 [ 3158.805846] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3158.806704] ? find_get_entry+0x2c8/0x740 [ 3158.807303] alloc_pages_current+0x187/0x280 [ 3158.807929] __page_cache_alloc+0x2d2/0x360 [ 3158.808556] pagecache_get_page+0x2c7/0xc80 [ 3158.809169] filemap_fault+0x177d/0x2210 [ 3158.809757] ? read_cache_page_gfp+0x30/0x30 [ 3158.810383] ? replace_page_cache_page+0x1200/0x1200 [ 3158.811102] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 3158.811853] ext4_filemap_fault+0x87/0xc0 [ 3158.812441] __do_fault+0x113/0x410 [ 3158.812965] handle_mm_fault+0x1e72/0x3520 [ 3158.813567] ? fsnotify+0xf50/0xf50 [ 3158.814077] ? find_held_lock+0x2c/0x110 [ 3158.814650] ? __pmd_alloc+0x5e0/0x5e0 [ 3158.815208] ? vmacache_find+0x55/0x2a0 [ 3158.815778] do_user_addr_fault+0x56e/0xc60 [ 3158.816408] exc_page_fault+0xa2/0x1a0 [ 3158.816978] ? asm_exc_page_fault+0x8/0x30 [ 3158.817222] syz-fuzzer: page allocation failure: order:0, mode:0x100cca(GFP_HIGHUSER_MOVABLE), nodemask=(null) [ 3158.817592] asm_exc_page_fault+0x1e/0x30 [ 3158.817666] RIP: 0033:0x7efd8911fe10 [ 3158.817684] Code: Unable to access opcode bytes at RIP 0x7efd8911fde6. [ 3158.817692] RSP: 002b:00007efd886c43b8 EFLAGS: 00010246 [ 3158.817704] RAX: ffffffff00000000 RBX: 00007efd7c04bb50 RCX: 0000000000000000 [ 3158.817712] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007efd7c04bb68 [ 3158.817720] RBP: 00007efd886c4418 R08: 00007efd7c04bb50 R09: 00007efd7c000080 [ 3158.817733] R10: 0000000000010000 R11: 0000000000000000 R12: 000055fb1bd525c0 [ 3158.817741] R13: 00007efd886c4d03 R14: 0000000000000004 R15: 00007efd886c4d70 [ 3158.817818] Mem-Info: [ 3158.819161] ,cpuset= [ 3158.819761] active_anon:19957 inactive_anon:62317 isolated_anon:0 [ 3158.819761] active_file:27 inactive_file:31 isolated_file:0 [ 3158.819761] unevictable:0 dirty:0 writeback:3 [ 3158.819761] slab_reclaimable:9410 slab_unreclaimable:69833 [ 3158.819761] mapped:69634 shmem:380 pagetables:7357 bounce:0 [ 3158.819761] free:2344 free_pcp:0 free_cma:0 [ 3158.819785] Node 0 active_anon:79828kB inactive_anon:249268kB active_file:108kB inactive_file:124kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:12kB shmem:1520kB writeback_tmp:0kB kernel_stack:10336kB all_unreclaimable? no [ 3158.820372] / [ 3158.821291] Node 0 DMA free:6484kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3158.822038] ,mems_allowed=0 [ 3158.823067] lowmem_reserve[]: 0 [ 3158.823875] [ 3158.824967] 1616 [ 3158.825764] CPU: 0 PID: 258 Comm: syz-fuzzer Not tainted 5.10.186 #1 [ 3158.825775] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3158.826808] 1616 [ 3158.827058] Call Trace: [ 3158.827073] dump_stack+0x107/0x167 [ 3158.827396] 1616 [ 3158.830765] warn_alloc.cold+0x95/0x18a [ 3158.830783] ? zone_watermark_ok_safe+0x260/0x260 [ 3158.834106] Node 0 [ 3158.834300] ? schedule_timeout+0x1ce/0x380 [ 3158.837783] DMA32 free:2892kB min:11260kB low:12912kB high:14564kB reserved_highatomic:0KB active_anon:79828kB inactive_anon:249268kB active_file:0kB inactive_file:308kB unevictable:0kB writepending:12kB present:2080640kB managed:1660504kB mlocked:0kB pagetables:29428kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3158.838081] ? usleep_range+0x170/0x170 [ 3158.838473] lowmem_reserve[]: [ 3158.838651] ? __next_timer_interrupt+0x2c0/0x2c0 [ 3158.838888] 0 0 [ 3158.839612] __alloc_pages_slowpath.constprop.0+0x1c80/0x2130 [ 3158.839634] ? lock_acquire+0xd7/0x470 [ 3158.840849] 0 [ 3158.841067] ? warn_alloc+0x190/0x190 [ 3158.841432] 0 [ 3158.841849] __alloc_pages_nodemask+0x51d/0x600 [ 3158.842141] [ 3158.842561] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3158.842576] ? find_get_entry+0x2c8/0x740 [ 3158.843264] Node 0 [ 3158.843519] alloc_pages_current+0x187/0x280 [ 3158.843533] __page_cache_alloc+0x2d2/0x360 [ 3158.844135] DMA: [ 3158.847187] pagecache_get_page+0x2c7/0xc80 [ 3158.847202] filemap_fault+0x177d/0x2210 [ 3158.847218] ? read_cache_page_gfp+0x30/0x30 [ 3158.847231] ? replace_page_cache_page+0x1200/0x1200 [ 3158.847240] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 3158.847255] ext4_filemap_fault+0x87/0xc0 [ 3158.847265] __do_fault+0x113/0x410 [ 3158.847278] handle_mm_fault+0x1e72/0x3520 [ 3158.847291] ? find_held_lock+0x2c/0x110 [ 3158.847301] ? __pmd_alloc+0x5e0/0x5e0 [ 3158.847316] ? vmacache_find+0x55/0x2a0 [ 3158.847331] do_user_addr_fault+0x56e/0xc60 [ 3158.847348] exc_page_fault+0xa2/0x1a0 [ 3158.847358] ? asm_exc_page_fault+0x8/0x30 [ 3158.847369] asm_exc_page_fault+0x1e/0x30 [ 3158.847375] RIP: 0033:0x462416 [ 3158.847383] Code: Unable to access opcode bytes at RIP 0x4623ec. [ 3158.847388] RSP: 002b:000000c000041fd0 EFLAGS: 00010202 [ 3158.847397] RAX: 000000c000000180 RBX: 000000c000030380 RCX: 000002d4a6e82743 [ 3158.847408] RDX: 0000000000b12768 RSI: 000000c000000900 RDI: 0000000000b12768 [ 3158.848125] 1*4kB [ 3158.848315] RBP: 000000c00e8d9890 R08: 000000c000532180 R09: 000000c000532180 [ 3158.848326] R10: 0000000000000000 R11: 0000000000000000 R12: 000000c00e8d9b00 [ 3158.849065] (U) [ 3158.849256] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 3158.849312] Mem-Info: [ 3158.850139] 0*8kB [ 3158.850591] active_anon:19957 inactive_anon:62317 isolated_anon:0 [ 3158.850591] active_file:27 inactive_file:31 isolated_file:0 [ 3158.850591] unevictable:0 dirty:0 writeback:3 [ 3158.850591] slab_reclaimable:9410 slab_unreclaimable:69833 [ 3158.850591] mapped:69634 shmem:380 pagetables:7357 bounce:0 [ 3158.850591] free:2344 free_pcp:0 free_cma:0 [ 3158.850831] 1*16kB (U) [ 3158.851261] Node 0 active_anon:79828kB inactive_anon:249268kB active_file:108kB inactive_file:124kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:12kB shmem:1520kB writeback_tmp:0kB kernel_stack:10336kB all_unreclaimable? no [ 3158.851269] Node 0 [ 3158.851549] 0*32kB 1*64kB [ 3158.852079] DMA free:6484kB min:48kB low:60kB high:72kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3158.852086] lowmem_reserve[]: [ 3158.852320] (U) 0*128kB [ 3158.853002] 0 1616 [ 3158.853620] 1*256kB [ 3158.853862] 1616 1616 [ 3158.854517] (U) [ 3158.854986] [ 3158.854995] Node 0 [ 3158.855295] 0*512kB 0*1024kB [ 3158.855802] DMA32 free:2892kB min:11260kB low:12912kB high:14564kB reserved_highatomic:0KB active_anon:79828kB inactive_anon:249268kB active_file:0kB inactive_file:308kB unevictable:0kB writepending:12kB present:2080640kB managed:1660504kB mlocked:0kB pagetables:29428kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3158.855810] lowmem_reserve[]: [ 3158.856386] 1*2048kB (M) [ 3158.856897] 0 0 [ 3158.857640] 1*4096kB (M) [ 3158.858224] 0 0 [ 3158.858843] = 6484kB [ 3158.858851] Node 0 [ 3158.859240] [ 3158.859248] Node 0 [ 3158.859860] DMA32: 540*4kB [ 3158.860304] DMA: 1*4kB [ 3158.860945] (UME) [ 3158.861376] (U) 0*8kB [ 3158.862010] 59*8kB (UM) [ 3158.862433] 1*16kB (U) [ 3158.863054] 1*16kB (U) [ 3158.863527] 0*32kB 1*64kB [ 3158.863988] 5*32kB (U) [ 3158.864681] (U) 0*128kB [ 3158.865486] 0*64kB [ 3158.866264] 1*256kB (U) [ 3158.867306] 0*128kB 0*256kB [ 3158.867549] 0*512kB 0*1024kB [ 3158.868564] 0*512kB [ 3158.869299] 1*2048kB (M) [ 3158.869604] 0*1024kB 0*2048kB [ 3158.870365] 1*4096kB (M) [ 3158.870726] 0*4096kB = 2808kB [ 3158.870960] = 6484kB [ 3158.870971] Node 0 [ 3158.875293] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3158.875300] 421 total pagecache pages [ 3158.875591] DMA32: [ 3158.878647] 0 pages in swap cache [ 3158.878657] Swap cache stats: add 0, delete 0, find 0/0 [ 3158.878891] 540*4kB [ 3158.879211] Free swap = 0kB [ 3158.879218] Total swap = 0kB [ 3158.881873] (UME) [ 3158.882220] 524158 pages RAM [ 3158.882520] 59*8kB [ 3158.882770] 0 pages HighMem/MovableOnly [ 3158.882777] 105055 pages reserved [ 3158.883034] (UM) 1*16kB [ 3158.883322] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null) [ 3158.883544] (U) [ 3158.883726] ,cpuset= [ 3158.883961] 5*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB [ 3158.884597] / [ 3158.887516] 0*2048kB 0*4096kB [ 3158.888045] ,mems_allowed=0 [ 3158.888317] = 2808kB [ 3158.888329] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3158.888567] ,global_oom,task_memcg= [ 3158.888859] 421 total pagecache pages [ 3158.888866] 0 pages in swap cache [ 3158.889093] /system.slice/rsyslog.service [ 3158.889341] Swap cache stats: add 0, delete 0, find 0/0 [ 3158.889349] Free swap = 0kB [ 3158.889613] ,task=in:imklog,pid=213,uid=0 [ 3158.889660] Out of memory (oom_kill_allocating_task): Killed process 210 (rsyslogd) total-vm:220876kB, anon-rss:988kB, file-rss:0kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0 [ 3158.889806] Total swap = 0kB [ 3158.909767] 524158 pages RAM [ 3158.910083] 0 pages HighMem/MovableOnly [ 3158.910510] 105055 pages reserved [ 3159.056494] systemd[1]: systemd-journald.service: Main process exited, code=killed, status=9/KILL [ 3159.058424] systemd[1]: systemd-journald.service: Failed with result 'oom-kill'. [ 3159.074978] systemd[1]: systemd-journald.service: Consumed 14.159s CPU time. [ 3159.079359] systemd[1]: systemd-udevd.service: A process of this unit has been killed by the OOM killer. [ 3159.081063] systemd[1]: ssh.service: A process of this unit has been killed by the OOM killer. [ 3159.082722] systemd[1]: rsyslog.service: A process of this unit has been killed by the OOM killer. [ 3159.084830] systemd[1]: systemd-journald.service: Scheduled restart job, restart counter is at 1. [ 3159.171702] systemd[1]: Stopping Flush Journal to Persistent Storage... [ 3159.273492] systemd[1]: ssh.service: Failed with result 'oom-kill'. [ 3159.274830] systemd[1]: ssh.service: Unit process 249 (sshd) remains running after unit stopped. [ 3159.276073] systemd[1]: ssh.service: Unit process 275 (syz-executor.0) remains running after unit stopped. [ 3159.277396] systemd[1]: ssh.service: Unit process 280 (syz-executor.5) remains running after unit stopped. [ 3159.278717] systemd[1]: ssh.service: Unit process 281 (syz-executor.7) remains running after unit stopped. [ 3159.280041] systemd[1]: ssh.service: Unit process 282 (syz-executor.6) remains running after unit stopped. [ 3159.281380] systemd[1]: ssh.service: Unit process 8663 (syz-executor.1) remains running after unit stopped. [ 3159.319184] systemd[1]: ssh.service: Consumed 45min 43.283s CPU time. [ 3159.405849] systemd[1]: rsyslog.service: Main process exited, code=killed, status=9/KILL [ 3159.407875] systemd[1]: rsyslog.service: Failed with result 'oom-kill'. [ 3159.414988] systemd[1]: rsyslog.service: Consumed 1.288s CPU time. [ 3159.496760] systemd[1]: ssh.service: Scheduled restart job, restart counter is at 1. [ 3159.499415] systemd[1]: Stopped OpenBSD Secure Shell server. [ 3159.500531] systemd[1]: ssh.service: Consumed 45min 43.309s CPU time. [ 3159.505532] systemd[1]: ssh.service: Found left-over process 249 (sshd) in control group while starting unit. Ignoring. [ 3159.506835] systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies. [ 3159.508336] systemd[1]: ssh.service: Found left-over process 275 (syz-executor.0) in control group while starting unit. Ignoring. [ 3159.509629] systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies. [ 3159.511110] systemd[1]: ssh.service: Found left-over process 280 (syz-executor.5) in control group while starting unit. Ignoring. [ 3159.512383] systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies. [ 3159.513868] systemd[1]: ssh.service: Found left-over process 281 (syz-executor.7) in control group while starting unit. Ignoring. [ 3159.515133] systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies. [ 3159.516643] systemd[1]: ssh.service: Found left-over process 282 (syz-executor.6) in control group while starting unit. Ignoring. [ 3159.517917] systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies. [ 3159.519377] systemd[1]: ssh.service: Found left-over process 8663 (syz-executor.1) in control group while starting unit. Ignoring. [ 3159.520662] systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies. [ 3159.579154] systemd[1]: Starting OpenBSD Secure Shell server... [ 3159.580736] systemd[1]: rsyslog.service: Scheduled restart job, restart counter is at 1. [ 3159.581676] systemd[1]: Stopped System Logging Service. [ 3159.582555] systemd[1]: rsyslog.service: Consumed 1.288s CPU time. [ 3159.649102] systemd[1]: Starting System Logging Service... [ 3159.854808] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3159.980166] systemd[1]: Starting Load/Save RF Kill Switch Status... [ 3160.011049] systemd[1]: systemd-udevd.service: Failed with result 'oom-kill'. [ 3160.027437] systemd[1]: systemd-udevd.service: Consumed 1min 43.522s CPU time. [ 3160.035178] systemd[1]: systemd-udevd.service: Scheduled restart job, restart counter is at 1. [ 3160.037405] systemd[1]: Stopped Rule-based Manager for Device Events and Files. [ 3160.039564] systemd[1]: systemd-udevd.service: Consumed 1min 43.522s CPU time. [ 3160.070853] systemd[1]: Starting Rule-based Manager for Device Events and Files... [ 3160.219743] systemd[1]: Started System Logging Service. [ 3160.260969] systemd[1]: ssh.service: Found left-over process 249 (sshd) in control group while starting unit. Ignoring. [ 3160.262209] systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies. [ 3160.263614] systemd[1]: ssh.service: Found left-over process 275 (syz-executor.0) in control group while starting unit. Ignoring. [ 3160.265032] systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies. [ 3160.268939] systemd[1]: ssh.service: Found left-over process 280 (syz-executor.5) in control group while starting unit. Ignoring. [ 3160.270231] systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies. [ 3160.271741] systemd[1]: ssh.service: Found left-over process 281 (syz-executor.7) in control group while starting unit. Ignoring. [ 3160.273196] systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies. [ 3160.274604] systemd[1]: ssh.service: Found left-over process 282 (syz-executor.6) in control group while starting unit. Ignoring. [ 3160.275989] systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies. [ 3160.277476] systemd[1]: ssh.service: Found left-over process 8663 (syz-executor.1) in control group while starting unit. Ignoring. [ 3160.279021] systemd[1]: This usually indicates unclean termination of a previous run, or service implementation deficiencies. [ 3160.316509] systemd[1]: Started Load/Save RF Kill Switch Status. [ 3160.329212] systemd[1]: systemd-journal-flush.service: Succeeded. [ 3160.450925] systemd[1]: Stopped Flush Journal to Persistent Storage. [ 3160.465569] systemd[1]: Stopped Journal Service. [ 3160.501949] systemd[1]: systemd-journald.service: Consumed 14.159s CPU time. [ 3160.632667] systemd[1]: Starting Journal Service... [ 3161.762219] systemd[1]: Started OpenBSD Secure Shell server. [ 3162.116323] systemd-journald[121834]: File /var/log/journal/7e681e5076844de4a5cfa8606a84b008/system.journal corrupted or uncleanly shut down, renaming and replacing. [ 3162.488922] systemd[1]: Started Rule-based Manager for Device Events and Files. [ 3162.598004] systemd[1]: Stopped target Bluetooth. [ 3162.830405] systemd[1]: Started Journal Service. [ 3162.912185] systemd-journald[121834]: Received client request to flush runtime journal. VM DIAGNOSIS: 07:33:19 Registers: info registers vcpu 0 RAX=ffffed100d9c1397 RBX=1ffff1100d9c13b4 RCX=0000000000000002 RDX=dffffc0000000000 RSI=0000000000000000 RDI=ffffffff84ff7b00 RBP=0000000000000000 RSP=ffff88806ce09c30 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000246 R11=0000000000000001 R12=ffff88801b640000 R13=0000000000000000 R14=ffffffff84ff7b00 R15=0000000000000002 RIP=ffffffff81269d6a RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f115b56eff0 CR3=0000000054192000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=73529b1c0035a5c26f948b80d29d8af4 XMM02=a815c89b190f74274ed074752fe161cd XMM03=5406652058a4f8cda80f45c32c6b6afa XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=0d0c0f0e09080b0a0504070601000302 XMM07=0e0d0c0f0a09080b0605040702010003 XMM08=64707466730073254073250070746673 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000000 RBX=ffffea0001188a00 RCX=ffffffff8168dd09 RDX=1ffffd4000231140 RSI=0000000000000008 RDI=ffffea0001188a00 RBP=0100000000000002 RSP=ffff88803dbbf708 R8 =0000000000000000 R9 =ffffea0001188a07 R10=fffff94000231140 R11=0000000000000001 R12=0000000000000000 R13=ffffea0001188a08 R14=0000000000000000 R15=dead000000000100 RIP=ffffffff8168dd27 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000056359233f510 CR3=0000000055ef0000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=732f70756f7267632f73662f7379732f XMM01=6563696c732e6d65747379732f70756f XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=ffffff00ffffff00ffffffffffffffff XMM06=ffffff00ffffff00ffffffffffffffff XMM07=00000000000000000000000000000000 XMM08=000000000000000000006d6574737973 XMM09=00000000000000000000000000000000 XMM10=00002000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000